This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: 1YR3hhYI9jLDV9H/XoEfJ9+9DF4V22iqKXsW2RP5+yM= Subject key identifier: 9B:79:C5:89:F9:E7:27:66:3A:1E:12:8B:91:42:22:23:35:83:5D:6E Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0AE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0AE0 Signing time: Thu 18 Dec 2025 19:02:05 +0000 Manifest this update: Thu 18 Dec 2025 19:02:04 +0000 Manifest next update: Thu 25 Dec 2025 19:02:04 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: Vqiar99fpZvIIk5r0U5Yf1G8XoJlMUY4CTPNHvPClAQ=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Dec 18 19:02:04 2025 GMT Not After : Dec 25 19:02:04 2025 GMT Subject: CN=69444fad-210e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:85:e8:89:ea:96:46:d5:86:e0:10:52:21:76: 1c:8b:15:2b:bb:62:96:94:3c:dd:36:db:9a:7d:ab: f8:64:19:58:5b:86:b6:a2:bb:a6:79:a5:b9:f8:be: 22:41:91:20:ee:97:68:ca:84:f8:6b:02:cc:f5:df: 75:92:ed:08:a6:54:2e:1f:c4:33:57:41:4d:dd:98: d6:94:1d:5a:fc:68:a0:6d:67:41:98:a1:3c:bf:49: ee:00:b1:4d:8f:db:6a:ec:ce:0a:8c:d0:61:76:17: 00:cc:2d:71:10:6c:64:0e:d9:97:21:28:e6:4e:e3: 7e:03:f5:b9:53:3f:2f:b4:e1:0e:75:5a:df:63:be: ba:27:76:73:8d:aa:00:5c:db:7f:5c:95:b7:4c:1c: ea:5c:2f:2f:45:6a:0c:4d:7b:87:f9:a5:17:ab:98: b2:70:f7:d6:70:ad:fb:60:d9:54:49:a2:8b:66:7c: 80:5b:a0:b5:a3:b2:1a:a1:33:15:3d:13:b8:9f:59: 07:a1:5c:84:be:cd:da:4c:cb:a5:aa:f2:b7:ab:5b: ed:51:46:e5:f3:81:c6:e4:62:f3:1d:fe:c2:4b:fc: c1:69:74:ef:f3:8e:e5:f9:e6:e5:5d:7b:23:b3:7e: 26:66:02:f4:11:03:20:b3:b2:6e:86:61:d4:b3:b9: 84:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:79:C5:89:F9:E7:27:66:3A:1E:12:8B:91:42:22:23:35:83:5D:6E X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:86:f9:9a:eb:28:f9:c3:bf:f6:bc:bf:f1:ce:e3:51:1d:95: b3:98:51:bf:37:86:53:5c:1f:36:52:75:c0:de:a2:be:c6:2d: 4a:b0:79:c4:de:8c:0f:dd:29:c6:f6:8d:9b:4d:9b:d8:e0:0d: 3d:e7:66:c8:3d:c0:10:9f:ad:53:be:5c:ba:66:8d:14:be:2c: c2:40:9e:48:19:01:ea:b9:fe:d2:77:57:fc:f7:cf:27:98:6a: 8d:96:17:eb:14:71:ba:8a:f6:0a:e3:3b:55:db:74:b9:ba:61: 0c:76:81:69:e3:a1:0c:4f:0a:ba:78:c3:a5:f2:17:ac:0b:c9: 24:27:ce:6d:b3:9a:60:a0:b3:74:2f:9a:4b:1f:51:ac:b1:ee: df:18:e0:17:cd:c5:62:6a:2e:8b:90:00:52:f3:8a:7e:8f:8c: b4:ca:ae:81:50:09:aa:ee:a1:34:94:a8:c5:96:02:98:f1:9b: fd:fc:51:54:fc:28:9d:7e:b3:25:d4:9c:d6:bb:8d:71:69:59: 35:d7:18:b4:b9:c6:c7:e9:bc:52:de:d2:f6:3c:f3:5d:b3:d8: 15:5c:38:e8:b4:b2:d0:ec:67:bd:9d:7a:40:8f:b6:ad:be:d2: 3d:f5:f5:96:29:7f:8e:48:a7:23:08:82:dd:32:94:4b:a3:8e: 67:30:7f:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUxMjE4MTkwMjA0WhcNMjUxMjI1MTkwMjA0WjAYMRYwFAYD VQQDDA02OTQ0NGZhZC0yMTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYXoieqWRtWG4BBSIXYcixUru2KWlDzdNtuafav4ZBlYW4a2orumeaW5+L4i QZEg7pdoyoT4awLM9d91ku0IplQuH8QzV0FN3ZjWlB1a/GigbWdBmKE8v0nuALFN j9tq7M4KjNBhdhcAzC1xEGxkDtmXISjmTuN+A/W5Uz8vtOEOdVrfY766J3ZzjaoA XNt/XJW3TBzqXC8vRWoMTXuH+aUXq5iycPfWcK37YNlUSaKLZnyAW6C1o7IaoTMV PRO4n1kHoVyEvs3aTMulqvK3q1vtUUbl84HG5GLzHf7CS/zBaXTv847l+eblXXsj s34mZgL0EQMgs7JuhmHUs7mE+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJt5xYn5 5ydmOh4Si5FCIiM1g11uMB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHhvma6yj5w7/2vL/xzuNRHZWzmFG/N4ZTXB82UnXA3qK+xi1KsHnE 3owP3SnG9o2bTZvY4A0952bIPcAQn61Tvly6Zo0UvizCQJ5IGQHquf7Sd1f8988n mGqNlhfrFHG6ivYK4ztV23S5umEMdoFp46EMTwq6eMOl8hesC8kkJ85ts5pgoLN0 L5pLH1Gsse7fGOAXzcViai6LkABS84p+j4y0yq6BUAmq7qE0lKjFlgKY8Zv9/FFU /CidfrMl1JzWu41xaVk11xi0ucbH6bxS3tL2PPNds9gVXDjotLLQ7Ge9nXpAj7at vtI99fWWKX+OSKcjCILdMpRLo45nMH9V -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:25 2025 by rpki-client