This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: 2qqqEYoRiJGmZ7EKjlLMvHK6GaSxTEoSox2B1yPS6Bo= Subject key identifier: A8:28:BA:C7:C9:B1:F1:C4:1D:2D:22:DD:DD:AD:C9:83:B2:C9:F5:DF Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0CC2 Signing time: Thu 04 Dec 2025 17:43:17 +0000 Manifest this update: Thu 04 Dec 2025 17:43:17 +0000 Manifest next update: Thu 11 Dec 2025 17:43:17 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: Cwo8BeNF2mGlumAIlqHtb0tAq03GGB5XfrDg4DWU8dc=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Dec 4 17:43:17 2025 GMT Not After : Dec 11 17:43:17 2025 GMT Subject: CN=6931c835-774d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6b:ab:a3:d5:84:6e:e5:d6:d4:50:08:96:ab: 63:96:5b:ba:70:bb:58:08:d9:30:90:ee:d5:ff:d2: 10:47:e3:80:ed:e9:3c:90:18:95:8b:63:63:1b:4b: cb:05:96:0c:03:41:94:ad:b3:35:67:fe:52:8e:e6: a0:0b:47:90:3f:47:04:35:d0:de:89:d9:cb:bb:e4: bc:44:08:be:82:60:3e:e6:2a:55:9a:d9:5c:cd:91: 1a:ea:31:a3:ab:3c:cf:6c:f4:36:b6:62:4d:7d:6e: a1:32:b8:a7:9c:ac:98:6e:48:64:fd:11:79:8a:ff: 47:76:94:22:bc:6c:a4:3a:6f:83:46:b3:45:3b:b3: 34:65:a7:36:2b:2c:f5:15:16:6d:0b:82:dc:27:b7: 95:e6:77:6d:09:49:4a:d8:57:4a:6a:b1:17:3f:17: a3:6a:d4:e9:e4:a6:44:d4:f4:3b:f5:9e:ce:db:e7: 0a:f8:1f:e6:9d:09:97:6d:96:54:0a:04:fa:75:29: 01:6d:68:a8:3b:4b:13:57:68:4c:6c:64:8c:30:16: 23:d5:6c:ab:d6:72:18:b3:c2:0e:f1:a2:3b:02:29: 35:2d:de:54:17:3e:99:b0:52:b3:f7:a7:0d:09:41: 9b:03:15:66:02:ae:f2:ec:77:31:8e:97:57:44:84: 4b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:28:BA:C7:C9:B1:F1:C4:1D:2D:22:DD:DD:AD:C9:83:B2:C9:F5:DF X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:5e:5c:37:68:4b:26:bc:c7:be:a0:96:e2:70:cb:3a:01:44: f7:9f:59:3b:0d:9f:52:bb:68:ae:11:7f:dc:4c:1d:97:0c:27: e9:6e:97:d8:e8:bd:74:18:8d:5c:91:66:30:83:ae:3d:ae:23: 5b:d0:67:37:8d:70:41:79:8c:fa:6d:ae:82:53:f8:4d:e9:fa: 1d:44:c7:14:b8:6d:ef:dc:58:21:4f:11:be:cc:ec:65:50:9e: 98:9c:d7:32:f5:e7:95:cd:08:e1:80:d9:14:f7:50:43:3a:29: 5c:d9:b9:de:fc:19:23:bb:09:ac:fe:2d:8f:34:e0:2c:7b:9f: 6e:04:36:4a:d6:63:9b:b9:7a:d2:43:c3:71:7a:ac:c0:a2:b1: ab:96:d8:b7:67:93:b0:61:37:32:8e:90:c8:04:85:03:00:71: cf:90:3a:7f:a2:bd:55:85:10:19:e2:e8:c0:1c:99:8f:c8:fc: 0d:33:07:28:50:65:b3:6a:ea:53:22:7f:99:13:a2:6d:ba:e4: a9:56:d8:58:31:94:72:c6:b1:1a:bc:4d:f3:ad:c2:e3:e2:c4: d6:45:c9:d6:ef:dd:e4:d9:8b:95:27:ab:4b:f8:5b:36:e2:71: db:9a:a4:91:d3:8d:15:6f:eb:15:45:14:da:f4:35:82:7e:7c: 18:9b:74:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUxMjA0MTc0MzE3WhcNMjUxMjExMTc0MzE3WjAYMRYwFAYD VQQDEw02OTMxYzgzNS03NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmuro9WEbuXW1FAIlqtjllu6cLtYCNkwkO7V/9IQR+OA7ek8kBiVi2NjG0vL BZYMA0GUrbM1Z/5SjuagC0eQP0cENdDeidnLu+S8RAi+gmA+5ipVmtlczZEa6jGj qzzPbPQ2tmJNfW6hMrinnKyYbkhk/RF5iv9HdpQivGykOm+DRrNFO7M0Zac2Kyz1 FRZtC4LcJ7eV5ndtCUlK2FdKarEXPxejatTp5KZE1PQ79Z7O2+cK+B/mnQmXbZZU CgT6dSkBbWioO0sTV2hMbGSMMBYj1Wyr1nIYs8IO8aI7Aik1Ld5UFz6ZsFKz96cN CUGbAxVmAq7y7HcxjpdXRIRLMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgousfJ sfHEHS0i3d2tyYOyyfXfMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIXlw3aEsmvMe+oJbicMs6AUT3n1k7DZ9Su2iuEX/cTB2XDCfpbpfY 6L10GI1ckWYwg649riNb0Gc3jXBBeYz6ba6CU/hN6fodRMcUuG3v3FghTxG+zOxl UJ6YnNcy9eeVzQjhgNkU91BDOilc2bne/Bkjuwms/i2PNOAse59uBDZK1mObuXrS Q8NxeqzAorGrlti3Z5OwYTcyjpDIBIUDAHHPkDp/or1VhRAZ4ujAHJmPyPwNMwco UGWzaupTIn+ZE6JtuuSpVthYMZRyxrEavE3zrcLj4sTWRcnW793k2YuVJ6tL+Fs2 4nHbmqSR040Vb+sVRRTa9DWCfnwYm3Q+ -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:33 2025 by rpki-client