This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: T1hGbhUuk7FaBZf2eDieGcGnaso24LKY3/fSyqJoc5Y= Subject key identifier: 26:E5:23:5E:7C:89:1E:68:08:B5:96:56:75:28:86:70:4F:82:AC:CF Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 0442 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 049A Signing time: Sat 06 Dec 2025 22:59:49 +0000 Manifest this update: Sat 06 Dec 2025 22:59:49 +0000 Manifest next update: Sat 13 Dec 2025 22:59:49 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: 1FOFm/M85JihtlEin5eLS27JwqbtzN4x7jcwqVWVKIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Dec 6 22:59:49 2025 GMT Not After : Dec 13 22:59:49 2025 GMT Subject: CN=6934b565-016b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b6:cc:8a:3e:64:1d:83:4a:77:49:2b:85:9b: 82:6b:27:ba:71:2c:e1:92:b1:41:81:fd:bf:f8:47: 41:0c:73:d9:fd:3b:00:df:b4:b9:7d:e3:e8:a2:e2: bf:e9:fe:80:45:0a:ea:d3:f2:fd:1e:9d:00:e2:4f: 7b:0e:80:d2:2d:c1:dd:32:8e:63:67:40:8c:47:32: 7d:e7:ee:8d:ae:be:ce:a5:31:47:30:fc:3b:44:05: 18:a5:89:f3:c2:40:ee:07:f5:7b:24:af:23:2f:c0: 13:0c:95:c4:f9:93:4f:00:4c:4c:7c:8a:6f:b1:ef: 00:80:fe:3a:2a:0e:8a:fb:b6:1e:b3:3a:6d:2a:14: 02:46:3e:f7:d5:11:a0:31:d5:86:a6:90:dd:5a:26: e5:c5:9c:48:7d:84:a0:84:03:18:6d:68:53:78:5e: 67:54:4e:02:e0:b8:f5:df:1b:79:91:5b:b1:12:b9: 3c:13:04:be:9a:8f:c7:3a:f6:e6:b4:51:e8:53:a5: 5b:d7:5f:68:9a:ff:d8:a6:1b:55:2d:8a:79:0d:9f: 9c:46:ae:7a:42:71:18:38:7f:39:33:0b:20:a6:9e: 7d:a9:93:11:0b:60:03:8a:80:ba:eb:32:64:96:15: 43:2a:08:cb:97:5a:f6:c2:39:d5:f5:b9:67:be:2c: 12:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E5:23:5E:7C:89:1E:68:08:B5:96:56:75:28:86:70:4F:82:AC:CF X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:20:87:53:09:ae:d8:8d:fc:b2:93:87:f0:fc:9d:7b:5f:fb: 7d:c8:41:3e:34:7e:8d:bf:85:1d:4d:d6:b9:64:a3:af:17:e6: 34:e6:23:9c:2f:e6:1c:98:dc:a8:b1:1a:0d:40:f5:35:fe:4d: 42:88:9f:23:b4:fc:7a:83:4e:6f:bf:08:f3:c9:93:73:c7:6a: 28:29:e8:16:74:78:f7:65:fd:e8:0d:e0:42:3f:09:6e:6a:96: c9:f2:54:af:9d:47:5f:53:18:12:fb:3f:d0:7a:ce:34:bc:e7: 08:dd:b9:f4:86:1a:bb:7a:f6:ce:2e:96:0a:a7:82:7d:be:04: 84:37:6a:05:dc:bf:1d:7b:9d:22:ba:3c:f6:f6:e0:e2:b3:17: ad:a2:e6:6d:b5:35:d1:da:d7:9e:9e:e6:b0:92:15:cb:0a:e5: f1:00:4f:4a:82:2d:e9:cb:60:29:d3:df:2a:73:dc:67:07:9c: 0a:61:fd:49:1a:2b:0d:1c:80:a8:61:22:3f:4e:07:be:df:41: 0c:52:c7:30:06:d1:80:11:f2:1c:da:44:5e:7b:d1:ad:4c:84: 43:0b:c5:7c:1b:63:b5:6c:aa:e7:18:17:d3:33:d2:c8:af:bf: 93:1b:2f:f1:b6:5b:2f:6f:67:f9:ff:cd:f0:4a:b5:ef:12:d3: c3:88:76:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUxMjA2MjI1OTQ5WhcNMjUxMjEzMjI1OTQ5WjAYMRYwFAYD VQQDEw02OTM0YjU2NS0wMTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbbMij5kHYNKd0krhZuCaye6cSzhkrFBgf2/+EdBDHPZ/TsA37S5fePoouK/ 6f6ARQrq0/L9Hp0A4k97DoDSLcHdMo5jZ0CMRzJ95+6Nrr7OpTFHMPw7RAUYpYnz wkDuB/V7JK8jL8ATDJXE+ZNPAExMfIpvse8AgP46Kg6K+7YeszptKhQCRj731RGg MdWGppDdWiblxZxIfYSghAMYbWhTeF5nVE4C4Lj13xt5kVuxErk8EwS+mo/HOvbm tFHoU6Vb119omv/YphtVLYp5DZ+cRq56QnEYOH85Mwsgpp59qZMRC2ADioC66zJk lhVDKgjLl1r2wjnV9blnviwSnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCblI158 iR5oCLWWVnUohnBPgqzPMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvIIdTCa7Yjfyyk4fw/J17X/t9yEE+NH6Nv4UdTda5ZKOvF+Y05iOc L+YcmNyosRoNQPU1/k1CiJ8jtPx6g05vvwjzyZNzx2ooKegWdHj3Zf3oDeBCPwlu apbJ8lSvnUdfUxgS+z/Qes40vOcI3bn0hhq7evbOLpYKp4J9vgSEN2oF3L8de50i ujz29uDisxetouZttTXR2teenuawkhXLCuXxAE9Kgi3py2Ap098qc9xnB5wKYf1J GisNHICoYSI/Tge+30EMUscwBtGAEfIc2kRee9GtTIRDC8V8G2O1bKrnGBfTM9LI r7+TGy/xtlsvb2f5/83wSrXvEtPDiHap -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:35 2025 by rpki-client