This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: q+y9tAI02cv9Nbt2/wqbOoCYPsN3u0W2NlSSoY5igGg= Subject key identifier: 52:25:3C:82:D1:0F:1D:0D:A8:E2:84:15:67:37:A8:A8:37:53:24:70 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 04FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 04EB Signing time: Sat 06 Dec 2025 22:29:24 +0000 Manifest this update: Sat 06 Dec 2025 22:29:23 +0000 Manifest next update: Sat 13 Dec 2025 22:29:23 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: eeUQx+ZaGZa4oISWSzGIWK3dFu2ivAeafTTnvKoichc=) 2: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I=) 3: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1274 (0x4fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Dec 6 22:29:23 2025 GMT Not After : Dec 13 22:29:23 2025 GMT Subject: CN=6934ae44-4e19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2b:e7:ad:a4:34:d6:a7:b9:39:7f:30:c1:e3: c7:20:47:6c:7e:f6:02:c1:a8:f5:40:5a:aa:11:94: ca:81:72:fb:50:1e:dd:af:11:10:43:ef:08:00:9e: 9d:45:55:7d:92:47:fd:97:72:67:be:19:4e:4d:57: 5f:19:97:ea:9c:1f:b1:eb:77:7f:7e:0b:fb:bf:93: bd:ea:0a:a6:3e:e5:40:c1:3e:ac:76:7f:8a:3c:2d: 78:dd:d1:ce:2f:11:a5:7f:5b:d6:5f:40:d9:a3:67: 5d:f0:5a:ad:8c:24:7b:1f:2e:5b:cb:bb:56:d6:0a: 5f:78:8c:62:81:33:3b:19:13:cc:8a:14:f7:dd:0e: 63:f2:9c:06:e0:f6:27:5e:ea:f8:45:f6:9d:9d:c7: 68:7f:91:5e:db:d5:1e:52:8f:28:bb:f4:91:76:1f: 2e:a4:4a:d5:a2:59:53:10:52:b2:7c:d4:98:6a:2b: 59:6f:66:50:a7:51:30:01:dd:49:50:ca:22:bb:06: be:a0:69:ec:db:1d:e5:9d:f6:2e:8d:8e:0a:ff:64: b1:06:d4:d4:2b:63:70:7c:8e:24:1e:de:29:a8:77: d9:95:19:24:6b:12:17:7c:81:dd:cb:34:8a:86:b9: da:75:97:80:50:58:bd:b7:b1:66:ba:88:ac:3e:22: 59:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:25:3C:82:D1:0F:1D:0D:A8:E2:84:15:67:37:A8:A8:37:53:24:70 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:17:44:38:5b:d8:30:11:42:78:40:b6:39:f9:88:e1:8d:8d: 68:bb:6c:e9:86:88:82:07:d2:a3:12:07:f2:02:f5:32:5c:02: 86:85:80:0f:3e:58:a8:2e:d8:9f:b5:4d:1a:78:83:ee:8b:55: 76:27:fa:10:15:14:a0:b5:67:c4:5a:3f:8b:42:7a:ec:48:b9: 65:7f:36:69:1a:38:d6:7c:1c:d9:78:2d:75:da:56:f4:a8:12: 03:44:58:d7:ef:9b:9b:b4:d6:42:c4:aa:9a:a5:5e:9b:74:43: f0:c6:b0:2f:1f:a5:e4:cf:ef:56:5a:d9:0b:c4:d2:c7:20:db: 0b:80:a3:54:95:d1:30:a5:a8:aa:ae:86:2e:d5:3c:6f:cb:98: 9a:28:a7:38:3a:de:02:d6:16:25:35:7d:95:89:1e:7e:2a:6d: 02:ab:75:b0:8f:4e:c6:90:35:97:68:25:23:52:2d:c0:42:63: 2a:7b:e3:f4:2d:ca:86:2e:93:80:4e:49:a3:60:bb:8b:a7:75: 7e:15:d5:3a:fe:41:d1:4f:b3:12:8f:b3:b1:81:e9:72:d9:2c: 63:fc:35:df:0d:e5:af:a2:7f:25:8d:63:5e:c9:6f:a7:db:a9: a3:cc:55:54:aa:9a:ee:7e:02:9d:f2:b0:62:46:07:7e:99:23: 22:cb:73:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUxMjA2MjIyOTIzWhcNMjUxMjEzMjIyOTIzWjAYMRYwFAYD VQQDEw02OTM0YWU0NC00ZTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCvnraQ01qe5OX8wwePHIEdsfvYCwaj1QFqqEZTKgXL7UB7drxEQQ+8IAJ6d RVV9kkf9l3JnvhlOTVdfGZfqnB+x63d/fgv7v5O96gqmPuVAwT6sdn+KPC143dHO LxGlf1vWX0DZo2dd8FqtjCR7Hy5by7tW1gpfeIxigTM7GRPMihT33Q5j8pwG4PYn Xur4Rfadncdof5Fe29UeUo8ou/SRdh8upErVollTEFKyfNSYaitZb2ZQp1EwAd1J UMoiuwa+oGns2x3lnfYujY4K/2SxBtTUK2NwfI4kHt4pqHfZlRkkaxIXfIHdyzSK hrnadZeAUFi9t7FmuoisPiJZywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIlPILR Dx0NqOKEFWc3qKg3UyRwMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoF0Q4W9gwEUJ4QLY5+YjhjY1ou2zphoiCB9KjEgfyAvUyXAKGhYAP PlioLtiftU0aeIPui1V2J/oQFRSgtWfEWj+LQnrsSLllfzZpGjjWfBzZeC112lb0 qBIDRFjX75ubtNZCxKqapV6bdEPwxrAvH6Xkz+9WWtkLxNLHINsLgKNUldEwpaiq roYu1Txvy5iaKKc4Ot4C1hYlNX2ViR5+Km0Cq3Wwj07GkDWXaCUjUi3AQmMqe+P0 LcqGLpOATkmjYLuLp3V+FdU6/kHRT7MSj7Oxgely2Sxj/DXfDeWvon8ljWNeyW+n 26mjzFVUqprufgKd8rBiRgd+mSMiy3Oh -----END CERTIFICATE-----Generated at Sun Dec 7 01:53:58 2025 by rpki-client