This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft File: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft (raw, json) Hash identifier: IjKsRdG6KhKNzVpA5CMm1RB80jIRrmAaO0lGb1n3Otw= Subject key identifier: 6D:FD:CA:25:21:AD:A3:6C:D1:96:26:5E:6D:B8:BF:63:E1:8B:1C:D4 Authority key identifier: 70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E Certificate issuer: /CN=A918B936/serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Certificate serial: 2165 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft Manifest number: 2165 Signing time: Thu 04 Dec 2025 15:42:43 +0000 Manifest this update: Thu 04 Dec 2025 15:42:42 +0000 Manifest next update: Thu 11 Dec 2025 15:42:42 +0000 Files and hashes: 1: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl (hash: 8PwS/xFH38Vh6C1e3H1qJN12W7K22XUbLztGvNtn31E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8549 (0x2165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Validity Not Before: Dec 4 15:42:42 2025 GMT Not After : Dec 11 15:42:42 2025 GMT Subject: CN=6931abf3-25d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:22:52:0b:51:f9:4d:52:3f:b1:22:d3:4d:76: ed:83:70:29:c4:fb:7f:41:ca:82:8b:40:9a:4b:cf: 79:3c:76:56:71:45:10:d2:32:cb:ba:fd:f4:de:a5: 38:09:b3:7e:ea:b5:86:3f:9c:db:43:e4:49:9d:77: a9:08:c6:cd:9c:65:b5:e6:83:70:49:0c:38:94:91: 14:db:62:75:7b:98:02:d1:b5:82:c0:f7:91:43:e8: a0:07:32:5a:e9:89:76:2f:bb:0d:64:1c:8d:f8:e8: e1:0b:6b:b0:41:d7:5d:d8:0d:58:de:11:34:43:0f: 1d:00:58:aa:d9:57:24:97:8b:0f:40:ce:33:38:a4: d9:17:86:28:0f:77:63:46:0f:f3:14:a9:75:c2:ab: 58:29:d8:6f:81:6a:39:e0:37:bb:c2:98:ed:a8:3c: 01:29:a7:0a:3f:5d:1d:2c:af:81:75:82:c3:8b:b6: a8:6b:67:a9:35:aa:27:21:24:e0:39:e9:be:b4:d5: 65:86:22:71:86:6d:ae:c4:e1:0a:6e:3f:c7:ac:b0: 19:00:fc:9f:ec:7c:25:61:d7:d8:b7:37:f6:d8:b1: ea:29:b3:0b:12:73:5a:43:b9:d5:97:f8:c5:58:84: 29:00:1c:21:5d:13:d5:b9:fc:4b:2a:be:a7:d4:f4: 2f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:FD:CA:25:21:AD:A3:6C:D1:96:26:5E:6D:B8:BF:63:E1:8B:1C:D4 X509v3 Authority Key Identifier: keyid:70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:13:8a:eb:97:86:3f:0e:8f:54:da:99:f5:12:79:39:12:73: 0c:70:2c:cf:23:a9:97:ad:0e:57:4c:0a:76:7c:a2:42:c4:fe: 6a:ab:81:a8:03:02:2a:86:6b:a9:d4:8b:09:23:b0:26:ae:b5: 8c:36:4f:24:57:f9:e8:cc:d8:60:bf:80:6e:2a:cd:9a:db:a4: 3b:c2:0d:12:41:b1:8b:5f:8b:ed:61:7a:02:f6:98:a4:77:48: 96:b9:66:9a:50:5e:40:a0:cf:e7:63:99:7c:e8:80:35:7d:5c: 04:7d:7f:41:e9:97:31:f2:fb:63:b4:c1:cd:84:5b:29:e3:66: 52:a0:8c:de:b8:72:6d:c5:14:ea:00:35:bc:de:e1:35:2d:80: 3e:31:ee:70:1b:17:a8:1c:19:a7:2b:e7:6e:ce:87:3e:8f:88: b4:95:ec:b6:70:74:0e:bb:0b:55:44:dc:a4:2a:d9:e0:b7:fc: ff:e3:00:2d:76:2d:1b:02:49:ac:9f:af:c1:d1:d2:fd:de:e7: 60:af:e7:c9:c8:82:47:e8:1d:0e:dd:1e:a9:b2:9d:c2:f6:3d: 63:10:6d:2a:cc:cd:57:4e:94:ce:f8:05:df:47:14:08:2d:66: 37:75:73:d3:35:30:36:7b:06:75:12:0f:fb:89:d1:8e:81:df: 06:bd:ac:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDcwNDVBNzE4QkJFQjI4OUYxOEQxRjkzMEZBMzMyRDYz MzJEOTU1NUUwHhcNMjUxMjA0MTU0MjQyWhcNMjUxMjExMTU0MjQyWjAYMRYwFAYD VQQDEw02OTMxYWJmMy0yNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSJSC1H5TVI/sSLTTXbtg3ApxPt/QcqCi0CaS895PHZWcUUQ0jLLuv303qU4 CbN+6rWGP5zbQ+RJnXepCMbNnGW15oNwSQw4lJEU22J1e5gC0bWCwPeRQ+igBzJa 6Yl2L7sNZByN+OjhC2uwQddd2A1Y3hE0Qw8dAFiq2Vckl4sPQM4zOKTZF4YoD3dj Rg/zFKl1wqtYKdhvgWo54De7wpjtqDwBKacKP10dLK+BdYLDi7aoa2epNaonISTg Oem+tNVlhiJxhm2uxOEKbj/HrLAZAPyf7HwlYdfYtzf22LHqKbMLEnNaQ7nVl/jF WIQpABwhXRPVufxLKr6n1PQvLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG39yiUh raNs0ZYmXm24v2PhixzUMB8GA1UdIwQYMBaAFHBFpxi76yifGNH5MPozLWMy2VVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80MDc1MTIxQUYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktKOFkwZmt3LWpNdFl6TFpW VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NFV25HTHZyS0o4WTBma3ctak10WXpMWlZWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80MDc1MTIxQUYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktK OFkwZmt3LWpNdFl6TFpWVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOE4rrl4Y/Do9U2pn1Enk5EnMMcCzPI6mXrQ5XTAp2fKJCxP5qq4Go AwIqhmup1IsJI7AmrrWMNk8kV/nozNhgv4BuKs2a26Q7wg0SQbGLX4vtYXoC9pik d0iWuWaaUF5AoM/nY5l86IA1fVwEfX9B6Zcx8vtjtMHNhFsp42ZSoIzeuHJtxRTq ADW83uE1LYA+Me5wGxeoHBmnK+duzoc+j4i0ley2cHQOuwtVRNykKtngt/z/4wAt di0bAkmsn6/B0dL93udgr+fJyIJH6B0O3R6psp3C9j1jEG0qzM1XTpTO+AXfRxQI LWY3dXPTNTA2ewZ1Eg/7idGOgd8Gvayb -----END CERTIFICATE-----Generated at Sat Dec 6 14:52:19 2025 by rpki-client