This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft File: aNpOhaeYSz_RCu80x9HQDxtGRTE.mft (raw, json) Hash identifier: FdLo0OVJQ4kVxmRnV3zwV98kgMe6sT2Y/ki0ShhdzPw= Subject key identifier: 5A:C3:46:06:AB:3C:C5:DD:66:69:F9:6F:13:AA:10:EC:D8:EA:78:32 Authority key identifier: 68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 Certificate issuer: /CN=A918D931/serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Certificate serial: 0800 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft Manifest number: 07F9 Signing time: Thu 04 Dec 2025 20:06:02 +0000 Manifest this update: Thu 04 Dec 2025 20:06:02 +0000 Manifest next update: Thu 11 Dec 2025 20:06:02 +0000 Files and hashes: 1: aNpOhaeYSz_RCu80x9HQDxtGRTE.crl (hash: 51Bm7V0OeUsmLmAJIjJtIpuOZMBq8Ilq+pa7Rb/6EzY=) 2: F575D65A085A11EBA6864D71C4F9AE02.roa (hash: OzhrEAQM423OnNsjFX/pRulyswUafC9dzCD/mgitV0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D931, serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Validity Not Before: Dec 4 20:06:02 2025 GMT Not After : Dec 11 20:06:02 2025 GMT Subject: CN=6931e9aa-cbe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:39:ee:f8:39:35:87:09:4e:6b:d0:51:e3: 7c:a3:49:73:92:31:0d:32:3e:3d:27:37:a3:59:91: f1:ad:92:56:98:48:81:61:65:85:ca:f4:92:d8:b4: b1:9a:96:82:bb:36:51:61:00:16:dc:61:d7:e7:83: a8:df:2c:20:31:f1:5c:8e:f1:aa:09:2c:bf:89:71: cf:7d:07:3a:88:4f:2c:83:ea:6d:f5:83:d3:ff:03: e3:f2:99:69:f6:9c:e8:a8:81:21:03:9f:b4:cf:1b: 63:cc:bb:0f:6b:36:d4:60:f0:24:29:43:5b:15:60: 59:1d:1c:1f:86:cf:29:c2:e2:89:f5:81:85:6b:bf: 3b:f5:f7:63:20:d0:ff:d8:15:df:97:64:7f:b7:1b: 84:ff:28:48:9e:f6:3b:b6:ae:a2:ec:36:d2:3d:2f: b7:51:e2:85:e6:14:68:13:e9:5d:81:12:7d:96:be: ca:68:88:cb:bc:cd:8d:dd:3e:91:6d:9c:e3:2d:56: 6e:60:ec:d2:e2:52:a9:9d:13:e4:41:b5:80:7a:7b: 32:6f:a6:b1:6e:47:86:a9:b9:f7:e5:2f:d5:bf:e5: 66:d3:d4:68:80:28:4b:a2:7a:71:77:d6:d6:02:b4: 07:c7:ef:48:46:e0:67:89:4c:03:55:b1:ea:52:8b: e1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C3:46:06:AB:3C:C5:DD:66:69:F9:6F:13:AA:10:EC:D8:EA:78:32 X509v3 Authority Key Identifier: keyid:68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:a2:c8:91:e7:c6:f7:a7:5f:48:6f:e3:3d:21:3d:59:7f:f0: 63:79:93:bb:1b:f1:15:8c:a9:90:fa:f7:cf:06:a6:e6:c6:63: e9:48:77:6e:6f:fb:4c:65:f4:f6:00:4f:9b:f2:98:ba:e3:39: bb:aa:e1:16:57:f1:1a:59:49:73:f1:bd:5e:ae:9f:3b:f8:80: 7e:fd:da:fa:37:bb:59:6c:d2:94:94:64:10:2b:0f:4c:b4:10: 0c:c7:3a:1f:72:b4:cf:0e:e6:47:c2:7d:4e:96:47:71:a6:ed: 5e:a1:e1:a7:9b:1a:f9:ff:e0:e1:d4:21:fd:d2:be:e1:6d:e3: 32:15:86:a2:20:e5:02:46:54:e0:07:b6:f2:b0:fa:70:d2:50: 31:f6:54:3d:6f:e9:52:90:e7:bc:ed:aa:92:4f:ab:7b:8b:3c: c6:ee:95:72:15:77:d6:a0:66:b2:55:8c:d3:4f:cf:58:02:12: b9:c3:a6:fb:ca:0d:f9:b7:25:18:bc:3c:65:0d:dd:41:25:5d: b0:67:c8:c6:91:18:ca:23:ab:87:02:1b:7a:51:6b:1b:24:7e: ef:cd:e7:18:58:ff:bd:c1:d6:0b:10:7f:e7:73:68:53:28:97: ad:8d:49:9b:5b:9f:45:44:30:aa:c1:a9:59:00:df:22:df:2b: 1e:38:46:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5MzExMTAvBgNVBAUTKDY4REE0RTg1QTc5ODRCM0ZEMTBBRUYzNEM3RDFEMDBG MUI0NjQ1MzEwHhcNMjUxMjA0MjAwNjAyWhcNMjUxMjExMjAwNjAyWjAYMRYwFAYD VQQDEw02OTMxZTlhYS1jYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXo57vg5NYcJTmvQUeN8o0lzkjENMj49JzejWZHxrZJWmEiBYWWFyvSS2LSx mpaCuzZRYQAW3GHX54Oo3ywgMfFcjvGqCSy/iXHPfQc6iE8sg+pt9YPT/wPj8plp 9pzoqIEhA5+0zxtjzLsPazbUYPAkKUNbFWBZHRwfhs8pwuKJ9YGFa7879fdjIND/ 2BXfl2R/txuE/yhInvY7tq6i7DbSPS+3UeKF5hRoE+ldgRJ9lr7KaIjLvM2N3T6R bZzjLVZuYOzS4lKpnRPkQbWAensyb6axbkeGqbn35S/Vv+Vm09RogChLonpxd9bW ArQHx+9IRuBniUwDVbHqUovhJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrDRgar PMXdZmn5bxOqEOzY6ngyMB8GA1UdIwQYMBaAFGjaToWnmEs/0QrvNMfR0A8bRkUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDkzMS9GQjVBNTA4NDA4 NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6X1JDdTgweDlIUUR4dEdS VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FOcE9oYWVZU3pfUkN1ODB4OUhRRHh0R1JURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDkzMS9GQjVBNTA4NDA4NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6 X1JDdTgweDlIUUR4dEdSVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+osiR58b3p19Ib+M9IT1Zf/BjeZO7G/EVjKmQ+vfPBqbmxmPpSHdu b/tMZfT2AE+b8pi64zm7quEWV/EaWUlz8b1erp87+IB+/dr6N7tZbNKUlGQQKw9M tBAMxzofcrTPDuZHwn1Olkdxpu1eoeGnmxr5/+Dh1CH90r7hbeMyFYaiIOUCRlTg B7bysPpw0lAx9lQ9b+lSkOe87aqST6t7izzG7pVyFXfWoGayVYzTT89YAhK5w6b7 yg35tyUYvDxlDd1BJV2wZ8jGkRjKI6uHAht6UWsbJH7vzecYWP+9wdYLEH/nc2hT KJetjUmbW59FRDCqwalZAN8i3yseOEaS -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:55 2025 by rpki-client