This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: RWvo/LQ3NY5yoKpIokbU5Sl9hXMOOjcIGVBTFl199mM= Subject key identifier: E1:28:76:F8:8D:77:BB:B8:CF:42:54:D3:68:BD:1A:9B:1E:3D:D4:E6 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 93 Signing time: Fri 05 Dec 2025 04:27:31 +0000 Manifest this update: Fri 05 Dec 2025 04:27:31 +0000 Manifest next update: Fri 12 Dec 2025 04:27:30 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: 3xVPQXRovTLcTav7G3/cXE+eY867D8rfD09ipvYLBHI=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: 6DJYRNtdCQtPDVdh/suSAFKdKgawzgUz82oOnswPp6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: Dec 5 04:27:31 2025 GMT Not After : Dec 12 04:27:30 2025 GMT Subject: CN=69325f33-50d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:9a:9c:1e:4c:2b:52:f0:bc:ea:87:18:c2: 97:fd:71:00:51:5a:f4:b7:c3:9a:98:5d:a6:70:13: 1b:2f:4b:ab:c3:68:e4:00:b9:7d:1b:4f:2d:29:b6: 1c:14:9a:b5:b5:44:41:11:42:b7:88:1f:86:5c:7f: 95:ec:ef:8e:6a:18:8d:ab:71:34:0b:64:00:74:b2: 4e:ca:51:8f:31:d8:91:e4:2e:71:a2:fe:59:db:7e: e3:95:ee:b4:6c:77:cb:d3:9b:e5:9e:11:6d:bc:43: ff:20:43:da:83:1d:e8:9b:53:ce:3f:5a:13:b4:07: c0:5f:a2:81:bb:24:b6:74:5a:48:5f:f4:91:63:5a: fb:61:00:fa:02:4b:ef:69:59:e4:6a:49:2f:21:f8: 6c:52:de:2a:80:2d:58:9f:a1:7b:8f:7b:39:24:97: 47:ff:ac:3e:47:00:ef:76:80:e2:6d:2e:3d:88:07: 20:72:5a:e0:b0:fe:75:70:32:b8:be:06:77:a0:8a: aa:61:91:5f:90:c7:d4:92:b5:5e:29:d2:dd:2a:8b: cb:cf:df:e9:98:34:7a:bc:b9:8a:86:5c:51:b3:83: a3:ff:9e:c1:6e:f3:59:0e:15:29:08:fc:5c:ee:7f: a2:0f:8e:cf:ab:43:71:08:9d:76:8b:41:9c:6d:3b: 8f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:28:76:F8:8D:77:BB:B8:CF:42:54:D3:68:BD:1A:9B:1E:3D:D4:E6 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:4a:c5:8b:4e:b4:3a:52:b0:66:97:87:60:d4:7e:3a:bc:64: 55:8b:f7:99:4c:6d:a2:7e:4b:61:ae:b9:ec:1a:05:79:6b:e4: a6:ed:72:e1:ce:5f:f2:ba:0b:df:05:61:23:aa:14:21:eb:73: 49:06:8c:b1:93:1b:c4:51:2a:7e:bf:ef:ff:96:8b:98:8a:ca: 12:86:ca:1a:30:e3:1f:67:62:2e:89:b4:79:86:d3:b1:db:94: b9:da:e8:66:6a:b8:56:49:18:44:76:eb:6a:94:3d:e5:5c:54: 2e:be:4a:f7:c8:88:cc:e0:6a:95:1b:70:dd:65:b1:5c:03:84: 3c:cf:da:66:91:ca:82:f3:c7:11:35:27:27:17:7f:df:3f:68: 5d:6b:d1:eb:52:1c:c5:a4:ee:63:44:94:3c:87:eb:7a:0e:67: 53:50:49:52:65:4d:34:eb:fe:aa:bf:ed:99:8e:8c:bf:81:a4: e8:45:ed:00:ba:f0:d9:2e:57:2c:8c:82:9d:3b:b4:32:e2:80: 50:f5:7d:21:b5:97:43:81:6c:a6:e4:77:d1:48:99:9b:4e:d2: 00:29:a3:0c:42:cc:2c:e8:64:f5:79:31:4d:32:7a:69:7e:78: ed:3b:bb:fa:99:d6:09:c9:4e:24:4c:ac:70:95:0e:6f:af:a9: 88:c2:67:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOEUxMTAvBgNVBAUTKDVGQzFCNjM4Q0NDREZGOTlENjQ0NTY1NTI5QzgwNzA4 Njg2ODlCMzEwHhcNMjUxMjA1MDQyNzMxWhcNMjUxMjEyMDQyNzMwWjAYMRYwFAYD VQQDEw02OTMyNWYzMy01MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oeanB5MK1LwvOqHGMKX/XEAUVr0t8OamF2mcBMbL0urw2jkALl9G08tKbYc FJq1tURBEUK3iB+GXH+V7O+OahiNq3E0C2QAdLJOylGPMdiR5C5xov5Z237jle60 bHfL05vlnhFtvEP/IEPagx3om1POP1oTtAfAX6KBuyS2dFpIX/SRY1r7YQD6Akvv aVnkakkvIfhsUt4qgC1Yn6F7j3s5JJdH/6w+RwDvdoDibS49iAcgclrgsP51cDK4 vgZ3oIqqYZFfkMfUkrVeKdLdKovLz9/pmDR6vLmKhlxRs4Oj/57BbvNZDhUpCPxc 7n+iD47Pq0NxCJ12i0GcbTuP7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEodviN d7u4z0JU02i9GpsePdTmMB8GA1UdIwQYMBaAFF/BtjjMzf+Z1kRWVSnIBwhoaJsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI4RS9DREEzQTcxRUY1 OUIxMUVGQTRGNTcxMjhDNEY5QUUwMi9YOEcyT016Tl81bldSRlpWS2NnSENHaG9t ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI4RS9DREEzQTcxRUY1OUIxMUVGQTRGNTcxMjhDNEY5QUUwMi9YOEcyT016Tl81 bldSRlpWS2NnSENHaG9tekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrSsWLTrQ6UrBml4dg1H46vGRVi/eZTG2ifkthrrnsGgV5a+Sm7XLh zl/yugvfBWEjqhQh63NJBoyxkxvEUSp+v+//louYisoShsoaMOMfZ2IuibR5htOx 25S52uhmarhWSRhEdutqlD3lXFQuvkr3yIjM4GqVG3DdZbFcA4Q8z9pmkcqC88cR NScnF3/fP2hda9HrUhzFpO5jRJQ8h+t6DmdTUElSZU006/6qv+2Zjoy/gaToRe0A uvDZLlcsjIKdO7Qy4oBQ9X0htZdDgWym5HfRSJmbTtIAKaMMQsws6GT1eTFNMnpp fnjtO7v6mdYJyU4kTKxwlQ5vr6mIwmeG -----END CERTIFICATE-----Generated at Sat Dec 6 23:21:35 2025 by rpki-client