This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: V1n4TEXJmTKQVHvZK7D4br8pcPwFVo+ULFvq0PS9DfY= Subject key identifier: 3E:8B:95:BF:AD:F9:3C:D7:B0:4C:F2:55:14:36:C8:44:CD:6B:15:11 Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0195 Signing time: Sat 06 Dec 2025 22:15:24 +0000 Manifest this update: Sat 06 Dec 2025 22:15:24 +0000 Manifest next update: Sat 13 Dec 2025 22:15:24 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: VMYXXgZL/ZHUrui0fwzmLuuu0+2YWmUGOxmKy4pLjIg=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Dec 6 22:15:24 2025 GMT Not After : Dec 13 22:15:24 2025 GMT Subject: CN=6934aafc-2229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:87:b0:42:b7:0f:6d:b6:4e:b3:ba:9d:c9: 36:fd:1b:69:6f:84:90:fb:2e:b2:17:12:4b:4d:f4: 20:cb:a9:83:a7:c8:3b:e1:54:06:d2:1a:5a:32:00: bf:5e:e5:f8:6d:57:4b:34:9b:eb:ac:6d:ad:13:3a: f7:03:22:a6:de:45:df:5f:92:93:22:20:f7:e4:d6: 1c:30:50:60:5f:5f:7a:1e:01:a7:e9:58:83:c3:a2: ab:22:99:01:3d:b6:50:04:ea:5f:9d:c2:e7:41:24: 59:43:16:dd:ca:f3:d5:2b:fb:8f:30:0c:8e:e7:64: 88:65:13:1b:d2:ac:0c:07:e4:0d:7f:83:1f:4e:99: 14:f8:11:8d:76:ae:25:65:e5:aa:28:a6:7a:f8:4b: a9:4f:b2:82:79:40:ef:b5:48:01:44:b2:94:86:fe: e9:c1:c0:31:5f:22:29:43:dc:b6:38:9b:e3:8e:6b: 9a:31:03:26:a8:92:ef:a9:56:42:bb:e4:4e:01:53: f9:f6:e2:be:f6:de:ab:83:48:a4:70:c9:83:1a:22: d4:60:28:be:03:9c:27:e0:9d:40:fc:6f:b3:ef:6e: 0e:ec:33:4b:7a:fa:32:75:80:ca:55:d1:ae:2e:6b: 16:48:b4:fa:90:34:35:e2:2b:ca:02:7f:e2:df:f1: 66:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:8B:95:BF:AD:F9:3C:D7:B0:4C:F2:55:14:36:C8:44:CD:6B:15:11 X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:5b:f2:59:4f:60:99:cf:c2:12:28:3e:03:e6:0e:ea:21:c1: ec:28:7b:3b:8c:f6:d3:b2:c2:d9:8d:d3:19:01:a1:d3:30:21: 47:6b:ef:60:e6:36:f9:b0:d2:93:4e:4e:09:9f:bf:32:7f:41: 74:f9:64:49:72:73:c0:08:f5:fb:50:db:02:65:6a:1d:2c:b5: 7b:35:8f:c8:5f:5b:e3:88:e2:42:1f:75:55:65:ad:a4:73:ce: 47:0d:a5:b9:d8:34:a2:b6:a7:f7:45:39:3a:e3:b7:2e:78:ab: 22:f2:60:bf:af:bb:52:fe:fe:d3:6b:74:89:25:2a:bf:f2:b5: 4b:b7:70:4c:9c:5b:2b:f9:76:8b:c2:75:ae:e2:f4:8c:b2:98: ff:50:54:03:f9:7d:25:94:a4:9c:d1:65:9c:a5:38:85:3e:a6: 60:49:9d:bc:73:61:25:ae:3f:a7:5c:4b:f5:49:03:05:20:dc: 06:a5:a1:70:e3:2a:61:e4:a8:4d:25:8f:ac:32:cc:82:9a:5b: 8e:cf:32:8b:08:bd:aa:68:39:d8:ce:25:da:3a:b2:5d:63:44: a5:ba:25:d5:14:7c:5a:1f:5f:87:74:cf:98:9e:0d:e8:b0:7d: 4d:a3:9f:22:4a:bd:e5:74:b5:69:92:71:eb:d4:3d:7d:3a:3e: c3:5a:90:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUxMjA2MjIxNTI0WhcNMjUxMjEzMjIxNTI0WjAYMRYwFAYD VQQDEw02OTM0YWFmYy0yMjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4SHsEK3D222TrO6nck2/Rtpb4SQ+y6yFxJLTfQgy6mDp8g74VQG0hpaMgC/ XuX4bVdLNJvrrG2tEzr3AyKm3kXfX5KTIiD35NYcMFBgX196HgGn6ViDw6KrIpkB PbZQBOpfncLnQSRZQxbdyvPVK/uPMAyO52SIZRMb0qwMB+QNf4MfTpkU+BGNdq4l ZeWqKKZ6+EupT7KCeUDvtUgBRLKUhv7pwcAxXyIpQ9y2OJvjjmuaMQMmqJLvqVZC u+ROAVP59uK+9t6rg0ikcMmDGiLUYCi+A5wn4J1A/G+z724O7DNLevoydYDKVdGu LmsWSLT6kDQ14ivKAn/i3/FmXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6Llb+t +TzXsEzyVRQ2yETNaxURMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxW/JZT2CZz8ISKD4D5g7qIcHsKHs7jPbTssLZjdMZAaHTMCFHa+9g 5jb5sNKTTk4Jn78yf0F0+WRJcnPACPX7UNsCZWodLLV7NY/IX1vjiOJCH3VVZa2k c85HDaW52DSitqf3RTk647cueKsi8mC/r7tS/v7Ta3SJJSq/8rVLt3BMnFsr+XaL wnWu4vSMspj/UFQD+X0llKSc0WWcpTiFPqZgSZ28c2Elrj+nXEv1SQMFINwGpaFw 4yph5KhNJY+sMsyCmluOzzKLCL2qaDnYziXaOrJdY0SluiXVFHxaH1+HdM+Yng3o sH1No58iSr3ldLVpknHr1D19Oj7DWpAA -----END CERTIFICATE-----Generated at Sun Dec 7 03:24:46 2025 by rpki-client