This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: AYdxyIF73lgKkzpwYKi2b/0O+mtWGC2qH68vURr/AFs= Subject key identifier: AC:AA:9A:0E:0F:D2:9B:A7:2B:EE:1A:A7:8B:7A:73:D7:CE:AF:89:D9 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0137 Signing time: Fri 05 Dec 2025 02:34:19 +0000 Manifest this update: Fri 05 Dec 2025 02:34:19 +0000 Manifest next update: Fri 12 Dec 2025 02:34:19 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: 5h9Rrfp2k4Hlp9/cQfJyoK0hGqaRpRsssSrqV743Ch4=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Dec 5 02:34:19 2025 GMT Not After : Dec 12 02:34:19 2025 GMT Subject: CN=693244ab-1499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:46:7c:25:50:e5:1e:a1:84:80:07:38:fe:9c: c8:83:f3:f2:67:73:23:9d:c1:60:dc:50:d5:bb:80: fe:ed:25:46:7d:6a:df:ee:7f:73:2e:26:71:be:82: 01:2d:79:71:c0:1b:8c:d7:8b:b7:64:f3:d4:d3:08: 58:c3:5b:e1:30:ae:62:d7:78:54:63:9a:0e:52:bb: e3:dc:72:35:27:19:8d:94:1c:ea:69:5b:0b:00:d2: 83:5a:a1:69:d4:38:56:65:d5:64:28:6d:cf:e9:35: a8:e9:ef:a7:06:06:c5:7e:29:4e:de:9a:89:7d:b2: 52:d5:48:0a:0d:9f:66:b7:05:e7:c4:20:48:77:a6: b6:48:11:03:2a:6c:dd:2c:cb:78:73:d4:bf:1e:6c: b9:dc:49:2d:b6:11:64:c2:c6:5b:f2:97:41:27:1e: 27:2a:61:4e:d5:66:b2:63:35:a8:73:96:37:a6:b6: e3:66:88:48:8a:37:3f:99:fe:36:07:60:7a:b5:da: dd:31:63:a7:65:63:4b:85:2f:0c:6b:9a:64:44:ac: 35:b8:c7:79:dc:7e:db:7f:c9:20:57:43:53:bb:bd: a9:13:23:22:c3:f2:5d:cf:00:f2:92:2f:b8:f3:e6: 3e:46:1d:d8:ad:02:d2:78:57:43:a9:4b:72:c4:60: 9a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:AA:9A:0E:0F:D2:9B:A7:2B:EE:1A:A7:8B:7A:73:D7:CE:AF:89:D9 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:6e:30:ed:01:9d:15:46:48:6d:b9:bc:48:ff:02:b0:77:ca: cd:04:b5:ab:46:51:aa:4a:47:d7:f1:77:b8:5d:b9:af:8f:74: 57:fd:3b:cc:94:ad:fb:e5:bc:48:28:72:89:a5:c8:c0:03:56: ef:cf:bd:91:9f:dc:1d:4b:a8:b2:98:46:16:7e:ee:b4:26:72: ba:8d:c9:33:92:27:f8:68:31:aa:f7:69:ff:c1:81:58:03:80: c9:25:ed:60:ec:ec:5c:54:cd:a8:00:35:d7:00:a3:14:d1:bd: f7:ca:94:07:4d:f6:e5:79:7b:d9:b1:32:53:01:05:3e:1c:c1: bf:ff:ba:cb:43:c2:a8:07:79:8b:e1:fb:f2:48:17:09:a7:16: 58:fa:e6:c7:fa:3f:36:93:ca:21:e6:83:99:17:94:b5:c1:95: 4e:d9:ee:52:06:2f:62:b4:a2:70:61:09:d1:f5:ca:59:f8:22: 6a:e8:47:ac:c7:18:f8:7a:fd:4b:f1:26:2b:69:9b:6f:f4:23: 2c:65:ad:4f:52:7c:d5:aa:cc:33:27:ec:5b:eb:57:62:07:1e: 8a:8d:6a:81:dd:6a:ee:7e:31:47:65:65:99:fb:92:8a:22:bd: 29:cf:42:e0:d5:2b:17:18:e3:6c:74:e6:5e:90:35:1f:c5:0f: f8:0a:9b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUxMjA1MDIzNDE5WhcNMjUxMjEyMDIzNDE5WjAYMRYwFAYD VQQDEw02OTMyNDRhYi0xNDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEZ8JVDlHqGEgAc4/pzIg/PyZ3MjncFg3FDVu4D+7SVGfWrf7n9zLiZxvoIB LXlxwBuM14u3ZPPU0whYw1vhMK5i13hUY5oOUrvj3HI1JxmNlBzqaVsLANKDWqFp 1DhWZdVkKG3P6TWo6e+nBgbFfilO3pqJfbJS1UgKDZ9mtwXnxCBId6a2SBEDKmzd LMt4c9S/Hmy53EktthFkwsZb8pdBJx4nKmFO1WayYzWoc5Y3prbjZohIijc/mf42 B2B6tdrdMWOnZWNLhS8Ma5pkRKw1uMd53H7bf8kgV0NTu72pEyMiw/JdzwDyki+4 8+Y+Rh3YrQLSeFdDqUtyxGCa2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyqmg4P 0punK+4ap4t6c9fOr4nZMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBubjDtAZ0VRkhtubxI/wKwd8rNBLWrRlGqSkfX8Xe4Xbmvj3RX/TvM lK375bxIKHKJpcjAA1bvz72Rn9wdS6iymEYWfu60JnK6jckzkif4aDGq92n/wYFY A4DJJe1g7OxcVM2oADXXAKMU0b33ypQHTfbleXvZsTJTAQU+HMG//7rLQ8KoB3mL 4fvySBcJpxZY+ubH+j82k8oh5oOZF5S1wZVO2e5SBi9itKJwYQnR9cpZ+CJq6Ees xxj4ev1L8SYraZtv9CMsZa1PUnzVqswzJ+xb61diBx6KjWqB3WrufjFHZWWZ+5KK Ir0pz0Lg1SsXGONsdOZekDUfxQ/4Cps0 -----END CERTIFICATE-----Generated at Sun Dec 7 01:37:13 2025 by rpki-client