This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: bzQ/Pd88f9p0juyp738IQsx9ceHtG8MAOWzR9SfdnDs= Subject key identifier: 0D:C1:AA:F0:FC:22:32:08:6A:57:78:2E:F5:85:A2:88:68:81:44:29 Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0AE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0ADA Signing time: Sat 06 Dec 2025 18:40:30 +0000 Manifest this update: Sat 06 Dec 2025 18:40:30 +0000 Manifest next update: Sat 13 Dec 2025 18:40:30 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: HxjZJDaNzi7lMH7zxS3B1VBpi2Zi4go44vdD3brGm04=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: H4kc+9yjECNKJF53s7PJuRCRHGgJ3Wfs6TYEVDFyAU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Dec 6 18:40:30 2025 GMT Not After : Dec 13 18:40:30 2025 GMT Subject: CN=6934789e-95dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0a:b2:88:f1:a9:eb:9b:bd:d7:e8:21:88:c8: 3e:ce:8d:af:3d:4c:13:95:d4:7f:e6:eb:d8:7c:fb: a4:12:79:7f:c0:2d:cc:7e:46:2c:b7:f9:13:72:21: 01:3c:09:d8:f0:3d:23:79:4f:e5:b3:0d:0b:be:fe: b7:ab:ec:af:ba:93:5f:3a:15:ab:a3:0c:c8:e0:4a: 01:82:57:38:ff:a2:b1:a9:22:ae:32:dc:e4:5f:65: f3:60:b5:51:67:8f:2e:77:f0:85:b2:4b:22:15:5d: 8c:0b:1b:f7:62:43:43:c0:65:92:f2:b6:e1:d4:60: e7:c5:35:8d:f0:b4:c2:98:a1:df:38:b0:8c:50:f1: 53:73:1c:10:8d:51:45:5e:46:9a:e4:15:77:11:d0: 6a:d4:38:cb:e1:19:c6:f8:a3:be:87:06:da:af:a8: 47:f5:9b:51:b1:23:31:b3:c2:97:47:b6:63:c7:f8: a2:13:f8:70:5f:6d:1e:f1:c6:98:b8:f4:a5:26:7b: c2:c9:29:8b:d5:fb:db:b5:20:d2:b3:6a:7d:30:06: e3:a6:35:0b:9b:9e:1d:02:2c:2f:ec:43:8a:32:4c: 6d:ae:6f:65:43:65:00:9c:1f:b5:61:32:b9:32:2a: b8:80:1f:59:b1:5f:f2:40:c5:b9:f8:74:68:91:f8: b4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C1:AA:F0:FC:22:32:08:6A:57:78:2E:F5:85:A2:88:68:81:44:29 X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5f:2a:0a:72:c8:b3:3e:88:f4:f4:96:ad:13:3a:56:38:2c: e2:e8:f9:4e:f2:88:23:84:c5:57:c6:c9:66:43:e7:7f:5a:28: d8:61:df:4e:df:f0:16:a0:1b:ef:c2:62:77:a9:8e:f8:8a:81: b8:58:eb:5e:c2:e6:cb:7f:1a:fe:a9:50:38:e2:0b:f6:af:6c: 2e:ed:a1:4e:35:a4:15:6a:64:1b:df:53:52:a1:72:ce:80:dd: bc:c7:eb:05:8e:44:39:15:4a:a1:bd:4d:5c:8b:06:d4:1b:51: 37:b8:f1:90:5d:ad:a3:c2:2b:dc:91:f0:a1:a3:95:61:4e:08: 8f:98:cc:f3:af:11:b3:0e:b8:da:b2:72:c9:a7:30:ed:fb:7f: b7:18:4d:c5:31:4a:09:65:c4:6c:fc:a5:22:c7:4f:80:dc:09: a2:b0:3b:d0:75:83:17:4d:66:ad:2f:be:ce:dd:2b:26:90:19: b3:6b:63:a4:56:61:aa:8c:7e:2d:0e:21:47:88:fc:7d:68:2d: 65:93:61:c8:a6:27:8e:f9:1b:1e:85:bd:38:2c:95:1c:64:cd: a8:4e:6b:bc:4b:57:07:27:18:bc:05:ee:16:16:75:6d:dc:2a: ae:5c:1c:e0:fe:17:04:7a:9e:37:b2:41:2e:ac:4d:55:33:c0: 3e:21:cf:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjUxMjA2MTg0MDMwWhcNMjUxMjEzMTg0MDMwWjAYMRYwFAYD VQQDEw02OTM0Nzg5ZS05NWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gqyiPGp65u91+ghiMg+zo2vPUwTldR/5uvYfPukEnl/wC3MfkYst/kTciEB PAnY8D0jeU/lsw0Lvv63q+yvupNfOhWrowzI4EoBglc4/6KxqSKuMtzkX2XzYLVR Z48ud/CFsksiFV2MCxv3YkNDwGWS8rbh1GDnxTWN8LTCmKHfOLCMUPFTcxwQjVFF Xkaa5BV3EdBq1DjL4RnG+KO+hwbar6hH9ZtRsSMxs8KXR7Zjx/iiE/hwX20e8caY uPSlJnvCySmL1fvbtSDSs2p9MAbjpjULm54dAiwv7EOKMkxtrm9lQ2UAnB+1YTK5 Miq4gB9ZsV/yQMW5+HRokfi0owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3BqvD8 IjIIald4LvWFoohogUQpMB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiXyoKcsizPoj09JatEzpWOCzi6PlO8ogjhMVXxslmQ+d/WijYYd9O 3/AWoBvvwmJ3qY74ioG4WOtewubLfxr+qVA44gv2r2wu7aFONaQVamQb31NSoXLO gN28x+sFjkQ5FUqhvU1ciwbUG1E3uPGQXa2jwivckfCho5VhTgiPmMzzrxGzDrja snLJpzDt+3+3GE3FMUoJZcRs/KUix0+A3AmisDvQdYMXTWatL77O3SsmkBmza2Ok VmGqjH4tDiFHiPx9aC1lk2HIpieO+Rsehb04LJUcZM2oTmu8S1cHJxi8Be4WFnVt 3CquXBzg/hcEep43skEurE1VM8A+Ic8r -----END CERTIFICATE-----Generated at Sat Dec 6 22:10:10 2025 by rpki-client