This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: lgFrmPXyvYTMVRY3yXxn9lWrMDod+eopIThKTJWkvnI= Subject key identifier: 19:4B:8C:37:9E:58:D0:64:1C:AC:4C:93:79:86:F2:95:11:7C:01:98 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 136B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 135A Signing time: Thu 04 Dec 2025 16:38:30 +0000 Manifest this update: Thu 04 Dec 2025 16:38:29 +0000 Manifest next update: Thu 11 Dec 2025 16:38:29 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: KkmJTBDtEv765khQW7DK1DnK1stPTj3qAezb9224LQc=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: 2Gji4G+Q8to0sVMvyUq5wjYv71c4JLksDjj2P3IW/B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4971 (0x136b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Dec 4 16:38:29 2025 GMT Not After : Dec 11 16:38:29 2025 GMT Subject: CN=6931b906-3648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c6:64:78:b0:7b:46:cc:34:44:09:1a:3a:6b: 24:02:e6:3a:57:a3:c5:18:6e:6f:a2:ca:5d:ed:7d: d7:d0:26:62:84:dc:b4:50:b7:96:96:44:dc:50:8f: f5:e4:3c:60:0a:1f:b7:14:52:7a:b5:8f:fb:4d:70: 74:70:0e:63:93:48:da:cb:8d:a4:f8:ae:3e:0e:5f: 56:08:00:bd:5f:b3:0d:56:3e:55:63:79:6c:27:39: e6:9a:b4:20:45:21:46:b9:a9:70:ff:f6:58:14:d5: 4a:35:80:a2:cd:6c:ab:25:09:27:f8:ad:6d:e2:2d: 25:54:2a:3c:03:dd:bc:9d:6b:da:07:6c:ec:ba:63: 1a:ea:5f:38:31:c4:fa:fd:fb:de:e8:28:6a:f6:07: ce:19:56:f2:4d:a3:ae:b0:f8:78:a9:ae:a0:c3:6b: 66:8e:c3:53:2a:35:d0:4f:55:d6:48:6a:a7:86:84: e6:5f:12:8a:77:b2:d3:29:9d:f0:14:e7:39:f9:68: 27:f2:79:b8:14:d1:c5:df:44:99:c9:a0:31:c4:90: f4:02:99:b7:e4:dc:fc:4f:7d:b2:07:78:64:46:7c: 33:18:d9:db:e9:22:82:ab:1a:8b:bb:4b:b7:2e:0d: ab:85:aa:00:9f:30:77:8b:d2:ca:22:84:c3:64:bf: c9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4B:8C:37:9E:58:D0:64:1C:AC:4C:93:79:86:F2:95:11:7C:01:98 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:03:52:f2:94:3e:6d:44:33:a8:49:1d:a0:b0:23:1c:7e:3c: 69:0b:f7:08:7a:9d:ee:8a:68:9a:38:0b:a9:c0:16:60:52:51: c8:54:2a:b3:ef:cf:43:7c:ac:3c:99:92:9c:36:d9:cd:de:fa: cd:fa:81:ca:da:36:fc:eb:09:e1:f0:30:a2:58:64:aa:42:7e: af:e9:ee:5b:14:7b:c6:54:5a:28:ab:9e:30:23:81:92:b1:18: cf:46:07:bf:0e:37:b0:4e:b1:69:b6:da:be:7d:37:d7:4b:3a: d8:3c:55:78:ea:87:9a:31:f3:0e:6c:7d:d9:6e:1c:01:cc:a3: 48:9a:b5:15:59:91:d3:21:69:9b:7e:b3:04:86:a0:92:5e:02: 5f:46:3a:b3:50:22:b3:60:82:6c:94:20:bb:05:15:43:34:f5: 93:2d:ad:bb:72:6f:41:6a:bd:27:7f:db:4b:0d:fc:e4:e9:b5: 3c:b6:82:a2:5f:29:5b:37:cc:a8:fa:b8:a8:aa:48:3c:8c:30: a4:5e:e6:00:c9:c9:bd:92:24:9f:fe:8c:76:13:b2:ab:f1:67: dc:a2:cb:7e:5a:0d:f5:17:f4:a5:81:ac:ee:6e:02:ce:f4:ac: 41:7d:5c:d8:12:69:72:02:d0:05:aa:77:57:d2:e0:2a:b3:bb: e6:b0:9d:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUxMjA0MTYzODI5WhcNMjUxMjExMTYzODI5WjAYMRYwFAYD VQQDEw02OTMxYjkwNi0zNjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8ZkeLB7Rsw0RAkaOmskAuY6V6PFGG5vospd7X3X0CZihNy0ULeWlkTcUI/1 5DxgCh+3FFJ6tY/7TXB0cA5jk0jay42k+K4+Dl9WCAC9X7MNVj5VY3lsJznmmrQg RSFGualw//ZYFNVKNYCizWyrJQkn+K1t4i0lVCo8A928nWvaB2zsumMa6l84McT6 /fve6Chq9gfOGVbyTaOusPh4qa6gw2tmjsNTKjXQT1XWSGqnhoTmXxKKd7LTKZ3w FOc5+Wgn8nm4FNHF30SZyaAxxJD0Apm35Nz8T32yB3hkRnwzGNnb6SKCqxqLu0u3 Lg2rhaoAnzB3i9LKIoTDZL/JOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlLjDee WNBkHKxMk3mG8pURfAGYMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeA1LylD5tRDOoSR2gsCMcfjxpC/cIep3uimiaOAupwBZgUlHIVCqz 789DfKw8mZKcNtnN3vrN+oHK2jb86wnh8DCiWGSqQn6v6e5bFHvGVFooq54wI4GS sRjPRge/DjewTrFpttq+fTfXSzrYPFV46oeaMfMObH3ZbhwBzKNImrUVWZHTIWmb frMEhqCSXgJfRjqzUCKzYIJslCC7BRVDNPWTLa27cm9Bar0nf9tLDfzk6bU8toKi XylbN8yo+rioqkg8jDCkXuYAycm9kiSf/ox2E7Kr8Wfcost+Wg31F/SlgazubgLO 9KxBfVzYEmlyAtAFqndX0uAqs7vmsJ25 -----END CERTIFICATE-----Generated at Sat Dec 6 13:56:09 2025 by rpki-client