This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft File: F61gXQbH7QoUSFwCoS8AFwmiLWI.mft (raw, json) Hash identifier: wpyDx4YlXAVQN3r6Rb2KUjhiRTiQvZ8uckTpWamIrAk= Subject key identifier: 47:97:40:8A:04:74:63:B2:43:0A:16:85:96:40:87:1E:1F:88:8B:A6 Authority key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 Certificate issuer: /CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft Manifest number: 01B5 Signing time: Tue 23 Dec 2025 02:08:13 +0000 Manifest this update: Tue 23 Dec 2025 02:08:12 +0000 Manifest next update: Tue 30 Dec 2025 02:08:12 +0000 Files and hashes: 1: F61gXQbH7QoUSFwCoS8AFwmiLWI.crl (hash: zY2KeS8YAZhK6jlqbLaMDhyfJ7DGlFEiBdXMF6b65ok=) 2: 0294C902459511EE982FBC6DC4F9AE02.roa (hash: aajHDX/xMTvhOQEZLYkPj50OTCpjx3WnG5EW/RzkXC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BEA7, serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Validity Not Before: Dec 23 02:08:12 2025 GMT Not After : Dec 30 02:08:12 2025 GMT Subject: CN=6949f98d-9a92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:f6:33:06:a8:eb:aa:d9:e9:6e:4d:6a:e4:e0: cd:7b:0a:56:67:a2:ef:1c:d5:db:45:e2:36:29:18: c7:50:f5:93:11:26:8b:90:ce:71:7d:9f:32:42:96: 78:46:b4:63:86:11:22:bf:04:92:1f:94:d0:8c:51: f5:4d:d1:43:80:48:e1:4f:5e:4a:24:4b:37:5f:33: c9:51:90:a4:42:62:30:46:5a:87:e5:1f:3a:42:9b: d1:24:e4:df:21:70:c9:e5:eb:a6:b5:bd:1b:16:20: de:43:41:9f:49:99:ff:9d:1c:af:52:93:8d:8d:9c: f0:d8:55:24:75:bd:af:06:9e:3b:4e:b2:15:0f:aa: 76:fb:25:ad:0f:06:ba:8f:7c:5a:a3:6b:de:0f:4f: 82:c1:50:0c:8f:5e:a5:5f:60:e6:f6:07:78:cd:2e: dd:03:b7:03:41:40:f4:51:61:4f:69:14:17:c9:72: 1e:17:0d:e2:fc:92:35:84:19:7c:74:14:fd:c1:2a: 0c:de:6a:3d:b9:a3:61:7d:2c:b3:a6:12:af:37:6f: de:22:56:b8:79:c1:20:15:c5:86:06:a3:74:96:31: 75:92:a7:7c:7c:c6:5d:0a:8d:e6:d7:b7:c7:7a:d9: ca:6c:75:e1:55:87:27:eb:b0:2c:d0:42:db:c7:6f: b8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:97:40:8A:04:74:63:B2:43:0A:16:85:96:40:87:1E:1F:88:8B:A6 X509v3 Authority Key Identifier: keyid:17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:50:75:05:84:17:ee:2d:f9:25:86:17:e4:4e:3a:0f:86:1c: 98:32:5c:06:6b:68:8a:10:3c:ce:4c:0e:45:20:11:b0:ee:d7: e8:25:62:94:86:7e:2e:66:68:5a:10:f9:43:75:f5:f9:8b:40: 07:14:3b:4d:e6:dc:aa:49:a4:5e:7d:a1:e9:84:9d:f1:55:43: c3:ef:bf:9d:c1:26:aa:b3:22:50:49:4e:38:07:5a:cd:c4:3b: b4:8e:f2:47:7e:c6:51:c1:1e:09:c9:ef:80:7c:fb:38:68:f8: 09:c8:c7:89:64:4f:1b:46:f2:b0:ad:5a:40:9e:38:86:ff:4f: 03:4e:67:6d:f0:79:4e:f9:2c:3e:6d:2f:f1:a7:d3:fd:04:42: 98:61:a3:cb:bb:d8:f6:9e:b7:a7:24:83:63:39:15:b7:13:d8: 78:10:c5:9b:d0:26:0a:ce:99:13:5a:3c:98:af:08:18:bd:f6: 25:84:18:08:dc:83:0e:f3:8d:c2:68:c8:67:e8:6d:c9:2f:88: 67:e9:74:cb:5a:bd:b2:82:7a:fa:95:a1:ca:46:93:39:7e:a3: 75:17:e5:ba:5d:e5:41:2e:87:89:54:ab:6c:2d:3b:47:22:85: ee:51:46:fb:e5:fa:8b:b3:66:4c:04:5c:60:a2:49:1a:86:6d: 07:e4:77:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFQTcxMTAvBgNVBAUTKDE3QUQ2MDVEMDZDN0VEMEExNDQ4NUMwMkExMkYwMDE3 MDlBMjJENjIwHhcNMjUxMjIzMDIwODEyWhcNMjUxMjMwMDIwODEyWjAYMRYwFAYD VQQDDA02OTQ5Zjk4ZC05YTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjvYzBqjrqtnpbk1q5ODNewpWZ6LvHNXbReI2KRjHUPWTESaLkM5xfZ8yQpZ4 RrRjhhEivwSSH5TQjFH1TdFDgEjhT15KJEs3XzPJUZCkQmIwRlqH5R86QpvRJOTf IXDJ5eumtb0bFiDeQ0GfSZn/nRyvUpONjZzw2FUkdb2vBp47TrIVD6p2+yWtDwa6 j3xao2veD0+CwVAMj16lX2Dm9gd4zS7dA7cDQUD0UWFPaRQXyXIeFw3i/JI1hBl8 dBT9wSoM3mo9uaNhfSyzphKvN2/eIla4ecEgFcWGBqN0ljF1kqd8fMZdCo3m17fH etnKbHXhVYcn67As0ELbx2+4WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEeXQIoE dGOyQwoWhZZAhx4fiIumMB8GA1UdIwQYMBaAFBetYF0Gx+0KFEhcAqEvABcJoi1i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkVBNy9CRTY3RDcxMDQ1 OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdRb1VTRndDb1M4QUZ3bWlM V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y2MWdYUWJIN1FvVVNGd0NvUzhBRndtaUxXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkVBNy9CRTY3RDcxMDQ1OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdR b1VTRndDb1M4QUZ3bWlMV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQUHUFhBfuLfklhhfkTjoPhhyYMlwGa2iKEDzOTA5FIBGw7tfoJWKU hn4uZmhaEPlDdfX5i0AHFDtN5tyqSaRefaHphJ3xVUPD77+dwSaqsyJQSU44B1rN xDu0jvJHfsZRwR4Jye+AfPs4aPgJyMeJZE8bRvKwrVpAnjiG/08DTmdt8HlO+Sw+ bS/xp9P9BEKYYaPLu9j2nrenJINjORW3E9h4EMWb0CYKzpkTWjyYrwgYvfYlhBgI 3IMO843CaMhn6G3JL4hn6XTLWr2ygnr6laHKRpM5fqN1F+W6XeVBLoeJVKtsLTtH IoXuUUb75fqLs2ZMBFxgokkahm0H5Hei -----END CERTIFICATE-----Generated at Wed Dec 24 11:25:51 2025 by rpki-client