This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: /DUYrlUzNmE0D8ptmbv9RU4q8kKSOhBC30VqCz+wR70= Subject key identifier: DC:F4:D0:C8:7E:95:3D:51:55:CA:9E:F3:A4:1F:DD:3F:B2:38:49:5A Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 1025 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 1019 Signing time: Thu 18 Dec 2025 17:16:38 +0000 Manifest this update: Thu 18 Dec 2025 17:16:37 +0000 Manifest next update: Thu 25 Dec 2025 17:16:37 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: GOJR5dhFa2J4SCquHgS/TCLKlPI/Hktv9S21zO4PbDI=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4133 (0x1025) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Dec 18 17:16:37 2025 GMT Not After : Dec 25 17:16:37 2025 GMT Subject: CN=694436f6-b54f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:d3:d1:3f:34:27:c2:79:8c:6b:9d:b4:f3: af:22:43:3a:13:61:b3:00:4c:bb:73:bb:c6:de:85: d2:8f:be:2c:dc:e5:27:63:c0:17:a1:7d:d9:52:16: 33:9e:04:eb:bd:fe:c4:1e:80:bd:7a:6c:e9:f6:cb: 65:ad:65:34:d8:aa:7f:10:32:97:06:47:7e:90:2f: 8b:ca:2b:d4:50:40:72:ca:be:2a:2d:73:41:28:26: 2c:bd:19:14:cd:ce:ee:d7:25:5d:6d:7e:ce:f9:96: fc:11:58:68:82:f6:a9:38:25:0d:af:13:1b:08:1b: e1:8d:06:23:ce:a4:ae:92:af:fd:d3:52:e1:a9:4a: e1:05:ff:7c:07:37:78:71:73:ec:18:f7:17:68:6f: f3:77:5d:a7:70:69:4e:16:0d:7f:1f:9d:17:72:25: a2:0e:10:36:b4:75:14:f1:77:bb:53:a6:fa:f2:33: 99:60:a0:13:96:54:cd:9b:03:3e:ad:f8:a1:8b:b8: d6:a3:46:ff:b5:f9:32:3a:eb:69:55:07:5f:d0:44: bb:d6:72:d6:2b:09:64:45:dd:24:a0:7e:13:33:7d: dc:cd:3f:66:f2:12:fa:0e:dd:5d:1a:ef:53:fd:11: c4:df:f0:77:87:e9:42:71:be:f2:bf:75:da:49:86: 96:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F4:D0:C8:7E:95:3D:51:55:CA:9E:F3:A4:1F:DD:3F:B2:38:49:5A X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:fb:3b:2e:7b:cf:cd:cb:06:a4:4b:0b:a1:a4:c7:d2:c6:d0: de:93:4a:94:36:0d:cb:76:20:87:01:13:03:03:80:89:7d:22: cb:f7:37:eb:35:f7:bf:8c:86:8f:c3:99:41:d3:39:9e:be:a4: 52:35:84:01:ed:2b:a0:dc:6f:bd:ef:8d:9f:3b:31:22:6d:a6: fa:4b:69:02:26:d9:49:cf:19:21:42:0f:17:c4:94:97:dd:5c: 3e:c1:b0:c8:7e:e3:12:2b:ec:27:57:c1:f0:ad:38:9b:d7:a3: 7f:e8:46:b5:bc:71:5c:24:44:6d:a8:96:d2:66:4c:4d:b4:23: a8:f5:6f:74:17:b8:36:12:30:e2:1b:44:9d:e1:e0:b1:97:8b: 11:c5:b3:b4:14:a3:20:5e:24:bb:c1:cc:7d:ff:85:78:10:20: 77:cb:f7:75:e4:a1:09:51:7a:1c:a4:e7:13:e5:7c:78:6f:21: 23:f4:a7:2f:81:0e:fa:b6:29:74:b2:7d:63:e3:e7:83:a3:8b: 2c:9f:e4:7b:64:e7:7e:fb:c0:0b:3d:b1:14:47:94:be:b5:38: 26:fa:96:96:5a:66:bf:42:f0:9b:97:18:6b:11:5a:f6:28:0f: 30:12:78:5b:6f:ed:e4:c6:4a:67:5d:22:e1:29:ab:3e:89:c1: 7c:15:6b:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUxMjE4MTcxNjM3WhcNMjUxMjI1MTcxNjM3WjAYMRYwFAYD VQQDDA02OTQ0MzZmNi1iNTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSHT0T80J8J5jGudtPOvIkM6E2GzAEy7c7vG3oXSj74s3OUnY8AXoX3ZUhYz ngTrvf7EHoC9emzp9stlrWU02Kp/EDKXBkd+kC+LyivUUEByyr4qLXNBKCYsvRkU zc7u1yVdbX7O+Zb8EVhogvapOCUNrxMbCBvhjQYjzqSukq/901LhqUrhBf98Bzd4 cXPsGPcXaG/zd12ncGlOFg1/H50XciWiDhA2tHUU8Xe7U6b68jOZYKATllTNmwM+ rfihi7jWo0b/tfkyOutpVQdf0ES71nLWKwlkRd0koH4TM33czT9m8hL6Dt1dGu9T /RHE3/B3h+lCcb7yv3XaSYaWwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNz00Mh+ lT1RVcqe86Qf3T+yOElaMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB+zsue8/NywakSwuhpMfSxtDek0qUNg3LdiCHARMDA4CJfSLL9zfr Nfe/jIaPw5lB0zmevqRSNYQB7Sug3G+9742fOzEibab6S2kCJtlJzxkhQg8XxJSX 3Vw+wbDIfuMSK+wnV8HwrTib16N/6Ea1vHFcJERtqJbSZkxNtCOo9W90F7g2EjDi G0Sd4eCxl4sRxbO0FKMgXiS7wcx9/4V4ECB3y/d15KEJUXocpOcT5Xx4byEj9Kcv gQ76til0sn1j4+eDo4ssn+R7ZOd++8ALPbEUR5S+tTgm+paWWma/QvCblxhrEVr2 KA8wEnhbb+3kxkpnXSLhKas+icF8FWuK -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:16 2025 by rpki-client