This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft File: P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft (raw, json) Hash identifier: gG/faMiFLdGU7VVfnCQ0i5ZKf47Q5ICTWQcKwJ2ndms= Subject key identifier: 35:7E:B0:15:8A:2D:5D:CF:78:D4:28:FA:61:F6:FC:C2:6E:22:8E:5F Authority key identifier: 3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18 Certificate issuer: /CN=A917357E/serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18 Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft Manifest number: 0712 Signing time: Thu 18 Dec 2025 23:20:48 +0000 Manifest this update: Thu 18 Dec 2025 23:20:47 +0000 Manifest next update: Thu 25 Dec 2025 23:20:47 +0000 Files and hashes: 1: P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl (hash: /MfQunt3eJ3jHg4a07u/w0wJZSJYMaMPJHFEiZ8IZdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=3FC170E8DF5ADBFA1B6370B7450F28FAE0B35A18 Validity Not Before: Dec 18 23:20:47 2025 GMT Not After : Dec 25 23:20:47 2025 GMT Subject: CN=69448c50-22f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:de:9c:37:4a:bf:1f:13:51:4e:0c:ac:62:b6: 1b:93:8f:78:ca:dc:31:80:8d:21:06:18:97:80:51: 19:5c:f5:38:29:d5:f6:cf:70:83:2d:06:29:59:b4: 6d:80:6e:6d:50:14:1b:e9:df:c7:e4:0a:32:89:23: 9f:11:98:89:d1:b8:1e:e7:2d:e1:a3:e3:42:ce:44: 00:1e:66:b8:2f:6d:89:a4:b6:0d:c0:2b:7e:3d:b2: 97:ab:14:4d:66:68:8b:d1:5a:12:0e:28:93:3e:00: ad:a2:d6:f1:07:c6:31:37:0c:89:fa:14:36:db:ed: e2:db:34:78:99:85:77:14:6e:7c:65:27:80:ed:e4: b7:17:5e:5f:9b:28:d6:a8:d8:30:08:24:b8:c4:84: bd:8a:f0:e3:7d:8a:e7:39:4b:46:2f:ef:01:02:3e: 64:fa:4c:64:15:7f:1b:b3:68:c2:c3:0e:8c:d8:d9: 42:3e:c3:e7:bc:25:17:89:be:59:db:20:33:e6:dc: 59:83:59:c5:a9:47:96:aa:1e:60:dd:74:7a:d2:5a: 1d:a4:31:61:da:0c:24:2b:ea:e7:4f:54:33:cd:3a: a1:82:56:85:bd:7d:49:9b:bb:2e:c1:a9:55:5c:18: 6f:88:8e:b2:3c:4a:56:42:6c:fa:d0:4a:5b:1a:9e: 65:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7E:B0:15:8A:2D:5D:CF:78:D4:28:FA:61:F6:FC:C2:6E:22:8E:5F X509v3 Authority Key Identifier: keyid:3F:C1:70:E8:DF:5A:DB:FA:1B:63:70:B7:45:0F:28:FA:E0:B3:5A:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/P8Fw6N9a2_obY3C3RQ8o-uCzWhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:cf:45:30:2b:2a:08:f9:cd:92:1f:31:a0:54:c3:9d:8d:d5: 6a:ae:42:c5:9d:58:d2:2b:96:23:00:5a:e4:5c:54:8a:dc:8f: f2:e7:0d:21:77:c4:a4:a5:3f:d1:fe:34:3b:6f:0d:4d:f7:da: 30:85:ee:95:7a:6b:00:6e:96:f7:ec:f7:d8:9f:87:8c:80:57: 52:58:d4:c0:3b:9e:75:5c:e9:a6:1d:e5:51:d9:7e:f2:4d:bc: 39:94:56:79:93:b7:58:96:61:18:60:fc:b9:d8:27:20:17:37: 79:eb:a2:75:68:71:46:35:36:20:95:0e:81:b9:2f:bc:6b:f5: 36:ed:e7:10:70:93:a1:73:ec:0d:3e:4d:7d:d9:76:45:16:83: e7:c9:7b:52:53:22:0f:1d:6c:d5:71:12:29:75:ff:5e:63:7f: 7d:c7:02:31:ee:29:da:03:34:dd:e0:14:a0:69:a9:54:80:2e: f5:d2:cb:05:55:06:f8:59:da:da:83:d8:cb:45:59:90:34:22: 2a:e5:7f:f0:17:44:a2:8e:c0:15:ea:22:d9:af:9b:a2:c6:22: c9:e7:c0:98:2e:02:04:f1:2f:11:11:12:b2:f5:78:0e:2d:b0: a4:2e:95:22:74:bc:03:c6:c0:d2:2a:50:42:e3:5e:b4:cf:b5: 6d:b6:93:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDNGQzE3MEU4REY1QURCRkExQjYzNzBCNzQ1MEYyOEZB RTBCMzVBMTgwHhcNMjUxMjE4MjMyMDQ3WhcNMjUxMjI1MjMyMDQ3WjAYMRYwFAYD VQQDDA02OTQ0OGM1MC0yMmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1d6cN0q/HxNRTgysYrYbk494ytwxgI0hBhiXgFEZXPU4KdX2z3CDLQYpWbRt gG5tUBQb6d/H5AoyiSOfEZiJ0bge5y3ho+NCzkQAHma4L22JpLYNwCt+PbKXqxRN ZmiL0VoSDiiTPgCtotbxB8YxNwyJ+hQ22+3i2zR4mYV3FG58ZSeA7eS3F15fmyjW qNgwCCS4xIS9ivDjfYrnOUtGL+8BAj5k+kxkFX8bs2jCww6M2NlCPsPnvCUXib5Z 2yAz5txZg1nFqUeWqh5g3XR60lodpDFh2gwkK+rnT1QzzTqhglaFvX1Jm7suwalV XBhviI6yPEpWQmz60EpbGp5lewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV+sBWK LV3PeNQo+mH2/MJuIo5fMB8GA1UdIwQYMBaAFD/BcOjfWtv6G2Nwt0UPKPrgs1oY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9QOEZ3Nk45YTJfb2JZM0MzUlE4by11Q3pX aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A4Rnc2TjlhMl9vYlkzQzNSUThvLXVDeldoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9QOEZ3Nk45YTJf b2JZM0MzUlE4by11Q3pXaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcz0UwKyoI+c2SHzGgVMOdjdVqrkLFnVjSK5YjAFrkXFSK3I/y5w0h d8SkpT/R/jQ7bw1N99owhe6VemsAbpb37PfYn4eMgFdSWNTAO551XOmmHeVR2X7y Tbw5lFZ5k7dYlmEYYPy52CcgFzd566J1aHFGNTYglQ6BuS+8a/U27ecQcJOhc+wN Pk192XZFFoPnyXtSUyIPHWzVcRIpdf9eY399xwIx7inaAzTd4BSgaalUgC710ssF VQb4Wdrag9jLRVmQNCIq5X/wF0SijsAV6iLZr5uixiLJ58CYLgIE8S8RERKy9XgO LbCkLpUidLwDxsDSKlBC4160z7VttpPM -----END CERTIFICATE-----Generated at Fri Dec 19 20:14:32 2025 by rpki-client