This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: 92KVW74L/yheyRphxTWfgiOtBTuUVpmrRRwda0mdFHA= Subject key identifier: 8B:81:FE:F1:CF:43:C9:CA:45:38:E3:3C:CB:22:56:F2:40:1A:55:98 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0CB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0CAC Signing time: Thu 18 Dec 2025 18:07:08 +0000 Manifest this update: Thu 18 Dec 2025 18:07:08 +0000 Manifest next update: Thu 25 Dec 2025 18:07:08 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: 2ZREa7elpdnr7Q4a1fwffJ9WIurueeBKtRdevy8OvWA=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: I+dyDrUC3DvMgCPW4jStqejUHX8a7vo0aXHEIsgKIwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Dec 18 18:07:08 2025 GMT Not After : Dec 25 18:07:08 2025 GMT Subject: CN=694442cc-bbd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0f:12:78:28:a6:a1:b2:7d:06:69:39:28:1b: d5:b3:77:96:61:a7:ef:8e:34:95:fe:f0:a6:df:cb: ce:f5:3e:01:8f:d4:fc:b4:05:c3:da:e4:47:c9:da: c3:d4:8f:1f:13:ae:3e:4f:29:b1:4b:78:1d:35:f7: 74:96:80:cf:b7:a1:77:2d:06:61:b0:8c:9a:49:d2: 62:a7:15:bf:1f:db:3f:4d:ef:18:fd:0b:a1:7c:d5: 66:cf:97:03:59:00:25:24:68:ce:0f:d8:62:bf:7e: 47:57:fb:3c:aa:a2:d7:00:00:ba:71:c6:4c:f2:a4: 17:36:32:52:f4:69:bb:15:e5:be:73:0f:5c:52:88: cc:70:e4:3a:73:13:5d:9a:12:0b:f1:c1:d2:d4:94: 44:0d:3d:6d:a8:c5:5c:e5:62:26:4a:1f:33:e1:69: 04:2e:57:c8:56:8f:b3:c2:25:c5:73:00:c1:63:4e: 83:b9:a6:b2:11:3d:61:e3:bd:04:b2:ba:4d:e8:09: 34:e5:e9:03:45:36:2f:6f:9d:52:f8:07:be:18:00: 8e:0c:fc:73:3e:53:90:5b:b9:aa:6e:8d:91:d6:b6: 6a:be:aa:6b:61:c2:6c:f7:42:93:90:b1:49:ba:68: f6:8b:3a:4d:90:d5:0b:b3:ec:bf:0c:d8:1e:7a:7b: 71:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:81:FE:F1:CF:43:C9:CA:45:38:E3:3C:CB:22:56:F2:40:1A:55:98 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:1c:18:10:9b:7c:16:80:78:2f:b5:4e:97:f4:ee:82:1e:f5: e7:73:84:04:56:45:1e:aa:ce:1c:ef:f8:f4:0b:de:a1:13:f4: a6:da:71:8f:5d:aa:24:02:67:16:a8:2e:6f:a5:3a:b2:9a:09: 25:30:ac:64:b2:85:01:d3:fb:55:fa:bd:12:52:4a:f2:0f:24: fa:6b:c4:c6:d5:e3:19:54:2e:bc:d2:47:a2:ac:2f:64:22:34: 77:97:5c:48:25:e6:f9:c3:35:2b:a1:f4:21:7a:eb:0c:2e:02: 7b:f1:6e:d3:0c:17:98:bf:7b:c2:bd:3a:93:73:0f:8f:4d:29: 44:12:3d:27:09:00:5b:7b:5f:1a:9a:ad:3c:03:84:92:f3:76: 9c:57:02:07:86:59:6a:08:18:f1:29:de:c3:6f:32:53:a2:74: f9:03:22:f3:96:8c:82:52:24:29:b3:e1:f6:84:90:0d:11:4a: 91:07:63:40:1c:bf:15:ab:4b:d2:51:30:da:e9:57:2b:a9:ed: 36:09:20:2b:cf:5b:09:6b:9a:94:f6:e9:7b:24:1a:28:64:f3: 08:1a:0d:db:ac:4a:b2:ee:ea:b6:93:00:e8:7d:3f:c1:39:20: 5a:80:00:db:9b:95:bc:92:5a:88:4f:48:15:a1:18:9e:1d:35: e3:89:1f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjUxMjE4MTgwNzA4WhcNMjUxMjI1MTgwNzA4WjAYMRYwFAYD VQQDDA02OTQ0NDJjYy1iYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA8SeCimobJ9Bmk5KBvVs3eWYafvjjSV/vCm38vO9T4Bj9T8tAXD2uRHydrD 1I8fE64+TymxS3gdNfd0loDPt6F3LQZhsIyaSdJipxW/H9s/Te8Y/QuhfNVmz5cD WQAlJGjOD9hiv35HV/s8qqLXAAC6ccZM8qQXNjJS9Gm7FeW+cw9cUojMcOQ6cxNd mhIL8cHS1JREDT1tqMVc5WImSh8z4WkELlfIVo+zwiXFcwDBY06DuaayET1h470E srpN6Ak05ekDRTYvb51S+Ae+GACODPxzPlOQW7mqbo2R1rZqvqprYcJs90KTkLFJ umj2izpNkNULs+y/DNgeentxlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuB/vHP Q8nKRTjjPMsiVvJAGlWYMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUHBgQm3wWgHgvtU6X9O6CHvXnc4QEVkUeqs4c7/j0C96hE/Sm2nGP XaokAmcWqC5vpTqymgklMKxksoUB0/tV+r0SUkryDyT6a8TG1eMZVC680keirC9k IjR3l1xIJeb5wzUrofQheusMLgJ78W7TDBeYv3vCvTqTcw+PTSlEEj0nCQBbe18a mq08A4SS83acVwIHhllqCBjxKd7DbzJTonT5AyLzloyCUiQps+H2hJANEUqRB2NA HL8Vq0vSUTDa6Vcrqe02CSArz1sJa5qU9ul7JBooZPMIGg3brEqy7uq2kwDofT/B OSBagADbm5W8klqIT0gVoRieHTXjiR+2 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:28 2025 by rpki-client