This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: lyEIeCNbCSfPoB0Oa/uCpqAfVOZyvotgHARiF6uETiA= Subject key identifier: E7:35:2B:8B:DE:EC:43:1B:2D:F5:75:6A:A3:A7:55:81:38:58:E0:3A Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 01CF Signing time: Fri 19 Dec 2025 02:04:44 +0000 Manifest this update: Fri 19 Dec 2025 02:04:43 +0000 Manifest next update: Fri 26 Dec 2025 02:04:43 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: 3V2hyRsI9+8rF0VgfRnNfJCGBih0M1TqR6zhxsa6qPU=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Dec 19 02:04:43 2025 GMT Not After : Dec 26 02:04:43 2025 GMT Subject: CN=6944b2bc-5f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:61:49:cd:d5:06:18:58:d2:7c:c1:2c:7d:ca: 1c:74:fc:bf:8d:de:24:d1:fe:fd:c3:55:c7:21:9d: e7:62:39:32:b0:9a:13:84:d0:fa:b2:51:3a:13:b1: c6:9d:ec:49:cf:26:5e:09:46:1c:0c:d2:ea:6e:6b: 68:3c:aa:5b:f2:90:5b:33:76:3b:d7:d5:1b:f4:25: 4e:24:3d:11:11:cd:12:cc:d7:86:ab:87:4d:f0:d0: 14:23:28:21:f9:9e:32:a3:1c:17:f5:69:d5:87:c0: b8:23:d5:83:fa:35:03:46:6b:42:7c:d0:41:53:cc: a2:93:de:54:d4:69:c7:08:1d:f5:2f:20:76:19:51: 0d:c0:25:b7:ed:3d:94:8e:92:88:72:36:8f:d3:71: c6:15:f7:fd:d8:88:8f:37:eb:5b:aa:c0:50:e2:16: 10:12:f6:6f:6f:b4:c7:26:c8:37:83:bb:65:e3:a6: 13:a7:50:62:5b:23:5b:59:b4:32:fc:63:25:c4:4c: 8d:04:29:2c:c2:56:9c:88:fc:18:23:0c:b2:52:3f: 55:bb:a5:fb:1b:20:50:1b:dd:22:be:fa:23:e4:48: 6b:de:0e:7f:4f:62:72:74:30:7f:77:44:ab:6a:61: 55:6c:36:22:fe:91:b1:10:c2:7d:65:0d:d7:72:91: 25:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:35:2B:8B:DE:EC:43:1B:2D:F5:75:6A:A3:A7:55:81:38:58:E0:3A X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:92:dd:70:05:51:da:ec:a1:99:ba:ee:d1:ca:54:6c:c4:14: 24:2e:96:a6:ba:d8:dd:fc:c7:fb:91:9e:03:32:52:ab:e7:11: 8a:7a:6c:1e:07:59:4c:d9:d0:05:63:f9:2b:8d:85:da:a5:a9: b3:ee:07:39:37:9e:38:61:ff:60:30:3b:3c:a1:da:74:cc:d0: 95:08:28:47:0c:13:0e:0b:dc:8f:d5:6d:aa:ff:10:1f:25:e9: 1f:5c:84:80:f5:00:06:57:30:de:ca:94:0f:eb:22:cd:18:97: 26:50:27:b3:95:2d:42:d5:b9:c1:1b:ee:61:79:52:db:77:89: b5:76:7f:01:de:50:11:d4:c0:2b:7f:98:e8:c0:0c:29:7e:74: 66:4b:da:7c:ae:8b:ed:0c:ff:06:ac:b0:9c:4f:a8:50:07:4a: bb:67:3f:bd:fc:f2:7d:13:fd:e5:e9:85:f6:d3:a5:ad:e7:c9: 63:25:0e:5f:a9:f2:57:3f:f4:4f:53:3e:86:e4:42:c5:50:2d: fb:c0:9e:a0:cd:21:f1:23:5a:22:08:d9:6e:51:74:d7:22:cb: 32:3d:16:35:07:09:86:19:c7:60:80:78:70:81:2a:5b:41:8c: a4:63:0c:54:4b:fe:82:4f:b5:f7:4d:8a:a7:c5:94:a3:4e:60: 0f:2f:a4:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUxMjE5MDIwNDQzWhcNMjUxMjI2MDIwNDQzWjAYMRYwFAYD VQQDDA02OTQ0YjJiYy01ZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GFJzdUGGFjSfMEsfcocdPy/jd4k0f79w1XHIZ3nYjkysJoThND6slE6E7HG nexJzyZeCUYcDNLqbmtoPKpb8pBbM3Y719Ub9CVOJD0REc0SzNeGq4dN8NAUIygh +Z4yoxwX9WnVh8C4I9WD+jUDRmtCfNBBU8yik95U1GnHCB31LyB2GVENwCW37T2U jpKIcjaP03HGFff92IiPN+tbqsBQ4hYQEvZvb7THJsg3g7tl46YTp1BiWyNbWbQy /GMlxEyNBCkswlaciPwYIwyyUj9Vu6X7GyBQG90ivvoj5Ehr3g5/T2JydDB/d0Sr amFVbDYi/pGxEMJ9ZQ3XcpElHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOc1K4ve 7EMbLfV1aqOnVYE4WOA6MB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1kt1wBVHa7KGZuu7RylRsxBQkLpamutjd/Mf7kZ4DMlKr5xGKemwe B1lM2dAFY/krjYXapamz7gc5N544Yf9gMDs8odp0zNCVCChHDBMOC9yP1W2q/xAf JekfXISA9QAGVzDeypQP6yLNGJcmUCezlS1C1bnBG+5heVLbd4m1dn8B3lAR1MAr f5jowAwpfnRmS9p8rovtDP8GrLCcT6hQB0q7Zz+9/PJ9E/3l6YX206Wt58ljJQ5f qfJXP/RPUz6G5ELFUC37wJ6gzSHxI1oiCNluUXTXIssyPRY1BwmGGcdggHhwgSpb QYykYwxUS/6CT7X3TYqnxZSjTmAPL6Ra -----END CERTIFICATE-----Generated at Sun Dec 21 03:02:22 2025 by rpki-client