This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: 8nLAhAbp8NRMlGfIrVJ/wxA6+e9Syo77uAx9bx9QJoQ= Subject key identifier: 37:BB:E0:59:BD:C5:48:0A:D8:86:24:DC:A1:BC:29:2B:12:93:30:A7 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 083F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 082F Signing time: Thu 18 Dec 2025 20:21:29 +0000 Manifest this update: Thu 18 Dec 2025 20:21:28 +0000 Manifest next update: Thu 25 Dec 2025 20:21:28 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: lqUU1zL56AKUecVrvm8GcQ/GDbyxEy9m81tDSLYn1Ks=) 2: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: rWjXWilCzwscxUrzYHy2y+RbO91zzbJS7wnbS9Z8TVM=) 3: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: +VXknte/mN+kJG0OMjeV9YUPJK6A2pn0gyb+jl0GEBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Dec 18 20:21:28 2025 GMT Not After : Dec 25 20:21:28 2025 GMT Subject: CN=69446249-5214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:53:a0:32:b5:e0:60:6a:cd:37:67:cf:75:fa: fb:74:29:50:53:ee:2f:d1:1c:f2:23:72:d2:14:ed: e2:da:5d:77:2f:0e:fc:82:18:23:c6:21:fc:b9:16: ee:a9:69:c6:1c:f5:db:e0:a9:9f:2a:55:cb:00:26: 97:58:4c:a6:ee:d1:82:bb:79:81:92:74:5c:ae:64: 96:25:67:1d:b2:e5:f6:35:2c:ab:61:4d:3a:c1:81: 3a:08:72:06:cf:84:b3:0e:6f:ec:66:20:99:1b:81: 47:27:3e:b6:95:54:ac:b8:9d:00:ad:de:7e:6a:8d: ed:74:39:0a:fe:44:d7:77:48:16:46:f2:05:ad:6f: 95:9d:85:1a:32:af:7f:cf:7f:c5:ee:65:a8:6e:fe: 20:6d:d1:15:94:5e:aa:50:df:27:b2:f3:f4:ff:4b: 97:27:fd:1e:2f:6a:62:c7:2a:e9:5e:97:48:e7:41: aa:a7:47:e9:4b:40:9a:e8:d5:9b:db:80:03:33:d7: 0b:fa:07:60:cc:68:d9:99:d1:08:0c:99:8f:bb:1d: 3a:3e:e5:a2:be:a5:54:92:80:fb:0e:02:f4:b8:e1: a4:23:5c:db:6b:71:df:dd:18:9a:39:de:15:6c:de: a6:f0:69:46:87:55:4d:d5:33:8c:12:af:90:38:90: 9d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BB:E0:59:BD:C5:48:0A:D8:86:24:DC:A1:BC:29:2B:12:93:30:A7 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:43:13:9c:f3:e9:f0:5e:8a:98:dd:73:c2:57:da:ba:0a:7b: f2:96:60:26:55:b2:e1:0b:77:10:19:05:2f:8e:02:59:bd:d0: 63:91:dd:c1:00:5f:f7:76:8a:f6:0d:63:dd:6e:94:51:59:4c: aa:31:01:40:f2:5a:cd:85:a9:5a:ad:30:af:56:20:63:3c:50: ec:e1:42:8c:6e:71:6c:ba:86:ce:2e:15:4b:e7:ec:a3:28:38: 7c:1f:b9:cd:c2:a2:9c:8d:85:d5:84:d2:66:27:e0:39:b2:ad: 3d:82:3b:78:1a:dc:54:11:af:c7:ab:ba:f6:98:20:cb:40:f9: a8:19:57:e4:9a:85:1a:83:ff:e9:06:50:7b:57:b5:c4:66:f1: 24:0e:bb:3a:df:53:50:1b:b9:20:89:27:cb:a4:fd:85:c9:27: b4:52:15:96:df:02:2c:b7:cc:ce:5e:40:44:de:ab:c5:bf:6c: 9c:00:2a:34:95:be:35:37:e3:6a:dc:41:41:de:82:da:9e:b6: 74:50:8d:ac:f5:84:0f:05:69:0a:93:ce:06:1b:b9:60:6b:a8: 75:f8:c8:a8:a0:94:68:94:2f:c8:59:cb:d0:e3:06:b0:93:43: 30:6b:03:5e:fb:ec:6e:e8:81:7f:d0:34:05:84:df:59:30:80: f9:88:e4:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUxMjE4MjAyMTI4WhcNMjUxMjI1MjAyMTI4WjAYMRYwFAYD VQQDDA02OTQ0NjI0OS01MjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylOgMrXgYGrNN2fPdfr7dClQU+4v0RzyI3LSFO3i2l13Lw78ghgjxiH8uRbu qWnGHPXb4KmfKlXLACaXWEym7tGCu3mBknRcrmSWJWcdsuX2NSyrYU06wYE6CHIG z4SzDm/sZiCZG4FHJz62lVSsuJ0Ard5+ao3tdDkK/kTXd0gWRvIFrW+VnYUaMq9/ z3/F7mWobv4gbdEVlF6qUN8nsvP0/0uXJ/0eL2pixyrpXpdI50Gqp0fpS0Ca6NWb 24ADM9cL+gdgzGjZmdEIDJmPux06PuWivqVUkoD7DgL0uOGkI1zba3Hf3RiaOd4V bN6m8GlGh1VN1TOMEq+QOJCdzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDe74Fm9 xUgK2IYk3KG8KSsSkzCnMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuQxOc8+nwXoqY3XPCV9q6CnvylmAmVbLhC3cQGQUvjgJZvdBjkd3B AF/3dor2DWPdbpRRWUyqMQFA8lrNhalarTCvViBjPFDs4UKMbnFsuobOLhVL5+yj KDh8H7nNwqKcjYXVhNJmJ+A5sq09gjt4GtxUEa/Hq7r2mCDLQPmoGVfkmoUag//p BlB7V7XEZvEkDrs631NQG7kgiSfLpP2FySe0UhWW3wIst8zOXkBE3qvFv2ycACo0 lb41N+Nq3EFB3oLanrZ0UI2s9YQPBWkKk84GG7lga6h1+MiooJRolC/IWcvQ4waw k0MwawNe++xu6IF/0DQFhN9ZMID5iOQd -----END CERTIFICATE-----Generated at Fri Dec 19 20:15:26 2025 by rpki-client