This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft File: 3oFz59KP6tHsOpLJdljacyhQk-U.mft (raw, json) Hash identifier: TB3tSFoIWhfsy2iDUwhhf9SK6NPVGRw2/jHg58ljPgo= Subject key identifier: E2:64:FA:50:B6:5E:DD:A4:CB:57:92:41:12:22:01:E8:CD:3A:E5:DC Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 0732 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft Manifest number: 072C Signing time: Sat 20 Dec 2025 21:08:04 +0000 Manifest this update: Sat 20 Dec 2025 21:08:03 +0000 Manifest next update: Sat 27 Dec 2025 21:08:03 +0000 Files and hashes: 1: 3oFz59KP6tHsOpLJdljacyhQk-U.crl (hash: Ri4LKFl5tl+uW9HoE6PMR5snzui/Qxj0aDr1bBzugtk=) 2: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (hash: owZNdsc75aBAEeMxk8dZOIuYb/+Ukc36obf7oLhTJGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:08:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1842 (0x732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A, serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: Dec 20 21:08:03 2025 GMT Not After : Dec 27 21:08:03 2025 GMT Subject: CN=69471034-b851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:47:58:92:74:57:cd:92:19:92:df:33:0a: 70:4d:79:d8:8a:81:3b:d1:f2:ab:73:55:83:1e:42: 74:d8:46:69:eb:28:7c:c4:7c:ea:95:0c:b2:04:10: 09:4a:bc:1f:09:af:b8:c5:f0:b7:34:fe:c9:91:49: f6:62:d9:6f:3c:09:b1:00:77:cd:3f:68:53:31:04: 93:32:d6:27:54:60:22:d3:e7:a8:a6:8b:26:af:f7: 71:f1:47:b3:f4:ea:11:ab:23:8c:a4:77:5e:40:cd: 3b:3e:93:d5:84:01:c0:0c:e6:42:16:6d:a4:f7:e5: 43:b0:f6:51:06:a5:c0:ce:cb:5c:98:0f:68:94:6a: c3:32:71:e3:a4:2b:d8:9d:23:dc:40:05:6b:38:a5: 14:07:9a:04:e3:8d:cd:73:5e:a9:1e:9d:51:45:e7: 24:e5:a1:d1:3b:57:9d:9f:de:32:8b:fe:d4:59:b7: 35:5c:e0:ab:b1:89:b5:54:d9:5f:aa:b7:af:1b:c3: 8f:21:cd:83:0d:4c:d9:d1:06:22:a6:b2:b6:2a:8b: 2f:8a:97:95:c0:62:4a:16:5a:2d:43:b3:03:2c:38: ea:cd:a8:61:39:c2:88:11:c7:04:4e:f6:a0:55:fc: 99:c6:99:71:f3:3e:15:3d:3c:11:f5:b3:7e:69:b4: d4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:64:FA:50:B6:5E:DD:A4:CB:57:92:41:12:22:01:E8:CD:3A:E5:DC X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:a7:6f:1c:ac:ca:5a:2d:ba:e3:eb:d2:c8:db:21:6b:94:e8: be:7a:cb:1d:00:d5:e9:51:df:5b:e5:e7:70:9a:9a:ec:7c:db: a0:ad:02:fa:83:a4:ab:fa:cd:bb:65:69:2b:14:0c:01:1e:87: 07:db:08:8c:fa:15:ac:bf:70:81:c7:e4:2a:70:85:fb:52:05: 0c:47:3b:ed:7f:0d:5c:ef:1e:18:04:46:b3:00:f7:57:c7:58: 68:0e:8d:c4:09:c8:9b:ce:67:ae:c9:b3:46:57:ce:18:a5:d6: 2f:cf:08:ae:be:bb:14:1c:8c:b2:a6:11:79:ec:9f:a9:b3:a2: ff:e4:7e:4e:87:7b:17:72:42:6e:20:47:d7:80:7e:4c:2f:db: 20:7b:93:25:8a:b3:64:c5:4a:92:bb:6a:b1:9a:dd:da:b9:73: da:28:38:ed:b7:0d:c2:d5:ac:6d:3d:ca:9e:6c:5d:8d:98:ab: d6:af:77:e2:14:64:c0:ad:c3:95:74:0f:24:35:30:4e:6d:21: 42:01:a6:dd:f3:7e:45:38:cf:6f:f1:de:cc:7f:c5:dc:1b:de: da:e4:33:45:00:5f:4c:01:59:07:4a:ba:f1:a7:4e:87:5a:60: c0:fa:21:b2:3a:13:f0:99:8e:b5:aa:a5:7e:2b:fb:ff:2f:fe: db:2b:6b:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjUxMjIwMjEwODAzWhcNMjUxMjI3MjEwODAzWjAYMRYwFAYD VQQDDA02OTQ3MTAzNC1iODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuytHWJJ0V82SGZLfMwpwTXnYioE70fKrc1WDHkJ02EZp6yh8xHzqlQyyBBAJ SrwfCa+4xfC3NP7JkUn2YtlvPAmxAHfNP2hTMQSTMtYnVGAi0+eoposmr/dx8Uez 9OoRqyOMpHdeQM07PpPVhAHADOZCFm2k9+VDsPZRBqXAzstcmA9olGrDMnHjpCvY nSPcQAVrOKUUB5oE443Nc16pHp1RReck5aHRO1edn94yi/7UWbc1XOCrsYm1VNlf qrevG8OPIc2DDUzZ0QYiprK2KosvipeVwGJKFlotQ7MDLDjqzahhOcKIEccETvag VfyZxplx8z4VPTwR9bN+abTUjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJk+lC2 Xt2ky1eSQRIiAejNOuXcMB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzExQS9DMDg2RUE5ODVBMzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0 SHNPcExKZGxqYWN5aFFrLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmp28crMpaLbrj69LI2yFrlOi+essdANXpUd9b5edwmprsfNugrQL6 g6Sr+s27ZWkrFAwBHocH2wiM+hWsv3CBx+QqcIX7UgUMRzvtfw1c7x4YBEazAPdX x1hoDo3ECcibzmeuybNGV84YpdYvzwiuvrsUHIyyphF57J+ps6L/5H5Oh3sXckJu IEfXgH5ML9sge5MlirNkxUqSu2qxmt3auXPaKDjttw3C1axtPcqebF2NmKvWr3fi FGTArcOVdA8kNTBObSFCAabd835FOM9v8d7Mf8XcG97a5DNFAF9MAVkHSrrxp06H WmDA+iGyOhPwmY61qqV+K/v/L/7bK2tT -----END CERTIFICATE-----Generated at Mon Dec 22 12:27:27 2025 by rpki-client