This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft File: h17HLkbyzRY_Brgi5wQSmu_jGRA.mft (raw, json) Hash identifier: GAx640yfaQhXogjBi8V1x2Y+9HPfGd2lhE917WnLcGE= Subject key identifier: 30:96:BF:7B:37:AA:AF:35:6E:C2:B4:0F:32:2B:A3:E4:85:6E:7E:3B Authority key identifier: 87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 Certificate issuer: /CN=A917C716/serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft Manifest number: 045F Signing time: Fri 19 Dec 2025 00:36:26 +0000 Manifest this update: Fri 19 Dec 2025 00:36:25 +0000 Manifest next update: Fri 26 Dec 2025 00:36:25 +0000 Files and hashes: 1: h17HLkbyzRY_Brgi5wQSmu_jGRA.crl (hash: bpk/njUGNLR+rUImEi3ALEFGIS2y4E8wU/btGcl24hw=) 2: 9BC8AC96555C11F0AF866966C4F9AE02.roa (hash: aBG6SO8r5rIticJAwQ3F1F0hRoqPZrUVOKMtrK+PpMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Validity Not Before: Dec 19 00:36:25 2025 GMT Not After : Dec 26 00:36:25 2025 GMT Subject: CN=69449e09-91d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:81:0f:be:c9:93:1c:9f:1e:41:8a:83:af:6f: 56:84:6c:12:b5:c1:67:51:f0:37:a3:bb:1d:65:6d: de:bd:1b:7d:33:7c:a7:79:d0:65:31:ef:35:18:8e: e5:2d:4f:65:e7:51:16:2d:a3:41:88:82:14:13:38: 41:33:b1:76:54:3f:1b:4e:b5:23:d5:de:49:49:3f: 53:32:a5:96:1b:e5:1b:4f:dc:70:80:53:bf:b6:8d: f4:31:a1:91:78:0e:7e:01:3a:20:88:7d:e7:e4:36: a2:39:30:e6:50:ab:57:e7:54:bf:b9:d3:2b:23:4a: dc:3c:09:87:5a:6b:ba:d9:63:58:61:88:e3:65:3b: 8f:f9:9c:0b:8f:30:6e:e5:d7:39:18:c8:e1:ae:1d: 73:49:13:f7:32:f6:e0:60:f8:96:d9:59:82:0d:f4: 05:4a:cc:52:d2:61:fe:c4:f8:a6:00:72:47:21:63: 22:1f:70:ee:b9:bf:e2:54:0a:15:07:aa:69:04:0b: 49:27:0b:e1:51:ad:e4:40:1e:86:49:3d:61:eb:d5: d1:4c:70:65:4d:02:91:16:52:8a:64:67:52:d7:cd: 64:56:fb:0b:8e:76:16:85:45:98:c8:e7:fd:77:07: 3f:fb:c0:1d:8e:ef:11:d3:b8:7c:83:e0:b9:70:63: 5e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:96:BF:7B:37:AA:AF:35:6E:C2:B4:0F:32:2B:A3:E4:85:6E:7E:3B X509v3 Authority Key Identifier: keyid:87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:ca:f2:3c:5b:17:4d:b3:b3:c4:30:16:a3:9b:e7:75:db:df: 81:4b:a5:49:42:8f:ff:91:b9:e6:b8:f3:d5:c5:2d:d9:44:07: 04:3b:b2:6e:8a:4c:46:da:cf:c2:51:b9:e6:a0:f5:15:88:3b: 1d:09:61:cb:87:5e:66:53:41:a5:75:d1:a4:15:2e:bb:42:86: 48:a3:98:94:94:64:38:6e:d7:a8:33:d0:64:1a:bf:8d:7b:05: de:a4:c9:f0:d9:63:be:36:ce:f4:c3:e7:b2:26:f2:99:4f:4a: af:12:27:14:ab:a2:f8:f0:15:f1:32:ac:1f:3a:8e:83:96:13: 3e:b7:41:2f:83:8e:3c:b6:e9:ee:25:e4:0b:e0:19:05:d7:75: f6:43:52:c2:b0:c9:b6:c6:2b:d1:b7:6e:f1:10:ac:9a:82:91: c4:42:15:3a:8b:92:7b:87:76:07:f0:38:b9:a0:06:92:07:11: d9:17:df:80:88:c7:e7:4a:92:da:1e:a5:06:6d:a8:98:8b:9b: 17:c3:90:b7:4d:f9:71:e7:d3:d7:ed:72:d2:96:16:a8:c8:de: 0a:42:23:e1:a6:e7:92:40:eb:94:d4:ee:c1:88:7b:76:65:c5: 6e:3f:01:57:58:8e:17:b5:8b:2c:c1:59:3d:6a:f7:e6:af:d3: 28:67:8a:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzcxNjExMC8GA1UEBRMoODc1RUM3MkU0NkYyQ0QxNjNGMDZCODIyRTcwNDEyOUFF RkUzMTkxMDAeFw0yNTEyMTkwMDM2MjVaFw0yNTEyMjYwMDM2MjVaMBgxFjAUBgNV BAMMDTY5NDQ5ZTA5LTkxZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKgQ++yZMcnx5BioOvb1aEbBK1wWdR8Dejux1lbd69G30zfKd50GUx7zUYjuUt T2XnURYto0GIghQTOEEzsXZUPxtOtSPV3klJP1MypZYb5RtP3HCAU7+2jfQxoZF4 Dn4BOiCIfefkNqI5MOZQq1fnVL+50ysjStw8CYdaa7rZY1hhiONlO4/5nAuPMG7l 1zkYyOGuHXNJE/cy9uBg+JbZWYIN9AVKzFLSYf7E+KYAckchYyIfcO65v+JUChUH qmkEC0knC+FRreRAHoZJPWHr1dFMcGVNApEWUopkZ1LXzWRW+wuOdhaFRZjI5/13 Bz/7wB2O7xHTuHyD4LlwY143AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMJa/ezeq rzVuwrQPMiuj5IVufjswHwYDVR0jBBgwFoAUh17HLkbyzRY/Brgi5wQSmu/jGRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzE2LzREQjlDQUM0MTQw MjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZX0JyZ2k1d1FTbXVfakdS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDE3SExrYnl6UllfQnJnaTV3UVNtdV9qR1JBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzE2LzREQjlDQUM0MTQwMjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZ X0JyZ2k1d1FTbXVfakdSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB/K8jxbF02zs8QwFqOb53Xb34FLpUlCj/+Ruea489XFLdlEBwQ7sm6K TEbaz8JRueag9RWIOx0JYcuHXmZTQaV10aQVLrtChkijmJSUZDhu16gz0GQav417 Bd6kyfDZY742zvTD57Im8plPSq8SJxSrovjwFfEyrB86joOWEz63QS+Djjy26e4l 5AvgGQXXdfZDUsKwybbGK9G3bvEQrJqCkcRCFTqLknuHdgfwOLmgBpIHEdkX34CI x+dKktoepQZtqJiLmxfDkLdN+XHn09ftctKWFqjI3gpCI+Gm55JA65TU7sGIe3Zl xW4/AVdYjhe1iyzBWT1q9+av0yhnijk= -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:37 2025 by rpki-client