This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft File: 3FejmXtffOj7ybTZiz1F1jMHcRg.mft (raw, json) Hash identifier: yPvueYMQMEs9q2R/7VhPjbAIPEn904zDoK5378MRw9E= Subject key identifier: F6:E8:E1:CF:2C:23:6E:C5:8F:0C:F1:73:63:DB:9C:7B:5E:B2:F0:A9 Authority key identifier: DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 Certificate issuer: /CN=A917CABB/serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Certificate serial: 0C83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft Manifest number: 0C7B Signing time: Sat 20 Dec 2025 18:09:07 +0000 Manifest this update: Sat 20 Dec 2025 18:09:07 +0000 Manifest next update: Sat 27 Dec 2025 18:09:07 +0000 Files and hashes: 1: 3FejmXtffOj7ybTZiz1F1jMHcRg.crl (hash: cl8+4ywP/anU8zA8GawS8t/TK/08xv6WLGtNBXHncmA=) 2: 17BA5658D1FA11EDA0A31C2FC4F9AE02.roa (hash: 1qzItKWorYUUOmMK79qcFmJ05vCRXkNln617yx1hDtI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3203 (0xc83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CABB, serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Validity Not Before: Dec 20 18:09:07 2025 GMT Not After : Dec 27 18:09:07 2025 GMT Subject: CN=6946e643-6bde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4d:5d:a1:ee:08:41:5c:5f:31:4b:e6:63:51: ae:54:ac:a4:f2:21:09:53:bd:9a:8b:0b:db:6a:62: a6:04:f5:b8:a4:2a:9c:e5:84:fa:9d:f4:0f:ee:4f: fe:5f:66:b5:d3:f7:1a:6d:6c:54:b1:68:46:b4:9b: 38:d5:74:31:2b:72:99:57:eb:a1:7c:22:dd:74:af: c8:e9:ac:56:cd:be:5b:68:37:ac:92:05:60:41:ba: 47:60:97:75:b2:a9:86:23:4f:d0:c5:c0:ca:d3:b7: 45:64:62:c2:48:90:9a:85:1c:c7:fa:fc:53:25:6c: 4a:0a:87:36:c4:07:b3:0b:d1:2d:f6:cb:80:01:9c: c6:99:40:93:4b:eb:4c:00:c5:eb:08:f5:68:1c:4d: 35:4b:fe:25:34:25:c1:c5:79:bb:c3:d3:d0:e5:21: 29:45:7f:c6:6b:a2:8a:80:f3:67:79:6e:a0:23:5e: 61:1f:50:a5:ef:bb:ce:df:64:3b:e5:0e:46:ff:20: 6b:aa:a2:59:ab:b0:88:28:41:a9:16:8a:88:aa:6d: 2c:3a:0f:ad:37:32:da:78:e1:7f:1c:bb:13:fb:d0: dd:2a:9b:5e:f2:b3:7e:23:73:8a:9b:93:54:8e:0d: 4c:81:5e:44:31:1b:df:c8:be:6b:bd:43:f7:e3:40: 59:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:E8:E1:CF:2C:23:6E:C5:8F:0C:F1:73:63:DB:9C:7B:5E:B2:F0:A9 X509v3 Authority Key Identifier: keyid:DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:d5:36:aa:f8:7a:3f:63:04:11:46:7f:bb:7b:f4:a6:e8:cd: c1:50:db:20:a5:d9:46:a5:e3:10:2f:b1:02:ff:cc:e4:e7:f5: 0c:c1:51:97:4f:a9:2e:d4:33:be:e5:5b:12:1f:0a:e3:41:f2: 74:76:99:ed:55:e2:1f:19:83:c5:87:f5:4a:a7:51:e7:81:aa: 58:1f:d2:35:a7:2f:93:40:c4:79:73:66:e9:93:67:aa:e9:dc: 24:68:db:7c:ae:5d:df:6d:24:25:a0:42:c5:aa:de:ee:3b:16: d3:32:02:d9:75:f1:68:d9:49:5a:59:40:f4:fa:87:18:a9:19: 94:9f:57:0d:3b:14:53:85:4a:40:98:01:ff:76:d0:9f:31:35: 11:d7:0a:f7:9f:0f:f3:7c:36:31:b8:f7:21:11:5d:c3:03:10: 8f:54:56:11:f4:b1:a5:8c:1a:8e:4c:f4:ee:2b:68:f7:13:08: b4:b8:a8:4d:2d:70:4f:49:d4:e1:c5:ed:6b:4a:2d:d8:8e:de: f2:e6:d7:83:05:80:2a:0e:d6:16:b1:4a:fd:bd:c4:b3:2c:12: e7:b2:a4:ad:75:42:d4:41:6e:3f:88:e7:2c:5b:7d:ae:1d:7e: e7:e5:af:cf:9a:55:80:f2:98:76:86:97:af:96:a4:31:ce:c8: fc:42:14:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NBQkIxMTAvBgNVBAUTKERDNTdBMzk5N0I1RjdDRThGQkM5QjREOThCM0Q0NUQ2 MzMwNzcxMTgwHhcNMjUxMjIwMTgwOTA3WhcNMjUxMjI3MTgwOTA3WjAYMRYwFAYD VQQDDA02OTQ2ZTY0My02YmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApE1doe4IQVxfMUvmY1GuVKyk8iEJU72aiwvbamKmBPW4pCqc5YT6nfQP7k/+ X2a10/cabWxUsWhGtJs41XQxK3KZV+uhfCLddK/I6axWzb5baDeskgVgQbpHYJd1 sqmGI0/QxcDK07dFZGLCSJCahRzH+vxTJWxKCoc2xAezC9Et9suAAZzGmUCTS+tM AMXrCPVoHE01S/4lNCXBxXm7w9PQ5SEpRX/Ga6KKgPNneW6gI15hH1Cl77vO32Q7 5Q5G/yBrqqJZq7CIKEGpFoqIqm0sOg+tNzLaeOF/HLsT+9DdKpte8rN+I3OKm5NU jg1MgV5EMRvfyL5rvUP340BZVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbo4c8s I27Fjwzxc2PbnHtesvCpMB8GA1UdIwQYMBaAFNxXo5l7X3zo+8m02Ys9RdYzB3EY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0FCQi8wNzY3NUYxRTBG NjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZPajd5YlRaaXoxRjFqTUhj UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGZWptWHRmZk9qN3liVFppejFGMWpNSGNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0FCQi8wNzY3NUYxRTBGNjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZP ajd5YlRaaXoxRjFqTUhjUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG1Taq+Ho/YwQRRn+7e/Sm6M3BUNsgpdlGpeMQL7EC/8zk5/UMwVGX T6ku1DO+5VsSHwrjQfJ0dpntVeIfGYPFh/VKp1HngapYH9I1py+TQMR5c2bpk2eq 6dwkaNt8rl3fbSQloELFqt7uOxbTMgLZdfFo2UlaWUD0+ocYqRmUn1cNOxRThUpA mAH/dtCfMTUR1wr3nw/zfDYxuPchEV3DAxCPVFYR9LGljBqOTPTuK2j3Ewi0uKhN LXBPSdThxe1rSi3Yjt7y5teDBYAqDtYWsUr9vcSzLBLnsqStdULUQW4/iOcsW32u HX7n5a/PmlWA8ph2hpevlqQxzsj8QhSF -----END CERTIFICATE-----Generated at Mon Dec 22 15:45:04 2025 by rpki-client