This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft File: MOCAPeumAKyakmRMlveKjohdfFA.mft (raw, json) Hash identifier: gQSPsndIfx7gwDd6u6rXJQTjTe0fk9uRDIcXW/K+TqQ= Subject key identifier: EC:AE:6E:0A:C8:E6:E2:11:CC:01:C1:54:6B:9F:A1:56:E3:B8:25:B6 Authority key identifier: 30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 Certificate issuer: /CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Certificate serial: 05AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft Manifest number: 0590 Signing time: Sat 20 Dec 2025 22:35:16 +0000 Manifest this update: Sat 20 Dec 2025 22:35:15 +0000 Manifest next update: Sat 27 Dec 2025 22:35:15 +0000 Files and hashes: 1: MOCAPeumAKyakmRMlveKjohdfFA.crl (hash: UcPnG+D95rxiCSRBE6Td0oOhH5qyAnPjV3IBGBi4rtk=) 2: 7A532A308E1D11EE9CC5535CC4F9AE02.roa (hash: op1f0dmOmYKN53NdiioOTuPiw+z0pYxBQfbuO2UDbqE=) 3: 04A930F6629211EE90D5AD6CC4F9AE02.roa (hash: Lq0Pjcb0X2iFoTuh1SlciaEnxeaDU7HVk0tgiyAZd5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1452 (0x5ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CEE3, serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Validity Not Before: Dec 20 22:35:15 2025 GMT Not After : Dec 27 22:35:15 2025 GMT Subject: CN=694724a3-2596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:61:a3:e2:5d:17:ec:7b:26:9d:07:9d:0b:2c: 16:b6:d8:ee:48:80:73:d2:62:c3:43:86:60:5b:dc: 8c:25:10:7c:f4:de:24:93:f8:4a:96:c5:3b:44:7c: b6:2a:dc:48:e4:8e:cb:ee:fd:3c:66:c7:6a:1e:26: 2d:1c:df:c1:fd:7e:45:cf:a5:9d:db:a2:cc:5f:f0: ba:29:a0:2a:fb:d4:17:3f:d2:f1:b5:18:7d:a7:12: 2d:fa:7d:d2:55:5e:98:88:9f:eb:95:77:4d:f0:13: 44:8e:9c:c5:2d:ab:36:94:57:eb:f2:8a:3d:a9:f1: f3:1d:fd:0a:95:60:c7:1f:f4:3e:a2:5d:46:8c:d2: d5:e8:b5:6c:f5:51:5e:66:3b:e4:e8:ff:09:39:ce: 89:fa:6d:b1:28:98:01:37:04:bb:0a:6d:01:c9:d1: 8c:0f:df:05:49:bc:c3:18:b8:5b:6e:4a:12:f9:41: f3:42:05:24:68:95:ed:91:4d:6a:5e:32:ea:36:9c: 79:2a:a6:86:1c:3d:55:c8:d4:da:7b:6b:82:54:4b: 56:4b:d8:af:b3:76:41:58:a9:5c:1d:35:c8:e2:69: 23:c7:a2:0a:ae:f2:fe:24:ae:98:ce:83:9b:02:64: d4:2e:de:f7:cf:2b:0f:81:20:6c:23:1e:90:ff:36: 5d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AE:6E:0A:C8:E6:E2:11:CC:01:C1:54:6B:9F:A1:56:E3:B8:25:B6 X509v3 Authority Key Identifier: keyid:30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:5b:91:a5:e6:6a:c5:15:a6:3a:b9:25:90:6f:09:4d:67:3d: 0a:72:4d:80:86:d5:19:0d:0c:dd:8b:74:04:78:41:ee:46:92: e4:66:49:f0:67:8e:28:a3:55:e5:f9:10:93:ba:5d:cd:de:c7: 94:37:e9:50:44:8f:84:73:32:aa:09:7e:f4:a1:91:1a:49:87: b6:a6:de:e1:27:f8:7a:58:e8:70:69:57:16:09:9b:8d:aa:98: fd:1d:99:0d:5f:64:6d:34:16:71:67:6d:ea:b7:45:29:cf:a3: 72:12:ab:8a:93:2c:42:bd:76:38:4b:65:f9:a5:7b:d6:55:d1: 47:c7:d8:9d:68:85:6d:fa:90:a7:83:80:54:3f:fb:f9:2c:7a: d5:eb:bf:99:86:9d:c6:64:c0:00:f9:f5:56:3f:1a:5e:fb:ea: 2f:e8:30:84:a6:60:00:b5:54:dc:78:28:00:16:f0:75:7d:90: fa:0a:b6:2e:c4:f1:42:bb:4b:08:ea:2e:8b:71:0e:f4:5b:b1: 07:ba:ca:57:2d:44:d1:ec:86:1f:fa:79:fc:4c:4e:ed:62:f4: cc:73:7a:4e:85:cb:2e:18:ae:8d:f9:55:0b:0e:67:32:3b:23: 70:ba:48:1c:c7:ed:c0:3f:0e:e2:fc:ac:00:23:16:ed:fc:7f: 6b:99:58:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFRTMxMTAvBgNVBAUTKDMwRTA4MDNERUJBNjAwQUM5QTkyNjQ0Qzk2Rjc4QThF ODg1RDdDNTAwHhcNMjUxMjIwMjIzNTE1WhcNMjUxMjI3MjIzNTE1WjAYMRYwFAYD VQQDDA02OTQ3MjRhMy0yNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkGGj4l0X7HsmnQedCywWttjuSIBz0mLDQ4ZgW9yMJRB89N4kk/hKlsU7RHy2 KtxI5I7L7v08ZsdqHiYtHN/B/X5Fz6Wd26LMX/C6KaAq+9QXP9LxtRh9pxIt+n3S VV6YiJ/rlXdN8BNEjpzFLas2lFfr8oo9qfHzHf0KlWDHH/Q+ol1GjNLV6LVs9VFe Zjvk6P8JOc6J+m2xKJgBNwS7Cm0BydGMD98FSbzDGLhbbkoS+UHzQgUkaJXtkU1q XjLqNpx5KqaGHD1VyNTae2uCVEtWS9ivs3ZBWKlcHTXI4mkjx6IKrvL+JK6YzoOb AmTULt73zysPgSBsIx6Q/zZdiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyubgrI 5uIRzAHBVGufoVbjuCW2MB8GA1UdIwQYMBaAFDDggD3rpgCsmpJkTJb3io6IXXxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0VFMy85QTc3QUEyQTA1 OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFLeWFrbVJNbHZlS2pvaGRm RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PQ0FQZXVtQUt5YWttUk1sdmVLam9oZGZGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0VFMy85QTc3QUEyQTA1OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFL eWFrbVJNbHZlS2pvaGRmRkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLW5Gl5mrFFaY6uSWQbwlNZz0Kck2AhtUZDQzdi3QEeEHuRpLkZknw Z44oo1Xl+RCTul3N3seUN+lQRI+EczKqCX70oZEaSYe2pt7hJ/h6WOhwaVcWCZuN qpj9HZkNX2RtNBZxZ23qt0Upz6NyEquKkyxCvXY4S2X5pXvWVdFHx9idaIVt+pCn g4BUP/v5LHrV67+Zhp3GZMAA+fVWPxpe++ov6DCEpmAAtVTceCgAFvB1fZD6CrYu xPFCu0sI6i6LcQ70W7EHuspXLUTR7IYf+nn8TE7tYvTMc3pOhcsuGK6N+VULDmcy OyNwukgcx+3APw7i/KwAIxbt/H9rmVjU -----END CERTIFICATE-----Generated at Sun Dec 21 13:23:38 2025 by rpki-client