This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: MXZbYTFYeU/3rGDJcjpv4JetlCp2ij26W+mZhDhpwqc= Subject key identifier: C7:BC:22:4C:E1:80:66:50:80:FE:25:C7:1E:CB:F4:60:B4:38:5C:60 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 357C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3542 Signing time: Thu 18 Dec 2025 14:26:18 +0000 Manifest this update: Thu 18 Dec 2025 14:26:18 +0000 Manifest next update: Thu 25 Dec 2025 14:26:18 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: Nkya2r3LSYTlDgQJqCotf4uhew+lUJmNqs1QO76hgow=) 2: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: CQ2eYsEFmxM9THfQSK8/XWNWdFzBxVfYUFyLT6HYruk=) 3: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: WwD2ymgng2bwpapBOqzMzqB6ovGRKkkTnIg+kcKI0gk=) 4: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: I5t/9d1FpDA1nSsUY9DqmVb9YbxmBSs4f9ZYU3gw97M=) 5: B16ED608D4A311F09760561DC4F9AE02.roa (hash: B4GKc23CBZy7TK/8RfhCucQyxz/r6upiO0JiwG4ZWRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13692 (0x357c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Dec 18 14:26:18 2025 GMT Not After : Dec 25 14:26:18 2025 GMT Subject: CN=69440f0a-4ccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3c:bd:0b:c9:be:34:3d:12:e8:0c:65:25:aa: 15:46:d3:a6:11:1a:36:0a:5a:c3:70:da:86:89:e2: 67:a0:24:d1:c2:f2:61:37:50:30:45:70:94:40:32: 42:a5:72:b2:21:84:fd:b2:63:d8:7b:14:35:15:06: 32:05:65:3d:a9:b7:c2:02:4e:bc:5d:7c:af:75:80: aa:9b:b5:c7:79:33:8e:36:16:a7:14:88:be:8a:66: 4c:fe:1d:c0:da:64:23:84:a8:d9:34:c7:5a:dd:04: 8d:55:04:d6:76:70:8d:4d:25:a9:3e:fc:0d:49:e5: 2a:44:98:04:fb:0c:ad:f5:b1:04:ee:5f:4d:a0:e7: 56:af:5e:fb:8f:54:90:ca:8a:43:c5:0d:14:ee:20: 8a:fd:53:c7:f0:44:30:7d:59:c5:a0:c1:63:27:6f: 7e:10:66:b4:a4:a1:46:48:cd:8c:73:ee:96:fe:dc: 16:84:7f:a7:25:8d:92:38:7c:9c:f1:9d:3d:49:fc: 7d:81:87:0e:d4:71:59:fb:b3:e5:70:15:7c:e3:e9: 62:c1:54:0c:d0:8e:c4:4b:3c:14:a4:d8:71:3f:8b: fb:dd:98:75:db:09:8d:57:9d:99:a4:77:93:30:86: ff:be:79:5b:74:fb:87:c2:c6:ef:51:27:ce:78:de: 8d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:BC:22:4C:E1:80:66:50:80:FE:25:C7:1E:CB:F4:60:B4:38:5C:60 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:b5:49:25:58:1b:1a:36:98:e0:3a:30:52:18:9d:2f:19:ed: 63:96:95:18:d6:40:f9:97:db:57:0b:62:e0:ac:d2:7f:20:50: 46:a6:e6:8e:dd:cd:02:70:8b:97:3b:ae:60:32:5e:f1:8c:94: 4e:88:78:b9:d4:ae:d7:07:08:02:81:be:6f:9e:e8:72:f2:c4: cd:1c:2c:cf:df:44:7c:a5:0a:1e:13:b9:9d:85:df:30:72:45: cf:35:02:a6:d8:ad:cf:fc:2a:56:b6:4a:22:96:c8:66:03:f5: 43:e5:c6:cd:d4:a4:da:87:cb:27:4f:40:d0:eb:b0:80:fb:3c: d2:3e:6f:14:e9:ac:5f:01:90:64:da:eb:9a:01:37:30:82:d6: ed:95:6d:53:7f:66:23:3e:28:d9:af:a5:42:94:8d:da:b7:08: 7a:02:7e:3b:df:3c:40:c2:fd:dd:1a:d9:b7:35:7d:86:9d:87: d3:d3:ac:1a:ea:9e:87:50:04:45:3a:31:80:b7:fa:21:99:8f: 5e:c8:da:f3:d1:d0:a4:b7:1d:cc:a8:fa:cf:78:08:36:f1:47: fa:ba:81:ac:63:c4:1e:66:e6:ec:ca:38:e1:50:7c:7e:d5:9a: 90:7c:db:1b:27:2c:2c:58:55:83:65:1d:83:d7:13:f2:7c:40: 4c:3a:f9:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUxMjE4MTQyNjE4WhcNMjUxMjI1MTQyNjE4WjAYMRYwFAYD VQQDDA02OTQ0MGYwYS00Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjy9C8m+ND0S6AxlJaoVRtOmERo2ClrDcNqGieJnoCTRwvJhN1AwRXCUQDJC pXKyIYT9smPYexQ1FQYyBWU9qbfCAk68XXyvdYCqm7XHeTOONhanFIi+imZM/h3A 2mQjhKjZNMda3QSNVQTWdnCNTSWpPvwNSeUqRJgE+wyt9bEE7l9NoOdWr177j1SQ yopDxQ0U7iCK/VPH8EQwfVnFoMFjJ29+EGa0pKFGSM2Mc+6W/twWhH+nJY2SOHyc 8Z09Sfx9gYcO1HFZ+7PlcBV84+liwVQM0I7ESzwUpNhxP4v73Zh12wmNV52ZpHeT MIb/vnlbdPuHwsbvUSfOeN6NBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMe8Ikzh gGZQgP4lxx7L9GC0OFxgMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJtUklWBsaNpjgOjBSGJ0vGe1jlpUY1kD5l9tXC2LgrNJ/IFBGpuaO 3c0CcIuXO65gMl7xjJROiHi51K7XBwgCgb5vnuhy8sTNHCzP30R8pQoeE7mdhd8w ckXPNQKm2K3P/CpWtkoilshmA/VD5cbN1KTah8snT0DQ67CA+zzSPm8U6axfAZBk 2uuaATcwgtbtlW1Tf2YjPijZr6VClI3atwh6An473zxAwv3dGtm3NX2GnYfT06wa 6p6HUARFOjGAt/ohmY9eyNrz0dCktx3MqPrPeAg28Uf6uoGsY8QeZubsyjjhUHx+ 1ZqQfNsbJywsWFWDZR2D1xPyfEBMOvlt -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:35 2025 by rpki-client