This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft File: RS-rvfCd335V_Q-dvd1CePRPuIE.mft (raw, json) Hash identifier: GamVvGm3I5jLXllJOjAb2Q+Ps6+2J5yAIMPV+jVa+9Q= Subject key identifier: 97:70:B8:16:DE:30:C4:5C:99:0B:44:40:DC:99:29:62:85:D5:3B:31 Authority key identifier: 45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 Certificate issuer: /CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Certificate serial: 05D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft Manifest number: 05B6 Signing time: Thu 18 Dec 2025 22:31:03 +0000 Manifest this update: Thu 18 Dec 2025 22:31:03 +0000 Manifest next update: Thu 25 Dec 2025 22:31:03 +0000 Files and hashes: 1: RS-rvfCd335V_Q-dvd1CePRPuIE.crl (hash: aK+qNEeDtjNmRIZUu8U7E6uUkgLnrY6g2XmYGg5t094=) 2: C41221884B6011F092B79129C4F9AE02.roa (hash: eGLsPA8l5HSe8OMlZISwwbWr457lzrzWilQ6RLRmTFw=) 3: C54C42C04D7611EEA69CE262C4F9AE02.roa (hash: cQVRpmnpZjVgZOpeG1cfP2mAEFnkPSvH2kAIgCs2zTA=) 4: C611EE6CBCF711EEA90A1F1DC4F9AE02.roa (hash: FI9oAFt4bbmfkfNugwVmJuOBB5qgqHjbNqhtoYKstlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E5DC, serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Validity Not Before: Dec 18 22:31:03 2025 GMT Not After : Dec 25 22:31:03 2025 GMT Subject: CN=694480a7-0fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:72:02:ce:ea:a4:49:85:07:92:f3:84:4a:03: 11:b8:fd:16:ab:7c:36:0e:c6:9f:74:e1:a2:ed:59: 63:92:b2:e7:9d:56:72:e0:40:35:e9:32:97:c7:fb: a8:f1:99:28:27:77:5c:9b:ea:0b:6c:8e:bf:75:3f: 66:e7:6d:2d:fc:40:70:30:44:10:7f:cf:a3:fb:c2: 28:4d:c1:cc:66:86:f4:41:b8:60:66:74:4f:21:ee: 85:9b:cc:b0:24:d7:f9:85:be:51:ee:6a:29:c4:df: f0:7c:19:ea:01:20:ac:cf:9f:ea:c3:2f:e3:08:42: 34:e7:05:51:68:30:10:99:b8:04:97:2e:4e:df:ed: f9:d9:25:8c:09:39:53:b7:fe:4a:d5:df:8e:6b:a1: 70:5d:54:6f:42:74:f2:fd:fb:41:61:18:57:7f:ac: 01:b7:69:ff:fd:91:0f:c9:2d:34:d2:13:6d:59:c9: 05:be:ab:6d:81:70:ef:c8:68:13:9c:72:14:8d:cc: 1e:27:d6:a8:73:26:3d:ff:1b:08:25:8e:70:2f:5a: f3:58:88:3c:73:fd:0e:6a:dd:57:1b:db:e6:eb:75: 93:1a:08:f8:bb:c7:57:c0:82:ce:6c:c5:d2:c9:f0: ed:69:1b:73:86:8b:8d:0c:c3:8d:9b:98:09:48:01: b5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:70:B8:16:DE:30:C4:5C:99:0B:44:40:DC:99:29:62:85:D5:3B:31 X509v3 Authority Key Identifier: keyid:45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:d6:7a:8a:d3:38:0c:eb:cc:7a:f3:3f:50:7a:15:04:82:25: 6a:aa:ed:0d:c0:fd:0b:84:13:2f:64:2f:43:a0:34:19:46:24: 90:85:09:94:50:db:95:ef:ac:b0:88:a3:d9:a3:e6:92:b1:d1: 43:52:bb:87:c7:6d:7d:10:d4:b0:42:a7:a8:3c:8f:28:1f:f7: ad:ea:ef:98:d7:d7:f6:70:b3:a3:af:d4:d3:70:ca:f1:97:d1: 8a:c6:3f:58:8a:52:bc:94:fa:f6:29:70:76:8c:bd:93:e5:7f: be:b0:a4:36:c0:c4:78:36:fc:43:69:1f:8f:99:e0:5f:c1:d8: 82:91:5b:98:18:36:62:46:e4:1a:1b:fe:85:81:38:77:54:52: e2:07:a1:a5:a5:0b:ff:a4:ec:88:4b:ef:5c:39:6e:d7:0b:6e: cf:5d:44:fe:a4:01:e7:1f:07:7c:cf:8b:fc:05:b5:65:09:87: b7:80:f6:9d:5a:18:61:0f:73:41:eb:cd:f1:46:59:d7:a3:d3: 70:09:27:26:ed:74:1d:1e:45:a1:fd:7c:f8:c9:3b:7b:a2:4c: 64:8f:4e:ba:37:3a:0e:2c:34:99:a1:65:8d:68:62:3d:98:4b: d1:ee:28:18:cd:30:50:66:8e:53:e4:4c:b9:2c:57:9b:eb:56: 00:6a:09:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U1REMxMTAvBgNVBAUTKDQ1MkZBQkJERjA5RERGN0U1NUZEMEY5REJEREQ0Mjc4 RjQ0RkI4ODEwHhcNMjUxMjE4MjIzMTAzWhcNMjUxMjI1MjIzMTAzWjAYMRYwFAYD VQQDDA02OTQ0ODBhNy0wZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1XICzuqkSYUHkvOESgMRuP0Wq3w2DsafdOGi7VljkrLnnVZy4EA16TKXx/uo 8ZkoJ3dcm+oLbI6/dT9m520t/EBwMEQQf8+j+8IoTcHMZob0QbhgZnRPIe6Fm8yw JNf5hb5R7mopxN/wfBnqASCsz5/qwy/jCEI05wVRaDAQmbgEly5O3+352SWMCTlT t/5K1d+Oa6FwXVRvQnTy/ftBYRhXf6wBt2n//ZEPyS000hNtWckFvqttgXDvyGgT nHIUjcweJ9aocyY9/xsIJY5wL1rzWIg8c/0Oat1XG9vm63WTGgj4u8dXwILObMXS yfDtaRtzhouNDMONm5gJSAG14wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdwuBbe MMRcmQtEQNyZKWKF1TsxMB8GA1UdIwQYMBaAFEUvq73wnd9+Vf0Pnb3dQnj0T7iB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTVEQy9CQkUyQjUwMkY4 RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMzNVZfUS1kdmQxQ2VQUlB1 SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTLXJ2ZkNkMzM1Vl9RLWR2ZDFDZVBSUHVJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTVEQy9CQkUyQjUwMkY4RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMz NVZfUS1kdmQxQ2VQUlB1SUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC1nqK0zgM68x68z9QehUEgiVqqu0NwP0LhBMvZC9DoDQZRiSQhQmU UNuV76ywiKPZo+aSsdFDUruHx219ENSwQqeoPI8oH/et6u+Y19f2cLOjr9TTcMrx l9GKxj9YilK8lPr2KXB2jL2T5X++sKQ2wMR4NvxDaR+PmeBfwdiCkVuYGDZiRuQa G/6FgTh3VFLiB6GlpQv/pOyIS+9cOW7XC27PXUT+pAHnHwd8z4v8BbVlCYe3gPad WhhhD3NB683xRlnXo9NwCScm7XQdHkWh/Xz4yTt7okxkj066NzoOLDSZoWWNaGI9 mEvR7igYzTBQZo5T5Ey5LFeb61YAagnA -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:26 2025 by rpki-client