This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft File: 2y3U_v83CRJX9gGdUKI5MOxG4fs.mft (raw, json) Hash identifier: uuSzxe1JZX6Mm3VNz6AurXbYhj8z8ssNAvo8ufEZG6w= Subject key identifier: FD:D6:35:A1:44:14:ED:38:12:77:A2:C6:6D:F0:18:97:F8:0B:2D:F8 Authority key identifier: DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB Certificate issuer: /CN=A917F116/serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft Manifest number: 60 Signing time: Fri 19 Dec 2025 06:19:09 +0000 Manifest this update: Fri 19 Dec 2025 06:19:09 +0000 Manifest next update: Fri 26 Dec 2025 06:19:09 +0000 Files and hashes: 1: 2y3U_v83CRJX9gGdUKI5MOxG4fs.crl (hash: PHJGU+pHmFTBBlmF+EkQPQQDWGs1auHksqXOEXs3RjM=) 2: 3E9B5E9C791511F09DD1364EC4F9AE02.roa (hash: Ut0wAe6zBRN5XqjP4QwqBdmfAff9ffXm1MBpJVMD0gQ=) 3: 1210E96E791511F08360054EC4F9AE02.roa (hash: g6fyOzWk0MSz6GfVwk41rvcH/uuupLJzr6cnkak68f0=) 4: 5747D682B8C611F085BFD10DC4F9AE02.roa (hash: Vyslx5mdWdDu9jOFCamKT0Oyx0LSy+sxmYhw6Lcpxhg=) 5: 029780A8791D11F08A28C96CC4F9AE02.roa (hash: cIhq6sJcStnFPRCzrluGkX+gdeeTmy7R7VUY7+k19nE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F116, serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Validity Not Before: Dec 19 06:19:09 2025 GMT Not After : Dec 26 06:19:09 2025 GMT Subject: CN=6944ee5d-e782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:79:f5:fb:55:99:8b:e6:43:ba:a9:f3:db: 72:19:bc:c8:66:93:1f:d5:19:ea:0b:e2:9d:45:27: 29:3b:cc:f9:8c:bd:19:4c:6c:63:cf:cc:23:12:2b: c1:de:0c:07:8f:45:b0:8f:c0:b4:e8:a2:48:2b:ef: 7f:a3:f0:61:ec:b4:19:30:d4:b9:b1:0f:fa:b6:a9: 07:68:8b:34:be:85:c5:0a:15:df:70:7e:14:75:71: 9b:56:df:9a:f9:3d:52:0d:4a:93:19:b2:8e:d4:6a: 9f:b1:35:6b:ea:60:44:2d:3d:e2:d7:59:07:d3:7f: e0:2c:6e:b2:6f:17:aa:01:cf:f8:f9:f3:9a:50:c4: 24:14:2f:64:33:62:a2:8e:76:fa:0a:49:14:63:71: be:ec:fc:8f:a8:c3:3d:1e:fe:db:e8:2c:82:a5:30: c8:33:e5:a2:32:a9:12:5f:89:0c:e0:09:98:2f:3e: 3f:b1:2f:c5:30:fa:4a:b0:e2:ed:54:3c:6d:33:f9: 0d:fb:db:cc:aa:92:4b:8e:2d:d9:7e:ed:f0:f5:db: 14:ee:5c:f9:fc:ab:bb:5b:de:43:bb:69:e3:60:08: aa:85:26:58:9c:16:51:36:d8:7b:38:51:1e:92:22: b5:af:d7:0d:65:f4:9c:12:ec:8e:e5:01:26:b0:2d: 6a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D6:35:A1:44:14:ED:38:12:77:A2:C6:6D:F0:18:97:F8:0B:2D:F8 X509v3 Authority Key Identifier: keyid:DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ed:28:60:b7:88:24:a5:72:bd:2d:69:f4:85:50:2b:37:40: 80:e6:b1:f1:63:ae:0c:6b:2a:ce:98:e4:a3:ae:e5:53:48:ca: 9e:83:29:50:6d:65:1e:6a:57:ca:90:1c:bf:89:6b:e8:95:f7: 89:de:41:16:d1:3e:c1:7e:59:61:0f:32:d9:16:3a:fb:8f:39: 3b:46:84:bd:be:23:e8:be:20:5c:df:78:6c:9e:9d:03:36:d4: df:0e:14:e1:51:5d:a0:ce:bf:64:af:b0:31:a7:8e:1e:07:00: 87:e3:1b:c9:ec:b7:3e:3d:6b:62:34:e6:2f:34:ea:97:b3:85: 88:87:72:4a:10:03:70:ed:b6:7b:12:f4:ae:0c:f7:b3:50:10: 3c:64:f3:7e:d3:1a:9c:6a:eb:76:ad:45:00:8f:76:ea:2d:37: 09:45:69:44:aa:ab:2e:e6:76:d4:9f:77:26:69:fa:8d:4d:fd: b2:49:eb:fd:c3:36:ed:12:6e:b9:e0:22:be:fc:15:ff:2a:5a: 27:16:50:4b:3a:8f:8c:63:76:36:cf:67:b8:3e:1a:b5:61:45: fc:70:63:7b:5b:c5:92:f3:ae:b5:fe:4e:f0:a0:43:d5:65:02: c7:76:73:12:bc:15:25:7d:79:2a:1d:6c:07:96:08:43:5f:11: cd:fd:a0:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjExNjExMC8GA1UEBRMoREIyREQ0RkVGRjM3MDkxMjU3RjYwMTlENTBBMjM5MzBF QzQ2RTFGQjAeFw0yNTEyMTkwNjE5MDlaFw0yNTEyMjYwNjE5MDlaMBgxFjAUBgNV BAMMDTY5NDRlZTVkLWU3ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG1Xn1+1WZi+ZDuqnz23IZvMhmkx/VGeoL4p1FJyk7zPmMvRlMbGPPzCMSK8He DAePRbCPwLTookgr73+j8GHstBkw1LmxD/q2qQdoizS+hcUKFd9wfhR1cZtW35r5 PVINSpMZso7Uap+xNWvqYEQtPeLXWQfTf+AsbrJvF6oBz/j585pQxCQUL2QzYqKO dvoKSRRjcb7s/I+owz0e/tvoLIKlMMgz5aIyqRJfiQzgCZgvPj+xL8Uw+kqw4u1U PG0z+Q3728yqkkuOLdl+7fD12xTuXPn8q7tb3kO7aeNgCKqFJlicFlE22Hs4UR6S IrWv1w1l9JwS7I7lASawLWrLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/dY1oUQU 7TgSd6LGbfAYl/gLLfgwHwYDVR0jBBgwFoAU2y3U/v83CRJX9gGdUKI5MOxG4fsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMTE2LzhCQ0ZGRjA2NkVE RTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JKWDlnR2RVS0k1TU94RzRm cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnkzVV92ODNDUkpYOWdHZFVLSTVNT3hHNGZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MTE2LzhCQ0ZGRjA2NkVERTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JK WDlnR2RVS0k1TU94RzRmcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA7tKGC3iCSlcr0tafSFUCs3QIDmsfFjrgxrKs6Y5KOu5VNIyp6DKVBt ZR5qV8qQHL+Ja+iV94neQRbRPsF+WWEPMtkWOvuPOTtGhL2+I+i+IFzfeGyenQM2 1N8OFOFRXaDOv2SvsDGnjh4HAIfjG8nstz49a2I05i806pezhYiHckoQA3DttnsS 9K4M97NQEDxk837TGpxq63atRQCPduotNwlFaUSqqy7mdtSfdyZp+o1N/bJJ6/3D Nu0SbrngIr78Ff8qWicWUEs6j4xjdjbPZ7g+GrVhRfxwY3tbxZLzrrX+TvCgQ9Vl Asd2cxK8FSV9eSodbAeWCENfEc39oEc= -----END CERTIFICATE-----Generated at Sat Dec 20 15:18:18 2025 by rpki-client