This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: 3wNWqcEiKhfi6C3NLpWpsEguqFdd9lTMsDNLFka+A2Y= Subject key identifier: A9:3B:2D:14:A7:7E:22:69:91:8E:BC:40:D7:B6:9E:3D:F1:74:8A:50 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 01C8 Signing time: Fri 05 Dec 2025 01:12:46 +0000 Manifest this update: Fri 05 Dec 2025 01:12:45 +0000 Manifest next update: Fri 12 Dec 2025 01:12:45 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: Vr0J6Luxh34a6bH3LiT1BRjSYZsn1hHOQEUsuIJuNH8=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Dec 5 01:12:45 2025 GMT Not After : Dec 12 01:12:45 2025 GMT Subject: CN=6932318e-51e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6f:cc:58:aa:7d:c7:0d:99:b5:60:29:af:62: f2:4d:92:11:41:29:a7:24:33:df:05:61:49:75:80: 42:f6:c3:c0:ec:ca:67:20:52:12:af:3f:36:6a:6e: e9:dc:e1:46:98:8a:12:2c:e0:31:a4:a2:7d:9f:70: 2d:65:97:ec:ac:d2:99:3c:4f:31:bb:f2:5d:c8:52: 43:a7:8c:8a:2c:ca:ab:82:37:61:95:f0:b5:98:1e: f7:b6:e2:f0:70:6d:a3:60:ee:de:32:0d:a7:c3:cf: 89:ec:0a:88:1c:92:67:77:51:1b:73:81:39:2d:45: 5c:01:94:1c:86:27:40:ad:f9:3f:b3:d3:6b:40:c9: ce:3b:2e:f8:9d:dd:6d:0f:75:77:ac:c5:6e:2e:e3: b6:fb:52:01:0d:7f:92:bf:06:8e:f5:52:e8:2c:49: b7:26:76:4e:25:59:41:00:31:a4:0b:14:23:13:3e: 52:9f:a5:b4:5f:03:e8:f7:c5:3d:91:cb:89:b8:5d: 38:dd:0f:9e:82:f1:d7:ca:2a:16:e2:8e:52:f3:5a: 3b:d2:92:03:8a:93:db:fb:fc:2b:f3:0c:41:52:6a: 73:4d:72:5c:40:c2:83:a2:ba:58:97:30:e7:b1:2f: 9a:c0:93:39:a1:a5:cf:d1:82:8f:64:c5:de:27:5f: ef:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3B:2D:14:A7:7E:22:69:91:8E:BC:40:D7:B6:9E:3D:F1:74:8A:50 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:11:34:05:a0:5c:d6:3b:84:86:4d:0d:4f:d9:65:07:8e:ec: a6:87:51:b0:63:55:c8:ee:73:7f:d4:41:90:45:01:d7:3a:52: 70:94:b4:52:e6:f8:5f:dc:51:19:53:5b:0a:34:af:3c:37:37: 20:f3:87:dc:b6:55:05:f8:13:96:6b:69:84:79:b5:d8:e1:07: 1e:59:dc:30:bc:4c:f4:76:f0:01:3b:dd:a4:94:c4:0f:39:84: 59:8d:34:86:1c:c8:e7:b9:f3:65:cb:24:d4:ed:0b:95:c3:2d: f9:d5:15:58:5f:1c:f7:c5:df:a0:81:7c:0f:90:2e:13:d7:ef: 89:10:f1:b7:fb:70:e3:5f:cd:ea:f1:81:c5:de:2f:cf:48:6f: a9:2d:9a:87:e8:6a:bc:dc:c6:d9:0c:78:bf:84:1d:c7:70:1e: b6:d0:3d:fd:cc:04:c2:7c:70:e8:52:92:83:ab:76:93:e8:9c: e1:44:ef:9b:45:76:bb:12:ae:54:be:f1:1f:08:4f:ba:3f:0a: 73:62:17:ec:8b:ce:bf:2d:79:c5:d2:a0:e8:34:a1:49:06:16: 10:31:d5:26:67:fc:c8:9b:95:13:9e:72:fa:ce:e5:a1:72:d1: 7b:34:2c:2b:c2:22:7a:17:52:39:81:9a:cb:3a:f7:12:b9:36: 58:3c:80:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUxMjA1MDExMjQ1WhcNMjUxMjEyMDExMjQ1WjAYMRYwFAYD VQQDEw02OTMyMzE4ZS01MWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm/MWKp9xw2ZtWApr2LyTZIRQSmnJDPfBWFJdYBC9sPA7MpnIFISrz82am7p 3OFGmIoSLOAxpKJ9n3AtZZfsrNKZPE8xu/JdyFJDp4yKLMqrgjdhlfC1mB73tuLw cG2jYO7eMg2nw8+J7AqIHJJnd1Ebc4E5LUVcAZQchidArfk/s9NrQMnOOy74nd1t D3V3rMVuLuO2+1IBDX+SvwaO9VLoLEm3JnZOJVlBADGkCxQjEz5Sn6W0XwPo98U9 kcuJuF043Q+egvHXyioW4o5S81o70pIDipPb+/wr8wxBUmpzTXJcQMKDorpYlzDn sS+awJM5oaXP0YKPZMXeJ1/v3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKk7LRSn fiJpkY68QNe2nj3xdIpQMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWETQFoFzWO4SGTQ1P2WUHjuymh1GwY1XI7nN/1EGQRQHXOlJwlLRS 5vhf3FEZU1sKNK88Nzcg84fctlUF+BOWa2mEebXY4QceWdwwvEz0dvABO92klMQP OYRZjTSGHMjnufNlyyTU7QuVwy351RVYXxz3xd+ggXwPkC4T1++JEPG3+3DjX83q 8YHF3i/PSG+pLZqH6Gq83MbZDHi/hB3HcB620D39zATCfHDoUpKDq3aT6JzhRO+b RXa7Eq5UvvEfCE+6PwpzYhfsi86/LXnF0qDoNKFJBhYQMdUmZ/zIm5UTnnL6zuWh ctF7NCwrwiJ6F1I5gZrLOvcSuTZYPIAL -----END CERTIFICATE-----Generated at Sun Dec 7 02:02:12 2025 by rpki-client