This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: X9C+kX17A/XbaxnSGgV5Hp5FJgtCyFODmphk91MCUHo= Subject key identifier: C4:B5:F3:FF:8B:AA:95:B0:2C:4F:B9:9F:FF:18:73:C7:28:A7:20:03 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0838 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 0828 Signing time: Thu 04 Dec 2025 19:56:53 +0000 Manifest this update: Thu 04 Dec 2025 19:56:53 +0000 Manifest next update: Thu 11 Dec 2025 19:56:53 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: 8DSRyOorIBUfio1VfoXkOYAC0NKqF2O0W7ECWKCcFss=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: +VXknte/mN+kJG0OMjeV9YUPJK6A2pn0gyb+jl0GEBE=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: rWjXWilCzwscxUrzYHy2y+RbO91zzbJS7wnbS9Z8TVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:56:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2104 (0x838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Dec 4 19:56:53 2025 GMT Not After : Dec 11 19:56:53 2025 GMT Subject: CN=6931e785-8d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:58:35:c9:51:2a:c1:6a:23:fc:50:85:66: e1:40:e7:43:b0:30:bd:30:73:4f:80:7d:36:89:b4: e1:08:fe:b5:14:db:ec:92:eb:e6:22:9d:5f:a3:2e: 8e:cd:07:50:e9:eb:d3:07:74:58:89:8b:f6:10:30: cf:63:51:52:2f:7d:e1:a3:63:82:56:5e:ac:fa:0a: 12:d4:5c:83:90:ba:e0:87:2c:a4:75:36:0b:6d:a0: 47:f4:00:7a:3b:3b:7e:aa:b5:09:29:de:f5:c9:4d: d0:c9:7e:02:e8:7c:66:b2:a6:f3:82:8c:e0:7b:7a: 91:23:00:50:6d:fb:8a:f0:d9:79:0a:c6:83:9b:d6: 3f:a9:01:f0:41:b2:f0:b5:e6:a9:3c:e9:15:75:28: 08:16:1c:01:e7:c5:49:fc:c5:8d:aa:68:bb:c9:59: 0e:2c:73:cb:3b:ef:01:75:e1:26:e2:5d:c9:16:97: ab:de:08:d1:64:73:3a:09:84:1a:f3:1d:29:e2:f4: 9d:35:22:c0:f5:83:05:03:13:76:bc:75:98:95:a1: 43:50:dc:49:51:0e:d3:6b:69:19:67:8e:2e:84:76: 9e:d0:a3:2a:9d:ef:b2:a8:ce:eb:dc:83:98:ec:1e: 41:d4:30:9f:11:1c:25:fa:88:a5:da:b2:5b:6b:e1: e5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B5:F3:FF:8B:AA:95:B0:2C:4F:B9:9F:FF:18:73:C7:28:A7:20:03 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:38:8a:2f:13:15:50:0d:1c:bf:88:fd:b0:2f:a7:25:95:65: e2:ee:b7:98:c6:c3:ac:58:ce:f7:3f:d3:4b:4f:17:be:f4:2b: 10:b9:e8:1e:30:69:43:25:b4:9b:c9:1d:bf:e8:39:9e:dc:30: d2:f2:38:b2:f4:ec:c6:ef:df:c9:b3:74:e8:30:88:6b:5d:c4: 73:9a:0a:0f:9b:02:66:23:ea:05:9b:0d:cf:71:bb:8d:91:9d: c0:f0:c5:b4:f7:71:68:2b:03:ef:39:c2:1b:4a:ea:a6:75:e9: 29:b2:24:7b:5b:56:d9:fb:ce:80:82:81:56:cf:28:d4:f1:33: e9:02:42:8f:f5:28:b2:ff:66:58:d9:f5:89:6a:69:96:af:05: 0d:a9:3b:13:2b:e8:bf:8d:8a:3f:0a:d9:46:13:a1:8b:26:9b: 92:a1:c6:95:62:c8:0f:64:ba:1c:25:f2:05:34:3e:0a:ba:11: cf:aa:de:38:78:9d:eb:25:f8:d1:a0:f5:56:71:12:a8:5c:1b: 9f:82:84:38:dc:41:0e:b4:74:d1:4c:5b:f9:23:b8:f1:f3:ba: 23:53:fd:59:5b:47:bc:b5:5a:65:dc:03:42:64:9b:dc:fb:ff: 05:fa:d7:a2:86:9c:d0:8b:e8:aa:95:5a:ea:84:84:16:8d:f2: 88:75:bd:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUxMjA0MTk1NjUzWhcNMjUxMjExMTk1NjUzWjAYMRYwFAYD VQQDEw02OTMxZTc4NS04ZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHJYNclRKsFqI/xQhWbhQOdDsDC9MHNPgH02ibThCP61FNvskuvmIp1foy6O zQdQ6evTB3RYiYv2EDDPY1FSL33ho2OCVl6s+goS1FyDkLrghyykdTYLbaBH9AB6 Ozt+qrUJKd71yU3QyX4C6Hxmsqbzgozge3qRIwBQbfuK8Nl5CsaDm9Y/qQHwQbLw teapPOkVdSgIFhwB58VJ/MWNqmi7yVkOLHPLO+8BdeEm4l3JFper3gjRZHM6CYQa 8x0p4vSdNSLA9YMFAxN2vHWYlaFDUNxJUQ7Ta2kZZ44uhHae0KMqne+yqM7r3IOY 7B5B1DCfERwl+oil2rJba+HlUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMS18/+L qpWwLE+5n/8Yc8copyADMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqOIovExVQDRy/iP2wL6cllWXi7reYxsOsWM73P9NLTxe+9CsQuege MGlDJbSbyR2/6Dme3DDS8jiy9OzG79/Js3ToMIhrXcRzmgoPmwJmI+oFmw3PcbuN kZ3A8MW093FoKwPvOcIbSuqmdekpsiR7W1bZ+86AgoFWzyjU8TPpAkKP9Siy/2ZY 2fWJammWrwUNqTsTK+i/jYo/CtlGE6GLJpuSocaVYsgPZLocJfIFND4KuhHPqt44 eJ3rJfjRoPVWcRKoXBufgoQ43EEOtHTRTFv5I7jx87ojU/1ZW0e8tVpl3ANCZJvc +/8F+teihpzQi+iqlVrqhIQWjfKIdb1E -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:02 2025 by rpki-client