This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: WVnjzezy61W2fvaE+hUO1zUp6wu/LwYd+epEXAcYHTE= Subject key identifier: 69:9B:1A:D4:BC:30:1A:8C:D7:AC:FA:6E:26:C0:D5:47:DC:03:39:97 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 0251 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 0233 Signing time: Sun 07 Dec 2025 01:06:49 +0000 Manifest this update: Sun 07 Dec 2025 01:06:49 +0000 Manifest next update: Sun 14 Dec 2025 01:06:49 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: FXZDa6u5SfcBM57XGWFHZUana+bje/1yKKyD0O1vXf8=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Im9wfZuP6zDy1h0Hl9Jq0NXIaM8u/vuOASHLbchH8jE=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: T6rwUDI540K7kNvAic9olkLe7ckJW9yi5Gt2J/Ejnw0=) 4: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: K8NnxbaCBJETQFsMtKq3Bzg51wGMgmnozQ6OqtNXVto=) 5: 05F505961AA311F0A475D464C4F9AE02.roa (hash: DJ6ceD+nzuCFrSpyZtlueLHrerXM29TFRnLIJO8v0Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Dec 7 01:06:49 2025 GMT Not After : Dec 14 01:06:49 2025 GMT Subject: CN=6934d329-6b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:76:1a:13:8a:e0:a1:55:5b:09:92:0c:5a:82: 8d:2b:71:83:18:a3:f7:84:f9:6a:60:40:4f:b6:44: f6:98:c6:2b:57:cc:0e:44:93:36:66:fc:27:cd:c1: af:8f:4f:3e:0a:63:7c:23:e9:1c:58:11:49:6a:09: 67:46:10:6e:48:74:4c:51:58:a8:d6:cd:47:46:a3: e4:eb:e9:bd:b2:3a:97:04:af:09:c4:b6:4c:bf:cc: cf:3c:00:ad:1f:f7:ea:20:3b:b4:66:d7:cb:a1:7a: 76:a8:3c:31:cf:26:85:f7:18:97:37:a4:79:97:46: 76:d9:94:d0:f6:42:ef:72:a4:f7:ac:4a:ed:ef:ae: db:9c:51:3a:96:41:9f:52:24:6c:18:fa:df:ba:dc: 8c:7e:4b:33:b6:90:96:a9:75:e5:4b:96:65:1a:b7: ef:02:67:51:9a:1c:ac:ed:16:c2:09:ff:ac:63:a6: f4:c8:fb:f1:3c:f0:c7:90:1e:84:3e:73:c2:ee:06: 7c:ca:4e:40:62:ef:cd:67:b1:54:eb:69:f4:e1:c1: 5d:7a:e5:a4:a9:53:cc:03:74:ef:a3:1d:9a:58:ef: 7f:8c:ca:36:63:23:0b:a5:dc:22:d3:14:59:b5:20: ed:be:cd:f2:cd:cd:06:3e:f5:1e:80:6f:68:70:bf: 02:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9B:1A:D4:BC:30:1A:8C:D7:AC:FA:6E:26:C0:D5:47:DC:03:39:97 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:00:25:a7:68:a3:d9:4b:f3:cd:d0:99:fc:be:a7:ed:e8:ca: 73:5a:5c:4d:4d:90:c4:62:1a:f5:61:c5:bf:d8:53:0e:dc:db: 27:25:fb:0c:86:5f:d0:9a:9e:1f:bd:85:c6:1e:1c:e0:d7:70: ad:27:61:6b:1d:28:68:85:ee:a9:f0:db:73:73:65:2e:e9:40: c6:9b:e0:13:fa:db:40:67:86:0d:03:d3:13:78:b5:3e:ac:13: aa:bc:3d:97:0a:53:33:b2:58:3b:ab:e4:7a:43:da:0e:c0:b4: ec:28:f2:ed:fb:df:e7:97:cf:25:43:8c:f9:61:8c:17:bd:0d: 90:bd:8b:28:02:16:4b:5b:7e:4d:0c:15:c8:0e:16:33:bb:59: 69:15:f3:05:8c:40:a7:27:68:eb:ed:b4:d8:2a:ac:e6:c8:d7: 0f:38:6b:15:42:05:be:4a:f6:d5:c9:d4:76:b3:ee:3a:6c:03: e3:ce:c3:36:cd:7a:48:d9:d4:40:fd:1a:a5:bb:e2:fb:6e:25: e8:0b:d3:3a:63:cc:d3:1e:3e:e5:7a:8e:3b:47:30:fd:bc:d2: 9b:9a:2c:46:45:fa:27:a4:39:22:5c:bf:ad:8e:19:f9:9e:28: 20:f6:e4:07:8c:fc:5d:be:6a:01:4c:78:bc:c9:c5:21:6b:f8: 1b:16:76:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUxMjA3MDEwNjQ5WhcNMjUxMjE0MDEwNjQ5WjAYMRYwFAYD VQQDEw02OTM0ZDMyOS02YjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3YaE4rgoVVbCZIMWoKNK3GDGKP3hPlqYEBPtkT2mMYrV8wORJM2ZvwnzcGv j08+CmN8I+kcWBFJaglnRhBuSHRMUVio1s1HRqPk6+m9sjqXBK8JxLZMv8zPPACt H/fqIDu0ZtfLoXp2qDwxzyaF9xiXN6R5l0Z22ZTQ9kLvcqT3rErt767bnFE6lkGf UiRsGPrfutyMfksztpCWqXXlS5ZlGrfvAmdRmhys7RbCCf+sY6b0yPvxPPDHkB6E PnPC7gZ8yk5AYu/NZ7FU62n04cFdeuWkqVPMA3Tvox2aWO9/jMo2YyMLpdwi0xRZ tSDtvs3yzc0GPvUegG9ocL8C1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmbGtS8 MBqM16z6bibA1UfcAzmXMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFACWnaKPZS/PN0Jn8vqft6MpzWlxNTZDEYhr1YcW/2FMO3NsnJfsM hl/Qmp4fvYXGHhzg13CtJ2FrHShohe6p8Ntzc2Uu6UDGm+AT+ttAZ4YNA9MTeLU+ rBOqvD2XClMzslg7q+R6Q9oOwLTsKPLt+9/nl88lQ4z5YYwXvQ2QvYsoAhZLW35N DBXIDhYzu1lpFfMFjECnJ2jr7bTYKqzmyNcPOGsVQgW+SvbVydR2s+46bAPjzsM2 zXpI2dRA/Rqlu+L7biXoC9M6Y8zTHj7leo47RzD9vNKbmixGRfonpDkiXL+tjhn5 nigg9uQHjPxdvmoBTHi8ycUha/gbFnab -----END CERTIFICATE-----Generated at Sun Dec 7 04:16:57 2025 by rpki-client