This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: UHfkwKeLNDF5eiOrYUYiy5eG6BhcUzs8RD0GfKHMUhY= Subject key identifier: 8E:12:EC:35:69:CE:04:2E:55:04:D9:50:63:04:CB:CA:28:95:B9:EB Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 0232 Signing time: Fri 05 Dec 2025 00:54:20 +0000 Manifest this update: Fri 05 Dec 2025 00:54:19 +0000 Manifest next update: Fri 12 Dec 2025 00:54:19 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: AUs/o3/WLwy1/LMfB9nY/6w0n7Y2U7qLldpf523c0Po=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Im9wfZuP6zDy1h0Hl9Jq0NXIaM8u/vuOASHLbchH8jE=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: T6rwUDI540K7kNvAic9olkLe7ckJW9yi5Gt2J/Ejnw0=) 4: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: K8NnxbaCBJETQFsMtKq3Bzg51wGMgmnozQ6OqtNXVto=) 5: 05F505961AA311F0A475D464C4F9AE02.roa (hash: DJ6ceD+nzuCFrSpyZtlueLHrerXM29TFRnLIJO8v0Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Dec 5 00:54:19 2025 GMT Not After : Dec 12 00:54:19 2025 GMT Subject: CN=69322d3c-3618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:27:2d:aa:e5:9b:a7:b4:0d:dc:eb:cb:35:c1: 3a:da:b8:5e:1c:2f:e9:f6:a8:bd:59:75:62:95:78: 38:d6:da:ca:30:52:be:75:1b:be:5c:b6:e1:fe:d2: c5:9b:88:7b:34:a8:3c:ca:2e:77:76:bb:88:39:67: d3:1e:a4:59:b7:6a:03:c1:b5:f9:18:00:77:f3:09: b2:6c:e6:e2:03:f0:57:db:b6:19:41:97:ee:a1:52: 06:03:1e:cc:1a:45:6e:90:b5:13:c7:99:15:49:48: df:2b:9b:0e:61:4f:a0:26:08:6b:c8:e5:a4:a7:19: 0d:57:45:92:a1:e3:fe:c0:4b:a3:d3:f8:d7:8c:5f: 42:ab:f4:e9:5a:65:dd:4e:63:d9:1e:db:cb:3d:0e: cc:a8:7d:87:69:36:1c:70:c8:15:6f:cf:0b:1f:1d: 5f:e1:75:37:35:ec:1b:37:2e:52:6a:37:d6:28:ef: ef:cf:6b:dc:74:14:c0:0a:df:79:75:58:96:bf:4c: cd:74:15:7e:92:42:f6:69:da:24:9a:3b:c7:f2:1a: 58:5b:04:bd:f6:75:46:96:62:94:67:ae:92:f9:c6: b5:05:6d:49:26:30:cc:0e:a6:4e:55:02:e7:3a:5a: 73:fd:90:16:2d:32:bc:98:99:fd:15:cd:75:41:5b: 96:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:12:EC:35:69:CE:04:2E:55:04:D9:50:63:04:CB:CA:28:95:B9:EB X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:d4:60:76:7f:c3:79:31:73:0c:04:5e:26:71:05:ef:cf:e7: 5e:d9:bd:4e:04:f5:86:df:a2:9e:13:fe:98:92:56:f1:cd:d1: 59:89:81:fa:77:9e:fd:50:73:ed:61:03:bf:83:c5:de:a9:ed: 12:0b:b8:e3:f1:3e:a2:af:a8:8f:be:a9:cb:0d:72:35:3c:47: 76:30:cd:8d:db:0a:60:fd:34:64:b6:40:4f:ce:0b:d3:82:77: bb:e0:ec:65:44:8c:41:cc:7d:35:90:31:85:ea:90:d5:ff:3b: ce:22:e6:08:41:1e:91:bd:d6:d3:3b:c7:c1:5a:86:3b:11:41: 04:a1:c1:b0:6f:0c:35:d5:0a:51:2b:89:b8:c7:7d:f9:b5:bf: 3d:e3:1d:eb:6b:50:0b:03:b8:34:78:06:98:f4:55:68:b7:b8: e7:64:32:2a:65:72:a0:7a:13:27:9a:6a:32:11:7d:1c:77:58: b7:95:7d:c7:5c:4d:82:ef:dd:6f:d2:38:91:07:b1:7f:30:c6: 34:6a:62:bf:95:eb:23:25:3a:ca:46:56:43:e0:ae:1d:ac:17: e4:77:64:bb:f2:e2:96:68:0b:20:0e:6c:61:98:1b:f5:21:d6: 31:ab:1c:61:2c:36:4b:c4:21:af:d4:de:5f:0c:7d:e3:d0:66: 03:dd:9c:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUxMjA1MDA1NDE5WhcNMjUxMjEyMDA1NDE5WjAYMRYwFAYD VQQDEw02OTMyMmQzYy0zNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyctquWbp7QN3OvLNcE62rheHC/p9qi9WXVilXg41trKMFK+dRu+XLbh/tLF m4h7NKg8yi53druIOWfTHqRZt2oDwbX5GAB38wmybObiA/BX27YZQZfuoVIGAx7M GkVukLUTx5kVSUjfK5sOYU+gJghryOWkpxkNV0WSoeP+wEuj0/jXjF9Cq/TpWmXd TmPZHtvLPQ7MqH2HaTYccMgVb88LHx1f4XU3NewbNy5SajfWKO/vz2vcdBTACt95 dViWv0zNdBV+kkL2adokmjvH8hpYWwS99nVGlmKUZ66S+ca1BW1JJjDMDqZOVQLn Olpz/ZAWLTK8mJn9Fc11QVuWsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4S7DVp zgQuVQTZUGMEy8oolbnrMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB1GB2f8N5MXMMBF4mcQXvz+de2b1OBPWG36KeE/6YklbxzdFZiYH6 d579UHPtYQO/g8Xeqe0SC7jj8T6ir6iPvqnLDXI1PEd2MM2N2wpg/TRktkBPzgvT gne74OxlRIxBzH01kDGF6pDV/zvOIuYIQR6RvdbTO8fBWoY7EUEEocGwbww11QpR K4m4x335tb894x3ra1ALA7g0eAaY9FVot7jnZDIqZXKgehMnmmoyEX0cd1i3lX3H XE2C791v0jiRB7F/MMY0amK/lesjJTrKRlZD4K4drBfkd2S78uKWaAsgDmxhmBv1 IdYxqxxhLDZLxCGv1N5fDH3j0GYD3Zzz -----END CERTIFICATE-----Generated at Sun Dec 7 01:56:39 2025 by rpki-client