This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft File: 3oFz59KP6tHsOpLJdljacyhQk-U.mft (raw, json) Hash identifier: sepSylBJ9/EGmzDLb8u7/1bfcm+ozf9IE9orf6/LZT0= Subject key identifier: FC:9C:13:03:66:C0:BD:89:5D:DA:E5:10:F0:75:6E:35:D4:2E:6D:80 Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 072B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft Manifest number: 0725 Signing time: Sat 06 Dec 2025 20:47:29 +0000 Manifest this update: Sat 06 Dec 2025 20:47:28 +0000 Manifest next update: Sat 13 Dec 2025 20:47:28 +0000 Files and hashes: 1: 3oFz59KP6tHsOpLJdljacyhQk-U.crl (hash: WfVlJkzDDQNbSry/igkcU9+U7xoCUzXJzdcPPvfLFR0=) 2: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (hash: owZNdsc75aBAEeMxk8dZOIuYb/+Ukc36obf7oLhTJGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1835 (0x72b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A, serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: Dec 6 20:47:28 2025 GMT Not After : Dec 13 20:47:28 2025 GMT Subject: CN=69349660-d582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f4:a8:4a:64:16:ad:4c:74:92:ab:45:f1:d1: 2d:84:2f:26:d4:2b:8a:2d:c1:b9:7d:d3:27:c5:5c: 01:b1:38:e0:9b:1a:eb:d0:c5:84:4e:ae:3b:35:a8: 26:1f:99:00:2e:21:84:fd:0c:db:59:e4:54:be:54: 72:a1:34:d2:e7:da:85:f3:1e:85:72:58:c6:e1:7a: 83:2d:82:e9:a1:e7:0b:27:59:96:68:67:6c:53:5a: 3e:06:1d:32:19:18:2d:a1:42:e1:3e:31:91:f6:1e: cd:a8:8f:e9:0e:bf:42:54:5c:56:b6:0b:a5:a7:88: c1:e3:b4:11:0a:2a:00:4c:11:74:a4:9e:95:a8:e4: 94:8f:a0:0a:7f:46:95:22:1c:f6:7b:c2:b7:da:7c: 5a:6c:96:3d:54:03:fa:f4:e5:07:ca:bb:45:ab:71: d9:d4:eb:0e:13:72:61:9e:90:66:6f:96:41:fc:53: 20:a8:c7:20:35:75:ab:fa:bf:8d:f8:f4:8a:49:50: 23:f7:a6:ab:f1:28:05:a8:8a:41:b0:11:b3:63:7f: 67:a4:73:d9:4f:68:bf:3d:34:86:cf:d3:5f:2a:43: 9b:e4:7e:4e:3b:12:73:43:54:cd:24:1e:69:d4:fc: f7:34:b8:63:95:31:d4:14:1f:46:9c:d4:d5:46:6d: 52:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:9C:13:03:66:C0:BD:89:5D:DA:E5:10:F0:75:6E:35:D4:2E:6D:80 X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:81:fa:8b:10:68:b2:1a:8a:32:49:b0:95:3e:92:a6:2a:63: b5:ef:73:ef:08:26:65:a0:dc:42:2e:54:80:4b:07:12:4a:a9: ad:89:d7:c0:45:3e:d5:e3:18:fa:39:8a:61:8f:fc:be:06:4f: d2:c9:74:9e:78:dc:be:c2:89:26:ab:04:ee:c7:c0:30:c6:89: 4c:1a:0c:66:b5:f2:cb:9f:4a:ac:a9:bb:e8:89:da:15:6a:a8: 3d:10:11:7c:4b:de:24:55:14:c5:9d:5c:46:f0:7c:ca:62:24: c5:e3:8a:08:8f:1f:9c:a4:57:20:6d:05:e4:03:ae:aa:09:3b: 0b:7f:84:ab:cf:36:03:3e:f6:3c:21:04:8e:da:f5:dc:4f:f7: b8:33:aa:0e:02:1b:07:29:8e:6b:3a:35:28:e4:3f:0a:9e:f2: 2e:9c:bc:84:4a:31:ca:98:9b:0f:0f:d2:9f:3b:24:22:d7:8b: 1d:ce:66:58:27:ee:b2:02:2e:58:e7:9d:03:53:e3:ed:30:e9: 49:d0:b3:2c:55:5b:be:4f:14:ad:37:83:5f:9e:bd:77:0c:c1: d0:28:24:06:8e:7e:2a:5b:14:4e:15:2c:93:b4:b4:e8:f3:b2: 55:da:77:cc:c2:14:66:bc:b0:54:6c:b6:1b:ac:d1:87:82:22: 69:34:48:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjUxMjA2MjA0NzI4WhcNMjUxMjEzMjA0NzI4WjAYMRYwFAYD VQQDEw02OTM0OTY2MC1kNTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8fSoSmQWrUx0kqtF8dEthC8m1CuKLcG5fdMnxVwBsTjgmxrr0MWETq47Nagm H5kALiGE/QzbWeRUvlRyoTTS59qF8x6FcljG4XqDLYLpoecLJ1mWaGdsU1o+Bh0y GRgtoULhPjGR9h7NqI/pDr9CVFxWtgulp4jB47QRCioATBF0pJ6VqOSUj6AKf0aV Ihz2e8K32nxabJY9VAP69OUHyrtFq3HZ1OsOE3JhnpBmb5ZB/FMgqMcgNXWr+r+N +PSKSVAj96ar8SgFqIpBsBGzY39npHPZT2i/PTSGz9NfKkOb5H5OOxJzQ1TNJB5p 1Pz3NLhjlTHUFB9GnNTVRm1StwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPycEwNm wL2JXdrlEPB1bjXULm2AMB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzExQS9DMDg2RUE5ODVBMzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0 SHNPcExKZGxqYWN5aFFrLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4gfqLEGiyGooySbCVPpKmKmO173PvCCZloNxCLlSASwcSSqmtidfA RT7V4xj6OYphj/y+Bk/SyXSeeNy+wokmqwTux8AwxolMGgxmtfLLn0qsqbvoidoV aqg9EBF8S94kVRTFnVxG8HzKYiTF44oIjx+cpFcgbQXkA66qCTsLf4SrzzYDPvY8 IQSO2vXcT/e4M6oOAhsHKY5rOjUo5D8KnvIunLyESjHKmJsPD9KfOyQi14sdzmZY J+6yAi5Y550DU+PtMOlJ0LMsVVu+TxStN4Nfnr13DMHQKCQGjn4qWxROFSyTtLTo 87JV2nfMwhRmvLBUbLYbrNGHgiJpNEhP -----END CERTIFICATE-----Generated at Sun Dec 7 01:53:59 2025 by rpki-client