This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft File: h17HLkbyzRY_Brgi5wQSmu_jGRA.mft (raw, json) Hash identifier: GZUIagjUnl4Yp/m20bb43rwV9ceJTgljNh+LFuc2kz4= Subject key identifier: F5:18:93:02:2E:30:D0:26:CF:B1:F2:07:54:78:F1:68:D1:3D:E4:B7 Authority key identifier: 87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 Certificate issuer: /CN=A917C716/serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft Manifest number: 044A Signing time: Thu 04 Dec 2025 23:46:31 +0000 Manifest this update: Thu 04 Dec 2025 23:46:30 +0000 Manifest next update: Thu 11 Dec 2025 23:46:30 +0000 Files and hashes: 1: h17HLkbyzRY_Brgi5wQSmu_jGRA.crl (hash: KMmEOtYz3ZOQLc7BjESdvgBJed//+ficblu+WvbBpg0=) 2: 9BC8AC96555C11F0AF866966C4F9AE02.roa (hash: aBG6SO8r5rIticJAwQ3F1F0hRoqPZrUVOKMtrK+PpMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Validity Not Before: Dec 4 23:46:30 2025 GMT Not After : Dec 11 23:46:30 2025 GMT Subject: CN=69321d57-6d73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f3:49:04:d9:c6:a3:03:ef:96:e7:30:dd:fb: ba:aa:86:9b:86:66:d9:18:ed:c0:88:9b:44:27:c2: 7d:df:2c:25:cd:1a:3d:65:5b:06:65:f7:d4:ec:15: 7a:0d:0c:6d:32:d2:49:28:a7:6d:12:05:a1:bc:e9: f1:de:af:39:5d:30:ed:55:db:7f:61:12:9b:a7:a5: c8:b2:66:fb:01:f6:ed:2c:bb:1e:5b:45:65:de:0e: 41:07:7a:63:62:3d:25:6c:11:6e:8f:16:a3:4e:6b: 7e:4d:37:eb:95:1f:73:7e:c0:96:96:77:a1:1e:cd: 9d:1f:29:6b:cf:da:09:02:17:19:cd:2c:b1:51:04: c9:cb:d3:7b:a1:f1:82:41:21:27:55:ba:21:d2:7d: c8:3b:2a:66:df:82:10:a7:69:24:02:93:61:cd:cc: 62:23:9a:1f:ba:57:5a:bb:5d:90:61:b5:58:2b:4b: 88:68:9a:e7:75:63:04:b8:90:d8:d8:84:2f:9b:d1: 68:dd:b3:f7:5f:be:ff:12:32:ab:be:de:0f:04:15: 17:43:8d:ba:ac:8c:7e:0e:85:c0:b7:73:4c:b1:11: 17:02:53:99:f5:c1:4f:be:d3:e9:e5:d4:b2:44:20: e8:ad:a1:61:39:fd:59:33:7e:5c:a1:5e:a4:bd:2f: a6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:18:93:02:2E:30:D0:26:CF:B1:F2:07:54:78:F1:68:D1:3D:E4:B7 X509v3 Authority Key Identifier: keyid:87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:38:c7:22:ec:29:f4:2a:c3:f3:20:06:15:86:9e:be:2a:65: 0b:2f:99:36:85:45:f8:23:7e:fe:74:b3:fb:de:b1:22:26:cd: 6e:d8:d7:4c:79:fb:83:86:ef:0d:d7:d4:3b:84:7f:47:71:d7: 52:26:07:5e:d9:42:59:db:63:d2:f2:b6:c8:f8:81:f4:33:72: 80:84:f5:9d:68:8f:44:5c:fb:d2:a3:1c:c8:2d:b0:22:aa:0a: a3:01:17:4d:92:61:ee:98:74:7b:21:69:e3:fb:0a:03:c0:6a: 4f:c6:11:fe:60:58:c7:ec:c4:20:ef:63:99:30:b7:1e:f7:5a: 88:74:1c:7e:f8:90:5e:d9:39:00:d6:c2:bb:6f:f1:11:ae:b9: 91:c7:3f:bb:02:00:a0:5f:60:2d:fa:93:97:da:29:23:e3:f9: d6:b2:79:48:83:80:e9:bc:ae:a6:1d:af:df:73:70:6d:db:f8: 76:27:dd:ce:04:4a:b5:d4:b6:80:fd:0b:65:cf:ee:bb:ad:0d: 77:da:b0:ce:e1:ce:67:11:a9:f8:0f:d8:76:36:f3:15:71:69: 01:4e:14:9b:4a:a3:f5:c7:5e:44:23:49:6c:99:fa:ee:27:a3: d0:cb:86:90:ea:23:16:41:78:bc:7d:8e:55:f5:9a:55:8a:66: 2f:e7:6f:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzcxNjExMC8GA1UEBRMoODc1RUM3MkU0NkYyQ0QxNjNGMDZCODIyRTcwNDEyOUFF RkUzMTkxMDAeFw0yNTEyMDQyMzQ2MzBaFw0yNTEyMTEyMzQ2MzBaMBgxFjAUBgNV BAMTDTY5MzIxZDU3LTZkNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ80kE2cajA++W5zDd+7qqhpuGZtkY7cCIm0Qnwn3fLCXNGj1lWwZl99TsFXoN DG0y0kkop20SBaG86fHerzldMO1V239hEpunpciyZvsB9u0sux5bRWXeDkEHemNi PSVsEW6PFqNOa35NN+uVH3N+wJaWd6EezZ0fKWvP2gkCFxnNLLFRBMnL03uh8YJB ISdVuiHSfcg7KmbfghCnaSQCk2HNzGIjmh+6V1q7XZBhtVgrS4homud1YwS4kNjY hC+b0Wjds/dfvv8SMqu+3g8EFRdDjbqsjH4OhcC3c0yxERcCU5n1wU++0+nl1LJE IOitoWE5/VkzflyhXqS9L6bhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9RiTAi4w 0CbPsfIHVHjxaNE95LcwHwYDVR0jBBgwFoAUh17HLkbyzRY/Brgi5wQSmu/jGRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzE2LzREQjlDQUM0MTQw MjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZX0JyZ2k1d1FTbXVfakdS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDE3SExrYnl6UllfQnJnaTV3UVNtdV9qR1JBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzE2LzREQjlDQUM0MTQwMjExRURCOTY2MzQxNUM0RjlBRTAyL2gxN0hMa2J5elJZ X0JyZ2k1d1FTbXVfakdSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEo4xyLsKfQqw/MgBhWGnr4qZQsvmTaFRfgjfv50s/vesSImzW7Y10x5 +4OG7w3X1DuEf0dx11ImB17ZQlnbY9Lytsj4gfQzcoCE9Z1oj0Rc+9KjHMgtsCKq CqMBF02SYe6YdHshaeP7CgPAak/GEf5gWMfsxCDvY5kwtx73Woh0HH74kF7ZOQDW wrtv8RGuuZHHP7sCAKBfYC36k5faKSPj+dayeUiDgOm8rqYdr99zcG3b+HYn3c4E SrXUtoD9C2XP7rutDXfasM7hzmcRqfgP2HY28xVxaQFOFJtKo/XHXkQjSWyZ+u4n o9DLhpDqIxZBeLx9jlX1mlWKZi/nb+M= -----END CERTIFICATE-----Generated at Sat Dec 6 15:56:31 2025 by rpki-client