This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: YvTaKdRhhTF4Fax9Ag5SfLMu4LuldRv7aiudnVvwgcY= Subject key identifier: E7:79:8B:F6:2C:A7:82:CC:B7:44:9F:E5:AB:7E:F8:A6:2C:1F:5A:61 Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 0749 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 0744 Signing time: Sat 20 Dec 2025 21:03:10 +0000 Manifest this update: Sat 20 Dec 2025 21:03:10 +0000 Manifest next update: Sat 27 Dec 2025 21:03:10 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: NH2WlmzvYP1pcl8KIkVu/QR7dyX/I1NLWf+KZynWsGQ=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1865 (0x749) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Dec 20 21:03:10 2025 GMT Not After : Dec 27 21:03:10 2025 GMT Subject: CN=69470f0e-bbe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:5b:58:72:85:bb:90:1d:eb:a6:bc:85:f8: 42:4a:04:d3:cf:9c:6c:03:7a:db:5e:69:40:6b:d3: 1d:77:a8:ed:52:1f:2b:18:7d:a6:05:53:58:5d:1b: 88:a9:fd:5f:64:b4:94:c7:e3:46:8c:f4:b5:77:20: bb:c4:e8:1f:41:00:3f:62:4c:7d:21:01:1e:eb:44: 20:7c:1e:b6:a8:7d:a9:e9:9c:04:fd:fc:bb:a2:aa: 41:b5:c8:f1:ad:3c:f6:fe:9c:d4:0b:15:d3:a0:15: 7b:16:eb:11:79:00:6a:33:79:2a:cc:77:67:ec:bf: 15:ed:3d:20:a0:69:62:ee:19:a9:22:e8:e3:91:5b: e8:15:21:70:a6:a4:1a:d7:b1:c6:13:32:b6:55:39: 36:4f:6e:20:f3:e3:7b:f0:71:6f:6f:d2:f5:f4:7c: c8:06:3d:a3:d0:5e:95:4b:97:5a:15:30:8c:28:98: d0:c7:b0:e2:f7:b3:5f:cb:06:ec:47:a1:2a:dd:83: 14:62:6f:49:ff:95:51:83:07:7f:03:59:cd:7b:33: 8e:dd:e5:b1:cb:39:1b:38:46:48:b9:a0:0f:06:c5: 3b:2a:67:31:94:f1:79:7d:ba:9c:f2:1e:89:de:e6: 18:5a:10:40:f2:61:e4:94:d6:08:45:7a:a0:3a:ca: d6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:79:8B:F6:2C:A7:82:CC:B7:44:9F:E5:AB:7E:F8:A6:2C:1F:5A:61 X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:2d:a5:24:d3:e3:1a:67:22:f6:7f:5e:15:74:d3:0b:ea:80: 62:97:41:68:09:dd:d8:8d:a4:d6:80:5b:59:6f:af:9a:83:44: 88:cf:2b:d3:49:e7:9d:99:f5:3c:4d:78:e0:2a:55:06:9c:f0: dc:6d:db:95:1d:f0:df:dc:20:65:7a:49:b3:d8:d9:a8:73:e6: 86:3f:70:ba:49:ae:26:3c:40:77:65:64:8d:3f:a5:0c:b0:cc: fc:50:7b:eb:b4:11:b2:99:fb:c7:24:d1:88:9c:f3:eb:c9:15: 09:81:de:c8:25:fe:94:9b:48:ee:c3:13:5f:0b:9c:f1:b3:df: 92:68:59:29:c1:57:62:3f:7e:3c:24:6c:7f:5e:c9:3e:3a:c4: df:e1:12:00:03:c5:42:27:6e:9c:27:62:e3:8c:4b:d7:d0:11: 63:55:7f:58:47:31:fb:9f:4c:fd:17:59:f4:40:53:76:c6:ea: 53:99:df:32:2e:f9:2d:15:af:a2:95:a6:fe:14:3a:06:bf:8b: e4:9c:82:55:be:37:69:e5:bd:38:05:86:12:af:a7:7d:e1:21: df:7b:ab:14:0d:6e:eb:1e:19:93:db:a7:79:af:8d:f8:2e:1d: 6c:fe:ea:28:b0:7f:71:00:f3:6a:b4:82:e6:d8:46:db:1a:a4: 98:3f:6c:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUxMjIwMjEwMzEwWhcNMjUxMjI3MjEwMzEwWjAYMRYwFAYD VQQDDA02OTQ3MGYwZS1iYmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XxbWHKFu5Ad66a8hfhCSgTTz5xsA3rbXmlAa9Mdd6jtUh8rGH2mBVNYXRuI qf1fZLSUx+NGjPS1dyC7xOgfQQA/Ykx9IQEe60QgfB62qH2p6ZwE/fy7oqpBtcjx rTz2/pzUCxXToBV7FusReQBqM3kqzHdn7L8V7T0goGli7hmpIujjkVvoFSFwpqQa 17HGEzK2VTk2T24g8+N78HFvb9L19HzIBj2j0F6VS5daFTCMKJjQx7Di97Nfywbs R6Eq3YMUYm9J/5VRgwd/A1nNezOO3eWxyzkbOEZIuaAPBsU7KmcxlPF5fbqc8h6J 3uYYWhBA8mHklNYIRXqgOsrWJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOd5i/Ys p4LMt0Sf5at++KYsH1phMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaLaUk0+MaZyL2f14VdNML6oBil0FoCd3YjaTWgFtZb6+ag0SIzyvT SeedmfU8TXjgKlUGnPDcbduVHfDf3CBlekmz2Nmoc+aGP3C6Sa4mPEB3ZWSNP6UM sMz8UHvrtBGymfvHJNGInPPryRUJgd7IJf6Um0juwxNfC5zxs9+SaFkpwVdiP348 JGx/Xsk+OsTf4RIAA8VCJ26cJ2LjjEvX0BFjVX9YRzH7n0z9F1n0QFN2xupTmd8y LvktFa+ilab+FDoGv4vknIJVvjdp5b04BYYSr6d94SHfe6sUDW7rHhmT26d5r434 Lh1s/uoosH9xAPNqtILm2EbbGqSYP2y+ -----END CERTIFICATE-----Generated at Sun Dec 21 08:53:25 2025 by rpki-client