This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: W3DouPal0+xRIHA2XuQgGQPbEN8cLGydPO5STdNU2Sc= Subject key identifier: A8:8F:B1:F8:40:34:E4:74:16:18:72:C4:3B:B9:3F:26:03:AB:06:93 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 3548 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3521 Signing time: Thu 04 Dec 2025 14:25:02 +0000 Manifest this update: Thu 04 Dec 2025 14:25:01 +0000 Manifest next update: Thu 11 Dec 2025 14:25:01 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: t29yJ77V7aftTh3PMqfWoBSGPo5ScFEK60GpsK9saM0=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: 6CSktOcA4MnBe9beO9qKaaWhMjSNipfCRcL+x7I1JgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13640 (0x3548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Dec 4 14:25:01 2025 GMT Not After : Dec 11 14:25:01 2025 GMT Subject: CN=693199be-252b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f8:00:9c:25:7a:bb:7a:92:83:53:33:9d:23: dd:4a:52:1c:35:c8:2b:df:d0:30:a4:f3:07:9d:e3: 49:b0:2c:37:31:50:65:a2:be:1b:9f:7d:1e:d9:4a: 83:48:24:ea:08:51:47:24:98:22:23:28:da:76:8b: c2:14:8d:6d:2e:c1:a5:33:a9:3f:0c:83:5a:43:05: 15:67:34:c4:10:85:9c:a9:81:b0:7d:ac:90:ac:7a: f2:06:02:86:78:d6:91:b9:50:d4:7a:48:f5:08:4e: 1a:dc:10:e7:64:cc:55:23:db:98:a3:b3:f6:ab:32: 11:2a:3a:40:73:b9:c6:01:40:4f:14:ea:06:78:2f: 24:6d:f4:63:3f:e0:e3:87:08:da:7d:4f:f4:2a:d6: 9e:7c:a0:b5:a1:2b:a3:3c:7b:e4:82:be:50:0c:ce: 3c:53:de:ef:a7:fc:8d:7d:eb:83:ec:25:41:62:34: b1:3f:17:f5:79:36:93:a5:c7:16:95:14:2d:3a:21: 5f:4c:c0:3e:4d:d3:14:41:aa:3d:65:17:be:01:3d: b3:6c:f0:0f:0b:30:29:1d:4f:2d:0f:3f:62:e2:47: be:c9:0f:43:3f:21:1c:78:bc:49:b5:8f:a4:45:db: fc:40:94:76:d6:dc:5a:f4:c2:fd:9e:7a:2e:18:59: 62:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8F:B1:F8:40:34:E4:74:16:18:72:C4:3B:B9:3F:26:03:AB:06:93 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:03:2a:1a:43:4f:bf:49:02:53:64:01:86:a0:cd:13:9b:d9: d0:85:1d:f5:35:2c:15:9b:8c:68:c0:ac:40:85:2b:eb:95:cf: 71:05:e5:84:3f:66:94:b9:49:bf:25:03:4d:59:c0:34:09:85: 84:ef:f3:10:27:6e:81:b6:e5:00:98:f5:68:31:43:62:0c:b2: f2:7d:c4:3b:65:65:cd:5e:ad:b9:50:34:9d:ed:e8:43:7a:ec: 45:6a:ec:15:12:d4:77:88:5d:f3:c2:50:0e:fa:db:0d:b8:6a: 34:96:57:b5:02:7e:ae:a4:8e:85:64:bd:a8:64:1c:f6:77:2f: 1e:fb:ae:79:c9:6b:d3:a2:ee:8a:2a:92:19:66:01:79:e6:7f: 5b:a2:20:49:69:81:23:4e:46:1a:f0:9c:01:80:9d:e4:8a:f4: 82:c2:34:79:26:fa:16:f3:aa:9e:85:65:ff:51:2e:44:9e:ec: cb:1b:85:dd:5a:83:fb:08:f2:1e:68:ba:17:28:d1:67:5d:1c: 80:b8:d3:f7:16:9b:75:b5:23:58:8b:50:d4:be:a0:3d:65:0f: e1:d6:bc:c0:da:f4:a3:93:40:26:33:5d:1c:ff:9a:e3:6e:af: 96:ca:5d:04:99:20:ad:22:9b:1d:05:b3:a0:f8:f1:90:38:65: c0:a7:08:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUxMjA0MTQyNTAxWhcNMjUxMjExMTQyNTAxWjAYMRYwFAYD VQQDEw02OTMxOTliZS0yNTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfgAnCV6u3qSg1MznSPdSlIcNcgr39AwpPMHneNJsCw3MVBlor4bn30e2UqD SCTqCFFHJJgiIyjadovCFI1tLsGlM6k/DINaQwUVZzTEEIWcqYGwfayQrHryBgKG eNaRuVDUekj1CE4a3BDnZMxVI9uYo7P2qzIRKjpAc7nGAUBPFOoGeC8kbfRjP+Dj hwjafU/0KtaefKC1oSujPHvkgr5QDM48U97vp/yNfeuD7CVBYjSxPxf1eTaTpccW lRQtOiFfTMA+TdMUQao9ZRe+AT2zbPAPCzApHU8tDz9i4ke+yQ9DPyEceLxJtY+k Rdv8QJR21txa9ML9nnouGFliJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiPsfhA NOR0FhhyxDu5PyYDqwaTMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcAyoaQ0+/SQJTZAGGoM0Tm9nQhR31NSwVm4xowKxAhSvrlc9xBeWE P2aUuUm/JQNNWcA0CYWE7/MQJ26BtuUAmPVoMUNiDLLyfcQ7ZWXNXq25UDSd7ehD euxFauwVEtR3iF3zwlAO+tsNuGo0lle1An6upI6FZL2oZBz2dy8e+655yWvTou6K KpIZZgF55n9boiBJaYEjTkYa8JwBgJ3kivSCwjR5JvoW86qehWX/US5EnuzLG4Xd WoP7CPIeaLoXKNFnXRyAuNP3Fpt1tSNYi1DUvqA9ZQ/h1rzA2vSjk0AmM10c/5rj bq+Wyl0EmSCtIpsdBbOg+PGQOGXApwiC -----END CERTIFICATE-----Generated at Sat Dec 6 16:00:05 2025 by rpki-client