This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: s+ydnjMzrk05XyODXSFDkPbK7pJ/C6vn0nS/lLKmh7Q= Subject key identifier: 26:C2:BE:DB:9D:4F:34:77:FE:5B:0F:AA:32:BE:B4:07:4D:5A:EF:04 Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 05B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 0717 Signing time: Sat 06 Dec 2025 21:56:04 +0000 Manifest this update: Sat 06 Dec 2025 21:56:03 +0000 Manifest next update: Sat 13 Dec 2025 21:56:03 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: 5jdps+WMZkOoVVpbmVmxLZMf4Qy65DPEQYzaGDV3IVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Dec 6 21:56:03 2025 GMT Not After : Dec 13 21:56:03 2025 GMT Subject: CN=6934a673-30fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e7:eb:4f:bd:a8:53:d7:6b:d1:86:a5:da:79: 65:0e:52:0c:f7:2b:9d:a8:fa:c1:2d:a8:b2:24:61: ac:64:42:68:57:6c:fb:ac:6f:a3:f7:97:21:3a:54: 95:7d:15:9f:79:1d:94:8f:62:d0:97:7b:6d:c9:4f: 3a:88:e5:ce:23:b4:e8:f3:4d:a6:29:e6:23:bb:cf: bd:f7:14:fc:e2:a0:b2:89:30:36:73:d0:dd:45:2b: d3:04:c4:77:fe:af:3b:5b:44:95:92:ea:30:c7:86: 68:93:91:63:33:04:d4:5b:8f:66:3f:7a:2f:dd:ed: 04:3e:9b:55:7b:e4:aa:45:7e:1b:90:d9:30:35:21: e4:14:a8:b9:19:c5:0f:e9:09:4b:c0:00:26:33:2c: 0b:10:a4:2b:58:f8:1d:12:20:e6:5b:ff:5a:7a:6c: 05:71:89:d2:4b:ac:41:e1:5d:58:e8:58:87:66:15: 83:9c:e0:1d:57:9d:4a:8e:44:e0:18:22:16:a4:8a: 20:52:af:cc:4f:65:28:21:3f:30:79:93:d2:bb:3c: 8f:cb:dd:fd:a9:20:ed:04:df:67:7b:30:9a:79:80: 2a:f1:cb:f2:d8:c2:38:f4:2e:c6:e8:8e:ca:0e:05: 93:34:f5:af:dd:13:6c:45:aa:26:a1:d1:1d:02:9f: ac:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C2:BE:DB:9D:4F:34:77:FE:5B:0F:AA:32:BE:B4:07:4D:5A:EF:04 X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:4e:67:a0:cb:52:d2:2d:77:61:e1:a0:70:17:3d:42:70:8a: ba:7d:36:55:34:d1:1e:e5:92:b3:51:8a:9b:cb:24:7c:26:d1: cd:7e:1e:8e:28:c8:96:4d:54:81:dd:ed:91:e2:9c:72:4a:81: a8:3d:3f:eb:85:3c:98:de:e1:a9:2c:8a:bc:2b:ea:2a:51:3b: 10:25:a2:d8:cf:bc:95:ed:d4:33:f0:8e:03:b8:27:9e:3e:35: 34:c2:47:62:9c:9f:0c:7b:ca:99:2f:dc:08:6c:8b:9a:d3:03: 3e:d5:a9:b2:60:a6:27:fe:9f:0b:c8:21:48:90:1d:cc:79:13: fa:18:1c:f6:22:a2:83:7e:82:fa:eb:6d:87:7b:ad:ab:b7:37: ed:fd:b1:5a:0a:a8:ad:4a:1e:cd:95:63:90:bb:d8:d0:7e:04: 8d:13:98:d5:ec:1e:77:2c:16:06:73:e3:c8:da:f6:b2:07:85: 4d:27:66:d7:48:c9:d7:7c:a6:8c:95:d7:1d:85:25:7c:91:af: 7f:82:46:97:c7:3f:94:64:4e:d4:df:fc:66:86:27:b7:1c:d7: e6:d1:b5:ae:c1:c3:fa:fb:9d:c9:ab:78:6e:e3:96:2e:8f:d5: af:49:da:78:e8:9f:02:e3:46:e8:ec:54:14:d2:08:d4:22:2a: 79:7e:66:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUxMjA2MjE1NjAzWhcNMjUxMjEzMjE1NjAzWjAYMRYwFAYD VQQDEw02OTM0YTY3My0zMGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOfrT72oU9dr0Yal2nllDlIM9yudqPrBLaiyJGGsZEJoV2z7rG+j95chOlSV fRWfeR2Uj2LQl3ttyU86iOXOI7To802mKeYju8+99xT84qCyiTA2c9DdRSvTBMR3 /q87W0SVkuowx4Zok5FjMwTUW49mP3ov3e0EPptVe+SqRX4bkNkwNSHkFKi5GcUP 6QlLwAAmMywLEKQrWPgdEiDmW/9aemwFcYnSS6xB4V1Y6FiHZhWDnOAdV51KjkTg GCIWpIogUq/MT2UoIT8weZPSuzyPy939qSDtBN9nezCaeYAq8cvy2MI49C7G6I7K DgWTNPWv3RNsRaomodEdAp+sBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbCvtud TzR3/lsPqjK+tAdNWu8EMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiTmegy1LSLXdh4aBwFz1CcIq6fTZVNNEe5ZKzUYqbyyR8JtHNfh6O KMiWTVSB3e2R4pxySoGoPT/rhTyY3uGpLIq8K+oqUTsQJaLYz7yV7dQz8I4DuCee PjU0wkdinJ8Me8qZL9wIbIua0wM+1amyYKYn/p8LyCFIkB3MeRP6GBz2IqKDfoL6 622He62rtzft/bFaCqitSh7NlWOQu9jQfgSNE5jV7B53LBYGc+PI2vayB4VNJ2bX SMnXfKaMldcdhSV8ka9/gkaXxz+UZE7U3/xmhie3HNfm0bWuwcP6+53Jq3hu45Yu j9WvSdp46J8C40bo7FQU0gjUIip5fmZp -----END CERTIFICATE-----Generated at Sun Dec 7 02:18:34 2025 by rpki-client