This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft File: 8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft (raw, json) Hash identifier: 41jXkbzY/Q3Z7oyFbMOtFMOa982mNMU7f2xlST6IF3c= Subject key identifier: 12:37:19:D5:D0:B0:0D:2C:F8:9E:56:BF:EF:60:5A:A3:0F:92:31:BC Authority key identifier: F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E Certificate issuer: /CN=A917E1FA/serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft Manifest number: 62 Signing time: Fri 05 Dec 2025 04:59:34 +0000 Manifest this update: Fri 05 Dec 2025 04:59:34 +0000 Manifest next update: Fri 12 Dec 2025 04:59:34 +0000 Files and hashes: 1: 8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl (hash: 0SnEgb5RSCM7oCMRog+08ymGph0NIfGhTf8ywFagSqs=) 2: FEC5694C482311F0B2B5E45DC4F9AE02.roa (hash: lNd0dhVh9oVMjkR+5hS3U5ljCVkdpvgCie/KVi3bQe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Validity Not Before: Dec 5 04:59:34 2025 GMT Not After : Dec 12 04:59:34 2025 GMT Subject: CN=693266b6-3c84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3a:79:93:a3:7e:a4:94:b4:4e:1b:5d:99:92: 8d:9a:78:0f:d8:ed:7f:bc:70:72:1a:85:c5:8f:63: d9:18:ce:ea:fb:04:92:9d:ea:c8:a6:c4:7d:38:bf: 26:a0:12:6e:b1:dd:37:36:06:37:c4:67:22:d3:51: 8e:f1:57:bd:12:3b:f7:79:c7:90:0a:c3:35:a0:cf: 4c:e7:61:9b:a4:4e:18:ea:a6:33:d9:d5:09:9b:9f: 21:f7:ca:64:92:31:c6:e7:50:c2:9c:27:02:5a:63: 38:1e:ce:43:f9:05:86:c3:75:9e:a1:3e:86:fb:94: 22:43:bc:91:f8:e4:e4:52:7d:f6:68:e1:9b:50:7f: d1:59:3e:1a:25:d7:d2:7c:8e:41:d8:c7:49:1d:8d: 6f:d3:07:22:d4:34:14:ef:f8:89:d7:b3:0b:49:6e: 32:32:68:2d:c6:92:39:e0:32:81:f8:e3:0d:c9:71: 55:9c:cf:90:78:60:01:bb:36:97:21:9a:81:77:23: 82:57:c6:b7:4e:2c:ec:17:53:5d:06:73:5a:b4:60: 30:64:cc:45:28:d3:37:1f:22:3d:dc:78:31:07:ec: 2c:52:c4:79:74:65:9a:11:50:5d:68:7f:a3:80:d0: 76:0f:52:2e:a7:ea:89:11:1a:4a:33:b1:98:d4:e3: aa:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:37:19:D5:D0:B0:0D:2C:F8:9E:56:BF:EF:60:5A:A3:0F:92:31:BC X509v3 Authority Key Identifier: keyid:F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:29:cc:52:4c:22:4e:a3:0f:19:6e:18:61:45:33:84:77:a5: da:65:96:a8:e9:30:9b:16:8a:9e:34:14:43:6b:1e:e9:50:9a: 0d:82:d8:e9:6a:a5:2d:bb:bd:91:0e:42:9f:2f:bb:7a:9e:56: 9c:f3:ca:82:6e:c4:09:26:1f:c5:d0:eb:d7:47:df:48:dd:48: 99:56:b2:ee:fd:80:ff:d6:86:29:0a:5f:cd:95:c8:19:59:b7: 76:91:d5:b2:20:d5:6e:5c:c3:3d:9c:ef:f9:3c:05:1e:78:ae: 2f:0f:6b:e5:58:e2:73:56:4c:9a:3c:c8:dd:88:d8:b7:1b:31: 16:27:41:82:b3:cb:7e:f4:d6:bc:1d:9b:ec:e4:99:55:23:b6: 98:ba:37:14:49:16:cc:1f:50:cf:b6:5e:60:47:11:88:e0:ba: 9a:d0:0c:28:c0:c1:2d:98:ab:c0:8e:6e:40:be:d8:24:4c:de: d0:12:43:3b:30:c6:65:23:ca:32:25:57:dd:f5:81:67:ab:07: 5e:78:0b:2f:bb:01:17:84:f1:8f:da:e5:c8:57:cf:13:37:57: 00:98:87:d5:ad:8c:1e:ae:3c:b2:ff:95:f7:fc:9b:80:c3:e3: fd:3f:2f:e3:c2:f6:3c:75:52:27:99:8b:bc:73:18:1b:a9:4d: 69:3a:94:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoRjE1QzVDNUJBNTIxNDUzNzA3QzgxRjVGRUMwODExQkYy MUNGRjQwRTAeFw0yNTEyMDUwNDU5MzRaFw0yNTEyMTIwNDU5MzRaMBgxFjAUBgNV BAMTDTY5MzI2NmI2LTNjODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuOnmTo36klLROG12Zko2aeA/Y7X+8cHIahcWPY9kYzur7BJKd6simxH04vyag Em6x3Tc2BjfEZyLTUY7xV70SO/d5x5AKwzWgz0znYZukThjqpjPZ1QmbnyH3ymSS McbnUMKcJwJaYzgezkP5BYbDdZ6hPob7lCJDvJH45ORSffZo4ZtQf9FZPhol19J8 jkHYx0kdjW/TByLUNBTv+InXswtJbjIyaC3GkjngMoH44w3JcVWcz5B4YAG7Npch moF3I4JXxrdOLOwXU10Gc1q0YDBkzEUo0zcfIj3ceDEH7CxSxHl0ZZoRUF1of6OA 0HYPUi6n6okRGkozsZjU46oRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEjcZ1dCw DSz4nla/72Baow+SMbwwHwYDVR0jBBgwFoAU8VxcW6UhRTcHyB9f7AgRvyHP9A4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBLzlBODczRUIwNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyLzhWeGNXNlVoUlRjSHlCOWY3QWdSdnlIUDlB NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOFZ4Y1c2VWhSVGNIeUI5ZjdBZ1J2eUhQOUE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MUZBLzlBODczRUIwNDVBMzExRjA5NUVGRkQ0OEM0RjlBRTAyLzhWeGNXNlVoUlRj SHlCOWY3QWdSdnlIUDlBNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGgpzFJMIk6jDxluGGFFM4R3pdpllqjpMJsWip40FENrHulQmg2C2Olq pS27vZEOQp8vu3qeVpzzyoJuxAkmH8XQ69dH30jdSJlWsu79gP/WhikKX82VyBlZ t3aR1bIg1W5cwz2c7/k8BR54ri8Pa+VY4nNWTJo8yN2I2LcbMRYnQYKzy3701rwd m+zkmVUjtpi6NxRJFswfUM+2XmBHEYjguprQDCjAwS2Yq8CObkC+2CRM3tASQzsw xmUjyjIlV931gWerB154Cy+7AReE8Y/a5chXzxM3VwCYh9WtjB6uPLL/lff8m4DD 4/0/L+PC9jx1UieZi7xzGBupTWk6lF0= -----END CERTIFICATE-----Generated at Sat Dec 6 22:06:42 2025 by rpki-client