This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: DedaSWZDXgUm7qb+KQmjHAosTs1qQrfBZE/mYEdY+A4= Subject key identifier: F9:83:73:2D:F6:A4:DF:0C:98:97:E7:C4:E2:E3:C2:A8:73:05:44:5E Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0D4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0D48 Signing time: Thu 04 Dec 2025 17:31:21 +0000 Manifest this update: Thu 04 Dec 2025 17:31:20 +0000 Manifest next update: Thu 11 Dec 2025 17:31:20 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: knhs5Ppo10rK/lBmn7kMN0IUl8fDmp0aL5dlFvVrFoQ=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: 7Dst7szyPWooV+5WFj8vI4oANvEvXDCaESLYXfhjMk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:31:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3406 (0xd4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Dec 4 17:31:20 2025 GMT Not After : Dec 11 17:31:20 2025 GMT Subject: CN=6931c568-9bcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:85:87:4c:58:18:32:1b:f9:af:df:cb:a8:87: 04:5f:12:23:9b:77:15:6a:03:b4:9c:2a:bb:06:5b: fb:7a:27:0d:5d:e5:54:38:71:76:8c:3b:8b:a3:70: 1c:d1:2a:5a:b1:ba:b6:6a:f6:de:58:12:1a:14:39: 53:27:f8:f5:68:99:e1:b4:fe:60:2f:ed:64:06:b4: 4d:b9:89:57:6d:f4:bc:f9:6d:02:b9:f6:d5:e5:6b: 8e:02:cd:4e:e1:e8:d2:86:10:92:b8:55:80:b6:d0: 52:10:85:9e:c2:dc:8f:c7:69:30:4d:38:63:f7:65: 33:f7:26:e0:60:6e:b6:61:fd:17:d8:cf:02:b8:ea: 87:1f:97:52:73:a1:55:37:a9:12:b3:e1:be:e5:90: 6a:6a:59:e8:c6:82:da:bb:2e:ae:f3:b7:44:b3:f4: 18:30:8c:67:b0:2d:cf:88:39:64:9b:43:63:90:f5: b3:17:78:8d:41:39:dd:65:84:bb:68:10:7e:41:6c: 4d:d2:e3:38:d0:83:f6:30:ef:4a:15:d6:bf:5c:2b: 49:f9:75:3b:61:22:7f:ba:34:27:c7:1a:ce:59:3c: ac:f5:74:f1:8d:9c:48:7a:b4:aa:4a:a0:95:8c:dc: f9:5b:ac:f9:ea:0a:47:bc:15:69:87:99:d5:32:45: 0c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:83:73:2D:F6:A4:DF:0C:98:97:E7:C4:E2:E3:C2:A8:73:05:44:5E X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b3:69:9d:c9:c3:75:de:a8:21:49:57:b7:12:7e:25:e2:92: a3:00:c7:23:39:3a:c6:00:76:86:2a:9e:1f:3c:eb:d8:55:b5: 0f:44:d5:98:d1:37:aa:c6:77:98:12:0c:43:02:1c:89:c1:a0: f5:ba:36:5c:3f:6b:ee:9e:c6:8e:d4:1a:68:b6:45:bf:d5:52: 6b:0a:e1:45:64:0a:b3:c0:f2:dc:b6:4a:10:73:2a:39:f8:5f: ec:0c:e7:e0:b0:e4:3e:36:3d:6a:33:b5:35:3a:17:a9:37:61: f7:12:d4:bc:be:ab:18:a1:47:d6:e5:07:20:0d:24:44:35:6f: 7d:37:ce:51:59:f7:44:d9:ec:50:01:ba:49:36:ff:65:87:e9: cb:c1:58:83:23:17:91:3c:11:a9:3c:94:2a:db:93:e3:95:0b: e3:ed:81:c9:41:34:63:6c:e3:aa:85:96:c6:5d:0f:d8:41:a2: c2:c8:99:b0:ec:40:3d:a9:6a:92:fc:33:a7:59:01:77:18:b6: 93:7a:3f:18:41:9d:86:28:5b:34:d6:42:b1:39:f6:a7:f5:c7: 3d:59:ed:dd:96:f1:a8:9a:ed:31:9e:50:3a:28:fd:64:0a:ab: ac:f2:38:47:dc:53:64:5a:3a:e2:21:61:d5:5d:6e:87:1e:95: c5:8f:55:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjUxMjA0MTczMTIwWhcNMjUxMjExMTczMTIwWjAYMRYwFAYD VQQDEw02OTMxYzU2OC05YmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoWHTFgYMhv5r9/LqIcEXxIjm3cVagO0nCq7Blv7eicNXeVUOHF2jDuLo3Ac 0Spasbq2avbeWBIaFDlTJ/j1aJnhtP5gL+1kBrRNuYlXbfS8+W0CufbV5WuOAs1O 4ejShhCSuFWAttBSEIWewtyPx2kwTThj92Uz9ybgYG62Yf0X2M8CuOqHH5dSc6FV N6kSs+G+5ZBqalnoxoLauy6u87dEs/QYMIxnsC3PiDlkm0NjkPWzF3iNQTndZYS7 aBB+QWxN0uM40IP2MO9KFda/XCtJ+XU7YSJ/ujQnxxrOWTys9XTxjZxIerSqSqCV jNz5W6z56gpHvBVph5nVMkUMoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmDcy32 pN8MmJfnxOLjwqhzBUReMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDs2mdycN13qghSVe3En4l4pKjAMcjOTrGAHaGKp4fPOvYVbUPRNWY 0TeqxneYEgxDAhyJwaD1ujZcP2vunsaO1BpotkW/1VJrCuFFZAqzwPLctkoQcyo5 +F/sDOfgsOQ+Nj1qM7U1OhepN2H3EtS8vqsYoUfW5QcgDSRENW99N85RWfdE2exQ AbpJNv9lh+nLwViDIxeRPBGpPJQq25PjlQvj7YHJQTRjbOOqhZbGXQ/YQaLCyJmw 7EA9qWqS/DOnWQF3GLaTej8YQZ2GKFs01kKxOfan9cc9We3dlvGomu0xnlA6KP1k Cqus8jhH3FNkWjriIWHVXW6HHpXFj1WF -----END CERTIFICATE-----Generated at Sat Dec 6 15:56:33 2025 by rpki-client