This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: KvybCTPi8pHuLxbHp4yPrGI1u/MniSWk26wDOn3YIGE= Subject key identifier: E4:7C:B0:15:B1:E0:36:75:FF:19:17:7C:BF:2E:8C:7F:A8:BB:D3:4B Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0B29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0B22 Signing time: Sat 06 Dec 2025 18:33:15 +0000 Manifest this update: Sat 06 Dec 2025 18:33:14 +0000 Manifest next update: Sat 13 Dec 2025 18:33:14 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: 1MF0Zbt9yi/XgDjYhB7dej8zk92vOjAHo1HzWB2fWWc=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: vj3M9GWIecNQbzYctkTLvK5haUmE73bb2B+bBqSBJ9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2857 (0xb29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Dec 6 18:33:14 2025 GMT Not After : Dec 13 18:33:14 2025 GMT Subject: CN=693476eb-5620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:03:ec:60:53:6a:3f:24:e8:32:3b:54:3e:a6: 53:66:a9:1c:7c:dd:5d:65:b3:db:a1:52:dc:42:e8: c7:1d:5e:95:69:0b:8d:02:ae:2b:cd:bc:b7:4c:92: 8b:0d:4f:eb:4b:a3:85:53:f5:7a:3a:a0:7b:3c:88: bf:bd:e0:f8:72:e1:7a:20:44:3f:7a:bb:38:ea:b6: 8a:42:39:cb:6d:6f:b3:41:87:87:05:d6:3e:34:5d: a3:dc:29:ab:b0:da:c7:7d:3e:eb:3d:86:a8:66:4d: db:4b:18:23:ed:ec:68:4f:c0:6e:e0:7d:d0:a9:30: cd:cb:e5:8c:3f:78:fc:07:e9:f2:d3:4c:fa:2b:1a: e9:e2:02:b0:d2:df:9d:b5:8e:48:5a:0c:18:a7:de: d1:8b:09:d7:23:58:ed:5f:71:21:32:4a:ed:00:39: 73:8d:2a:99:15:20:ab:f2:62:8c:86:45:87:ba:e5: 81:0a:88:12:c1:07:e8:5d:bb:9c:6d:06:d3:b8:93: 6c:97:49:54:1f:c8:83:8e:4e:7b:21:7d:dd:cb:87: 18:96:e4:0d:af:a7:14:3c:c7:13:6b:c4:a1:c0:f9: e1:3a:d4:fd:f4:3c:d1:d4:c4:b3:72:04:94:66:22: d8:c5:8e:ec:21:44:d2:d7:d5:b3:27:f3:70:5c:fe: a5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7C:B0:15:B1:E0:36:75:FF:19:17:7C:BF:2E:8C:7F:A8:BB:D3:4B X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:79:b8:78:cb:e1:92:9d:9f:09:40:2f:3a:95:1a:88:db:d6: 3a:65:bb:9d:83:8e:89:f9:e1:9d:b6:29:10:8b:81:dd:f2:91: f4:14:43:71:80:d6:54:2f:36:7c:fd:21:3a:9b:f7:b7:91:81: 41:43:86:da:aa:a7:72:7e:f8:6b:1a:7b:74:3b:3c:0a:55:6b: 56:fb:3d:1b:09:46:be:69:a3:0c:da:8b:fe:6d:2a:29:50:cb: 40:77:94:ec:03:99:b6:d4:5e:4f:e5:d7:20:9c:c6:ba:df:49: 5c:6b:a7:5f:37:13:08:51:5f:f2:cb:fd:b1:9a:1a:b8:d6:a9: 71:3e:6e:1b:4f:6c:0b:c6:c2:02:75:71:ec:c6:ec:b4:ec:c3: f7:3c:74:e1:dc:d0:55:2b:f6:cf:e6:d3:14:26:02:dc:16:a0: d8:29:8a:a9:f3:83:ba:a4:c8:fd:a0:ce:4c:63:39:67:c7:e3: 1d:e5:9d:8d:06:47:30:a0:89:f5:19:34:e7:02:08:d4:f8:f4: a3:cc:69:31:cd:0a:af:79:d2:0a:51:e3:cb:74:52:35:51:96: 39:b0:c9:0f:81:03:00:d8:ec:22:20:b3:2e:1d:ad:45:5f:88: cd:b6:26:6c:08:86:0a:8b:f1:72:7b:b1:50:b8:0b:d8:60:97: 09:7b:8d:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUxMjA2MTgzMzE0WhcNMjUxMjEzMTgzMzE0WjAYMRYwFAYD VQQDEw02OTM0NzZlYi01NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywPsYFNqPyToMjtUPqZTZqkcfN1dZbPboVLcQujHHV6VaQuNAq4rzby3TJKL DU/rS6OFU/V6OqB7PIi/veD4cuF6IEQ/ers46raKQjnLbW+zQYeHBdY+NF2j3Cmr sNrHfT7rPYaoZk3bSxgj7exoT8Bu4H3QqTDNy+WMP3j8B+ny00z6Kxrp4gKw0t+d tY5IWgwYp97RiwnXI1jtX3EhMkrtADlzjSqZFSCr8mKMhkWHuuWBCogSwQfoXbuc bQbTuJNsl0lUH8iDjk57IX3dy4cYluQNr6cUPMcTa8ShwPnhOtT99DzR1MSzcgSU ZiLYxY7sIUTS19WzJ/NwXP6lpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOR8sBWx 4DZ1/xkXfL8ujH+ou9NLMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnebh4y+GSnZ8JQC86lRqI29Y6Zbudg46J+eGdtikQi4Hd8pH0FENx gNZULzZ8/SE6m/e3kYFBQ4baqqdyfvhrGnt0OzwKVWtW+z0bCUa+aaMM2ov+bSop UMtAd5TsA5m21F5P5dcgnMa630lca6dfNxMIUV/yy/2xmhq41qlxPm4bT2wLxsIC dXHsxuy07MP3PHTh3NBVK/bP5tMUJgLcFqDYKYqp84O6pMj9oM5MYzlnx+Md5Z2N BkcwoIn1GTTnAgjU+PSjzGkxzQqvedIKUePLdFI1UZY5sMkPgQMA2OwiILMuHa1F X4jNtiZsCIYKi/Fye7FQuAvYYJcJe42g -----END CERTIFICATE-----Generated at Sun Dec 7 02:44:24 2025 by rpki-client