This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: mEMCtwoHSBKyM5k7MxaeuQM7Dmd+EO6+ISoos2uiQaI= Subject key identifier: FB:86:67:40:02:6C:08:B3:08:14:0F:08:FB:F1:1B:09:19:F2:43:8E Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 03C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 03BE Signing time: Mon 22 Dec 2025 23:41:08 +0000 Manifest this update: Mon 22 Dec 2025 23:41:07 +0000 Manifest next update: Mon 29 Dec 2025 23:41:07 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: 4/pUwxXEK+6aIqe2P6awWYCFOk9NkOqG260YFHm8/FE=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE, serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Dec 22 23:41:07 2025 GMT Not After : Dec 29 23:41:07 2025 GMT Subject: CN=6949d714-cb4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3a:e9:22:66:d9:94:af:5c:1c:c3:60:43:b6: b7:62:03:ee:04:53:1a:06:d4:bb:2e:ab:e8:14:b6: 40:d8:9d:e3:44:e5:cc:72:4a:c6:e3:8e:4f:b1:44: 3f:e7:f4:34:c2:30:c3:0e:4a:e8:f8:f3:24:b5:18: ba:db:46:9b:8e:e3:0a:80:94:a8:ec:61:26:88:30: 57:96:ee:d2:21:d8:12:ac:6d:d9:67:4c:60:42:20: 2c:c3:c8:4d:e0:f0:03:0a:20:68:24:e3:dc:56:7e: 6c:08:bd:b6:1b:a7:69:4b:51:ba:cb:f6:40:b9:a9: b6:8b:e5:60:02:a0:70:22:e8:ad:66:41:ff:14:f7: 8c:9a:9e:6e:3f:2d:e1:32:f5:64:ef:6d:8e:86:8a: 40:2d:dd:9d:79:54:d9:fa:95:52:f3:06:8c:e2:de: 95:1e:ef:ec:88:37:0e:8a:fd:51:5d:ed:23:62:21: 63:4e:b3:fe:1c:e2:31:a3:e3:60:5c:6f:7a:62:4a: 91:41:35:a8:d9:24:d8:54:3d:0b:50:8d:0c:72:f6: e5:a6:10:6f:1d:70:73:3c:e0:68:7c:db:a2:01:d5: a9:4f:c5:ac:64:5b:2f:ff:6d:a9:ee:8d:f8:28:78: ec:d3:a9:6c:30:9f:93:72:ec:eb:52:19:c4:11:66: 59:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:86:67:40:02:6C:08:B3:08:14:0F:08:FB:F1:1B:09:19:F2:43:8E X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:fe:69:99:fa:5c:88:94:4b:a8:76:8b:17:f9:fb:44:6a:85: b6:0d:14:c5:6c:13:82:10:bc:1e:1e:cb:e7:44:35:b6:6d:1b: ac:ae:10:8b:8b:a4:06:b8:fd:d8:66:b3:0b:f3:27:df:5a:8b: 2a:5f:f2:8f:d4:2d:0d:89:1e:bc:26:fc:e3:35:4f:6b:60:eb: 69:6b:d3:b4:90:4d:43:e2:20:d7:7e:5c:6b:35:02:df:6f:87: 15:ff:ac:1b:c9:8e:e5:aa:52:7d:6d:3c:af:be:dd:33:ca:05: 47:e4:91:74:81:c3:0c:e1:ab:70:08:f1:e2:1e:2f:51:9e:18: 6b:62:00:6e:e7:8f:01:52:5c:9c:b3:6c:9d:1b:4f:c9:d5:18: 66:3c:6f:0a:8e:93:8b:e5:29:b5:b0:71:64:83:f4:10:94:88: 86:83:37:8b:37:85:6c:18:d7:a6:29:b9:22:dc:bd:44:e8:d8: 90:8e:fe:d3:61:11:80:77:c4:ed:b2:73:a5:93:9f:c3:de:ee: 44:76:88:47:db:71:9b:5d:37:e3:f8:4a:4a:1a:ae:4b:63:fb: 4d:a2:68:26:35:18:98:c6:d6:6c:1f:f6:73:68:96:82:60:47: 8b:cf:19:86:19:7d:00:04:f6:b2:76:90:6a:a2:4d:8e:ef:3b: cb:70:f8:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUxMjIyMjM0MTA3WhcNMjUxMjI5MjM0MTA3WjAYMRYwFAYD VQQDDA02OTQ5ZDcxNC1jYjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDrpImbZlK9cHMNgQ7a3YgPuBFMaBtS7LqvoFLZA2J3jROXMckrG445PsUQ/ 5/Q0wjDDDkro+PMktRi620abjuMKgJSo7GEmiDBXlu7SIdgSrG3ZZ0xgQiAsw8hN 4PADCiBoJOPcVn5sCL22G6dpS1G6y/ZAuam2i+VgAqBwIuitZkH/FPeMmp5uPy3h MvVk722OhopALd2deVTZ+pVS8waM4t6VHu/siDcOiv1RXe0jYiFjTrP+HOIxo+Ng XG96YkqRQTWo2STYVD0LUI0McvblphBvHXBzPOBofNuiAdWpT8WsZFsv/22p7o34 KHjs06lsMJ+TcuzrUhnEEWZZGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuGZ0AC bAizCBQPCPvxGwkZ8kOOMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9/mmZ+lyIlEuodosX+ftEaoW2DRTFbBOCELweHsvnRDW2bRusrhCL i6QGuP3YZrML8yffWosqX/KP1C0NiR68JvzjNU9rYOtpa9O0kE1D4iDXflxrNQLf b4cV/6wbyY7lqlJ9bTyvvt0zygVH5JF0gcMM4atwCPHiHi9RnhhrYgBu548BUlyc s2ydG0/J1RhmPG8KjpOL5Sm1sHFkg/QQlIiGgzeLN4VsGNemKbki3L1E6NiQjv7T YRGAd8TtsnOlk5/D3u5EdohH23GbXTfj+EpKGq5LY/tNomgmNRiYxtZsH/ZzaJaC YEeLzxmGGX0ABPaydpBqok2O7zvLcPg3 -----END CERTIFICATE-----Generated at Tue Dec 23 18:04:51 2025 by rpki-client