This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft File: NEp3XiRcztCAx5UhWW4yyPBtiMg.mft (raw, json) Hash identifier: +c+oPoe4D07feKGMahiLMFa6ZJx7LzeOyudCrUqFYWE= Subject key identifier: CD:27:43:99:AA:56:42:99:67:24:49:55:F8:42:84:1E:90:EE:41:6E Authority key identifier: 34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 Certificate issuer: /CN=A915517D/serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Certificate serial: 180E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft Manifest number: 17F8 Signing time: Sat 20 Dec 2025 16:20:05 +0000 Manifest this update: Sat 20 Dec 2025 16:20:05 +0000 Manifest next update: Sat 27 Dec 2025 16:20:05 +0000 Files and hashes: 1: NEp3XiRcztCAx5UhWW4yyPBtiMg.crl (hash: yPhSRwTCTYe3nrdu5XxM9CbNEsETVrsHBSN0qErtzp0=) 2: 2F840DD2740911EDA7146F2DC4F9AE02.roa (hash: YPOOK5AIk3gBw37/F4hGfOPvVpq+0nympVjwZNkZ59I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6158 (0x180e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915517D, serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Validity Not Before: Dec 20 16:20:05 2025 GMT Not After : Dec 27 16:20:05 2025 GMT Subject: CN=6946ccb5-137a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:41:93:a4:f6:61:fc:d8:91:ce:ad:0c:65:35: 2c:7c:7a:01:ff:60:d6:a8:93:92:84:95:98:c7:96: e3:89:e8:f5:c3:25:03:a3:50:07:f6:f2:92:58:d5: 7d:97:4f:69:6a:b2:17:81:d9:5d:05:1e:f3:8c:b7: 3e:b6:81:19:4b:6f:56:e6:b5:cd:01:1b:38:fd:26: 05:fc:45:14:92:e1:8a:72:56:54:0b:37:33:ff:7c: e4:90:2c:e6:db:ee:f6:96:30:97:d5:63:98:f9:fb: c0:61:d4:cb:a9:74:d6:ac:a6:8e:8c:1c:ac:12:56: 46:52:a0:0a:10:c2:36:d4:2d:df:f1:ad:ec:58:b6: b9:f7:46:70:2c:b4:40:8d:95:ec:43:41:bd:3d:3c: cc:e4:d8:22:be:55:6b:15:0e:7d:d2:e3:30:9c:df: c5:f0:f5:a9:f0:0c:39:bb:c9:0e:22:ec:09:16:61: a5:ba:7e:b7:66:05:2f:49:e1:88:3f:a4:4d:17:ab: b4:3b:e1:db:0e:e1:eb:b2:f4:1e:91:49:b3:63:90: 7d:7f:ae:09:eb:07:5b:22:0e:e3:93:73:ae:49:42: dd:75:c8:e0:75:c3:64:73:bb:97:a5:12:76:df:dd: bd:ed:71:7a:41:95:98:6a:21:34:b8:23:6b:10:13: dd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:27:43:99:AA:56:42:99:67:24:49:55:F8:42:84:1E:90:EE:41:6E X509v3 Authority Key Identifier: keyid:34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:1f:26:b2:cb:7f:1c:ad:f2:4f:fe:e8:57:8a:d0:d1:07:fd: 5e:bc:b1:76:f2:c1:e7:43:18:da:f8:7a:3e:b6:4f:4f:c4:3a: 5b:9e:07:08:e7:cd:8d:b3:e3:6e:4d:a7:74:e6:89:2c:13:c0: 92:2c:cb:8d:fd:07:d6:fb:44:48:a2:88:4e:48:1a:fe:1e:20: fb:1c:48:44:36:29:cd:03:05:b6:93:1d:c4:65:6b:16:8c:34: 43:a9:c1:6a:6f:ba:77:d5:4a:a1:5c:ec:54:30:4c:3e:72:bd: a1:e1:f5:3e:3c:99:4b:ee:4e:cb:f7:57:0d:fb:c6:75:59:3a: fe:50:e2:ed:8d:6d:26:e0:b2:64:0b:df:8e:8d:bd:fa:52:dc: c8:ea:26:41:68:63:7b:7e:f7:1e:21:4e:98:60:44:b0:9e:d8: f4:06:aa:cb:b5:55:1d:49:42:3e:cf:e0:69:c3:99:9f:b2:70: 23:58:15:6e:05:33:9b:d8:39:d7:f0:2c:22:61:9d:2b:0a:e4: b2:6a:52:9c:73:8e:7e:44:2e:ea:19:ae:fb:06:46:db:e6:02: 29:b5:94:10:3f:d4:98:3b:e6:48:4e:6b:d8:91:e8:df:6e:4e: c9:65:8b:d4:12:34:95:1f:21:3d:d3:30:53:09:a3:b6:91:ec: fc:6c:f6:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxN0QxMTAvBgNVBAUTKDM0NEE3NzVFMjQ1Q0NFRDA4MEM3OTUyMTU5NkUzMkM4 RjA2RDg4QzgwHhcNMjUxMjIwMTYyMDA1WhcNMjUxMjI3MTYyMDA1WjAYMRYwFAYD VQQDDA02OTQ2Y2NiNS0xMzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUGTpPZh/NiRzq0MZTUsfHoB/2DWqJOShJWYx5bjiej1wyUDo1AH9vKSWNV9 l09parIXgdldBR7zjLc+toEZS29W5rXNARs4/SYF/EUUkuGKclZUCzcz/3zkkCzm 2+72ljCX1WOY+fvAYdTLqXTWrKaOjBysElZGUqAKEMI21C3f8a3sWLa590ZwLLRA jZXsQ0G9PTzM5NgivlVrFQ590uMwnN/F8PWp8Aw5u8kOIuwJFmGlun63ZgUvSeGI P6RNF6u0O+HbDuHrsvQekUmzY5B9f64J6wdbIg7jk3OuSULddcjgdcNkc7uXpRJ2 39297XF6QZWYaiE0uCNrEBPdCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0nQ5mq VkKZZyRJVfhChB6Q7kFuMB8GA1UdIwQYMBaAFDRKd14kXM7QgMeVIVluMsjwbYjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE3RC8zRDdBNjI4NkNG NTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0Q0F4NVVoV1c0eXlQQnRp TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FcDNYaVJjenRDQXg1VWhXVzR5eVBCdGlNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE3RC8zRDdBNjI4NkNGNTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0 Q0F4NVVoV1c0eXlQQnRpTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSHyayy38crfJP/uhXitDRB/1evLF28sHnQxja+Ho+tk9PxDpbngcI 582Ns+NuTad05oksE8CSLMuN/QfW+0RIoohOSBr+HiD7HEhENinNAwW2kx3EZWsW jDRDqcFqb7p31UqhXOxUMEw+cr2h4fU+PJlL7k7L91cN+8Z1WTr+UOLtjW0m4LJk C9+Ojb36UtzI6iZBaGN7fvceIU6YYESwntj0BqrLtVUdSUI+z+Bpw5mfsnAjWBVu BTOb2DnX8CwiYZ0rCuSyalKcc45+RC7qGa77Bkbb5gIptZQQP9SYO+ZITmvYkejf bk7JZYvUEjSVHyE90zBTCaO2kez8bPad -----END CERTIFICATE-----Generated at Sun Dec 21 06:23:57 2025 by rpki-client