This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: bWqV9tsYL3NIAHBJ5ZV1j1rFyXC86Ld2gIevv4+0AYA= Subject key identifier: B3:17:6E:B5:2D:77:DA:C8:7E:9E:05:BB:5E:A2:86:A7:F4:AB:6C:C4 Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 023E Signing time: Tue 23 Dec 2025 00:55:31 +0000 Manifest this update: Tue 23 Dec 2025 00:55:31 +0000 Manifest next update: Tue 30 Dec 2025 00:55:31 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: KrItlhwxsgV/w66+fDwqiS2tUH/ZcmyH94Q1m2zAlMA=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: aXVsQ3eTDOFY8R9G8hcsnCxP/cyR26ThIRn0dDawEqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F, serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: Dec 23 00:55:31 2025 GMT Not After : Dec 30 00:55:31 2025 GMT Subject: CN=6949e883-f556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:4c:1a:2e:36:a6:00:a3:9c:a2:c9:6b:c3: d3:6d:7e:c0:ef:99:7e:7d:22:74:88:a8:1a:bf:6d: 4d:f7:f9:d7:2e:96:a5:8a:f1:6e:97:e8:ed:93:38: 67:46:be:3c:93:1d:e3:33:90:9f:f6:9b:a6:7f:62: 60:f6:28:f6:f4:2e:f7:8d:6d:0a:0e:d7:29:42:84: e3:e0:b8:ad:e1:43:ba:11:c1:5d:a3:93:af:4b:19: 6a:10:8b:18:41:6c:2b:12:8a:8b:01:14:75:90:55: 86:5f:45:6e:b0:59:0a:60:ac:dd:36:41:2f:43:8a: 4d:91:e4:8e:31:57:14:42:33:b1:f1:b9:1f:d3:8d: 3b:b9:8b:b8:46:a3:9c:66:f3:9d:98:42:54:17:f1: b4:0b:7e:bb:f6:c0:8b:c2:e4:13:c0:48:4f:c9:03: 03:2c:31:1d:46:00:ba:fc:27:11:c3:2c:1e:46:2f: 0d:43:59:42:0a:de:ee:ee:6d:04:81:1a:7a:f4:35: 87:4a:0f:65:37:7c:8b:2b:ee:cf:85:d7:9b:48:db: cb:6b:22:5a:1d:d0:15:79:59:93:80:5c:9f:8a:1d: 43:c5:0d:cb:48:30:81:12:0f:89:8f:a9:9e:26:6c: 66:46:3b:d8:de:01:39:b1:21:eb:98:33:45:90:66: 71:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:17:6E:B5:2D:77:DA:C8:7E:9E:05:BB:5E:A2:86:A7:F4:AB:6C:C4 X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:23:d1:66:74:80:20:8b:41:f7:d8:57:eb:2f:5f:ee:36:11: 44:d1:58:25:fa:d0:b8:3f:8c:db:b2:11:d2:33:cb:88:6d:71: b2:83:cd:b8:63:2c:5e:b3:4d:17:01:a2:86:13:19:5b:2c:0d: 5b:dd:30:29:0b:21:12:56:80:24:f7:77:db:c1:9a:3a:cd:b9: 49:b8:c5:b0:8f:5a:bd:30:b4:e6:39:d9:b1:c2:a6:7f:66:ad: f6:5d:9c:37:c6:fd:97:82:0f:a3:a1:46:38:fa:c0:3e:3a:8e: 49:c1:79:27:11:a5:8f:06:6b:d1:66:ed:37:b9:71:c7:80:bf: 66:63:36:d0:73:5e:6c:e4:de:43:82:b2:7f:dd:d5:88:cb:d7: 55:13:90:18:09:74:9f:f4:cc:0b:1a:6a:22:70:8f:92:ed:78: d5:88:13:de:08:6b:1d:6d:b9:2c:86:25:53:c0:35:32:5e:19: 9c:2a:8a:21:dc:87:12:6f:d0:be:95:59:4a:ab:a9:b4:96:bf: dc:f3:aa:64:66:c1:a6:bf:0f:8c:19:a7:0b:07:f2:10:70:ec: f2:77:a7:c1:bd:11:0a:d1:c6:59:7a:c7:4f:69:24:74:b9:44: 4a:43:e8:e4:17:14:f1:0e:f2:52:e5:c6:06:4b:5b:a8:36:73: 0a:e3:b7:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjUxMjIzMDA1NTMxWhcNMjUxMjMwMDA1NTMxWjAYMRYwFAYD VQQDDA02OTQ5ZTg4My1mNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZNMGi42pgCjnKLJa8PTbX7A75l+fSJ0iKgav21N9/nXLpalivFul+jtkzhn Rr48kx3jM5Cf9pumf2Jg9ij29C73jW0KDtcpQoTj4Lit4UO6EcFdo5OvSxlqEIsY QWwrEoqLARR1kFWGX0VusFkKYKzdNkEvQ4pNkeSOMVcUQjOx8bkf0407uYu4RqOc ZvOdmEJUF/G0C3679sCLwuQTwEhPyQMDLDEdRgC6/CcRwyweRi8NQ1lCCt7u7m0E gRp69DWHSg9lN3yLK+7PhdebSNvLayJaHdAVeVmTgFyfih1DxQ3LSDCBEg+Jj6me JmxmRjvY3gE5sSHrmDNFkGZxbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMXbrUt d9rIfp4Fu16ihqf0q2zEMB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5I9FmdIAgi0H32FfrL1/uNhFE0Vgl+tC4P4zbshHSM8uIbXGyg824 Yyxes00XAaKGExlbLA1b3TApCyESVoAk93fbwZo6zblJuMWwj1q9MLTmOdmxwqZ/ Zq32XZw3xv2Xgg+joUY4+sA+Oo5JwXknEaWPBmvRZu03uXHHgL9mYzbQc15s5N5D grJ/3dWIy9dVE5AYCXSf9MwLGmoicI+S7XjViBPeCGsdbbkshiVTwDUyXhmcKooh 3IcSb9C+lVlKq6m0lr/c86pkZsGmvw+MGacLB/IQcOzyd6fBvREK0cZZesdPaSR0 uURKQ+jkFxTxDvJS5cYGS1uoNnMK47e/ -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:45 2025 by rpki-client