This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft File: aMW6vfwSOWbQX4DD-kI3lELEIgw.mft (raw, json) Hash identifier: shFs+nQ91oGs8ms5CBQzDmuKN+NXLnttJD3Tyk63AXQ= Subject key identifier: B2:07:B3:DF:E7:01:05:92:EC:6D:90:2B:4C:02:36:47:C2:89:8D:14 Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 3520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft Manifest number: 3502 Signing time: Mon 22 Dec 2025 14:41:44 +0000 Manifest this update: Mon 22 Dec 2025 14:41:44 +0000 Manifest next update: Mon 29 Dec 2025 14:41:44 +0000 Files and hashes: 1: aMW6vfwSOWbQX4DD-kI3lELEIgw.crl (hash: IyHYHrMwRGnRiiv91/7675p9BbB8uMjl0hWmquAH1q8=) 2: E05FE99AB0D511E5B4F68B09C4F9AE02.roa (hash: Z9gsewhzEhlUHszkRSNsuOY1JzZl8Vjgyk5xiyq8V24=) 3: 73438FF06DED11E9A21D1341C4F9AE02.roa (hash: iWI19VTOrnz2nGN4modDRd0Vbot3Y2khTy6hDIMLekE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13600 (0x3520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D, serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: Dec 22 14:41:44 2025 GMT Not After : Dec 29 14:41:44 2025 GMT Subject: CN=694958a8-99c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:42:e2:65:58:94:4f:7d:1b:52:e4:24:4f:9d: b7:ab:d6:5a:35:f9:e2:f3:bf:02:d7:c3:d4:21:0a: 5b:30:16:21:6d:e4:59:dc:69:eb:c8:72:74:3e:11: 7a:0f:f2:c0:39:9c:96:55:5d:50:77:b0:56:ec:67: 18:5b:8d:b2:ca:dc:98:c4:ce:eb:9a:9d:b0:db:66: 75:bb:b1:ba:ba:8e:9c:7a:1c:e6:ea:e5:dc:a1:58: 51:6d:c9:af:49:30:66:ea:f0:5f:98:78:33:4a:54: 69:46:94:7b:d5:20:46:e8:0e:b8:f4:f7:47:92:7e: e8:85:d1:fb:b8:36:e2:85:71:1d:c8:61:b2:30:71: d1:23:72:03:86:42:5d:5c:ab:3f:69:a5:00:91:52: a4:9a:42:cf:51:f6:95:ac:e6:64:fc:34:1f:79:66: d8:6f:38:e5:7b:bf:48:35:5d:a6:cb:dc:a5:83:64: cb:bf:01:34:ed:6c:36:07:90:71:b5:36:d1:cd:37: 2a:ed:6a:02:0c:b2:7b:c2:4f:c1:3a:5f:5b:d0:4a: 34:8e:bf:4b:fe:4b:d6:79:e5:92:21:94:f6:84:bb: 41:51:32:3d:80:1f:00:99:5c:ff:ab:51:89:79:51: 36:ec:05:1b:79:ff:8a:70:35:79:2d:40:c8:99:8f: 8e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:07:B3:DF:E7:01:05:92:EC:6D:90:2B:4C:02:36:47:C2:89:8D:14 X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:41:f6:9f:41:b3:ce:bb:54:4e:62:16:35:c2:fc:9b:ae:51: ef:ad:ac:1e:b3:a7:57:97:38:34:36:ac:52:5a:40:5d:e2:5a: 14:ba:df:27:81:b7:ea:27:2b:7c:c4:39:d0:32:44:e0:3a:f7: e0:f8:3e:c9:29:b2:3e:1a:fa:d6:e7:60:a9:00:6c:d1:10:1b: 81:ca:c7:9a:78:3e:1b:82:4d:65:af:bf:f3:98:2d:93:00:36: d2:ba:a2:e9:63:62:df:e8:ac:76:e7:fe:9a:e3:13:55:a7:09: 5b:47:fe:3a:29:b7:15:5e:55:da:47:8f:85:26:7e:7a:48:36: 06:b1:32:e1:00:29:d0:86:0e:18:d9:b6:2c:92:01:74:15:b5: cd:64:98:b7:d4:83:1d:30:d4:75:f4:20:38:b0:ac:73:41:db: 59:06:85:e3:f7:dc:8b:5c:16:45:ee:f6:08:7a:1d:bb:4c:79: 17:dd:51:53:81:7e:be:e7:97:93:b2:a8:89:ad:47:a3:c3:6f: da:ad:47:6a:14:fd:44:8e:d9:be:9d:d8:f0:40:bb:03:67:0e: cf:75:1d:e1:5d:6a:cc:46:93:e4:e1:2a:88:68:63:c5:59:dd: e3:de:67:48:2e:70:0b:f6:7e:e8:c8:2d:51:35:6d:2b:32:3b: 1e:6b:5f:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjUxMjIyMTQ0MTQ0WhcNMjUxMjI5MTQ0MTQ0WjAYMRYwFAYD VQQDDA02OTQ5NThhOC05OWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0LiZViUT30bUuQkT523q9ZaNfni878C18PUIQpbMBYhbeRZ3GnryHJ0PhF6 D/LAOZyWVV1Qd7BW7GcYW42yytyYxM7rmp2w22Z1u7G6uo6cehzm6uXcoVhRbcmv STBm6vBfmHgzSlRpRpR71SBG6A649PdHkn7ohdH7uDbihXEdyGGyMHHRI3IDhkJd XKs/aaUAkVKkmkLPUfaVrOZk/DQfeWbYbzjle79INV2my9ylg2TLvwE07Ww2B5Bx tTbRzTcq7WoCDLJ7wk/BOl9b0Eo0jr9L/kvWeeWSIZT2hLtBUTI9gB8AmVz/q1GJ eVE27AUbef+KcDV5LUDImY+OWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIHs9/n AQWS7G2QK0wCNkfCiY0UMB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjAxRC9DRDFFMjk0ODFEOTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09X YlFYNERELWtJM2xFTEVJZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkQfafQbPOu1ROYhY1wvybrlHvrawes6dXlzg0NqxSWkBd4loUut8n gbfqJyt8xDnQMkTgOvfg+D7JKbI+GvrW52CpAGzREBuByseaeD4bgk1lr7/zmC2T ADbSuqLpY2Lf6Kx25/6a4xNVpwlbR/46KbcVXlXaR4+FJn56SDYGsTLhACnQhg4Y 2bYskgF0FbXNZJi31IMdMNR19CA4sKxzQdtZBoXj99yLXBZF7vYIeh27THkX3VFT gX6+55eTsqiJrUejw2/arUdqFP1Ejtm+ndjwQLsDZw7PdR3hXWrMRpPk4SqIaGPF Wd3j3mdILnAL9n7oyC1RNW0rMjsea1+J -----END CERTIFICATE-----Generated at Tue Dec 23 09:43:17 2025 by rpki-client