This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft File: r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft (raw, json) Hash identifier: GCiz1UTWFOkfpbgbnj46wissau6cBCQ2v0HUxKZnd2w= Subject key identifier: 91:FB:B1:64:9D:73:AC:ED:B3:CF:A4:1D:BB:EA:47:4E:28:0B:7E:A4 Authority key identifier: AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D Certificate issuer: /CN=A917414E/serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Certificate serial: 0365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft Manifest number: 0354 Signing time: Sun 21 Dec 2025 00:13:16 +0000 Manifest this update: Sun 21 Dec 2025 00:13:16 +0000 Manifest next update: Sun 28 Dec 2025 00:13:16 +0000 Files and hashes: 1: r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl (hash: 9PzpvKncVuKWEXeQD2O8HxhDt511ry7BKUoo+Nkr85M=) 2: 67E15AC4E40611EC8410A53CC4F9AE02.roa (hash: AGoeYBgdKLfYPPhkahztTiG7JYdEMPn9wa46SQhvMmw=) 3: 41C460BE1BE911ED81DB667EC4F9AE02.roa (hash: utZX5ySaw+fRg+Lh06bBkb/YXcN+yf0Mo1jgBt8t3jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917414E, serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Validity Not Before: Dec 21 00:13:16 2025 GMT Not After : Dec 28 00:13:16 2025 GMT Subject: CN=69473b9c-f311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:52:88:31:21:08:7e:e1:98:b2:96:94:4a:05: 51:bd:56:73:25:c9:4d:71:69:4e:b3:29:03:94:ce: 1b:57:1b:76:80:5b:58:f1:79:df:62:dc:4b:0e:08: 41:15:53:9b:bf:4a:85:b6:ca:f6:7a:50:a9:af:2d: 69:45:80:5c:f9:d9:e0:4a:af:35:71:db:69:0f:45: 25:43:de:e6:de:3a:a8:e0:89:b6:88:06:6a:cc:a5: 81:c3:a2:bf:53:c5:00:f9:ed:af:c7:52:ac:75:73: d9:a6:de:4a:ce:07:d5:3e:46:f8:85:a9:40:e2:df: f6:d8:be:01:20:04:aa:26:86:2b:fa:5b:21:d6:3b: e8:02:dc:e8:dd:a7:cf:1f:fe:b3:bc:89:ac:0f:70: 05:b8:9b:7a:7b:18:43:84:cf:f4:a4:db:40:95:ba: 6b:7d:5b:be:b5:cf:d1:6c:c9:dd:23:a9:b0:59:d5: e9:d8:ff:3b:fc:ef:dd:d5:7b:23:d6:c1:67:a0:32: 24:30:b2:ed:d0:2b:1f:db:9d:d4:d1:38:78:08:e2: 7d:0f:03:77:3c:9c:19:0a:3c:0f:00:5b:f2:49:f4: 34:ec:64:ff:4b:03:ea:30:90:26:c3:bd:96:ef:2d: a8:8a:e5:40:a0:00:74:24:dc:34:a3:3a:b3:80:0b: c4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FB:B1:64:9D:73:AC:ED:B3:CF:A4:1D:BB:EA:47:4E:28:0B:7E:A4 X509v3 Authority Key Identifier: keyid:AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:7b:fb:ad:24:71:5d:73:f0:6d:52:f8:17:0b:5b:cd:40:10: 23:af:0f:14:d2:9e:3b:9e:52:0a:e3:76:1c:f5:25:e4:0e:1a: 3b:9c:72:7c:16:0e:21:17:81:d9:3a:e5:fc:9d:99:35:2b:2d: e1:1e:60:5e:02:94:34:ae:ad:6d:48:9c:68:5b:90:d8:7e:a2: 89:f2:d3:d0:5a:8b:c3:68:bb:69:90:a1:fb:44:98:93:49:6f: b7:d5:3c:fc:31:33:81:7d:68:27:1d:7b:59:fe:c9:cc:62:76: 2e:f2:9c:e2:39:03:e9:eb:81:9b:4c:2d:4c:53:f5:42:c4:d9: 07:4f:83:da:bd:f7:12:1c:48:a5:f5:85:d1:2f:a0:41:93:34: 77:49:7a:0e:6f:0b:2a:57:19:33:33:17:62:6b:f3:d0:92:5d: 15:87:08:ca:65:9b:9e:87:22:4f:95:a1:a6:f6:0c:17:9c:6b: 57:53:b5:74:6e:3d:7d:4c:bc:65:4f:a9:06:d2:c5:0f:21:fe: dd:a9:a6:f1:34:2d:34:e1:7f:b4:73:f6:aa:91:1b:43:87:1b: 63:f4:c8:53:0c:a9:b7:c2:0a:12:f5:1d:97:96:1d:ad:de:dd: 98:fd:07:e8:3d:ca:02:ab:59:db:30:ad:8d:a3:c7:76:cc:7b: 86:7e:91:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxNEUxMTAvBgNVBAUTKEFGNjcxMzJEODM3RDU3NkZGRjc3NzIyN0EzNzI1RDYw MUVEOTEwNUQwHhcNMjUxMjIxMDAxMzE2WhcNMjUxMjI4MDAxMzE2WjAYMRYwFAYD VQQDDA02OTQ3M2I5Yy1mMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj1KIMSEIfuGYspaUSgVRvVZzJclNcWlOsykDlM4bVxt2gFtY8XnfYtxLDghB FVObv0qFtsr2elCpry1pRYBc+dngSq81cdtpD0UlQ97m3jqo4Im2iAZqzKWBw6K/ U8UA+e2vx1KsdXPZpt5KzgfVPkb4halA4t/22L4BIASqJoYr+lsh1jvoAtzo3afP H/6zvImsD3AFuJt6exhDhM/0pNtAlbprfVu+tc/RbMndI6mwWdXp2P87/O/d1Xsj 1sFnoDIkMLLt0Csf253U0Th4COJ9DwN3PJwZCjwPAFvySfQ07GT/SwPqMJAmw72W 7y2oiuVAoAB0JNw0ozqzgAvE7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJH7sWSd c6zts8+kHbvqR04oC36kMB8GA1UdIwQYMBaAFK9nEy2DfVdv/3dyJ6NyXWAe2RBd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE0RS80QzVFMkZCOEUz RkYxMUVDQUMyMTA1NzJDNEY5QUUwMi9yMmNUTFlOOVYyX19kM0lubzNKZFlCN1pF RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IyY1RMWU45VjJfX2QzSW5vM0pkWUI3WkVGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE0RS80QzVFMkZCOEUzRkYxMUVDQUMyMTA1NzJDNEY5QUUwMi9yMmNUTFlOOVYy X19kM0lubzNKZFlCN1pFRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQe/utJHFdc/BtUvgXC1vNQBAjrw8U0p47nlIK43Yc9SXkDho7nHJ8 Fg4hF4HZOuX8nZk1Ky3hHmBeApQ0rq1tSJxoW5DYfqKJ8tPQWovDaLtpkKH7RJiT SW+31Tz8MTOBfWgnHXtZ/snMYnYu8pziOQPp64GbTC1MU/VCxNkHT4PavfcSHEil 9YXRL6BBkzR3SXoObwsqVxkzMxdia/PQkl0VhwjKZZuehyJPlaGm9gwXnGtXU7V0 bj19TLxlT6kG0sUPIf7dqabxNC004X+0c/aqkRtDhxtj9MhTDKm3wgoS9R2Xlh2t 3t2Y/QfoPcoCq1nbMK2No8d2zHuGfpFY -----END CERTIFICATE-----Generated at Sun Dec 21 06:06:00 2025 by rpki-client