This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft File: rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft (raw, json) Hash identifier: Jp+A+wP5ab7RrlGaW05WiiMQMzjfAs3iM1vmd62czzg= Subject key identifier: 2B:DD:7B:D3:AF:5B:48:1E:4D:81:0A:74:0C:0D:BB:85:C8:46:B2:B7 Authority key identifier: AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 Certificate issuer: /CN=A917799C/serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft Manifest number: 51 Signing time: Wed 03 Dec 2025 05:26:14 +0000 Manifest this update: Wed 03 Dec 2025 05:26:14 +0000 Manifest next update: Wed 10 Dec 2025 05:26:14 +0000 Files and hashes: 1: rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl (hash: ZdkaBuskNSnVr18icEViGbHLdWhKyjoa+eVT6MjivZI=) 2: 1A10CA38554511F0BE9D290EC4F9AE02.roa (hash: +cgq7m1m+3yCjZbwy4Qcjluah/ZFibIuVd5FM/B6ZOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917799C, serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Validity Not Before: Dec 3 05:26:14 2025 GMT Not After : Dec 10 05:26:14 2025 GMT Subject: CN=692fc9f6-dc87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:96:2a:84:93:ee:4c:4a:5b:f4:b1:fb:cf:00: c2:8c:7e:b0:67:63:46:e6:12:69:ed:27:73:10:a0: f3:c5:71:1a:16:3b:14:69:4c:a9:bf:eb:a5:5b:11: 47:d5:6a:2f:df:6f:9f:68:68:56:b1:34:3f:e3:79: 87:96:ab:b6:7a:51:b8:5f:c1:3d:f3:d2:63:1e:6d: 2a:41:1d:4d:1d:d3:87:44:c7:d0:fc:67:c2:c7:33: 73:91:74:b9:5c:c5:17:0d:76:c3:90:79:b5:b9:8a: 7e:c9:84:d9:8c:36:75:69:86:b6:1e:3f:6e:b9:16: 23:98:87:98:9d:37:12:af:c8:00:bd:43:8b:3a:19: 1f:1d:d2:b9:24:92:b9:7d:b6:5e:6a:80:31:08:fe: 8c:b4:f8:b5:c8:b1:f2:58:e6:24:48:e5:75:a8:ad: 8d:3c:af:b5:e2:ca:71:5b:9a:58:91:6a:9b:0c:6e: a4:f6:aa:15:bb:1c:9d:7e:b8:2e:c6:21:34:46:0c: 4d:cd:b3:0c:00:2f:f6:76:5c:9d:59:c5:a1:ef:f6: ee:ab:ba:b4:f3:b3:69:71:c7:f4:ab:b0:52:9c:2b: fa:6c:6a:76:db:39:a8:f6:82:b4:9c:73:be:9a:38: 16:a4:4a:70:ee:b7:f1:d3:b7:1c:ec:f2:b2:ac:4f: e5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:DD:7B:D3:AF:5B:48:1E:4D:81:0A:74:0C:0D:BB:85:C8:46:B2:B7 X509v3 Authority Key Identifier: keyid:AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b9:e7:53:bb:a5:9f:73:cb:34:a7:a8:6d:73:28:e5:a9:6b: 1c:19:5b:af:87:d7:88:82:04:84:07:ab:19:a4:68:c9:20:a0: 65:26:c5:cd:53:07:53:d0:78:98:c7:51:d8:51:f8:94:b4:0f: 5b:1b:d1:38:23:0b:a4:41:91:c3:c8:12:62:b9:e8:a6:d5:96: c9:b6:1c:23:2f:b0:37:10:ba:1a:5b:b8:05:f6:3b:95:16:3d: 31:3a:05:8a:67:48:d4:73:20:1b:2d:fe:4b:90:7f:85:06:e3: 4a:b2:24:ff:0a:20:fd:00:2e:37:d7:95:ad:14:81:62:9c:bc: b6:ef:cf:0b:0b:53:24:10:83:f6:e7:6c:bb:11:75:c1:0b:02: 4b:e3:7b:3c:7e:d4:4b:9d:88:15:72:57:ac:08:14:65:c1:93: 3f:d4:3e:77:8d:66:30:dd:6f:fd:49:0c:ef:77:b3:cd:73:85: f2:a8:f0:77:0f:cc:2d:a7:3b:00:ce:61:e3:e3:b0:fe:5a:24: d9:8f:8b:c8:85:dd:5b:d6:33:f0:e9:93:5b:3b:89:4c:9d:81: 61:ce:91:7a:32:78:96:5e:d1:84:5c:5c:fc:7d:ca:aa:a2:df: 8b:b3:bd:16:ef:27:66:4a:f4:b0:24:36:e5:72:f3:b6:f4:b4: 84:55:40:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Nzk5QzExMC8GA1UEBRMoQUQwNzAyNDAyOTNBQ0RDNTI0Q0ExMzM2NTgyRDcwQzIx OUZDQzdFMDAeFw0yNTEyMDMwNTI2MTRaFw0yNTEyMTAwNTI2MTRaMBgxFjAUBgNV BAMTDTY5MmZjOWY2LWRjODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUliqEk+5MSlv0sfvPAMKMfrBnY0bmEmntJ3MQoPPFcRoWOxRpTKm/66VbEUfV ai/fb59oaFaxND/jeYeWq7Z6UbhfwT3z0mMebSpBHU0d04dEx9D8Z8LHM3ORdLlc xRcNdsOQebW5in7JhNmMNnVphrYeP265FiOYh5idNxKvyAC9Q4s6GR8d0rkkkrl9 tl5qgDEI/oy0+LXIsfJY5iRI5XWorY08r7XiynFbmliRapsMbqT2qhW7HJ1+uC7G ITRGDE3NswwAL/Z2XJ1ZxaHv9u6rurTzs2lxx/SrsFKcK/psanbbOaj2grScc76a OBakSnDut/HTtxzs8rKsT+VFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK917069b SB5NgQp0DA27hchGsrcwHwYDVR0jBBgwFoAUrQcCQCk6zcUkyhM2WC1wwhn8x+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3OTlDLzJEMzM1RTZBNTU0 NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNVa3loTTJXQzF3d2huOHgt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclFjQ1FDazZ6Y1VreWhNMldDMXd3aG44eC1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 OTlDLzJEMzM1RTZBNTU0NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNV a3loTTJXQzF3d2huOHgtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG6551O7pZ9zyzSnqG1zKOWpaxwZW6+H14iCBIQHqxmkaMkgoGUmxc1T B1PQeJjHUdhR+JS0D1sb0TgjC6RBkcPIEmK56KbVlsm2HCMvsDcQuhpbuAX2O5UW PTE6BYpnSNRzIBst/kuQf4UG40qyJP8KIP0ALjfXla0UgWKcvLbvzwsLUyQQg/bn bLsRdcELAkvjezx+1EudiBVyV6wIFGXBkz/UPneNZjDdb/1JDO93s81zhfKo8HcP zC2nOwDOYePjsP5aJNmPi8iF3VvWM/Dpk1s7iUydgWHOkXoyeJZe0YRcXPx9yqqi 34uzvRbvJ2ZK9LAkNuVy87b0tIRVQGI= -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:31 2025 by rpki-client