This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: 2q8sq3B3J0FvoIti2iIO2yb8BCmykNMJpwmwbEzjcJ4= Subject key identifier: CB:65:47:C0:83:16:6B:B9:B8:FE:4F:0F:0A:1A:DB:7D:B5:FC:C3:83 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 018C Signing time: Tue 23 Dec 2025 02:32:28 +0000 Manifest this update: Tue 23 Dec 2025 02:32:28 +0000 Manifest next update: Tue 30 Dec 2025 02:32:28 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: gmw2rANVPcdCq4wGnP004gJ/enzwmAL+t+c12FkG4pk=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: gkpGu4s3lw8zurLXdvn6Zq+w59lx0+P+q37arJjTECg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: Dec 23 02:32:28 2025 GMT Not After : Dec 30 02:32:28 2025 GMT Subject: CN=6949ff3c-28ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e2:5f:8f:42:c7:fb:b7:eb:ff:70:55:7b:52: 3c:2b:97:91:85:ab:00:e8:a6:2d:18:d0:30:6e:79: a5:63:5d:2c:5e:50:a1:01:e2:df:fa:e8:56:7a:8e: 9b:7f:15:b9:1b:4e:20:e2:0e:ff:60:fc:4f:08:60: d6:c0:0b:ac:66:91:11:01:3a:f3:9a:16:d5:44:b9: 61:5f:95:6d:fb:db:6e:8e:4c:92:aa:41:6d:1a:64: 31:a0:50:8a:b1:f1:32:32:ed:86:54:c3:63:84:fc: 33:ac:ee:04:38:ce:ea:fc:f4:8f:75:62:91:7a:9f: af:7a:e7:ad:37:ff:80:fd:6b:9e:3a:a8:a3:35:99: 8e:04:15:6a:ce:2b:01:f1:ca:8b:f2:02:fa:7c:81: e5:82:f7:1d:b6:77:9e:82:0f:32:77:3f:70:9a:fa: c1:78:44:6b:60:1e:76:26:ef:19:24:c7:dd:c2:d1: 33:03:b6:a8:af:c8:3f:a4:06:f8:f6:8c:42:d5:53: 23:3f:c9:80:24:38:06:9a:37:57:c0:ca:31:ac:8a: cf:44:5d:a6:26:61:f4:15:9f:ea:86:9f:d1:6b:c6: 0c:24:75:7a:1d:6f:73:cf:3b:1b:27:99:d0:cb:07: 2f:ea:61:d0:5a:97:bf:9d:3d:ce:35:1b:64:38:ab: e5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:65:47:C0:83:16:6B:B9:B8:FE:4F:0F:0A:1A:DB:7D:B5:FC:C3:83 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:82:4f:ca:1d:3a:ef:f3:57:1e:b4:6a:ff:e8:9e:48:45:c8: 02:bd:ae:4c:9d:92:e9:eb:73:40:e4:cf:4a:dc:2d:f1:34:f6: 05:83:2a:ff:29:95:32:ab:94:06:0a:e0:e6:e4:db:ba:fc:d1: 35:13:9f:e8:61:11:e8:12:43:c9:58:09:21:6b:63:23:d7:98: 47:7d:9f:62:16:64:b1:27:3a:92:6a:c4:b3:03:23:b1:23:98: 89:25:7e:8c:e5:7e:69:bd:00:85:43:80:75:7e:f6:88:73:66: a2:ac:40:e7:07:b0:f6:f5:7f:0f:dc:aa:41:da:e3:51:c2:68: 0e:8b:7a:e2:60:f1:7c:9b:34:76:f2:11:b6:e2:66:7c:a7:5a: 92:c1:36:2c:44:53:e9:00:54:f1:b2:42:e8:63:9d:73:c0:bb: 95:c0:1d:5b:4d:49:d9:d8:05:cc:f6:46:f1:7f:53:35:f1:c7: 0f:2d:d8:c0:03:cd:60:23:c6:47:03:0c:cd:27:21:75:80:d1: 85:44:1d:ae:33:bb:51:c0:47:a3:69:fb:06:87:cb:e6:1a:88: 84:8c:b4:90:0b:2a:eb:16:f2:ac:90:8b:5b:88:c7:52:8c:bb: 61:3b:3b:6c:86:bc:6d:a5:95:26:43:a2:3f:11:f1:fd:91:e3: b8:82:29:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUxMjIzMDIzMjI4WhcNMjUxMjMwMDIzMjI4WjAYMRYwFAYD VQQDDA02OTQ5ZmYzYy0yOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOJfj0LH+7fr/3BVe1I8K5eRhasA6KYtGNAwbnmlY10sXlChAeLf+uhWeo6b fxW5G04g4g7/YPxPCGDWwAusZpERATrzmhbVRLlhX5Vt+9tujkySqkFtGmQxoFCK sfEyMu2GVMNjhPwzrO4EOM7q/PSPdWKRep+veuetN/+A/WueOqijNZmOBBVqzisB 8cqL8gL6fIHlgvcdtneegg8ydz9wmvrBeERrYB52Ju8ZJMfdwtEzA7aor8g/pAb4 9oxC1VMjP8mAJDgGmjdXwMoxrIrPRF2mJmH0FZ/qhp/Ra8YMJHV6HW9zzzsbJ5nQ ywcv6mHQWpe/nT3ONRtkOKvlwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtlR8CD Fmu5uP5PDwoa2321/MODMB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2gk/KHTrv81cetGr/6J5IRcgCva5MnZLp63NA5M9K3C3xNPYFgyr/ KZUyq5QGCuDm5Nu6/NE1E5/oYRHoEkPJWAkha2Mj15hHfZ9iFmSxJzqSasSzAyOx I5iJJX6M5X5pvQCFQ4B1fvaIc2airEDnB7D29X8P3KpB2uNRwmgOi3riYPF8mzR2 8hG24mZ8p1qSwTYsRFPpAFTxskLoY51zwLuVwB1bTUnZ2AXM9kbxf1M18ccPLdjA A81gI8ZHAwzNJyF1gNGFRB2uM7tRwEejafsGh8vmGoiEjLSQCyrrFvKskItbiMdS jLthOztshrxtpZUmQ6I/EfH9keO4gima -----END CERTIFICATE-----Generated at Wed Dec 24 14:08:03 2025 by rpki-client