This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: oE4lTkKaNOytSCXN4zvttUqE6H3aDtlPCZ9OK0VvHTs= Subject key identifier: EB:1E:C6:72:01:30:B6:EC:69:55:91:6D:7C:C6:8C:3D:1D:0C:29:1F Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 01D1 Signing time: Tue 23 Dec 2025 01:53:13 +0000 Manifest this update: Tue 23 Dec 2025 01:53:12 +0000 Manifest next update: Tue 30 Dec 2025 01:53:12 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: QNdP50Q3RjP2cAWBteCN4E5aU5tjbo3VeMhttd1tI7k=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Dec 23 01:53:12 2025 GMT Not After : Dec 30 01:53:12 2025 GMT Subject: CN=6949f609-5626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:22:35:c2:21:5f:ca:01:46:34:4b:ea:74:10: 42:f3:36:ff:0b:65:e4:c4:a8:c5:7c:be:14:4a:59: 58:ae:41:46:e7:54:16:13:ed:7f:50:73:23:98:a1: c6:30:26:ad:b7:0f:61:d1:ab:c8:c3:36:4a:ac:80: 6f:e9:35:fb:42:5f:bf:e7:0d:fc:58:57:c4:1c:14: 25:3f:59:66:56:b6:83:f5:11:50:75:41:58:5c:69: be:d6:10:f7:a9:23:59:36:50:cf:47:43:41:78:6b: cc:2c:0e:ca:eb:a7:72:fd:3e:7e:e9:b9:d1:bc:56: cc:df:0f:4e:10:11:16:6d:c8:74:ae:5f:a5:a5:d6: 0c:31:c3:ae:b6:42:2d:90:e6:ac:d4:77:28:82:94: 7c:c1:53:a7:22:55:47:53:8e:b8:ed:87:be:95:80: ec:49:8c:9f:86:80:63:96:40:83:42:56:cb:1c:75: 0d:c7:26:25:77:b4:c6:3c:c9:43:68:db:6a:12:13: 44:57:fb:6d:a4:72:1d:ee:33:a7:ab:88:62:7a:85: a5:7b:76:ab:85:8a:08:56:90:cf:a2:09:7e:b0:d8: 0a:fa:d1:4a:4d:48:fa:14:37:ec:9d:6c:cc:79:5d: 7a:b5:a3:67:bb:43:ed:dc:93:56:36:8e:dd:f4:13: 31:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:1E:C6:72:01:30:B6:EC:69:55:91:6D:7C:C6:8C:3D:1D:0C:29:1F X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:e5:92:26:b9:be:74:ba:c1:eb:57:3c:76:e8:5e:18:e9:7e: 88:d1:85:0a:f0:66:eb:6e:05:ef:be:e6:fc:06:c2:18:f5:60: 57:c8:fe:b0:82:80:81:cf:1a:59:fa:b9:aa:04:1c:0e:cb:b0: 16:0c:88:02:87:8c:2f:76:a2:46:80:c5:b7:2f:93:5a:e7:2b: bd:06:a8:18:f8:1d:3d:4a:33:14:b8:7b:49:a0:19:c0:d6:ca: 24:f4:ac:88:51:e3:5c:15:a8:8c:35:f6:ce:8d:3a:4d:a4:50: d7:fc:6b:20:54:79:b1:89:7d:5b:92:41:4e:61:e4:51:c4:cd: 25:5f:27:e3:96:ac:aa:b6:05:4b:4b:e9:48:b5:2b:27:9d:53: 19:cc:fb:43:88:5f:3e:23:9f:c9:9b:2e:45:44:dc:bb:f2:7f: a9:5a:88:5a:9d:16:dd:79:5f:34:ba:1c:43:fe:a3:43:5f:d7: 69:f0:8c:d8:6d:98:59:62:99:f7:a4:ce:b1:d8:26:d3:9a:49: 39:9c:f9:06:32:f4:6b:da:e6:a6:76:f1:6e:cf:95:1f:27:78: 7f:6e:7b:4a:ff:d5:00:6e:73:32:69:9b:53:c2:e7:57:8d:de: 5e:b1:da:65:66:da:71:d4:74:52:06:db:18:d3:15:b8:43:a7: ce:48:6c:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUxMjIzMDE1MzEyWhcNMjUxMjMwMDE1MzEyWjAYMRYwFAYD VQQDDA02OTQ5ZjYwOS01NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iI1wiFfygFGNEvqdBBC8zb/C2XkxKjFfL4USllYrkFG51QWE+1/UHMjmKHG MCattw9h0avIwzZKrIBv6TX7Ql+/5w38WFfEHBQlP1lmVraD9RFQdUFYXGm+1hD3 qSNZNlDPR0NBeGvMLA7K66dy/T5+6bnRvFbM3w9OEBEWbch0rl+lpdYMMcOutkIt kOas1HcogpR8wVOnIlVHU4647Ye+lYDsSYyfhoBjlkCDQlbLHHUNxyYld7TGPMlD aNtqEhNEV/ttpHId7jOnq4hieoWle3arhYoIVpDPogl+sNgK+tFKTUj6FDfsnWzM eV16taNnu0Pt3JNWNo7d9BMxbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsexnIB MLbsaVWRbXzGjD0dDCkfMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB55ZImub50usHrVzx26F4Y6X6I0YUK8GbrbgXvvub8BsIY9WBXyP6w goCBzxpZ+rmqBBwOy7AWDIgCh4wvdqJGgMW3L5Na5yu9BqgY+B09SjMUuHtJoBnA 1sok9KyIUeNcFaiMNfbOjTpNpFDX/GsgVHmxiX1bkkFOYeRRxM0lXyfjlqyqtgVL S+lItSsnnVMZzPtDiF8+I5/Jmy5FRNy78n+pWohanRbdeV80uhxD/qNDX9dp8IzY bZhZYpn3pM6x2CbTmkk5nPkGMvRr2uamdvFuz5UfJ3h/bntK/9UAbnMyaZtTwudX jd5esdplZtpx1HRSBtsY0xW4Q6fOSGzj -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:19 2025 by rpki-client