This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft File: 13OnYxe8qx7vA29fbkx7NMSra3s.mft (raw, json) Hash identifier: 2nxfQCRaWsl/rsKiXeyyibEjmddqlrHacK4mU1MSuRg= Subject key identifier: 28:F2:E5:CB:72:AF:6F:24:87:E9:B6:53:47:84:D6:80:64:AA:A1:43 Authority key identifier: D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B Certificate issuer: /CN=A917AE24/serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Certificate serial: 0513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft Manifest number: 0513 Signing time: Mon 22 Dec 2025 22:42:12 +0000 Manifest this update: Mon 22 Dec 2025 22:42:11 +0000 Manifest next update: Mon 29 Dec 2025 22:42:11 +0000 Files and hashes: 1: 13OnYxe8qx7vA29fbkx7NMSra3s.crl (hash: 4FpKMwFywr1vMcJY+odIAvsMj6LSMnOq1vpZxJfMo5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AE24, serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Validity Not Before: Dec 22 22:42:11 2025 GMT Not After : Dec 29 22:42:11 2025 GMT Subject: CN=6949c944-aa8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:50:e1:a6:ff:29:aa:4f:d4:6e:11:ee:7c: 55:93:b3:cd:fd:db:2e:51:b5:59:f9:a4:f2:63:30: e9:f3:7e:1b:da:25:49:a5:c4:16:98:5b:9d:47:82: 85:fd:68:8f:1f:7b:0e:f3:77:59:29:94:c9:fe:4d: 5f:57:62:f2:15:cd:82:d3:cb:f8:37:4d:ac:7f:4f: 3b:e2:55:96:7a:14:6d:22:37:33:bc:c5:86:3d:d8: 5a:fc:ff:cd:9f:02:71:7f:8e:52:f8:9b:63:ac:52: 7b:47:e3:19:42:fc:a9:43:fc:31:b4:63:fa:4f:5f: 7d:c0:ba:dc:e5:4a:54:5f:f9:59:ca:a8:d9:ad:41: 2b:91:07:35:20:c0:31:c8:42:23:e1:0b:53:ad:55: cf:05:78:c1:c4:e7:47:49:9b:5a:60:13:9a:d0:f2: 39:bf:59:ad:3a:81:85:3c:71:62:df:72:68:50:d8: 38:0a:36:e7:1f:86:b8:9f:9f:fa:83:2e:9c:11:5c: 7c:a9:73:ab:71:f4:a4:c8:45:ae:16:15:59:16:cb: 28:1c:be:8a:a9:dc:9b:f8:45:ef:2f:f7:0d:aa:a1: 73:32:62:a5:81:7c:51:e4:8b:03:30:78:fb:69:06: 50:53:23:74:2d:3c:80:9d:31:9b:46:69:cc:eb:f1: bd:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F2:E5:CB:72:AF:6F:24:87:E9:B6:53:47:84:D6:80:64:AA:A1:43 X509v3 Authority Key Identifier: keyid:D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:7f:24:da:e0:c8:86:80:55:23:4a:94:4f:02:f7:c0:6e:cd: 36:c3:d2:52:9b:63:8e:d5:1d:63:c8:ea:17:65:56:d1:6a:3f: e2:9e:4e:1f:32:f6:e5:e0:67:8e:a3:dc:6a:01:d4:72:7a:62: f1:51:74:ce:62:34:d4:18:46:34:51:46:1f:54:41:49:43:22: b5:37:8c:d1:54:26:69:ac:a6:da:49:13:ed:e3:03:ce:98:62: 89:c6:9d:26:87:38:e9:38:96:64:67:3e:bb:e1:7e:51:a0:a4: b2:27:85:7e:1e:17:e7:ed:de:ac:b7:a8:c3:ba:73:de:b7:00: cc:73:ac:c3:a5:ca:9a:f4:c3:21:66:dc:d6:32:da:06:70:f7: 2e:cb:9d:eb:b6:56:49:3f:5c:a4:01:84:77:6c:68:73:81:8d: c8:ca:ed:57:c1:7b:a7:8e:07:9d:0e:3a:9c:40:94:6d:0e:ef: 91:57:6d:b0:a6:fa:ac:e1:f1:c6:37:9d:24:da:9c:7a:61:a0: 06:76:77:25:73:81:ba:85:a9:5e:50:24:2f:19:e0:e8:e8:44: dd:32:75:b9:01:2b:63:72:08:5a:38:e3:e0:d4:19:54:72:32: 63:04:09:45:a5:4d:10:ec:93:4e:03:1f:f7:8b:f8:3c:d5:97: c6:5f:94:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FFMjQxMTAvBgNVBAUTKEQ3NzNBNzYzMTdCQ0FCMUVFRjAzNkY1RjZFNEM3QjM0 QzRBQjZCN0IwHhcNMjUxMjIyMjI0MjExWhcNMjUxMjI5MjI0MjExWjAYMRYwFAYD VQQDDA02OTQ5Yzk0NC1hYThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMVQ4ab/KapP1G4R7nxVk7PN/dsuUbVZ+aTyYzDp834b2iVJpcQWmFudR4KF /WiPH3sO83dZKZTJ/k1fV2LyFc2C08v4N02sf0874lWWehRtIjczvMWGPdha/P/N nwJxf45S+JtjrFJ7R+MZQvypQ/wxtGP6T199wLrc5UpUX/lZyqjZrUErkQc1IMAx yEIj4QtTrVXPBXjBxOdHSZtaYBOa0PI5v1mtOoGFPHFi33JoUNg4CjbnH4a4n5/6 gy6cEVx8qXOrcfSkyEWuFhVZFssoHL6Kqdyb+EXvL/cNqqFzMmKlgXxR5IsDMHj7 aQZQUyN0LTyAnTGbRmnM6/G94wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjy5cty r28kh+m2U0eE1oBkqqFDMB8GA1UdIwQYMBaAFNdzp2MXvKse7wNvX25MezTEq2t7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUUyNC84RUM0MDA5NDMw QTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4N3ZBMjlmYmt4N05NU3Jh M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzT25ZeGU4cXg3dkEyOWZia3g3Tk1TcmEzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUUyNC84RUM0MDA5NDMwQTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4 N3ZBMjlmYmt4N05NU3JhM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPfyTa4MiGgFUjSpRPAvfAbs02w9JSm2OO1R1jyOoXZVbRaj/ink4f Mvbl4GeOo9xqAdRyemLxUXTOYjTUGEY0UUYfVEFJQyK1N4zRVCZprKbaSRPt4wPO mGKJxp0mhzjpOJZkZz674X5RoKSyJ4V+Hhfn7d6st6jDunPetwDMc6zDpcqa9MMh ZtzWMtoGcPcuy53rtlZJP1ykAYR3bGhzgY3Iyu1XwXunjgedDjqcQJRtDu+RV22w pvqs4fHGN50k2px6YaAGdnclc4G6haleUCQvGeDo6ETdMnW5AStjcghaOOPg1BlU cjJjBAlFpU0Q7JNOAx/3i/g81ZfGX5SN -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:45 2025 by rpki-client