This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: bNnB91tZaNEt0+f9GwWU5ZrE0gn83dhUU5qqmv82EWQ= Subject key identifier: 1C:7B:40:A7:06:D0:F9:E3:3B:F0:59:F0:A0:AB:40:34:29:C3:54:D8 Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 074A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 0745 Signing time: Mon 22 Dec 2025 20:58:34 +0000 Manifest this update: Mon 22 Dec 2025 20:58:34 +0000 Manifest next update: Mon 29 Dec 2025 20:58:34 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: AQXxtM5tYDDSNt6rhYPOTI1fvTLAKqPNdNuMKYCuu0I=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1866 (0x74a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Dec 22 20:58:34 2025 GMT Not After : Dec 29 20:58:34 2025 GMT Subject: CN=6949b0fa-5e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:24:4a:3e:b2:1b:57:58:d5:08:d5:7a:c7:18: 44:bc:ec:64:3f:f3:27:ae:64:64:17:76:78:dd:f4: 9e:ef:0c:e3:12:71:86:90:35:a1:bc:8b:8c:f0:f6: 7c:76:3a:88:71:45:bd:d3:49:79:4c:8e:ee:b9:91: d7:66:50:2c:90:75:5a:43:e5:d5:34:84:56:ad:b7: 06:fe:7a:36:f4:7f:12:9a:78:ed:42:b5:9b:23:b5: 58:23:7b:4b:4a:f6:69:2b:6f:05:81:8b:36:42:d1: 0f:a2:06:0f:c7:85:c9:0f:73:d8:5b:40:96:20:cd: 20:a4:64:c0:cb:72:59:50:6b:1b:8e:49:f4:63:49: 9a:47:21:59:c5:54:1e:e7:d7:04:97:dc:6e:c6:f1: 70:87:1c:80:50:03:a2:a2:5c:d6:c6:18:b0:07:f3: 04:89:5f:4d:ad:97:a6:e0:10:14:2b:72:81:2b:bd: a1:95:67:20:01:07:b0:1e:93:28:1f:d0:a2:87:2b: fb:0a:9a:c3:af:eb:52:97:29:d5:94:b2:9d:d0:c6: e5:75:79:22:4b:6a:d2:a6:dc:04:80:ca:9c:be:2d: 99:4e:0b:36:a5:78:6e:09:f0:8e:ac:89:16:61:cc: 90:0c:e7:10:e3:05:db:be:e6:c6:87:ac:02:ca:59: b8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:7B:40:A7:06:D0:F9:E3:3B:F0:59:F0:A0:AB:40:34:29:C3:54:D8 X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:d5:f7:f8:9c:e3:14:e8:66:88:e0:41:a9:47:15:03:97:48: cc:5a:82:e8:a1:1a:1d:f6:60:d4:99:3e:02:de:67:aa:ad:25: 2c:c3:f3:8a:d2:90:da:d7:89:3b:92:f3:4f:9c:21:aa:7e:f8: 96:39:30:14:57:cf:db:bd:fa:ff:e0:06:1f:64:65:82:52:81: eb:ed:6c:2b:2b:7e:fb:6b:e3:cd:f2:ef:72:c3:3b:1c:6d:8b: a8:af:0a:4c:4d:46:c2:85:ad:61:5a:e2:7b:a6:2f:65:53:b9: 87:e1:52:65:2f:37:1c:25:30:10:8e:5e:67:54:c6:08:ef:9e: a3:fa:53:b3:e0:48:cd:33:64:1e:69:62:48:8b:fd:35:97:e1: 57:19:88:52:e4:a9:c4:c5:e8:94:6d:27:e7:f7:94:b7:c4:a0: 6c:25:da:26:60:03:d9:8d:cc:d9:12:6b:e8:b0:99:e8:6a:6d: c6:69:e5:cb:f8:d7:e8:01:b6:c0:62:2b:3f:dd:15:d3:8f:2d: 63:bd:c9:67:bb:ff:5e:e0:ac:0e:bb:34:ba:ec:64:d5:80:a0: ae:24:c0:a5:6e:8a:69:8e:b1:91:a0:1b:a3:01:4b:16:f9:86: 52:e3:e0:42:66:85:05:93:f9:84:77:4d:a8:2b:9a:be:48:6c: 5d:36:a0:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUxMjIyMjA1ODM0WhcNMjUxMjI5MjA1ODM0WjAYMRYwFAYD VQQDDA02OTQ5YjBmYS01ZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiRKPrIbV1jVCNV6xxhEvOxkP/MnrmRkF3Z43fSe7wzjEnGGkDWhvIuM8PZ8 djqIcUW900l5TI7uuZHXZlAskHVaQ+XVNIRWrbcG/no29H8SmnjtQrWbI7VYI3tL SvZpK28FgYs2QtEPogYPx4XJD3PYW0CWIM0gpGTAy3JZUGsbjkn0Y0maRyFZxVQe 59cEl9xuxvFwhxyAUAOiolzWxhiwB/MEiV9NrZem4BAUK3KBK72hlWcgAQewHpMo H9Cihyv7CprDr+tSlynVlLKd0MbldXkiS2rSptwEgMqcvi2ZTgs2pXhuCfCOrIkW YcyQDOcQ4wXbvubGh6wCylm4IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBx7QKcG 0PnjO/BZ8KCrQDQpw1TYMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi1ff4nOMU6GaI4EGpRxUDl0jMWoLooRod9mDUmT4C3meqrSUsw/OK 0pDa14k7kvNPnCGqfviWOTAUV8/bvfr/4AYfZGWCUoHr7WwrK377a+PN8u9ywzsc bYuorwpMTUbCha1hWuJ7pi9lU7mH4VJlLzccJTAQjl5nVMYI756j+lOz4EjNM2Qe aWJIi/01l+FXGYhS5KnExeiUbSfn95S3xKBsJdomYAPZjczZEmvosJnoam3GaeXL +NfoAbbAYis/3RXTjy1jvclnu/9e4KwOuzS67GTVgKCuJMClboppjrGRoBujAUsW +YZS4+BCZoUFk/mEd02oK5q+SGxdNqDt -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:40 2025 by rpki-client