This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: xswIvTte1woE2CsNdcFdhxcXE5VFZDjVFdwRvD4GZ7o= Subject key identifier: 78:D5:65:80:42:8E:00:D8:C9:C7:4D:94:FF:DC:B9:D1:40:B1:25:80 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 357E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3544 Signing time: Mon 22 Dec 2025 14:26:02 +0000 Manifest this update: Mon 22 Dec 2025 14:26:02 +0000 Manifest next update: Mon 29 Dec 2025 14:26:02 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: 2wGHCOPGlZvsEafc1esVPIRgHd+sBSgj8C5xgqzwAJ0=) 2: B16ED608D4A311F09760561DC4F9AE02.roa (hash: B4GKc23CBZy7TK/8RfhCucQyxz/r6upiO0JiwG4ZWRo=) 3: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: WwD2ymgng2bwpapBOqzMzqB6ovGRKkkTnIg+kcKI0gk=) 4: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: CQ2eYsEFmxM9THfQSK8/XWNWdFzBxVfYUFyLT6HYruk=) 5: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: I5t/9d1FpDA1nSsUY9DqmVb9YbxmBSs4f9ZYU3gw97M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13694 (0x357e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Dec 22 14:26:02 2025 GMT Not After : Dec 29 14:26:02 2025 GMT Subject: CN=694954fa-5751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1d:75:4f:f8:a4:5e:a7:05:9c:58:2e:47:40: 59:ae:a6:f7:bf:d0:64:dc:75:43:12:db:2f:e3:8d: 43:4d:b3:e8:2c:2a:3c:35:87:05:0b:ee:93:0b:d4: a5:b1:3e:ae:86:48:db:d8:76:a7:b7:3a:54:18:61: eb:67:a4:be:e6:2a:0a:6b:77:61:31:fe:8e:82:6a: 66:49:7a:aa:5a:b7:77:14:d2:98:c1:ec:65:8c:a0: 8c:3a:3c:77:41:c0:dc:77:61:77:d7:52:f9:1c:64: 02:9c:49:c4:94:49:9c:a7:f2:e6:04:85:c3:f0:1d: 2b:5a:6a:a3:08:38:88:0b:4c:f1:16:77:2b:0f:d2: 18:6b:cc:0e:60:69:c8:37:64:e8:0f:2e:82:3a:49: e2:ce:3c:e6:ad:4d:fa:ad:43:c2:fb:79:84:46:4b: 09:53:d1:76:32:fb:6e:b3:21:76:91:7a:a1:9c:fe: 07:bf:fb:51:9c:77:4e:3b:18:de:a3:26:ac:0d:65: 19:2f:87:51:bc:7e:f5:81:2a:e4:88:65:52:03:a1: 4a:34:b2:f8:48:f6:b9:6c:c2:09:05:b2:98:53:2e: 4b:a8:36:e5:66:f7:17:32:88:31:8a:90:97:df:a8: c3:7c:4b:a1:79:ba:12:61:9d:d7:40:27:a5:64:b2: 8f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D5:65:80:42:8E:00:D8:C9:C7:4D:94:FF:DC:B9:D1:40:B1:25:80 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:65:47:21:b2:b4:c9:f1:8f:7f:f9:fb:4a:62:3f:57:56:8e: 02:df:b7:c7:92:e5:35:cd:2f:a0:c5:8a:bd:32:97:9e:2e:de: 3d:ad:77:00:d7:89:f8:ce:2c:a7:a4:78:b6:69:98:f3:69:88: ab:18:df:8e:50:a2:33:01:c3:71:83:80:4f:b3:68:44:6c:65: db:85:26:5f:2a:fa:8c:7d:47:82:57:70:98:06:9e:15:a9:85: d4:d5:8f:0e:8a:7e:ed:ac:30:99:eb:7b:88:18:d3:f0:ec:99: 09:8f:f6:05:2a:08:69:e0:4b:31:e7:7f:d6:bf:e8:e1:d9:3f: b8:fe:a0:71:e7:0e:9a:19:8d:26:f1:bf:c8:29:66:27:e7:a7: e4:c1:61:91:b6:eb:db:78:1f:4a:a9:55:29:66:be:c5:1b:bd: 1b:50:81:29:f9:c7:8f:e8:be:3a:a2:4c:ea:16:91:76:34:1d: 85:e2:9e:13:e5:88:a5:af:5e:a9:63:2f:d1:1b:fc:cc:91:e2: f3:e5:0e:aa:6a:ce:3a:ea:b6:3a:76:61:3f:e8:ff:d6:a4:c7: 27:1f:db:73:89:f5:2f:db:89:2c:2b:e6:89:eb:aa:58:b7:2e: 9a:0d:c5:88:f1:e0:ad:e7:8c:0d:b4:31:37:0e:98:47:56:8f: 58:b2:c7:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUxMjIyMTQyNjAyWhcNMjUxMjI5MTQyNjAyWjAYMRYwFAYD VQQDDA02OTQ5NTRmYS01NzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzR11T/ikXqcFnFguR0BZrqb3v9Bk3HVDEtsv441DTbPoLCo8NYcFC+6TC9Sl sT6uhkjb2HantzpUGGHrZ6S+5ioKa3dhMf6OgmpmSXqqWrd3FNKYwexljKCMOjx3 QcDcd2F311L5HGQCnEnElEmcp/LmBIXD8B0rWmqjCDiIC0zxFncrD9IYa8wOYGnI N2ToDy6COknizjzmrU36rUPC+3mERksJU9F2MvtusyF2kXqhnP4Hv/tRnHdOOxje oyasDWUZL4dRvH71gSrkiGVSA6FKNLL4SPa5bMIJBbKYUy5LqDblZvcXMogxipCX 36jDfEuheboSYZ3XQCelZLKPhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjVZYBC jgDYycdNlP/cudFAsSWAMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuZUchsrTJ8Y9/+ftKYj9XVo4C37fHkuU1zS+gxYq9MpeeLt49rXcA 14n4ziynpHi2aZjzaYirGN+OUKIzAcNxg4BPs2hEbGXbhSZfKvqMfUeCV3CYBp4V qYXU1Y8Oin7trDCZ63uIGNPw7JkJj/YFKghp4Esx53/Wv+jh2T+4/qBx5w6aGY0m 8b/IKWYn56fkwWGRtuvbeB9KqVUpZr7FG70bUIEp+ceP6L46okzqFpF2NB2F4p4T 5Yilr16pYy/RG/zMkeLz5Q6qas466rY6dmE/6P/WpMcnH9tzifUv24ksK+aJ66pY ty6aDcWI8eCt54wNtDE3DphHVo9Yssc2 -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:48 2025 by rpki-client