This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: wwwqWI8FTdSNXhfPv6sUjPC07TEHIXDWv0r4RBvwneI= Subject key identifier: AA:4C:8E:BE:30:22:B9:FC:6B:21:2A:D1:11:15:E7:33:18:48:5C:9B Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0D5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0D53 Signing time: Mon 22 Dec 2025 17:37:46 +0000 Manifest this update: Mon 22 Dec 2025 17:37:45 +0000 Manifest next update: Mon 29 Dec 2025 17:37:45 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: xYAPi9Js4Rdo9xJEID5n/tjHe/9yPejGj1v7WZ5xRUA=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: kp1NwcuWRnERAOxCFbqoz60WokKexk6IerZxBoJu4j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3418 (0xd5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Dec 22 17:37:45 2025 GMT Not After : Dec 29 17:37:45 2025 GMT Subject: CN=694981e9-8724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c3:82:24:a9:5e:ab:f4:bf:99:7e:67:a8:d8: 94:84:c2:ef:74:94:9f:4b:8f:a9:6d:19:05:7b:61: 05:8d:aa:5c:84:93:5c:1a:43:e9:bd:37:95:03:04: cc:48:07:a9:41:9a:01:5a:46:cc:2e:20:21:f2:b5: 9a:16:6c:21:81:71:2e:dc:2e:b1:15:4e:a2:e3:49: bd:0a:19:0b:8a:18:bc:52:3d:9e:60:97:f1:42:8a: 15:0a:3a:d8:3e:6f:a8:07:ca:ad:3e:d9:0e:5c:f2: 8e:72:91:4d:9d:79:cb:2c:ac:d5:f2:58:a1:c7:e4: 0d:ed:d5:44:be:b5:12:ab:f6:73:cf:5c:4f:22:80: f0:e6:c1:a5:5a:09:d3:9e:16:52:cd:75:13:26:13: 18:10:18:d6:9a:ec:b4:83:26:62:91:d2:c1:70:12: 5f:cc:da:cc:ce:65:b3:02:24:82:01:b0:b2:8b:88: fc:af:16:8b:aa:f2:6d:31:5c:47:06:a4:ba:fe:7d: 3a:59:c7:f5:77:9e:3f:58:75:26:37:8a:2e:99:34: ac:11:c5:93:f3:1f:a3:46:bf:8d:de:8c:a8:b1:82: 7c:8f:41:c9:5e:28:9b:f2:22:6b:0b:af:b7:74:98: b5:05:4c:14:ae:01:f4:d0:7d:0d:80:0c:ce:86:9e: d9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:4C:8E:BE:30:22:B9:FC:6B:21:2A:D1:11:15:E7:33:18:48:5C:9B X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:05:37:85:51:f5:aa:99:42:dc:c8:fc:d4:75:82:6b:a9:0c: 41:cb:09:46:7e:26:91:6c:34:1f:6a:cc:da:5e:9a:5b:e5:bf: 10:34:77:c8:2a:35:04:0f:5f:7f:d8:0f:b9:72:2e:76:f5:c6: b3:95:6f:89:49:5d:ff:52:ed:36:5d:b2:61:02:dc:63:08:36: 2c:b4:cd:56:19:30:b8:18:b9:85:07:86:e1:54:8e:f7:6f:eb: 2c:25:25:a3:1a:36:49:74:15:a3:be:54:05:8b:d4:cd:bd:55: da:08:67:52:96:e5:5c:2d:4e:62:41:5a:8e:ef:f6:06:e0:24: 50:d3:60:c9:09:c8:09:57:39:43:28:5b:68:fc:cd:55:b1:60: 52:63:8e:b3:f3:43:0d:2b:df:6f:cc:58:07:a0:5e:4c:3d:e0: e6:26:2c:a6:02:95:03:0a:e2:a0:5f:39:96:99:d8:b8:28:98: 6b:98:57:54:63:35:e3:95:02:7d:21:d8:f7:95:fd:47:c6:a3: 6a:1f:34:5d:52:a2:8b:bb:c9:a4:88:aa:55:21:f6:d6:db:93: 21:15:f0:57:f8:48:82:81:89:16:d6:f1:c4:61:5a:d1:25:ba: 85:db:d6:4a:7c:82:80:26:58:2d:16:66:d3:d0:fb:5c:e7:c2: 55:62:0b:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjUxMjIyMTczNzQ1WhcNMjUxMjI5MTczNzQ1WjAYMRYwFAYD VQQDDA02OTQ5ODFlOS04NzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmsOCJKleq/S/mX5nqNiUhMLvdJSfS4+pbRkFe2EFjapchJNcGkPpvTeVAwTM SAepQZoBWkbMLiAh8rWaFmwhgXEu3C6xFU6i40m9ChkLihi8Uj2eYJfxQooVCjrY Pm+oB8qtPtkOXPKOcpFNnXnLLKzV8lihx+QN7dVEvrUSq/Zzz1xPIoDw5sGlWgnT nhZSzXUTJhMYEBjWmuy0gyZikdLBcBJfzNrMzmWzAiSCAbCyi4j8rxaLqvJtMVxH BqS6/n06Wcf1d54/WHUmN4oumTSsEcWT8x+jRr+N3oyosYJ8j0HJXiib8iJrC6+3 dJi1BUwUrgH00H0NgAzOhp7Z9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpMjr4w Irn8ayEq0REV5zMYSFybMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATBTeFUfWqmULcyPzUdYJrqQxBywlGfiaRbDQfaszaXppb5b8QNHfI KjUED19/2A+5ci529cazlW+JSV3/Uu02XbJhAtxjCDYstM1WGTC4GLmFB4bhVI73 b+ssJSWjGjZJdBWjvlQFi9TNvVXaCGdSluVcLU5iQVqO7/YG4CRQ02DJCcgJVzlD KFto/M1VsWBSY46z80MNK99vzFgHoF5MPeDmJiymApUDCuKgXzmWmdi4KJhrmFdU YzXjlQJ9Idj3lf1HxqNqHzRdUqKLu8mkiKpVIfbW25MhFfBX+EiCgYkW1vHEYVrR JbqF29ZKfIKAJlgtFmbT0Ptc58JVYgtQ -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:16 2025 by rpki-client