This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft File: 10rBuKMzUkP8svmQW8UdvcsOI20.mft (raw, json) Hash identifier: zbxLxJXkULi5KjYJhsmDqYZQj4oeJYCKboV++5u9X+I= Subject key identifier: EB:F6:C1:B7:64:35:18:DD:01:AB:F2:73:D3:86:68:75:48:08:29:83 Authority key identifier: D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D Certificate issuer: /CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Certificate serial: 0B40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft Manifest number: 0B2C Signing time: Sat 20 Dec 2025 18:50:12 +0000 Manifest this update: Sat 20 Dec 2025 18:50:12 +0000 Manifest next update: Sat 27 Dec 2025 18:50:12 +0000 Files and hashes: 1: 10rBuKMzUkP8svmQW8UdvcsOI20.crl (hash: f7zDBLdII8pcbRbVTcSITSOq0Vst0u3F1EAQQrnDfLM=) 2: DDFB4716AB0D11F0A533CC38C4F9AE02.roa (hash: ST+eEmFvXhm94+Eq+HZ5fYqUNUrS3+2d6gwKeVG/128=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2880 (0xb40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E726, serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Validity Not Before: Dec 20 18:50:12 2025 GMT Not After : Dec 27 18:50:12 2025 GMT Subject: CN=6946efe4-ca50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:01:38:2b:68:ac:28:98:b6:9c:0c:9f:2d:5b: b8:45:7f:72:3d:50:68:86:90:96:06:8a:95:0e:e7: 17:83:a8:44:88:9e:3e:d3:53:13:b9:7d:59:4b:78: fb:6a:04:a8:ba:67:c9:56:62:53:97:e5:70:34:01: 20:35:43:cd:6b:4f:c4:3f:38:44:f4:b6:d5:5b:ca: bb:72:af:db:bb:4c:9c:ed:44:c7:8d:6a:06:20:f4: 38:64:10:a3:dd:49:d2:0c:bb:56:47:45:e4:40:b3: d8:40:80:52:95:92:6f:fe:35:17:25:c8:bf:71:fb: e3:35:31:a0:09:24:be:7e:a6:a8:bf:87:3b:86:b2: 14:28:72:5a:e2:9c:d5:63:69:46:85:f2:57:a3:08: 6a:9b:5a:20:cd:40:03:fd:be:ff:a1:5b:88:07:23: cc:89:9f:3c:71:e9:5e:3d:d9:45:f0:76:6f:1d:b9: 4c:61:44:be:ac:a1:1d:47:db:bc:96:40:49:7d:84: 71:56:68:5d:96:83:35:f9:d9:19:98:26:0b:eb:c8: 82:e3:c9:66:21:32:19:49:2d:22:db:ca:ae:fa:ef: 3c:3a:d9:86:67:88:66:05:66:3b:81:3a:75:92:1b: cf:25:0f:29:88:cc:a4:58:22:76:f3:21:20:5d:97: 35:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F6:C1:B7:64:35:18:DD:01:AB:F2:73:D3:86:68:75:48:08:29:83 X509v3 Authority Key Identifier: keyid:D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:19:43:b8:56:1d:48:40:ab:5e:3e:fb:98:35:dd:7e:58:43: 20:4b:88:d4:d3:4d:02:aa:17:8f:6e:31:a2:d5:f3:e3:d8:e4: 70:df:4c:47:70:3f:72:4e:7b:ff:45:3c:79:e7:16:4c:1d:e1: 31:40:d0:90:d4:da:c8:ac:a2:ed:3f:88:c7:e0:1b:09:db:0a: 5c:89:5e:59:ef:94:7e:7b:93:23:b4:c3:6c:dc:96:1e:38:67: f6:2f:75:fe:8c:c3:0f:0e:d0:02:48:dc:5d:e6:1d:0b:ac:ea: f0:e6:e6:0a:5e:7e:53:b6:66:3a:38:cf:1b:7a:d1:87:b4:9c: f8:fe:a2:19:78:52:ce:57:04:46:a6:e1:7e:08:55:87:34:72: 4f:70:07:d3:b5:7f:f6:99:52:67:1e:3a:2a:f9:7d:2b:02:0d: eb:2a:bf:99:2c:98:65:1a:4d:59:6f:17:00:3e:74:b2:94:8d: 9c:f0:19:1d:e2:f2:33:c1:d5:1a:ab:52:e2:d4:89:25:f8:60: 8d:7b:4d:9b:52:96:8e:47:02:25:4d:9a:1e:79:c9:eb:c9:a8: d5:7a:6b:c5:60:cb:de:47:f2:da:8a:89:b4:c7:f2:c0:69:7f: 6e:a7:c4:3c:c5:f8:80:be:b6:42:05:39:01:e6:f0:be:86:b9: 29:ef:96:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3MjYxMTAvBgNVBAUTKEQ3NEFDMUI4QTMzMzUyNDNGQ0IyRjk5MDVCQzUxREJE Q0IwRTIzNkQwHhcNMjUxMjIwMTg1MDEyWhcNMjUxMjI3MTg1MDEyWjAYMRYwFAYD VQQDDA02OTQ2ZWZlNC1jYTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowE4K2isKJi2nAyfLVu4RX9yPVBohpCWBoqVDucXg6hEiJ4+01MTuX1ZS3j7 agSoumfJVmJTl+VwNAEgNUPNa0/EPzhE9LbVW8q7cq/bu0yc7UTHjWoGIPQ4ZBCj 3UnSDLtWR0XkQLPYQIBSlZJv/jUXJci/cfvjNTGgCSS+fqaov4c7hrIUKHJa4pzV Y2lGhfJXowhqm1ogzUAD/b7/oVuIByPMiZ88celePdlF8HZvHblMYUS+rKEdR9u8 lkBJfYRxVmhdloM1+dkZmCYL68iC48lmITIZSS0i28qu+u88OtmGZ4hmBWY7gTp1 khvPJQ8piMykWCJ28yEgXZc1zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOv2wbdk NRjdAavyc9OGaHVICCmDMB8GA1UdIwQYMBaAFNdKwbijM1JD/LL5kFvFHb3LDiNt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTcyNi82REJGQTM4QTUy RDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVrUDhzdm1RVzhVZHZjc09J MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwckJ1S016VWtQOHN2bVFXOFVkdmNzT0kyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTcyNi82REJGQTM4QTUyRDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVr UDhzdm1RVzhVZHZjc09JMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACGUO4Vh1IQKtePvuYNd1+WEMgS4jU000CqhePbjGi1fPj2ORw30xH cD9yTnv/RTx55xZMHeExQNCQ1NrIrKLtP4jH4BsJ2wpciV5Z75R+e5MjtMNs3JYe OGf2L3X+jMMPDtACSNxd5h0LrOrw5uYKXn5TtmY6OM8betGHtJz4/qIZeFLOVwRG puF+CFWHNHJPcAfTtX/2mVJnHjoq+X0rAg3rKr+ZLJhlGk1ZbxcAPnSylI2c8Bkd 4vIzwdUaq1Li1Ikl+GCNe02bUpaORwIlTZoeecnryajVemvFYMveR/Laiom0x/LA aX9up8Q8xfiAvrZCBTkB5vC+hrkp75bf -----END CERTIFICATE-----Generated at Mon Dec 22 09:03:17 2025 by rpki-client