This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: yvJwzFcp7eNNviVKEVecBOfe37gdvtY2A7l/yBSOers= Subject key identifier: EE:EB:84:1C:2A:0A:E1:5A:E6:F1:E9:55:22:E3:18:56:9E:5E:14:40 Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 0377 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 036B Signing time: Mon 22 Dec 2025 23:55:30 +0000 Manifest this update: Mon 22 Dec 2025 23:55:29 +0000 Manifest next update: Mon 29 Dec 2025 23:55:29 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: xcnB0F/HaOjTS2mRFPAS9GYcRCjSEH75Fr57d8M8UoY=) 2: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) 3: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) 4: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: D/07ECvWp7oQg2+1KPxjiVqoD+wojBNXOMz248kJJ/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 887 (0x377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Dec 22 23:55:29 2025 GMT Not After : Dec 29 23:55:29 2025 GMT Subject: CN=6949da72-95eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:00:47:c8:fc:d0:c9:57:71:cb:31:c3:39:90: 60:ef:31:87:97:e4:bc:e0:5f:03:1e:0f:56:0d:fb: ab:a3:ae:9c:c9:41:f5:3d:1a:04:8b:cc:97:5c:a2: f8:4d:68:01:2b:b9:52:20:f4:d3:5e:b0:d1:be:8e: 4c:57:0f:90:b9:c2:bd:d0:0f:c9:dd:2d:d9:c9:2d: 68:8e:5a:cb:95:ec:09:14:ca:d6:ff:0d:da:e8:9e: c1:1a:ba:9e:6b:63:14:aa:b4:f2:63:8c:83:12:68: ab:f1:1b:44:5d:50:6a:4f:09:98:72:c1:f5:95:1b: 3f:72:66:d1:9e:2e:93:1b:ae:40:23:ee:e3:8b:18: 1c:b0:6f:b7:68:87:50:52:c4:4e:e2:04:76:49:98: 6f:24:4f:28:bc:bd:22:bc:07:26:75:5d:44:80:cc: 5d:d0:bc:fa:4c:bf:52:3d:1e:bb:72:6b:cb:5c:a3: e2:38:c6:07:6d:19:d2:f8:12:40:a7:9b:b5:87:f0: bb:13:25:0a:40:b1:c2:83:d1:35:6f:3f:10:73:2b: fc:f8:71:3f:da:f9:3d:14:4a:e6:6e:84:ef:6f:1c: 87:0a:1c:98:5c:8f:8b:65:ec:ec:86:15:49:7a:92: aa:22:a5:bd:67:ae:0b:2a:a9:77:79:9c:4c:92:c9: 54:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EB:84:1C:2A:0A:E1:5A:E6:F1:E9:55:22:E3:18:56:9E:5E:14:40 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:9c:37:95:03:ce:d9:ec:4e:81:1c:40:8a:ce:28:f6:53:a9: 15:78:56:e1:83:5f:0f:ac:fd:b5:b2:b9:31:b1:ff:77:c6:2b: 4e:38:59:67:38:5f:1b:2b:4f:cd:dc:75:12:f3:80:b6:c3:ee: df:50:69:98:ca:df:9d:45:53:f4:5b:84:96:b5:a6:5f:04:45: 29:81:83:b5:13:73:17:5f:95:54:ae:56:0b:36:f3:fe:aa:81: 95:52:70:58:8f:e5:9f:dd:61:5e:bc:6d:0f:9e:33:90:07:ca: 7f:20:69:95:0f:9d:4a:89:7e:da:24:4a:14:30:4a:bc:59:76: 57:35:d9:a9:bc:dc:a9:c4:34:43:63:10:e4:da:5b:3a:0d:75: a8:0f:5f:ce:58:3a:3e:53:e9:77:58:6f:c0:3d:8b:27:ad:da: b3:0f:2c:07:b3:92:c2:e9:85:e3:38:17:db:fa:65:83:87:f6: 4a:29:ed:8f:96:b9:06:dd:4b:ac:d6:60:ab:9a:c1:78:39:61: bf:f9:61:32:c2:dd:a1:25:84:07:a1:62:ed:67:38:bf:43:d7: 77:a4:df:4a:5b:b6:8c:b6:66:99:14:8e:6a:52:52:47:ad:db: c5:cd:ff:93:5b:87:00:ae:16:65:40:13:01:0c:b5:f2:a1:12: ba:d3:de:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUxMjIyMjM1NTI5WhcNMjUxMjI5MjM1NTI5WjAYMRYwFAYD VQQDDA02OTQ5ZGE3Mi05NWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ABHyPzQyVdxyzHDOZBg7zGHl+S84F8DHg9WDfuro66cyUH1PRoEi8yXXKL4 TWgBK7lSIPTTXrDRvo5MVw+QucK90A/J3S3ZyS1ojlrLlewJFMrW/w3a6J7BGrqe a2MUqrTyY4yDEmir8RtEXVBqTwmYcsH1lRs/cmbRni6TG65AI+7jixgcsG+3aIdQ UsRO4gR2SZhvJE8ovL0ivAcmdV1EgMxd0Lz6TL9SPR67cmvLXKPiOMYHbRnS+BJA p5u1h/C7EyUKQLHCg9E1bz8Qcyv8+HE/2vk9FErmboTvbxyHChyYXI+LZezshhVJ epKqIqW9Z64LKql3eZxMkslUDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7rhBwq CuFa5vHpVSLjGFaeXhRAMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBInDeVA87Z7E6BHECKzij2U6kVeFbhg18PrP21srkxsf93xitOOFln OF8bK0/N3HUS84C2w+7fUGmYyt+dRVP0W4SWtaZfBEUpgYO1E3MXX5VUrlYLNvP+ qoGVUnBYj+Wf3WFevG0PnjOQB8p/IGmVD51KiX7aJEoUMEq8WXZXNdmpvNypxDRD YxDk2ls6DXWoD1/OWDo+U+l3WG/APYsnrdqzDywHs5LC6YXjOBfb+mWDh/ZKKe2P lrkG3Uus1mCrmsF4OWG/+WEywt2hJYQHoWLtZzi/Q9d3pN9KW7aMtmaZFI5qUlJH rdvFzf+TW4cArhZlQBMBDLXyoRK6094x -----END CERTIFICATE-----Generated at Wed Dec 24 17:42:00 2025 by rpki-client