This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json) Hash identifier: qGQv1nESz5MKWRYGM2aWI8N4alfptwGwnSveCuAZuu0= Subject key identifier: 65:DD:29:BD:BD:61:0B:5B:A8:5E:2D:67:7A:0F:B2:53:7A:E5:9F:11 Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft Manifest number: 01F4 Signing time: Mon 22 Dec 2025 21:53:51 +0000 Manifest this update: Mon 22 Dec 2025 21:53:51 +0000 Manifest next update: Thu 29 Jan 2026 21:53:51 +0000 Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: /lqNKNVsHV4VE/28xp3/thz0+IFikOmUsYET1/Hl1y8=) 2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fxa1FPCYhxgUDYJ5Yt/n5hBb+t3vszGQLhBJBD7mecg=) 3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: r4JbgAe2usJ/o5zDexkSILQoTh9WHzFle2ZKFwcFpew=) 4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=) 5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: k43h1Zp+sgpQ1v5aEzOHi57VVl5+Wh7JUOXcxaIV75o=) 6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: ERp48rSxC2r3G30QZpvaNb47cirE8GMjuQZcsfrMtOk=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 23:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Validity Not Before: Dec 22 21:53:51 2025 GMT Not After : Jan 29 21:53:51 2026 GMT Subject: CN=6949bdef-dccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a9:a0:b9:c6:22:f3:e2:1c:e1:5c:e5:e0:b4: 8f:bc:ff:b8:e1:6c:0e:1e:2e:41:6c:82:ab:c1:4c: 94:e7:d9:62:dc:14:88:ca:37:32:79:71:d8:be:e9: 5d:ef:39:90:24:bf:30:2a:af:35:62:bb:2a:bc:90: 4e:05:e4:c9:26:ee:48:93:66:5d:70:bd:49:e5:6d: 28:73:5c:33:53:bd:7c:88:7d:c0:29:1e:ee:a5:3a: dd:e8:22:f7:1c:7a:4f:21:9a:0a:d1:9b:e0:24:40: 39:92:a0:4b:d0:9b:e4:ea:ec:4e:64:4d:07:63:cd: 91:da:64:66:51:e8:2e:6d:59:7a:48:77:7c:b4:56: 82:d0:40:12:ce:03:7e:bd:67:d5:6e:01:e6:a3:f1: 56:cc:f2:7c:61:c6:ca:9c:9a:60:81:5d:81:8a:7e: e5:b3:c3:4f:c2:e0:ec:15:2a:bb:b2:de:fe:55:23: 0e:eb:17:28:66:6d:00:3a:9c:5e:9f:43:76:9e:55: 51:0a:5f:6d:03:dc:67:40:4c:68:66:6a:94:68:85: bf:a4:87:32:9f:73:29:c5:6f:0c:7e:57:ec:d6:4a: 79:e5:41:c9:8a:fa:37:af:ef:a5:df:d1:fc:ad:17: 76:60:5a:23:80:a1:c1:a5:d4:80:e9:2e:b8:fa:d6: 3a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DD:29:BD:BD:61:0B:5B:A8:5E:2D:67:7A:0F:B2:53:7A:E5:9F:11 X509v3 Authority Key Identifier: keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:ad:ce:9f:6f:e4:09:9b:06:d9:8c:21:2b:43:9a:9b:b1:a6: 12:50:d9:ea:62:ee:7b:b2:9f:ee:f4:0c:34:bc:64:47:1e:13: d6:75:fe:3f:10:54:cd:81:06:ee:fe:6f:c2:2d:f8:81:29:d1: 9f:1c:b2:4d:18:89:34:fa:9a:c5:91:9d:f8:9d:b6:14:62:c4: ff:e0:25:9e:71:8c:f6:05:57:60:e0:89:2a:95:96:f8:2c:a1: fa:99:3e:6d:3d:9d:3f:86:11:4d:ca:7b:f7:e5:b5:86:65:75: 65:ae:97:0c:8c:e4:80:32:de:0a:79:68:7f:9c:61:bb:8d:59: f7:33:a2:c8:64:92:10:c8:a9:c9:1d:82:7c:de:76:ef:89:9d: ca:c4:10:e2:13:9d:77:79:ae:8e:34:04:97:1e:c1:2c:5e:fe: 23:20:5a:4f:88:fc:9a:f1:4e:15:97:34:45:9e:0b:6b:1d:52: 93:80:47:ad:2e:5d:d2:ff:68:77:f4:8e:fc:05:a8:70:1c:ff: 4d:c3:4b:54:ea:93:c4:0c:78:f8:15:2a:cf:3a:37:c8:98:c6: 6d:19:85:77:b9:39:2b:f4:1a:03:d2:cc:2d:0a:89:a8:ed:0b: be:60:4a:a4:37:76:37:18:41:d9:1c:ad:9e:a5:53:40:28:48: d7:27:87:93 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNTEyMjIyMTUzNTFaFw0y NjAxMjkyMTUzNTFaMBgxFjAUBgNVBAMMDTY5NDliZGVmLWRjY2MwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyqaC5xiLz4hzhXOXgtI+8/7jhbA4eLkFs gqvBTJTn2WLcFIjKNzJ5cdi+6V3vOZAkvzAqrzViuyq8kE4F5Mkm7kiTZl1wvUnl bShzXDNTvXyIfcApHu6lOt3oIvccek8hmgrRm+AkQDmSoEvQm+Tq7E5kTQdjzZHa ZGZR6C5tWXpId3y0VoLQQBLOA369Z9VuAeaj8VbM8nxhxsqcmmCBXYGKfuWzw0/C 4OwVKruy3v5VIw7rFyhmbQA6nF6fQ3aeVVEKX20D3GdATGhmapRohb+khzKfcynF bwx+V+zWSnnlQcmK+jev76Xf0fytF3ZgWiOAocGl1IDpLrj61jrxAgMBAAGjggJP MIICSzAdBgNVHQ4EFgQUZd0pvb1hC1uoXi1neg+yU3rlnxEwHwYDVR0jBBgwFoAU mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5 SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2 MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3 RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAnrc6fb+QJmwbZjCEr Q5qbsaYSUNnqYu57sp/u9Aw0vGRHHhPWdf4/EFTNgQbu/m/CLfiBKdGfHLJNGIk0 +prFkZ34nbYUYsT/4CWecYz2BVdg4IkqlZb4LKH6mT5tPZ0/hhFNynv35bWGZXVl rpcMjOSAMt4KeWh/nGG7jVn3M6LIZJIQyKnJHYJ83nbviZ3KxBDiE513ea6ONASX HsEsXv4jIFpPiPya8U4VlzRFngtrHVKTgEetLl3S/2h39I78BahwHP9Nw0tU6pPE DHj4FSrPOjfImMZtGYV3uTkr9BoD0swtComo7Qu+YEqkN3Y3GEHZHK2epVNAKEjX J4eT -----END CERTIFICATE-----Generated at Tue Dec 23 07:19:58 2025 by rpki-client