This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json) Hash identifier: Nb+WcOD4sz2TtjSHcO1OfNuOpvdIGWq0KYDfwew+qQQ= Subject key identifier: 46:00:52:C9:C6:21:0E:4C:62:7A:1A:75:93:A4:40:FC:EA:C2:2D:E9 Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft Manifest number: 01EF Signing time: Wed 19 Nov 2025 23:41:17 +0000 Manifest this update: Wed 19 Nov 2025 23:41:16 +0000 Manifest next update: Fri 26 Dec 2025 23:41:16 +0000 Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: WkcivoruhWjHv1iSa8LY8M4OR3cm6tncf+ymCl1GymI=) 2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fxa1FPCYhxgUDYJ5Yt/n5hBb+t3vszGQLhBJBD7mecg=) 3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: mHv6iTALxe7c2xf31EqUUzFbqznwEXc4amWj+lViTOA=) 4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=) 5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: A6Z6GnKk0ka9tQrdD5ws2bNZB8ZCZ+UD9iisK3n5md8=) 6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: QLuyYGFjHOfjGkdX50x1QKWUDmxdxeES20sT+ydLol4=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Validity Not Before: Nov 19 23:41:16 2025 GMT Not After : Dec 26 23:41:16 2025 GMT Subject: CN=691e559c-5c51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:99:da:d6:50:0b:81:42:56:53:19:b9:ad:66: 1c:ad:0d:67:66:30:1c:71:e5:b6:32:50:ef:ba:c1: 6a:7d:1d:c7:2c:7d:fe:78:16:ea:9c:15:ac:e9:d8: a2:d3:33:b1:91:3f:55:5f:f0:77:ba:60:43:c3:e4: d4:5b:4e:b2:ac:56:0d:fa:a2:8b:bc:6d:d0:b5:45: 02:24:97:59:30:9c:2d:42:d1:fc:7b:ea:c1:b6:fb: 23:85:86:df:4a:14:ad:88:9a:b4:c6:29:3f:6f:da: 5b:9e:db:51:89:a1:44:a2:e1:0c:86:63:f4:0b:ee: 94:30:bc:4b:45:49:64:43:f2:bf:1e:74:fc:6d:ad: d9:6a:61:44:8f:75:56:78:9d:b9:a7:f2:c7:77:a5: 5d:15:f2:36:a9:87:78:55:03:d3:01:6b:7e:0a:8e: 7f:cc:05:e3:1b:a5:f8:2f:31:ed:9a:8b:02:5b:b5: 4d:4a:9d:18:55:aa:6b:d8:86:ff:25:b1:3c:a8:ac: 27:e0:e2:d8:05:99:35:0d:0a:b8:64:5e:1f:6d:c5: 14:5b:75:60:23:ed:07:71:7d:fd:84:8c:1f:86:0d: 26:ec:32:a7:ef:ec:c6:e2:fb:46:9c:ba:60:c5:cc: 5b:ff:f1:20:2a:f2:40:35:17:48:69:06:89:96:b1: f1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:00:52:C9:C6:21:0E:4C:62:7A:1A:75:93:A4:40:FC:EA:C2:2D:E9 X509v3 Authority Key Identifier: keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4d:76:2c:51:5d:00:7f:1d:5b:a6:fa:5d:dc:6a:71:c9:10: 3e:b6:0e:55:e9:e2:ac:ee:0e:b1:f0:09:0b:03:fd:22:15:92: f7:91:6a:dc:97:8b:f9:3d:52:76:58:b6:b1:ad:30:f1:e8:6b: 8b:86:8b:e7:e1:77:e7:de:9c:e1:43:90:42:0e:c1:4f:cd:8f: b9:71:d9:69:3b:63:0d:25:4f:e6:f7:16:25:cf:e3:5c:3e:0d: 58:51:9f:d1:11:e0:4f:17:7d:f4:8b:7e:8d:71:b7:b4:8e:b5: 19:c3:31:8a:7e:55:02:08:5d:90:2d:21:6f:36:19:96:df:c1: b2:12:4f:6a:e7:6f:79:bf:d6:4c:ac:74:06:34:1d:b5:97:5c: c2:27:37:08:fe:98:c3:04:c3:f9:06:96:ac:a3:50:d7:24:c5: 22:ff:89:c8:d7:39:94:d3:e4:ad:06:f9:94:2d:c2:48:cc:7f: d6:b6:ce:1e:a1:cd:7c:44:a0:7b:63:94:97:59:2d:2b:fb:87: c0:4a:ad:dd:91:ff:a2:28:d6:51:d5:03:98:98:73:a0:3f:7c: a4:40:4a:3f:23:de:85:0d:35:82:a6:1d:a2:87:cf:22:f5:c7: 3f:a7:5c:3a:ff:28:e8:70:e6:cf:8f:05:5a:b0:b3:13:a9:84: 97:75:d0:c7 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNTExMTkyMzQxMTZaFw0y NTEyMjYyMzQxMTZaMBgxFjAUBgNVBAMTDTY5MWU1NTljLTVjNTEwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzmdrWUAuBQlZTGbmtZhytDWdmMBxx5bYy UO+6wWp9Hccsff54FuqcFazp2KLTM7GRP1Vf8He6YEPD5NRbTrKsVg36oou8bdC1 RQIkl1kwnC1C0fx76sG2+yOFht9KFK2ImrTGKT9v2lue21GJoUSi4QyGY/QL7pQw vEtFSWRD8r8edPxtrdlqYUSPdVZ4nbmn8sd3pV0V8japh3hVA9MBa34Kjn/MBeMb pfgvMe2aiwJbtU1KnRhVqmvYhv8lsTyorCfg4tgFmTUNCrhkXh9txRRbdWAj7Qdx ff2EjB+GDSbsMqfv7Mbi+0acumDFzFv/8SAq8kA1F0hpBomWsfE5AgMBAAGjggJP MIICSzAdBgNVHQ4EFgQURgBSycYhDkxiehp1k6RA/OrCLekwHwYDVR0jBBgwFoAU mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5 SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2 MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3 RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQASTXYsUV0Afx1bpvpd 3GpxyRA+tg5V6eKs7g6x8AkLA/0iFZL3kWrcl4v5PVJ2WLaxrTDx6GuLhovn4Xfn 3pzhQ5BCDsFPzY+5cdlpO2MNJU/m9xYlz+NcPg1YUZ/REeBPF330i36Ncbe0jrUZ wzGKflUCCF2QLSFvNhmW38GyEk9q5295v9ZMrHQGNB21l1zCJzcI/pjDBMP5Bpas o1DXJMUi/4nI1zmU0+StBvmULcJIzH/Wts4eoc18RKB7Y5SXWS0r+4fASq3dkf+i KNZR1QOYmHOgP3ykQEo/I96FDTWCph2ih88i9cc/p1w6/yjocObPjwVasLMTqYSX ddDH -----END CERTIFICATE-----Generated at Wed Dec 3 02:40:46 2025 by rpki-client