This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft File: 17AA392C0CFF754F6249006D89386F871B9693FA.mft (raw, json) Hash identifier: GdtqOY7XXonvDRYhHhbIy16AxGW8DiTyBou37okcJ5U= Subject key identifier: 03:7B:4A:68:C5:1A:95:34:74:A2:57:16:CC:F5:B8:80:BC:0B:CB:FA Authority key identifier: 17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA Certificate issuer: /CN=A917447B0000/serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Certificate serial: 76182C1C9527285B66D74E3B581BE7DEB53D5F67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft Manifest number: D1 Signing time: Sun 21 Dec 2025 12:18:46 +0000 Manifest this update: Sun 21 Dec 2025 12:13:46 +0000 Manifest next update: Mon 22 Dec 2025 13:07:46 +0000 Files and hashes: 1: 323030313a6466343a353134663a3a2f34382d3438203d3e20313533333436.roa (hash: HOBlUUzXIgqWknT1VOL1nB3qMa6Fu6vRC1OMoEBjewg=) 2: 323030313a6466343a353134303a3a2f34342d3434203d3e20313533333436.roa (hash: 0cKeFRvMg4K7CjG6EjM23reqsbS6dbzuJZqiCsKqNyg=) 3: 323030313a6466343a353134383a3a2f34382d3438203d3e2039383333.roa (hash: zl/9BBoJJ3neyY8UfSuYMMT4qwgA84XRS4rr+sykVxA=) 4: 17AA392C0CFF754F6249006D89386F871B9693FA.crl (hash: suYoHgiGgUDrtKGkeSppEWSJDw9pNTvUKBFGw9M2EnY=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 13:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:18:2c:1c:95:27:28:5b:66:d7:4e:3b:58:1b:e7:de:b5:3d:5f:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=17AA392C0CFF754F6249006D89386F871B9693FA Validity Not Before: Dec 21 12:13:46 2025 GMT Not After : Dec 22 13:07:46 2025 GMT Subject: CN=037B4A68C51A953474A25716CCF5B880BC0BCBFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c3:7d:e2:b5:46:7f:3b:af:8d:f0:01:1b:5e: b2:ea:b5:26:4b:a4:53:e5:80:88:49:79:9a:2c:cf: b3:95:b5:cf:f8:a8:be:77:89:6f:cc:4c:e9:a3:b0: a3:00:81:aa:0f:c9:61:70:30:68:26:48:4b:db:3b: 66:a9:18:e1:e4:13:f4:1a:53:b1:84:93:d4:49:f6: 4f:9d:31:66:fb:6f:05:d7:2f:cf:ef:3c:00:5a:14: 4d:60:da:a6:e4:27:a7:0a:66:9b:0d:22:39:a0:49: 86:77:90:d6:90:15:a4:ee:ef:02:aa:cb:17:58:d8: 87:5c:d0:15:dc:e4:3b:4f:ab:e2:91:2f:13:17:43: 04:8c:2c:45:7e:48:06:ac:82:77:54:ac:5f:e3:8a: 6d:27:61:c1:bd:be:d3:2e:46:6d:20:fb:cb:c5:b1: ad:62:d7:83:30:cd:ec:ae:88:a7:d9:f6:df:26:df: f6:4e:99:c1:3d:d9:0a:45:0c:78:f6:24:7e:e5:0e: 03:87:2e:d8:e8:71:74:3c:53:b8:52:75:b2:0e:37: c2:da:e5:e8:43:76:b8:db:32:85:60:76:e1:bd:58: 7f:d2:e2:3e:4f:42:26:7f:b4:ea:cf:aa:9f:b4:9d: ff:1b:4d:76:9b:e4:db:c5:9b:07:8d:dd:fa:28:b7: 2e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:7B:4A:68:C5:1A:95:34:74:A2:57:16:CC:F5:B8:80:BC:0B:CB:FA X509v3 Authority Key Identifier: keyid:17:AA:39:2C:0C:FF:75:4F:62:49:00:6D:89:38:6F:87:1B:96:93:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6o5LAz_dU9iSQBtiThvhxuWk_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/1/17AA392C0CFF754F6249006D89386F871B9693FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ca:b9:14:41:61:10:e3:de:76:87:d0:ba:de:db:0f:66:07:70: 3d:0b:de:7f:65:4b:88:8a:91:27:16:97:66:e5:72:33:7c:1d: 8e:9c:28:bb:e0:18:4d:42:82:d6:d4:9c:5c:72:69:97:cf:f1: ac:d3:07:43:83:9e:9f:b9:9e:04:ab:53:f0:6d:3a:3c:45:28: 20:51:ca:a0:4f:c4:52:7a:1f:58:c8:f3:14:01:39:fa:88:3f: 87:3f:26:be:be:9f:81:9c:ff:3e:2d:1b:52:7d:80:3d:84:df: 3e:84:36:d6:5e:e6:0b:a9:d8:36:54:d2:c3:9b:24:72:43:bb: f9:ee:84:0c:8e:36:e8:bd:e2:be:5e:4e:7e:cf:40:36:7f:8e: f4:70:e2:af:fe:6c:22:a5:6a:a1:e1:d9:eb:c6:f4:df:de:8b: aa:89:1d:55:77:d2:18:16:40:6d:70:43:a6:04:d3:4c:11:7a: 9a:1d:75:d7:92:34:5c:10:ab:de:b4:b7:7e:01:00:d0:b0:08: 16:37:7f:53:cf:4a:87:2e:a4:74:e5:c3:2a:e2:d3:dc:79:39: 41:c0:1f:54:5a:f0:d6:60:96:76:b4:23:51:67:b0:85:ae:8b: 74:2f:a4:e4:9d:4b:9d:3a:48:51:9b:3c:a3:dc:50:15:68:35: be:a0:fb:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdhgsHJUnKFtm1047WBvn3rU9X2cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEygxN0FBMzkyQzBD RkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBMB4XDTI1MTIyMTEyMTM0NloX DTI1MTIyMjEzMDc0NlowMzExMC8GA1UEAxMoMDM3QjRBNjhDNTFBOTUzNDc0QTI1 NzE2Q0NGNUI4ODBCQzBCQ0JGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXDfeK1Rn87r43wARtesuq1JkukU+WAiEl5mizPs5W1z/iovneJb8xM6aOw owCBqg/JYXAwaCZIS9s7ZqkY4eQT9BpTsYST1En2T50xZvtvBdcvz+88AFoUTWDa puQnpwpmmw0iOaBJhneQ1pAVpO7vAqrLF1jYh1zQFdzkO0+r4pEvExdDBIwsRX5I BqyCd1SsX+OKbSdhwb2+0y5GbSD7y8WxrWLXgzDN7K6Ip9n23ybf9k6ZwT3ZCkUM ePYkfuUOA4cu2OhxdDxTuFJ1sg43wtrl6EN2uNsyhWB24b1Yf9LiPk9CJn+06s+q n7Sd/xtNdpvk28WbB43d+ii3LjkCAwEAAaOCAhswggIXMB0GA1UdDgQWBBQDe0po xRqVNHSiVxbM9biAvAvL+jAfBgNVHSMEGDAWgBQXqjksDP91T2JJAG2JOG+HG5aT +jAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMS8xN0FBMzky QzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZBLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GNm81TEF6X2RV OWlTUUJ0aVRodmh4dVdrX28uY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMS8xN0FBMzkyQzBDRkY3NTRGNjI0OTAwNkQ4OTM4NkY4NzFCOTY5M0ZB Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAyrkUQWEQ4952h9C63tsPZgdwPQvef2VLiIqRJxaXZuVyM3wd jpwou+AYTUKC1tScXHJpl8/xrNMHQ4Oen7meBKtT8G06PEUoIFHKoE/EUnofWMjz FAE5+og/hz8mvr6fgZz/Pi0bUn2APYTfPoQ21l7mC6nYNlTSw5skckO7+e6EDI42 6L3ivl5Ofs9ANn+O9HDir/5sIqVqoeHZ68b0396LqokdVXfSGBZAbXBDpgTTTBF6 mh1115I0XBCr3rS3fgEA0LAIFjd/U89Khy6kdOXDKuLT3Hk5QcAfVFrw1mCWdrQj UWewha6LdC+k5J1LnTpIUZs8o9xQFWg1vqD7ow== -----END CERTIFICATE-----Generated at Sun Dec 21 23:35:59 2025 by rpki-client