This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft File: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft (raw, json) Hash identifier: E/X0He/C6UyZ1xHK8NwP4fa8pHtRcAcjOaebCWVz070= Subject key identifier: D2:4B:D2:E9:8E:0D:78:D1:A0:F7:FD:A0:B9:8C:CE:1A:F6:33:2A:E8 Authority key identifier: 33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB Certificate issuer: /CN=A919B0BE0000/serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Certificate serial: 10325CAD606EDD05A555FB1D663241C753BA7DFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft Manifest number: 86 Signing time: Tue 23 Dec 2025 00:26:26 +0000 Manifest this update: Tue 23 Dec 2025 00:21:26 +0000 Manifest next update: Wed 24 Dec 2025 03:20:26 +0000 Files and hashes: 1: 3230332e33312e3131302e302f32342d3234203d3e2039393133.roa (hash: Th3RG2y4VUTKhfMzlUUSBpKBps2IwB4thNo9+TULNBQ=) 2: 3230332e312e36392e302f32342d3234203d3e2039393133.roa (hash: HYKqNuiBE/DUFFDQyKmuMZ6wkcvhITNaHWFYsHIuJlA=) 3: 3230332e312e36382e302f32342d3234203d3e2039393133.roa (hash: sf6xpmLBwwFxYc5zLhbA2o5zERE4ANPwwQpcoFqWw9Y=) 4: 3130332e3233332e3230382e302f32322d3234203d3e2039393133.roa (hash: gjG1OZMW5faujAfknl/AsEqIEMo1X4J8rMD0eZTWBDg=) 5: 3230332e35372e32332e302f32342d3234203d3e2039393133.roa (hash: 9vPoyR5h4XW7VzKPshTgyqTHm+x238aD7PNshnOSJtk=) 6: 33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl (hash: 5BoGSiGmorOD0bYdeYFL4InJjkXLXodLMxLFExAWqK0=) 7: 3230332e302e38302e302f32342d3234203d3e2039393133.roa (hash: 5CEE0bOW0MgpOlLO8lN9+nz4tABxvncSgkR6y2kvmq4=) 8: 3230332e33312e3131312e302f32342d3234203d3e2039393133.roa (hash: YlAvV8ZZuoYsPDhwbCWgqa9GkyYRu/NKCURMzPqa7q4=) 9: 3230322e31342e3134382e302f32342d3234203d3e2039393133.roa (hash: jEqn8jELxuDQMwvht+ON+P9QmjrSbE+0mwwGAYlItGo=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 03:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:32:5c:ad:60:6e:dd:05:a5:55:fb:1d:66:32:41:c7:53:ba:7d:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0BE0000, serialNumber=33F4082166A89FFF6F326AE09B44BFBEF1629FEB Validity Not Before: Dec 23 00:21:26 2025 GMT Not After : Dec 24 03:20:26 2025 GMT Subject: CN=D24BD2E98E0D78D1A0F7FDA0B98CCE1AF6332AE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:23:03:d1:8e:20:c2:b1:b2:ad:9e:e1:bb:c8: 3b:8a:51:28:b4:e9:6c:47:9a:fe:1b:77:1e:4f:ba: 98:f5:99:05:f0:b6:69:ff:31:c7:e1:ab:10:c6:29: 1e:96:b6:48:27:73:01:d7:44:a8:0c:de:9c:9e:36: c8:8f:10:59:54:f4:b2:50:81:33:9a:be:11:60:b7: a8:55:c3:32:bb:7d:5b:4c:e1:f6:55:16:3a:97:ab: 59:cf:48:04:79:09:dc:86:ae:0b:43:21:e8:a5:9f: b8:94:29:51:0d:b2:a7:97:5e:8e:3b:1e:7e:48:ec: d7:d7:df:77:44:ce:33:14:de:66:e0:06:fd:f8:b0: 52:b2:90:83:59:ee:fa:4b:2b:5b:88:3f:28:2b:02: 5f:09:3c:bd:42:1f:e4:fe:fd:f6:b7:07:46:e2:e5: fb:cc:b2:dd:29:fd:6d:97:f6:e7:1c:48:bd:e2:dd: 30:bf:82:cb:40:e7:81:93:f5:5d:f9:1d:17:dc:79: 7f:bc:b0:e0:c4:03:17:92:49:3f:d6:d6:a2:b4:67: a3:d8:ab:4b:6f:2f:e3:77:cd:40:4e:8c:75:c6:d1: a1:17:d2:03:06:87:9c:9a:5e:50:0c:24:b5:2b:9f: d2:8a:ee:0d:41:44:48:db:ef:a9:3c:3e:f9:fc:95: cc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4B:D2:E9:8E:0D:78:D1:A0:F7:FD:A0:B9:8C:CE:1A:F6:33:2A:E8 X509v3 Authority Key Identifier: keyid:33:F4:08:21:66:A8:9F:FF:6F:32:6A:E0:9B:44:BF:BE:F1:62:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M_QIIWaon_9vMmrgm0S_vvFin-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/9/33F4082166A89FFF6F326AE09B44BFBEF1629FEB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:89:5e:a0:f6:57:f9:26:15:38:fd:29:09:2b:93:4e:8e:8a: 74:4e:28:76:da:6c:7b:fd:8c:ce:11:b1:31:d9:5d:f3:2c:b6: 1d:3d:c6:a6:46:7a:d2:c5:a4:bf:fd:7c:64:4c:ea:fe:44:29: 92:e4:1d:fe:6f:05:96:3d:57:fe:fe:31:9f:c9:4b:c8:2e:4a: 99:94:b1:c6:1e:4e:84:5e:b5:01:82:5e:cc:0f:a6:00:cd:82: e0:71:ec:88:ef:10:ab:c2:d8:0e:17:cb:3c:f3:e8:bf:9c:ad: 50:15:2c:6b:3f:45:63:bf:c7:12:03:82:18:06:80:b5:40:ed: a8:7b:89:79:8f:f7:38:6e:56:f6:0a:d0:0a:5d:ad:58:d5:15: 7a:bb:e9:c2:6b:93:20:b3:c5:cb:f8:7d:05:f3:43:24:b1:64: a3:31:d7:88:58:f5:31:e8:b9:77:20:af:c0:6b:52:a4:69:4a: e1:6b:49:60:9a:1d:73:c4:44:a1:42:88:8f:b5:b8:8a:7b:16: 25:ba:c2:3c:a5:07:15:ce:ea:34:cb:b7:dc:a7:35:30:7a:70: db:a9:5f:4b:6a:d2:77:db:4a:7d:b4:2e:31:df:39:f3:58:a7: e8:62:a6:b4:a3:d6:bc:3b:2c:19:68:11:80:d8:d5:60:eb:53: 00:27:31:15 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEDJcrWBu3QWlVfsdZjJBx1O6ffswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxOUIwQkUwMDAwMTEwLwYDVQQFEygzM0Y0MDgyMTY2 QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCMB4XDTI1MTIyMzAwMjEyNloX DTI1MTIyNDAzMjAyNlowMzExMC8GA1UEAxMoRDI0QkQyRTk4RTBENzhEMUEwRjdG REEwQjk4Q0NFMUFGNjMzMkFFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKojA9GOIMKxsq2e4bvIO4pRKLTpbEea/ht3Hk+6mPWZBfC2af8xx+GrEMYp Hpa2SCdzAddEqAzenJ42yI8QWVT0slCBM5q+EWC3qFXDMrt9W0zh9lUWOperWc9I BHkJ3IauC0Mh6KWfuJQpUQ2yp5dejjsefkjs19ffd0TOMxTeZuAG/fiwUrKQg1nu +ksrW4g/KCsCXwk8vUIf5P799rcHRuLl+8yy3Sn9bZf25xxIveLdML+Cy0DngZP1 XfkdF9x5f7yw4MQDF5JJP9bWorRno9irS28v43fNQE6MdcbRoRfSAwaHnJpeUAwk tSuf0oruDUFESNvvqTw++fyVzK0CAwEAAaOCAhswggIXMB0GA1UdDgQWBBTSS9Lp jg140aD3/aC5jM4a9jMq6DAfBgNVHSMEGDAWgBQz9AghZqif/28yauCbRL++8WKf 6zAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvOS8zM0Y0MDgy MTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9NX1FJSVdhb25f OXZNbXJnbTBTX3Z2RmluLXMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUz MDAwMDAvOS8zM0Y0MDgyMTY2QTg5RkZGNkYzMjZBRTA5QjQ0QkZCRUYxNjI5RkVC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAK4leoPZX+SYVOP0pCSuTTo6KdE4odtpse/2MzhGxMdld8yy2 HT3GpkZ60sWkv/18ZEzq/kQpkuQd/m8Flj1X/v4xn8lLyC5KmZSxxh5OhF61AYJe zA+mAM2C4HHsiO8Qq8LYDhfLPPPov5ytUBUsaz9FY7/HEgOCGAaAtUDtqHuJeY/3 OG5W9grQCl2tWNUVervpwmuTILPFy/h9BfNDJLFkozHXiFj1Mei5dyCvwGtSpGlK 4WtJYJodc8REoUKIj7W4insWJbrCPKUHFc7qNMu33Kc1MHpw26lfS2rSd9tKfbQu Md8581in6GKmtKPWvDssGWgRgNjVYOtTACcxFQ== -----END CERTIFICATE-----Generated at Tue Dec 23 17:51:18 2025 by rpki-client