This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft File: sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft (raw, json) Hash identifier: p7FLSE0vX4xJnQimYJK5Sf2OsJX6Go4DJptqYjjCNlc= Subject key identifier: 80:83:BD:E5:C8:00:DB:EC:CC:52:6A:E6:08:C9:8B:34:21:67:6A:16 Authority key identifier: B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 Certificate issuer: /CN=A911C53A/serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft Manifest number: 65 Signing time: Fri 19 Dec 2025 06:00:49 +0000 Manifest this update: Fri 19 Dec 2025 06:00:48 +0000 Manifest next update: Fri 26 Dec 2025 06:00:48 +0000 Files and hashes: 1: sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl (hash: /pdbzGwQu3Ox8CghGaWzR/sYjSkNkW4ksr10zO59Q3o=) 2: BDF659C4445111F0945A7E49C4F9AE02.roa (hash: NrM1GT0GOIEPUd0x6/lOomv0lodf7Nxw+vo5Gb1q27Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53A, serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Validity Not Before: Dec 19 06:00:48 2025 GMT Not After : Dec 26 06:00:48 2025 GMT Subject: CN=6944ea10-ffed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:cd:20:8f:5f:fd:e9:2c:83:d3:98:50:21: 74:16:54:d5:71:5f:cf:f7:f6:e4:75:4c:0c:f4:06: 43:46:2f:0c:34:09:f5:cf:2b:16:f2:13:3d:0b:0c: d4:2c:f4:75:35:9b:80:54:ae:55:35:ee:d5:01:f8: 45:0c:e1:83:38:5a:c8:61:6e:5d:96:f1:63:81:fd: ff:1a:ef:a3:89:1a:97:65:49:e0:eb:c8:4a:d3:64: f1:26:6f:b0:85:5d:1a:a6:21:65:46:26:8c:0a:4c: 95:99:62:1a:b0:fb:a5:a8:6c:da:15:15:50:a3:f6: 02:94:28:c6:de:95:aa:10:3e:55:a6:ba:0a:92:8e: ab:a9:73:7e:1d:7f:51:92:e2:bb:40:b1:fa:74:03: fe:37:f4:20:ce:49:06:6f:f4:0f:35:23:b3:2a:4b: 36:87:94:75:73:e6:47:eb:db:22:92:32:c4:2c:22: 15:79:db:8e:d6:c8:af:ef:37:84:06:d6:d7:7e:3e: a6:ac:51:4d:7a:ae:ca:4f:9e:d3:07:66:7b:00:8a: 20:c6:cf:8c:80:08:30:32:22:df:b0:bf:9c:5b:7b: ca:dd:91:d2:87:61:f0:85:25:f6:8a:b6:70:99:0a: f2:40:39:e6:34:59:28:ed:1d:25:73:54:cb:0a:5e: 5a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:83:BD:E5:C8:00:DB:EC:CC:52:6A:E6:08:C9:8B:34:21:67:6A:16 X509v3 Authority Key Identifier: keyid:B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:4b:27:81:e9:06:dc:57:70:87:8f:85:5f:0d:cf:76:79:26: 15:76:a3:b2:7b:1d:37:d3:4c:48:0f:73:9d:ba:ce:c2:2c:e7: 1c:41:d7:a2:9c:ec:55:e4:e1:c9:b9:f7:20:41:70:71:f4:fa: 40:cb:4c:7a:e1:b3:59:29:cc:0e:f8:bb:3b:d7:ce:c0:04:d7: 50:6e:fe:e3:38:44:83:ea:f3:8a:5d:17:63:f3:af:e5:f7:fd: 80:e9:48:0e:c8:dc:8e:71:1d:f7:50:df:0e:eb:73:5a:db:ef: ed:45:4e:46:93:7d:c9:4f:6f:2d:c8:24:b1:0c:a8:65:83:42: f0:92:fe:a4:d4:31:de:90:ec:39:d6:37:3a:fc:ae:ec:0c:2f: 2a:dc:65:f9:d1:b3:f1:7d:37:0a:74:e1:13:5c:9f:72:6c:3c: c7:aa:0f:2f:53:e4:71:33:b6:56:89:cf:39:db:9c:9c:f9:cf: d2:06:0f:26:58:9a:95:0b:dc:1a:ef:2c:14:de:e4:83:6e:e8: 53:62:d4:74:54:24:1b:49:45:d2:eb:bf:55:a1:c9:88:1c:06: d5:61:b2:86:bf:30:07:dc:d2:1e:45:8b:c8:8c:1c:35:05:36: 60:64:0c:81:b0:ea:f7:82:95:07:db:d4:86:ac:ca:22:3d:c2: 1b:76:d7:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzUzQTExMC8GA1UEBRMoQjA4QjU5RTVEMTA3MDVDNUNCMkQzQ0RCODU2NUIzMjhE NTAyRjU1MDAeFw0yNTEyMTkwNjAwNDhaFw0yNTEyMjYwNjAwNDhaMBgxFjAUBgNV BAMMDTY5NDRlYTEwLWZmZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2j80gj1/96SyD05hQIXQWVNVxX8/39uR1TAz0BkNGLww0CfXPKxbyEz0LDNQs 9HU1m4BUrlU17tUB+EUM4YM4Wshhbl2W8WOB/f8a76OJGpdlSeDryErTZPEmb7CF XRqmIWVGJowKTJWZYhqw+6WobNoVFVCj9gKUKMbelaoQPlWmugqSjqupc34df1GS 4rtAsfp0A/439CDOSQZv9A81I7MqSzaHlHVz5kfr2yKSMsQsIhV5247WyK/vN4QG 1td+PqasUU16rspPntMHZnsAiiDGz4yACDAyIt+wv5xbe8rdkdKHYfCFJfaKtnCZ CvJAOeY0WSjtHSVzVMsKXlo/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgIO95cgA 2+zMUmrmCMmLNCFnahYwHwYDVR0jBBgwFoAUsItZ5dEHBcXLLTzbhWWzKNUC9VAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDNTNBLzQ3NDUwNTZFNDQ1 MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNYTExUemJoV1d6S05VQzlW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0l0WjVkRUhCY1hMTFR6YmhXV3pLTlVDOVZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD NTNBLzQ3NDUwNTZFNDQ1MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNY TExUemJoV1d6S05VQzlWQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJtLJ4HpBtxXcIePhV8Nz3Z5JhV2o7J7HTfTTEgPc526zsIs5xxB16Kc 7FXk4cm59yBBcHH0+kDLTHrhs1kpzA74uzvXzsAE11Bu/uM4RIPq84pdF2Pzr+X3 /YDpSA7I3I5xHfdQ3w7rc1rb7+1FTkaTfclPby3IJLEMqGWDQvCS/qTUMd6Q7DnW Nzr8ruwMLyrcZfnRs/F9Nwp04RNcn3JsPMeqDy9T5HEztlaJzznbnJz5z9IGDyZY mpUL3BrvLBTe5INu6FNi1HRUJBtJRdLrv1WhyYgcBtVhsoa/MAfc0h5Fi8iMHDUF NmBkDIGw6veClQfb1IasyiI9wht216Q= -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:27 2025 by rpki-client