This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: w3Bhafa6rjrYyJcNY85hidSe8Cj7TbZ8AF1NwJLiH/A= Subject key identifier: 23:42:BE:A7:3D:45:C8:7D:BC:15:25:82:48:85:35:C9:6F:E3:B2:F5 Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 061F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 061A Signing time: Thu 18 Dec 2025 22:10:58 +0000 Manifest this update: Thu 18 Dec 2025 22:10:57 +0000 Manifest next update: Thu 25 Dec 2025 22:10:57 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: SDjVN6bqAjEF0EZOl+xf/rVhV2zlNiCotLl8gJxvwF4=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Dec 18 22:10:57 2025 GMT Not After : Dec 25 22:10:57 2025 GMT Subject: CN=69447bf2-f56e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:12:84:92:4c:f9:90:6f:ed:2c:98:cd:45:35: 01:2d:16:0b:d9:ba:42:a7:07:b6:ef:d3:b0:51:cf: 29:81:7f:cb:52:62:15:11:a4:b7:1f:ce:62:15:b8: c0:63:fa:6a:13:51:83:27:74:6a:0b:c4:38:fc:99: ff:ff:54:3e:86:32:08:49:1f:d1:e8:5d:f4:f9:44: a5:31:58:ea:78:5a:ba:df:98:c3:6d:51:2b:2f:28: 56:f2:93:b6:17:93:d8:98:94:e8:25:b7:eb:a9:e0: 2c:47:9b:3f:2e:29:63:ed:fe:e1:09:4f:4c:12:53: e2:10:6b:7a:81:89:f6:c6:9f:57:aa:1a:26:82:38: 6d:a9:fc:6a:e9:11:bb:14:78:13:2d:aa:82:59:d9: fc:e9:35:b8:a2:3c:0a:e7:cb:d9:9b:41:1a:3f:8d: bf:01:de:c7:b0:0e:44:ac:21:c0:29:90:c3:69:59: 46:91:40:29:9f:cc:c8:49:ca:f8:80:62:cd:b2:8b: c4:c2:86:af:06:99:83:c5:3a:9a:ed:dc:e3:bd:b1: a0:a7:7f:3f:32:6f:d5:91:be:89:58:4d:ab:cc:db: 89:cf:a7:49:5f:98:cb:27:5d:73:ff:12:f6:93:77: 2e:b7:56:fe:9e:2e:c3:01:ef:4c:46:c0:55:46:5f: e9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:42:BE:A7:3D:45:C8:7D:BC:15:25:82:48:85:35:C9:6F:E3:B2:F5 X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e1:d7:45:bc:ba:d8:d7:6a:e4:73:51:e1:be:f2:fd:d6:e2: 17:ee:39:3d:94:8d:0a:65:ea:e8:56:c2:de:95:5b:e0:05:72: c7:cd:0e:0f:46:d0:71:5f:63:9a:bb:1a:ea:9d:36:40:b2:0b: 26:44:cf:a9:43:32:74:c2:a3:e5:e6:94:06:be:a4:4b:31:a7: 67:68:5f:26:74:fa:59:96:ea:e6:25:3c:42:65:56:ba:05:9a: 56:3c:89:ef:51:d8:5e:ae:9d:3a:14:8e:b3:f9:05:cd:6c:a4: ee:f3:ce:5b:6a:a8:74:7b:fa:e8:e1:af:41:fa:dd:06:66:bc: a8:5c:85:49:c6:88:f3:3c:5c:3b:5b:d3:c1:b6:88:aa:e6:cc: 67:a3:28:3b:0c:0b:7d:12:7a:3a:2d:96:54:20:11:e8:68:94: f4:01:12:02:05:0b:26:8c:f4:82:f4:5b:a4:ad:1c:e4:7d:56: d6:9b:70:1b:41:83:7a:eb:74:9c:53:06:2e:72:29:b2:75:0a: b0:17:00:ea:db:50:bb:10:4d:72:a5:83:bb:04:99:e4:01:a6: d8:c2:2d:5b:a9:e8:18:4f:a5:fe:84:1e:56:76:e6:9d:d4:0b: e2:54:24:cb:76:ce:15:12:8f:ae:75:6f:0d:00:ab:09:99:38: 14:ef:9f:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUxMjE4MjIxMDU3WhcNMjUxMjI1MjIxMDU3WjAYMRYwFAYD VQQDDA02OTQ0N2JmMi1mNTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hKEkkz5kG/tLJjNRTUBLRYL2bpCpwe279OwUc8pgX/LUmIVEaS3H85iFbjA Y/pqE1GDJ3RqC8Q4/Jn//1Q+hjIISR/R6F30+USlMVjqeFq635jDbVErLyhW8pO2 F5PYmJToJbfrqeAsR5s/Lilj7f7hCU9MElPiEGt6gYn2xp9Xqhomgjhtqfxq6RG7 FHgTLaqCWdn86TW4ojwK58vZm0EaP42/Ad7HsA5ErCHAKZDDaVlGkUApn8zIScr4 gGLNsovEwoavBpmDxTqa7dzjvbGgp38/Mm/Vkb6JWE2rzNuJz6dJX5jLJ11z/xL2 k3cut1b+ni7DAe9MRsBVRl/pUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNCvqc9 Rch9vBUlgkiFNclv47L1MB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd4ddFvLrY12rkc1HhvvL91uIX7jk9lI0KZeroVsLelVvgBXLHzQ4P RtBxX2OauxrqnTZAsgsmRM+pQzJ0wqPl5pQGvqRLMadnaF8mdPpZlurmJTxCZVa6 BZpWPInvUdherp06FI6z+QXNbKTu885baqh0e/ro4a9B+t0GZryoXIVJxojzPFw7 W9PBtoiq5sxnoyg7DAt9Eno6LZZUIBHoaJT0ARICBQsmjPSC9FukrRzkfVbWm3Ab QYN663ScUwYucimydQqwFwDq21C7EE1ypYO7BJnkAabYwi1bqegYT6X+hB5Wduad 1AviVCTLds4VEo+udW8NAKsJmTgU758s -----END CERTIFICATE-----Generated at Fri Dec 19 20:15:34 2025 by rpki-client