This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: t9oN0NXwLeenbgPO/FLxWeBu1WwZeUpamiqZNruOKkQ= Subject key identifier: 21:44:D4:43:A3:B6:4F:A2:07:B7:D3:D2:FE:C6:02:33:90:A1:5B:B7 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 020D Signing time: Fri 19 Dec 2025 01:30:59 +0000 Manifest this update: Fri 19 Dec 2025 01:30:58 +0000 Manifest next update: Fri 26 Dec 2025 01:30:58 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: AMEpv4LWrdNDDOCFEZfq9HWzK+0ZB6sy9BQ9JZCnMAA=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Dec 19 01:30:58 2025 GMT Not After : Dec 26 01:30:58 2025 GMT Subject: CN=6944aad3-b777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:74:df:db:da:77:5c:7d:c8:be:8a:17:46:08: cf:99:32:3f:21:73:9e:ab:74:4a:7f:fb:86:ff:ae: d9:52:5b:38:17:b1:67:e5:9d:19:9c:27:67:da:ac: 22:1c:d5:6b:a6:eb:b3:7e:a4:2e:34:d0:e7:3a:bf: 07:ea:e0:2d:e8:58:8d:f5:08:b3:c1:59:d0:c8:99: 52:fc:36:85:86:83:61:87:a0:63:c9:be:e3:cc:22: 36:bd:c0:94:dc:41:13:4e:a0:1a:b7:8b:e9:39:a3: c8:26:45:da:3a:c2:f4:99:dd:a4:32:6d:ce:ff:90: 4f:f7:8a:71:f8:c4:0d:32:ca:3c:11:eb:d5:33:c8: de:57:d4:ad:e7:2c:de:12:77:d0:56:09:01:4e:e8: dd:d2:9a:b6:3a:d2:be:f7:e8:9d:7e:96:e1:18:77: 38:10:f9:97:ec:dd:f1:99:eb:ad:84:75:1f:ae:30: 61:88:8b:b9:a3:db:b7:fd:89:d0:ee:56:8b:69:a6: 7a:12:8e:bb:f0:27:a4:ca:2c:40:6e:31:17:64:72: ea:7c:f0:6b:a5:ad:ba:7e:87:f0:63:de:14:51:86: ed:0e:77:45:9f:28:e6:5a:7c:75:d0:eb:84:a1:89: a1:32:e1:8d:61:39:65:ef:36:84:61:b1:77:36:23: 65:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:44:D4:43:A3:B6:4F:A2:07:B7:D3:D2:FE:C6:02:33:90:A1:5B:B7 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:02:f7:5b:4a:ea:bb:2b:9b:69:b7:b7:47:2a:a0:99:5a:ae: 36:44:4a:46:8e:59:b2:1b:17:6c:fc:6f:98:c8:4f:eb:45:05: a5:c9:01:7e:7f:44:b8:dd:c4:2d:db:40:36:4a:26:eb:e8:d0: 32:6e:09:72:86:ce:d5:dc:bc:6c:89:d6:f1:6c:4e:48:2e:ab: 48:6c:6d:24:94:49:1a:1e:b1:c4:0b:8a:aa:ce:c9:20:67:ee: 48:4c:7d:2d:a0:77:01:d7:16:1e:3f:bc:d5:87:61:0c:61:4c: 89:13:5b:e7:5b:9a:b6:3d:a1:36:01:4a:21:02:16:40:45:4b: 71:4c:29:e5:f6:f8:fb:57:6e:94:8e:76:74:bb:00:e6:c4:00: 85:76:8d:7b:d6:3c:b7:79:49:d3:60:d0:94:4b:9c:30:cd:d2: f4:d8:3c:bc:9c:0a:27:13:5a:88:24:96:75:74:ec:cb:46:fb: 18:15:25:47:fe:7a:3c:b3:99:21:72:33:17:55:91:71:b4:fb: 47:07:80:57:08:b3:9e:93:f5:ea:53:0c:f1:e6:20:40:36:e5: a1:25:8a:eb:78:1e:08:95:10:48:6f:22:87:be:2a:21:6c:bd: fd:bf:ad:1e:00:1a:0d:47:82:01:f5:a7:6e:e8:16:fe:c9:6c: 69:08:80:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUxMjE5MDEzMDU4WhcNMjUxMjI2MDEzMDU4WjAYMRYwFAYD VQQDDA02OTQ0YWFkMy1iNzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3Tf29p3XH3IvooXRgjPmTI/IXOeq3RKf/uG/67ZUls4F7Fn5Z0ZnCdn2qwi HNVrpuuzfqQuNNDnOr8H6uAt6FiN9QizwVnQyJlS/DaFhoNhh6Bjyb7jzCI2vcCU 3EETTqAat4vpOaPIJkXaOsL0md2kMm3O/5BP94px+MQNMso8EevVM8jeV9St5yze EnfQVgkBTujd0pq2OtK+9+idfpbhGHc4EPmX7N3xmeuthHUfrjBhiIu5o9u3/YnQ 7laLaaZ6Eo678CekyixAbjEXZHLqfPBrpa26fofwY94UUYbtDndFnyjmWnx10OuE oYmhMuGNYTll7zaEYbF3NiNliwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFE1EOj tk+iB7fT0v7GAjOQoVu3MB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWAvdbSuq7K5tpt7dHKqCZWq42REpGjlmyGxds/G+YyE/rRQWlyQF+ f0S43cQt20A2Sibr6NAybglyhs7V3LxsidbxbE5ILqtIbG0klEkaHrHEC4qqzskg Z+5ITH0toHcB1xYeP7zVh2EMYUyJE1vnW5q2PaE2AUohAhZARUtxTCnl9vj7V26U jnZ0uwDmxACFdo171jy3eUnTYNCUS5wwzdL02Dy8nAonE1qIJJZ1dOzLRvsYFSVH /no8s5khcjMXVZFxtPtHB4BXCLOek/XqUwzx5iBANuWhJYrreB4IlRBIbyKHvioh bL39v60eABoNR4IB9adu6Bb+yWxpCIAi -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:02 2025 by rpki-client