This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: ow+2QxAd+BYgWNte1YI/zEryinLottqbN6TyROlflVQ= Subject key identifier: 38:3D:02:73:3F:BF:57:7D:64:AF:76:31:67:4A:4A:6D:8D:EB:63:B4 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 10DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 10D0 Signing time: Thu 18 Dec 2025 17:08:52 +0000 Manifest this update: Thu 18 Dec 2025 17:08:51 +0000 Manifest next update: Thu 25 Dec 2025 17:08:51 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: zfEln+FV3x2Ilp/PXZnx6r+coRj+nadqifrnDLrxGY4=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4314 (0x10da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Dec 18 17:08:51 2025 GMT Not After : Dec 25 17:08:51 2025 GMT Subject: CN=69443523-5951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6f:ac:1f:19:ec:50:28:3e:ef:dc:9a:fc:2c: 26:dd:3b:cd:42:f4:b6:ef:a4:65:c1:4d:c2:fb:1e: 17:3c:eb:b3:71:30:19:de:e4:2e:91:54:4d:47:71: 88:8b:be:8e:d7:b2:f3:07:69:12:0a:0f:d9:92:ec: 4e:68:81:fb:be:c6:39:ff:9a:61:49:0f:7a:7e:62: 45:08:fe:ed:61:8f:98:b1:d7:8b:92:8a:9e:b3:34: 8f:eb:04:2c:e8:0d:ba:2b:1b:c1:0a:01:31:9e:ac: f1:e8:ac:d1:3e:4a:eb:4b:1f:8a:78:e5:af:79:ec: ac:54:a4:73:21:7e:f6:50:94:32:30:0f:c6:47:30: e6:94:99:0b:ba:06:58:3d:09:5c:94:4a:b3:f4:36: e9:5f:f9:eb:68:1d:81:de:d9:d1:e5:ab:3e:61:6d: 43:f6:c6:5d:b4:3e:6b:c2:fa:11:10:4a:f6:ca:f8: 6c:f1:bc:a7:7d:84:e8:f6:a1:b2:8d:dc:d8:8b:d8: c6:78:92:ed:58:04:38:c5:d0:51:bf:8f:be:50:df: ab:9f:30:8d:55:80:bd:84:af:53:c6:72:07:c0:1c: ca:19:d4:47:3a:bc:55:d2:9b:02:c6:44:29:b0:72: dd:20:75:df:f5:f7:16:96:4d:4a:9e:ce:72:c8:f5: db:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3D:02:73:3F:BF:57:7D:64:AF:76:31:67:4A:4A:6D:8D:EB:63:B4 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:6b:ac:b3:3a:d2:f4:c9:db:3c:22:a6:7a:13:a3:e7:46:41: b5:6b:68:7a:44:7f:c3:a6:53:79:25:b8:e3:8b:19:0d:84:73: d1:8b:f5:a6:62:04:84:f1:5c:c2:9a:45:eb:6e:da:14:aa:7d: 88:25:47:2d:10:85:b0:c6:f8:b4:e1:05:50:30:95:6a:c8:54: 88:ae:ca:55:02:a7:45:d8:19:60:c5:9d:07:2d:0d:52:dd:06: 6d:16:c3:7a:ca:79:98:da:2a:1d:bf:29:63:6a:5c:12:bf:85: ce:eb:b8:7f:fb:ef:2c:e2:7d:6a:cb:c8:ad:59:7d:a3:d9:6e: 7b:0d:4c:4e:7f:6c:68:57:fd:17:82:0f:85:e3:24:e5:bd:fd: c2:a1:6b:e5:57:9e:b2:a0:70:e8:ed:2f:a6:7b:1f:e6:c9:8e: a2:e3:48:9d:bc:96:28:da:5b:d7:4e:13:47:26:39:5f:66:d3: b7:c2:a1:bc:73:3b:ff:07:5f:47:78:87:fe:54:19:9f:fc:dd: da:89:c2:3c:07:a7:82:fe:c0:6c:b7:ae:81:6d:87:fe:24:e5: b4:bd:44:70:a0:db:78:93:e5:7c:23:7d:3c:01:9b:41:9e:f9: 6f:2b:c3:e5:2a:52:5a:8a:e7:86:14:d9:4d:40:f4:6c:49:bf: 42:7a:97:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUxMjE4MTcwODUxWhcNMjUxMjI1MTcwODUxWjAYMRYwFAYD VQQDDA02OTQ0MzUyMy01OTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArW+sHxnsUCg+79ya/Cwm3TvNQvS276RlwU3C+x4XPOuzcTAZ3uQukVRNR3GI i76O17LzB2kSCg/ZkuxOaIH7vsY5/5phSQ96fmJFCP7tYY+YsdeLkoqeszSP6wQs 6A26KxvBCgExnqzx6KzRPkrrSx+KeOWveeysVKRzIX72UJQyMA/GRzDmlJkLugZY PQlclEqz9DbpX/nraB2B3tnR5as+YW1D9sZdtD5rwvoREEr2yvhs8bynfYTo9qGy jdzYi9jGeJLtWAQ4xdBRv4++UN+rnzCNVYC9hK9TxnIHwBzKGdRHOrxV0psCxkQp sHLdIHXf9fcWlk1Kns5yyPXbywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg9AnM/ v1d9ZK92MWdKSm2N62O0MB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCla6yzOtL0yds8IqZ6E6PnRkG1a2h6RH/DplN5JbjjixkNhHPRi/Wm YgSE8VzCmkXrbtoUqn2IJUctEIWwxvi04QVQMJVqyFSIrspVAqdF2BlgxZ0HLQ1S 3QZtFsN6ynmY2iodvyljalwSv4XO67h/++8s4n1qy8itWX2j2W57DUxOf2xoV/0X gg+F4yTlvf3CoWvlV56yoHDo7S+mex/myY6i40idvJYo2lvXThNHJjlfZtO3wqG8 czv/B19HeIf+VBmf/N3aicI8B6eC/sBst66BbYf+JOW0vURwoNt4k+V8I308AZtB nvlvK8PlKlJaiueGFNlNQPRsSb9CepfD -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:58 2025 by rpki-client