This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: zXQVH/7AUTP2rG7uf+nMBG0OAFcJ1lFx/GSZzqcbIdg= Subject key identifier: 71:46:2F:30:4D:78:3C:4E:85:BB:B1:B2:3C:8E:15:F9:E9:76:41:6F Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: FE Signing time: Mon 29 Dec 2025 04:15:40 +0000 Manifest this update: Mon 29 Dec 2025 04:15:39 +0000 Manifest next update: Mon 05 Jan 2026 04:15:39 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: +VzNf2WRsqVfV2zDq3YzRRsfxYwynRO4qw7rZgtYvtg=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: ssSab392rUEklfenSvYRYq8TUWajk4XJZygnBh6m+8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 04:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Dec 29 04:15:39 2025 GMT Not After : Jan 5 04:15:39 2026 GMT Subject: CN=6952006c-0594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ae:ad:2a:08:91:12:e6:7b:f7:a3:1a:80:86: b0:8e:55:94:60:ad:6a:3a:5a:a8:84:51:4d:ab:43: 3f:0c:ee:a0:30:3c:79:63:a4:42:6b:fe:94:13:e4: a0:60:8b:d7:e8:6c:26:63:15:d7:5e:0c:e7:70:c4: 67:c8:3c:e8:36:52:93:fc:dc:a2:92:d4:7d:22:4d: 60:0f:fa:d4:77:aa:5f:e5:44:41:62:9c:1b:06:38: 23:ce:f4:e1:10:7c:bf:04:69:59:6d:fb:15:d3:40: 09:14:dc:9f:4a:56:80:1c:17:98:d2:4a:75:5d:1c: 39:cc:86:d9:96:b8:42:7a:ce:b8:89:95:2a:6e:27: e6:c2:09:45:97:6e:57:bc:0d:70:89:13:dc:96:05: ea:a9:8d:5d:75:f9:f8:d4:26:eb:ef:7e:c1:12:f4: 87:26:9d:3d:d5:6e:2d:38:d0:b3:4e:04:af:19:19: 86:21:41:78:38:26:fa:60:2f:c3:6b:ad:6d:24:75: d2:84:30:fb:10:68:05:49:18:3e:30:8f:8e:c8:58: fc:98:3d:f2:40:94:24:63:1a:4a:86:17:5c:00:37: 25:bb:20:9d:80:07:4f:ec:bf:cc:16:95:75:b5:5e: 64:2b:6d:8e:a6:36:a1:b7:55:5c:c1:e7:93:55:68: 98:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:46:2F:30:4D:78:3C:4E:85:BB:B1:B2:3C:8E:15:F9:E9:76:41:6F X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c3:5b:53:ee:f6:aa:fc:09:45:c3:f6:4a:e9:3a:75:65:75: 56:a7:a0:91:1e:cf:d5:7f:e5:7f:63:49:04:7d:43:e2:b0:f0: da:39:02:b0:a8:f6:e9:12:91:3f:6f:c3:68:ea:1f:90:1b:a7: fd:ed:19:2d:e5:24:e9:73:dc:3a:05:9a:c6:8e:77:94:5c:84: f3:97:4e:77:1e:fd:12:c8:20:f6:7f:66:7a:d8:e7:8b:7c:88: 9a:87:b9:4a:46:78:c2:a9:79:cc:ca:8d:fc:ee:7e:d4:39:2d: 7a:67:b4:37:37:ff:77:fc:c1:94:24:c1:c7:c0:95:c7:aa:5d: 96:a4:bb:3e:89:e9:b0:d0:e6:11:0b:8c:5c:f5:b6:11:19:83: e5:14:ff:d4:21:94:71:f7:5a:45:5d:f1:35:46:84:14:d7:0f: ff:3f:6e:e0:64:d0:06:fc:2b:d7:ad:83:9b:b5:bc:2e:09:c4: f8:20:31:0d:01:ef:a7:b3:e4:b0:4a:e3:35:8a:68:b6:b6:b6: 0e:0d:81:4e:69:4f:69:f0:2a:2b:6a:fe:3e:f8:06:cf:51:b5: bd:75:3e:04:bc:7d:54:0c:60:47:d3:71:80:c4:b7:fd:55:3c: 35:24:1f:0a:ac:83:04:db:1b:81:25:c3:e2:21:e1:f4:c6:eb: 2e:d5:41:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjUxMjI5MDQxNTM5WhcNMjYwMTA1MDQxNTM5WjAYMRYwFAYD VQQDDA02OTUyMDA2Yy0wNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjK6tKgiREuZ796MagIawjlWUYK1qOlqohFFNq0M/DO6gMDx5Y6RCa/6UE+Sg YIvX6GwmYxXXXgzncMRnyDzoNlKT/NyiktR9Ik1gD/rUd6pf5URBYpwbBjgjzvTh EHy/BGlZbfsV00AJFNyfSlaAHBeY0kp1XRw5zIbZlrhCes64iZUqbifmwglFl25X vA1wiRPclgXqqY1ddfn41Cbr737BEvSHJp091W4tONCzTgSvGRmGIUF4OCb6YC/D a61tJHXShDD7EGgFSRg+MI+OyFj8mD3yQJQkYxpKhhdcADcluyCdgAdP7L/MFpV1 tV5kK22Opjaht1VcweeTVWiYbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFGLzBN eDxOhbuxsjyOFfnpdkFvMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxw1tT7vaq/AlFw/ZK6Tp1ZXVWp6CRHs/Vf+V/Y0kEfUPisPDaOQKw qPbpEpE/b8No6h+QG6f97Rkt5STpc9w6BZrGjneUXITzl053Hv0SyCD2f2Z62OeL fIiah7lKRnjCqXnMyo387n7UOS16Z7Q3N/93/MGUJMHHwJXHql2WpLs+iemw0OYR C4xc9bYRGYPlFP/UIZRx91pFXfE1RoQU1w//P27gZNAG/CvXrYObtbwuCcT4IDEN Ae+ns+SwSuM1imi2trYODYFOaU9p8Corav4++AbPUbW9dT4EvH1UDGBH03GAxLf9 VTw1JB8KrIME2xuBJcPiIeH0xusu1UE6 -----END CERTIFICATE-----Generated at Tue Dec 30 10:33:24 2025 by rpki-client