This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft File: zDdqaPyj4J8M61wsuRs02xTD68k.mft (raw, json) Hash identifier: mS33Vk09A9sV5+eppvAnHwE6y3YgUTjPgXNxaeA9dNA= Subject key identifier: AA:E2:A9:44:24:36:3C:08:92:45:6D:CB:B0:8A:B5:F8:98:F9:58:E7 Authority key identifier: CC:37:6A:68:FC:A3:E0:9F:0C:EB:5C:2C:B9:1B:34:DB:14:C3:EB:C9 Certificate issuer: /CN=A914DCD4/serialNumber=CC376A68FCA3E09F0CEB5C2CB91B34DB14C3EBC9 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft Manifest number: 03 Signing time: Sat 27 Dec 2025 06:55:59 +0000 Manifest this update: Sat 27 Dec 2025 06:55:58 +0000 Manifest next update: Sat 03 Jan 2026 06:55:58 +0000 Files and hashes: 1: zDdqaPyj4J8M61wsuRs02xTD68k.crl (hash: Kyk1DwUzj5YteW5gcGO9TyT59zoKTYMwEQt2yXlXtPI=) 2: 2A8244EEE1AB11F0A6B6CFD64A6F56BC.roa (hash: qXIrbZpx+nMIXxPB13YbBm5VVLpYWbDabD7TSj8LmXE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.crl rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 06:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DCD4, serialNumber=CC376A68FCA3E09F0CEB5C2CB91B34DB14C3EBC9 Validity Not Before: Dec 27 06:55:58 2025 GMT Not After : Jan 3 06:55:58 2026 GMT Subject: CN=694f82ff-b8cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1d:a6:ae:8f:a6:1a:da:2d:1f:33:db:17:5c: 93:89:4b:31:5a:0c:94:ba:b7:45:38:30:b8:8e:8a: c7:44:a7:d2:da:5e:3d:10:e4:94:a7:22:0a:de:78: 59:4f:d9:59:4f:9a:52:e4:e4:cd:2c:c3:21:4f:64: dd:86:17:1f:03:e2:05:ff:02:2e:3f:e6:9b:5e:08: 1b:69:7b:8f:af:2e:9d:d6:2b:46:2d:8d:54:8d:9c: 05:c5:4d:43:c9:2e:35:a5:c3:cf:58:32:f1:37:ae: 1b:6f:86:72:d9:e0:54:b6:28:ff:ac:41:f9:64:19: 98:ef:d5:79:1f:72:0f:83:bb:b3:b1:cb:ec:b3:50: bb:d9:92:a1:31:de:14:b0:c5:9a:39:c7:90:81:62: 34:7f:ea:25:6c:5f:7f:66:56:a0:2d:c7:ef:d5:9b: 9d:74:c5:b1:90:36:77:8b:f4:16:2b:84:f6:a1:ad: ff:c0:54:ef:d1:1b:48:d2:ac:c9:5c:4b:a4:2d:cd: 64:0c:af:16:1f:4e:13:42:f6:df:12:49:50:3f:1b: a8:22:1f:c1:8f:5b:82:e3:88:17:29:e2:b9:3f:3b: c5:86:54:6a:5e:af:a3:79:14:e5:50:46:75:3b:ac: 5c:3a:33:dc:1d:b7:24:72:c8:1b:7b:db:f9:40:55: 64:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E2:A9:44:24:36:3C:08:92:45:6D:CB:B0:8A:B5:F8:98:F9:58:E7 X509v3 Authority Key Identifier: keyid:CC:37:6A:68:FC:A3:E0:9F:0C:EB:5C:2C:B9:1B:34:DB:14:C3:EB:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:f3:c1:1e:c4:81:d8:8b:df:a2:ad:8a:fd:d0:ad:83:f7:9b: ea:0a:55:ad:31:bf:1e:ac:90:6d:7c:61:f3:38:fe:d0:c8:d9: e7:ff:c5:6d:4a:c9:63:b3:40:f3:06:07:01:67:88:72:52:fc: d5:c0:d6:00:24:73:18:21:d3:6d:8b:ce:1a:ed:63:b1:9f:65: 0a:81:27:e0:a4:9f:02:09:3f:12:f3:87:83:d9:d4:18:92:83: d5:ac:37:82:90:a0:01:99:64:71:73:ed:47:c8:56:24:b8:eb: 4f:64:25:57:21:a7:7b:48:59:26:c3:4c:36:29:b0:cb:65:a9: 5e:a6:32:12:3e:2f:37:d8:f7:e6:ff:25:1c:81:c0:78:66:99: d6:10:0d:f4:51:cc:9b:fb:49:91:9d:95:01:58:dd:bf:94:49: 15:a7:69:e0:b3:90:98:d1:4f:5b:4f:8c:48:80:23:13:89:2e: 5f:08:22:5c:ae:7e:8a:e4:a0:ff:39:93:a0:20:42:63:21:6f: 13:9d:90:5e:47:71:ca:c8:ea:b4:04:b9:a4:c2:f0:72:f8:20: ba:bc:e9:a6:0f:9a:56:43:f3:c1:6f:17:a7:c9:69:40:4d:0c: f0:e6:19:80:2d:61:73:e7:b5:25:2a:7f:ac:c4:3b:fe:aa:96: dc:62:a3:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTE0 RENENDExMC8GA1UEBRMoQ0MzNzZBNjhGQ0EzRTA5RjBDRUI1QzJDQjkxQjM0REIx NEMzRUJDOTAeFw0yNTEyMjcwNjU1NThaFw0yNjAxMDMwNjU1NThaMBgxFjAUBgNV BAMMDTY5NGY4MmZmLWI4Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUHaauj6Ya2i0fM9sXXJOJSzFaDJS6t0U4MLiOisdEp9LaXj0Q5JSnIgreeFlP 2VlPmlLk5M0swyFPZN2GFx8D4gX/Ai4/5pteCBtpe4+vLp3WK0YtjVSNnAXFTUPJ LjWlw89YMvE3rhtvhnLZ4FS2KP+sQflkGZjv1Xkfcg+Du7Oxy+yzULvZkqEx3hSw xZo5x5CBYjR/6iVsX39mVqAtx+/Vm510xbGQNneL9BYrhPahrf/AVO/RG0jSrMlc S6QtzWQMrxYfThNC9t8SSVA/G6giH8GPW4LjiBcp4rk/O8WGVGper6N5FOVQRnU7 rFw6M9wdtyRyyBt72/lAVWR5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUquKpRCQ2 PAiSRW3LsIq1+Jj5WOcwHwYDVR0jBBgwFoAUzDdqaPyj4J8M61wsuRs02xTD68kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQ0Q0L0IxNzFEQjUwRTFB QTExRjBBRkNFODRCODRBNkY1NkJDL3pEZHFhUHlqNEo4TTYxd3N1UnMwMnhURDY4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvekRkcWFQeWo0SjhNNjF3c3VSczAyeFRENjhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE Q0Q0L0IxNzFEQjUwRTFBQTExRjBBRkNFODRCODRBNkY1NkJDL3pEZHFhUHlqNEo4 TTYxd3N1UnMwMnhURDY4ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACLzwR7EgdiL36Ktiv3QrYP3m+oKVa0xvx6skG18YfM4/tDI2ef/xW1K yWOzQPMGBwFniHJS/NXA1gAkcxgh022LzhrtY7GfZQqBJ+CknwIJPxLzh4PZ1BiS g9WsN4KQoAGZZHFz7UfIViS4609kJVchp3tIWSbDTDYpsMtlqV6mMhI+LzfY9+b/ JRyBwHhmmdYQDfRRzJv7SZGdlQFY3b+USRWnaeCzkJjRT1tPjEiAIxOJLl8IIlyu forkoP85k6AgQmMhbxOdkF5HccrI6rQEuaTC8HL4ILq86aYPmlZD88FvF6fJaUBN DPDmGYAtYXPntSUqf6zEO/6qltxio+4= -----END CERTIFICATE-----Generated at Mon Dec 29 07:03:54 2025 by rpki-client