This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: I6H4Kjk5jGsY7rfTb+MzHzfigkjZXGOgw7AvYqZO+AY= Subject key identifier: 9E:F3:2B:8C:F4:C4:7B:C8:31:D3:10:39:D4:30:66:FA:72:B0:82:6E Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0E50 Signing time: Thu 18 Dec 2025 17:35:22 +0000 Manifest this update: Thu 18 Dec 2025 17:35:21 +0000 Manifest next update: Thu 25 Dec 2025 17:35:21 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: fQ1m5WNP4SM+tHyrb14fGAmnKd6CInRfnHGLwovdpgs=) 2: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: cRBzFvwtKhO498akQMxVv4jrQ/Ofn1ctENdiE3NLHgk=) 3: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: TISln3OWwFMxrFHBXjhzJmsuAj7ldgpqpKcI/7qFxoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3688 (0xe68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Dec 18 17:35:21 2025 GMT Not After : Dec 25 17:35:21 2025 GMT Subject: CN=69443b59-3585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8d:b8:94:25:79:4e:21:5f:07:33:f8:ee:07: 52:c0:33:fd:61:af:ac:eb:a5:fd:86:87:cf:89:a3: 11:d3:47:48:19:a9:72:2c:d6:b6:ab:06:fc:6a:3f: 25:a8:67:2b:c7:92:1e:4c:8b:25:f3:42:fe:2c:78: 61:9c:1f:95:78:f3:3e:d6:04:7b:5e:96:e9:af:b5: b7:3b:c0:99:2e:eb:bc:f1:9c:62:c0:41:5c:c8:82: b8:8e:b7:c1:5e:df:a3:1a:14:95:cf:60:9d:8a:3b: d3:28:40:ee:fa:9f:13:1e:91:9f:0c:17:c8:f6:e6: 7a:72:2c:a3:d3:05:84:2f:07:96:7c:00:91:f5:fa: c8:8a:29:f5:16:17:b5:a7:ff:2f:a3:40:2a:d4:ca: 48:51:69:80:63:5a:b0:57:13:fb:e9:06:2a:ad:44: 37:81:88:d4:cd:ef:b0:cd:a7:46:34:58:ca:7f:16: 37:f7:f9:68:24:43:00:48:86:a1:a6:ad:76:db:0e: 51:f2:d3:4a:6a:87:80:14:60:ab:dc:83:de:8f:8c: 42:8f:d4:2d:6c:3b:d0:fa:b4:42:ab:bf:44:b8:41: bd:20:5e:0d:55:22:cf:73:b7:df:7e:93:64:33:00: 23:cd:e5:66:d7:d9:c0:97:c3:d8:87:3d:4e:ce:61: ac:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F3:2B:8C:F4:C4:7B:C8:31:D3:10:39:D4:30:66:FA:72:B0:82:6E X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:0c:e2:d1:59:9b:1d:76:35:9a:73:86:06:89:d1:31:3d:3e: 90:d5:1b:3f:83:02:e8:22:22:c5:a2:e1:53:8b:bf:81:90:31: ff:02:44:9b:f1:af:96:40:28:42:37:03:fa:f2:20:63:42:d7: 20:f1:4e:2f:e9:b8:ac:85:7a:1c:32:c4:e8:23:29:54:b5:bf: 3a:2a:80:47:9a:fe:ff:2b:92:5a:41:3c:a4:66:15:3d:ba:eb: b4:d8:e7:fb:bb:41:62:0a:94:c5:c0:d3:d7:8c:e1:a1:7c:59: 87:7d:19:e6:44:c4:73:98:fb:65:c2:2d:8f:d0:fe:cc:04:34: 43:f9:f2:74:e7:e2:a7:20:bb:84:20:f9:d6:d7:3b:af:8b:f3: 23:7a:21:c1:5a:e3:af:ab:2f:98:a4:e6:9a:32:1b:07:d6:e0: 86:88:eb:30:04:57:9d:a6:9a:90:c7:ae:bd:30:07:7e:7d:46: ed:f6:37:93:ab:c7:c7:e6:41:d0:8b:85:7e:ae:30:de:48:e8: c6:3a:ff:76:72:1d:c5:9b:ec:a7:6f:03:9a:51:6d:ed:b4:c8: ff:8b:77:84:f2:1c:6e:aa:3c:70:f3:07:41:d7:96:d7:b4:8a: 37:c7:7f:c0:c0:ef:fe:04:84:bc:57:71:88:71:d2:60:df:7f: 9a:1c:07:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUxMjE4MTczNTIxWhcNMjUxMjI1MTczNTIxWjAYMRYwFAYD VQQDDA02OTQ0M2I1OS0zNTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Y24lCV5TiFfBzP47gdSwDP9Ya+s66X9hofPiaMR00dIGalyLNa2qwb8aj8l qGcrx5IeTIsl80L+LHhhnB+VePM+1gR7Xpbpr7W3O8CZLuu88ZxiwEFcyIK4jrfB Xt+jGhSVz2CdijvTKEDu+p8THpGfDBfI9uZ6ciyj0wWELweWfACR9frIiin1Fhe1 p/8vo0Aq1MpIUWmAY1qwVxP76QYqrUQ3gYjUze+wzadGNFjKfxY39/loJEMASIah pq122w5R8tNKaoeAFGCr3IPej4xCj9QtbDvQ+rRCq79EuEG9IF4NVSLPc7fffpNk MwAjzeVm19nAl8PYhz1OzmGsnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7zK4z0 xHvIMdMQOdQwZvpysIJuMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqDOLRWZsddjWac4YGidExPT6Q1Rs/gwLoIiLFouFTi7+BkDH/AkSb 8a+WQChCNwP68iBjQtcg8U4v6bishXocMsToIylUtb86KoBHmv7/K5JaQTykZhU9 uuu02Of7u0FiCpTFwNPXjOGhfFmHfRnmRMRzmPtlwi2P0P7MBDRD+fJ05+KnILuE IPnW1zuvi/MjeiHBWuOvqy+YpOaaMhsH1uCGiOswBFedppqQx669MAd+fUbt9jeT q8fH5kHQi4V+rjDeSOjGOv92ch3Fm+ynbwOaUW3ttMj/i3eE8hxuqjxw8wdB15bX tIo3x3/AwO/+BIS8V3GIcdJg33+aHAdt -----END CERTIFICATE-----Generated at Sat Dec 20 15:31:04 2025 by rpki-client