This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: ZLek3aQuGuDyZd0UWv931s6YdjcG6NQAt1BwpXkfTI8= Subject key identifier: 1C:36:64:E1:6C:95:57:3B:52:2B:46:45:47:DA:BB:BE:5F:40:D9:2E Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 01E6 Signing time: Fri 19 Dec 2025 01:58:30 +0000 Manifest this update: Fri 19 Dec 2025 01:58:30 +0000 Manifest next update: Fri 26 Dec 2025 01:58:30 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: 99IvF8F6SzWvnmnPhuYezB/4RBmv6MMkG6MjGYXTIX0=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: p/oubbOjEb8Zn+B8haVjlomp+846cFby5ixQFCvfJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Dec 19 01:58:30 2025 GMT Not After : Dec 26 01:58:30 2025 GMT Subject: CN=6944b146-15e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:16:83:ce:9b:a0:fe:88:c3:0f:81:cc:1f: 95:fc:f2:1e:8c:e7:46:8b:12:19:a8:42:b2:94:61: 81:5e:b4:7f:78:70:e1:ed:9b:a4:9a:fa:15:fb:91: 15:94:e7:da:cd:13:5f:bb:be:d5:38:8c:43:9c:1d: 0c:f3:af:fe:cd:59:ea:f3:cc:b0:03:f7:b7:7c:5a: 56:d9:8f:89:cb:83:a8:a5:dc:43:7a:0e:6f:98:2c: 9d:ea:ab:79:a7:3e:9b:c3:48:fe:88:87:ef:bc:f2: 9a:64:41:7f:87:fb:08:d0:17:c7:73:78:b5:91:b3: 90:81:02:8d:90:3c:16:67:6d:a0:e9:c7:37:ea:6a: 29:ce:4c:09:63:8a:d2:8f:b6:67:b7:10:27:a8:9c: 8e:73:ba:b7:a5:b2:4a:38:ee:a7:d4:ae:14:51:53: e0:89:92:ca:b7:47:84:29:4e:fb:db:e9:ab:0e:d6: 8f:df:91:8d:7f:3f:6e:da:0d:c4:55:a1:4f:6f:91: 6f:0a:e1:e4:b6:8f:b4:aa:6b:bc:4c:5f:f9:0e:16: 70:1e:50:5a:0f:0e:27:94:b2:4b:3c:07:50:0e:b4: cb:15:9b:b1:50:6c:a2:c7:98:01:29:66:bf:ad:dc: c3:76:bd:8d:12:d1:d9:0d:a4:64:6d:14:70:49:38: 29:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:36:64:E1:6C:95:57:3B:52:2B:46:45:47:DA:BB:BE:5F:40:D9:2E X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:f3:58:eb:16:54:68:2f:db:7a:e4:1b:16:8b:10:f2:9c:c4: a8:52:21:6b:f2:e2:9b:27:8c:eb:f8:90:7d:85:3e:6f:fb:da: 39:f3:33:c2:b1:ef:b3:3a:9f:67:2b:83:17:b8:05:0a:bf:ec: 8d:36:a7:4f:87:ab:9c:1b:31:3c:ef:c1:93:44:81:67:8e:80: e9:3c:41:1d:fc:48:76:48:f7:f6:ec:db:fb:4f:1e:23:35:b4: d8:74:19:5f:e2:92:e8:e7:59:62:a2:1b:72:37:f3:6a:57:6e: 92:7b:f3:7a:20:38:53:20:e6:eb:ea:99:4c:46:b4:65:bf:34: d6:0c:3b:58:8f:f4:5f:40:7b:0c:1a:0f:f0:92:b3:0d:27:46: d7:a8:9a:88:5b:eb:71:48:02:a5:48:94:2a:4b:d7:64:f6:e9: 84:97:be:d6:37:4f:24:a4:45:c6:d0:0d:76:f6:30:b6:24:29: 23:f6:d8:90:9f:a8:cd:41:04:56:dd:2a:9a:55:53:4a:19:de: 86:ab:d9:d5:c3:c8:3f:c2:2f:03:9d:06:cb:a7:4e:c2:07:20: 01:23:1e:00:df:ca:40:a0:ea:36:8e:51:da:3c:29:37:84:61: 9c:36:dd:33:fd:b4:76:40:6e:9e:bf:05:0e:d9:78:b9:07:3e: 45:36:8a:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUxMjE5MDE1ODMwWhcNMjUxMjI2MDE1ODMwWjAYMRYwFAYD VQQDDA02OTQ0YjE0Ni0xNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ0Wg86boP6Iww+BzB+V/PIejOdGixIZqEKylGGBXrR/eHDh7ZukmvoV+5EV lOfazRNfu77VOIxDnB0M86/+zVnq88ywA/e3fFpW2Y+Jy4OopdxDeg5vmCyd6qt5 pz6bw0j+iIfvvPKaZEF/h/sI0BfHc3i1kbOQgQKNkDwWZ22g6cc36mopzkwJY4rS j7ZntxAnqJyOc7q3pbJKOO6n1K4UUVPgiZLKt0eEKU772+mrDtaP35GNfz9u2g3E VaFPb5FvCuHkto+0qmu8TF/5DhZwHlBaDw4nlLJLPAdQDrTLFZuxUGyix5gBKWa/ rdzDdr2NEtHZDaRkbRRwSTgpUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBw2ZOFs lVc7UitGRUfau75fQNkuMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB181jrFlRoL9t65BsWixDynMSoUiFr8uKbJ4zr+JB9hT5v+9o58zPC se+zOp9nK4MXuAUKv+yNNqdPh6ucGzE878GTRIFnjoDpPEEd/Eh2SPf27Nv7Tx4j NbTYdBlf4pLo51liohtyN/NqV26Se/N6IDhTIObr6plMRrRlvzTWDDtYj/RfQHsM Gg/wkrMNJ0bXqJqIW+txSAKlSJQqS9dk9umEl77WN08kpEXG0A129jC2JCkj9tiQ n6jNQQRW3SqaVVNKGd6Gq9nVw8g/wi8DnQbLp07CByABIx4A38pAoOo2jlHaPCk3 hGGcNt0z/bR2QG6evwUO2Xi5Bz5FNoqk -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:42 2025 by rpki-client