This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: P+h2keh+CeoJsEQ4Dbes03Y+RvA5LADuVibQkSAdMQk= Subject key identifier: 16:C9:F3:AD:C1:BE:C7:10:1D:D1:F8:93:19:DF:18:A9:08:03:56:84 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 016F Signing time: Sun 21 Dec 2025 03:12:09 +0000 Manifest this update: Sun 21 Dec 2025 03:12:09 +0000 Manifest next update: Sun 28 Dec 2025 03:12:09 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: 2UbuXWvdMi8TmkuerZeMvtCEMNm6BTqjMr8KDcgK0Wk=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: phqylkhfGei3IojXYcRRdYxObeB6TnyHw6jd5mx17zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Dec 21 03:12:09 2025 GMT Not After : Dec 28 03:12:09 2025 GMT Subject: CN=69476589-364e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:78:67:e9:29:65:dd:bd:f9:86:c9:88:fd:78: af:1a:47:88:62:a4:65:bf:74:17:df:ce:e8:20:38: de:4b:90:33:0a:4a:4b:26:b4:13:0e:76:96:8d:29: 17:b7:86:88:83:66:94:7b:13:2e:20:3b:da:0a:f0: 2c:8a:76:fb:e8:05:f9:96:17:a0:58:f3:38:31:47: 6e:0b:39:5a:35:1f:ae:72:e6:18:6c:b5:2c:f1:d5: 53:bb:7d:e2:48:ce:b6:a1:7f:1a:9d:17:78:2e:c8: 27:15:25:e0:e8:7f:f1:d6:42:a5:dc:23:09:e1:92: 03:cb:2c:aa:07:8e:34:e7:14:56:6a:89:9c:f3:94: aa:91:a1:9c:61:85:bd:88:f2:93:89:4e:57:95:f5: 89:b1:3b:d9:60:ed:78:b8:24:60:a2:45:5e:e4:41: 16:29:48:f4:06:f0:1d:9d:e4:19:a4:15:0f:ff:a5: cb:ad:84:eb:d1:6b:db:19:02:f0:10:a5:d9:65:0a: 02:31:a0:96:ff:02:78:11:17:44:3b:16:e2:a2:ea: 8a:2c:fb:9a:96:53:ac:42:3f:fa:8b:a5:7b:37:c6: 3a:09:7f:84:3d:ae:89:fe:5a:68:5c:83:02:0b:d7: 98:20:20:90:ff:7f:74:12:d6:89:61:92:91:c7:f5: 2f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:C9:F3:AD:C1:BE:C7:10:1D:D1:F8:93:19:DF:18:A9:08:03:56:84 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:52:fe:1c:a8:77:67:37:2a:ab:f9:f9:84:d7:a9:6f:38:67: 4a:89:33:2f:8d:ac:b8:bd:c8:29:47:7d:cd:d1:13:b6:4e:a7: 42:0f:bd:fe:36:38:69:f1:b2:c1:dc:2d:9c:bf:8e:53:f7:a8: 97:75:80:87:a3:9f:6c:f0:34:1c:eb:39:0f:5b:cb:76:f5:fb: db:e7:6a:59:a7:3c:b7:96:3b:b5:90:2d:db:c0:da:82:de:ad: 4a:2c:7e:e6:3d:e7:a7:9c:e3:75:6d:66:24:fd:c6:82:18:6b: 8a:23:38:f1:c0:07:33:95:a5:62:43:65:a5:d0:ac:b8:3e:88: 9f:83:4b:5a:7d:55:d1:94:aa:54:a2:5a:71:0e:f0:22:be:0f: 17:b2:b8:90:41:3d:f4:39:ed:41:79:04:aa:d6:ff:7e:33:b6: 25:fc:2b:48:7a:90:ca:32:3d:1d:b4:23:d1:eb:3c:32:5f:38: 6b:17:75:8a:9f:01:a0:01:33:e6:87:1f:78:0e:00:71:22:7c: 09:cd:24:7e:1b:27:b7:1a:ee:0b:c0:20:3a:e3:74:f3:a9:b8: 22:07:88:ee:dc:7f:79:bf:a5:42:08:dd:aa:59:86:85:9e:06: ef:99:ac:d3:9e:d2:61:f4:66:b2:e5:3f:d2:eb:88:c0:99:ec: c0:02:0a:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUxMjIxMDMxMjA5WhcNMjUxMjI4MDMxMjA5WjAYMRYwFAYD VQQDDA02OTQ3NjU4OS0zNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynhn6Sll3b35hsmI/XivGkeIYqRlv3QX387oIDjeS5AzCkpLJrQTDnaWjSkX t4aIg2aUexMuIDvaCvAsinb76AX5lhegWPM4MUduCzlaNR+ucuYYbLUs8dVTu33i SM62oX8anRd4LsgnFSXg6H/x1kKl3CMJ4ZIDyyyqB4405xRWaomc85SqkaGcYYW9 iPKTiU5XlfWJsTvZYO14uCRgokVe5EEWKUj0BvAdneQZpBUP/6XLrYTr0WvbGQLw EKXZZQoCMaCW/wJ4ERdEOxbiouqKLPuallOsQj/6i6V7N8Y6CX+EPa6J/lpoXIMC C9eYICCQ/390EtaJYZKRx/UvzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbJ863B vscQHdH4kxnfGKkIA1aEMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGUv4cqHdnNyqr+fmE16lvOGdKiTMvjay4vcgpR33N0RO2TqdCD73+ Njhp8bLB3C2cv45T96iXdYCHo59s8DQc6zkPW8t29fvb52pZpzy3lju1kC3bwNqC 3q1KLH7mPeennON1bWYk/caCGGuKIzjxwAczlaViQ2Wl0Ky4Poifg0tafVXRlKpU olpxDvAivg8XsriQQT30Oe1BeQSq1v9+M7Yl/CtIepDKMj0dtCPR6zwyXzhrF3WK nwGgATPmhx94DgBxInwJzSR+Gye3Gu4LwCA643TzqbgiB4ju3H95v6VCCN2qWYaF ngbvmazTntJh9Gay5T/S64jAmezAAgpp -----END CERTIFICATE-----Generated at Sun Dec 21 09:35:49 2025 by rpki-client