This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: jxpePyQDMn/NPGThNNq0h+Ecd9J/YL3dl/H7fpyTpSw= Subject key identifier: 9B:DC:F1:81:05:F9:42:DE:4A:13:4A:2F:28:B1:EB:90:22:84:44:66 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 018B Signing time: Thu 18 Dec 2025 16:41:19 +0000 Manifest this update: Thu 18 Dec 2025 16:41:18 +0000 Manifest next update: Thu 25 Dec 2025 16:41:18 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: Lbr7qvbW4nnXYgPllhzvZUl+LnijtJ0UQsuYGneuL9M=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Dec 18 16:41:18 2025 GMT Not After : Dec 25 16:41:18 2025 GMT Subject: CN=69442eaf-879a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:59:81:c6:e7:ed:56:9e:36:d5:e7:d0:70:3e: 12:70:03:3d:6d:88:a6:e0:9c:0f:37:2b:55:c0:42: d8:2f:1d:75:06:91:08:f0:8e:49:60:52:d2:01:72: 17:50:c3:f1:70:5a:c4:64:1a:86:78:ea:73:9d:ae: 5b:c7:f6:b1:59:f1:35:3c:c9:a5:18:d2:20:1b:66: 96:70:34:55:8f:a9:c9:5e:0e:11:1f:b2:78:f7:42: 6e:43:69:d5:7f:45:9c:df:d9:e8:76:d0:fa:b5:01: 65:07:76:44:dd:78:4a:67:90:04:10:7a:ef:16:86: 52:71:81:a5:79:0d:15:2e:6b:1e:bb:c9:97:a6:3c: 80:db:a2:30:3b:1b:e7:28:b6:bf:7b:b9:66:6f:c7: cb:11:6d:2d:9d:17:14:68:4c:67:f4:11:88:94:81: b3:7c:37:3f:a5:44:cf:18:8d:f5:b4:c8:85:00:31: 57:b0:e3:26:32:24:5c:e5:54:2d:cb:3b:ee:c2:b6: 8c:e3:dc:2d:76:37:3f:8a:f7:05:56:c9:17:dd:d6: 65:2c:f9:dc:19:c6:20:84:a7:25:c6:c9:89:05:27: a8:68:fe:4e:d2:4d:5e:b5:82:ba:92:1d:98:90:8a: 53:db:c1:4d:84:ff:4b:4d:8e:15:a9:c1:94:7c:95: 4b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:DC:F1:81:05:F9:42:DE:4A:13:4A:2F:28:B1:EB:90:22:84:44:66 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:1c:9f:8b:48:cb:7d:ce:72:9d:6f:be:d4:c4:5d:d3:21:fe: bc:cd:65:a5:2e:97:03:9c:cf:c7:55:8f:29:08:c1:5f:b3:5c: 3b:57:dd:be:78:da:43:46:b6:db:cc:d0:09:9b:78:dd:84:55: 11:6a:e4:fe:9d:3b:e7:40:97:b7:1b:2e:97:43:ab:38:97:e4: aa:c4:1d:c4:cf:45:f6:08:15:06:d7:d7:5c:d2:d9:9b:9f:74: 3a:6b:05:64:2a:c7:6e:39:e2:fb:96:11:57:b6:ac:cc:f9:2c: c8:00:2f:11:8b:71:f3:21:46:05:63:e4:71:8a:15:ec:c6:d0: d9:41:7d:8e:da:13:93:23:ae:ce:fc:14:6e:5d:bc:c7:18:c4: 14:c9:df:6a:19:ac:24:fa:93:d2:b5:a7:b9:e1:77:84:1c:56: 52:eb:64:10:b4:ce:38:4d:97:d5:8b:9a:03:bc:73:87:60:e3: 79:2e:d7:be:56:5b:e0:6a:4b:61:4a:33:f4:28:c8:20:c9:b8: cc:23:3e:98:2d:cd:95:3c:fd:c2:43:13:9f:36:89:e5:91:68: 99:1f:40:e0:3e:0c:0c:1d:dd:73:9e:92:21:b7:0e:26:30:c1: 08:6b:66:ab:f4:6c:09:57:87:55:d3:eb:a8:19:00:a1:ce:c0: 45:0d:3a:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUxMjE4MTY0MTE4WhcNMjUxMjI1MTY0MTE4WjAYMRYwFAYD VQQDDA02OTQ0MmVhZi04NzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1mBxuftVp421efQcD4ScAM9bYim4JwPNytVwELYLx11BpEI8I5JYFLSAXIX UMPxcFrEZBqGeOpzna5bx/axWfE1PMmlGNIgG2aWcDRVj6nJXg4RH7J490JuQ2nV f0Wc39nodtD6tQFlB3ZE3XhKZ5AEEHrvFoZScYGleQ0VLmseu8mXpjyA26IwOxvn KLa/e7lmb8fLEW0tnRcUaExn9BGIlIGzfDc/pUTPGI31tMiFADFXsOMmMiRc5VQt yzvuwraM49wtdjc/ivcFVskX3dZlLPncGcYghKclxsmJBSeoaP5O0k1etYK6kh2Y kIpT28FNhP9LTY4VqcGUfJVLIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvc8YEF +ULeShNKLyix65AihERmMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoHJ+LSMt9znKdb77UxF3TIf68zWWlLpcDnM/HVY8pCMFfs1w7V92+ eNpDRrbbzNAJm3jdhFURauT+nTvnQJe3Gy6XQ6s4l+SqxB3Ez0X2CBUG19dc0tmb n3Q6awVkKsduOeL7lhFXtqzM+SzIAC8Ri3HzIUYFY+RxihXsxtDZQX2O2hOTI67O /BRuXbzHGMQUyd9qGawk+pPStae54XeEHFZS62QQtM44TZfVi5oDvHOHYON5Lte+ VlvgakthSjP0KMggybjMIz6YLc2VPP3CQxOfNonlkWiZH0DgPgwMHd1znpIhtw4m MMEIa2ar9GwJV4dV0+uoGQChzsBFDTpT -----END CERTIFICATE-----Generated at Sat Dec 20 02:50:15 2025 by rpki-client