This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: f5ZAA7pUNw1oEXLXbfish42QHphM9KO144OLb/Imi0I= Subject key identifier: D4:9A:62:E5:02:E4:8D:E0:29:75:37:64:E5:A3:B9:3B:9F:E9:BB:D4 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 0264 Signing time: Thu 25 Dec 2025 00:48:49 +0000 Manifest this update: Thu 25 Dec 2025 00:48:49 +0000 Manifest next update: Thu 01 Jan 2026 00:48:49 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: KPZ7v2Bxc6IbI9IqZ6A81trr2bz+mfngMYVIsD++/YQ=) 2: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: o8g8BiOgmVHVzswzRKLrO3Y0f0RfD3gZqIklITdkjzE=) 3: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: QKPxnsl5W/cKLCZuMQFferj3l2oedmhBT9kPnPZhJg4=) 4: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: TDnPqTOeUPSwecuAJae6VdxJudb0os3v67TLQq2OSMs=) 5: A4B9732E372211F088B77741C4F9AE02.roa (hash: 0dSvCmKLef9Oa4TUk6FVx6l4EnK1M32ajCwnmpc9ysE=) 6: C1ECF984D07411F0B0B35C27C4F9AE02.roa (hash: Zx7rYsejQ1YlFVO9cuwtdX2i5qCKmmBnnVOVbWpVt7A=) 7: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: n/PvsW9zebDkTZCp50BwuzM/P+LxZ4UecYhiS0C/Z2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Dec 25 00:48:49 2025 GMT Not After : Jan 1 00:48:49 2026 GMT Subject: CN=694c89f1-e556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c5:12:10:73:74:87:ac:6b:f5:52:42:d8:71: b7:72:e6:08:9a:a0:96:4b:73:34:23:c1:78:79:f5: 1b:4b:4f:a5:1d:ef:ec:94:34:b7:c3:76:2b:81:01: d5:08:8d:1f:67:33:2c:05:0e:fe:26:7e:6f:2c:5a: 0f:e2:5f:0e:4f:18:5a:bb:ec:a6:92:c6:73:a7:a0: ae:f7:60:95:9b:15:44:0a:3c:08:1a:7c:4c:8f:d3: b6:3e:54:cf:b7:95:fa:03:d8:cc:ec:19:c3:fb:3f: 74:3b:07:af:9b:24:b3:68:57:fc:7a:73:b4:6b:b1: 0e:b3:1c:8a:92:1a:c0:d5:5d:0c:c9:fd:34:5a:11: bf:2f:b1:ef:ba:74:f2:df:e5:b6:9d:15:a4:2f:c3: 65:61:78:1d:b6:4e:6b:08:e2:e3:f9:08:4e:9b:5d: f8:8a:7a:d5:ee:b8:97:93:80:92:9c:e2:a8:37:3a: 48:6f:74:18:fc:88:86:4f:ee:96:79:78:f0:0a:c1: 33:02:5e:80:fa:c3:19:81:83:71:4b:53:24:6a:ac: 4e:e1:8f:0b:b7:f1:af:4f:2c:cf:55:6d:59:d3:6c: 94:95:e1:04:9d:ce:54:6a:9f:71:b2:74:1b:74:aa: 34:bb:ec:a3:7f:31:e1:99:fd:9b:24:42:12:07:d8: dc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9A:62:E5:02:E4:8D:E0:29:75:37:64:E5:A3:B9:3B:9F:E9:BB:D4 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:0b:b5:f0:3d:a6:4a:5b:f1:7d:14:f2:f6:4b:a3:49:36:2a: ac:b9:77:f0:3e:95:18:a3:d9:ed:8d:71:78:84:59:79:87:11: 37:37:d6:49:05:12:c7:0a:38:27:2a:b1:73:40:fb:ea:35:21: 58:db:2c:96:67:7d:1b:43:c1:e2:11:77:43:7f:4c:da:9b:1f: 5c:a4:9b:a9:e5:c3:59:c6:89:de:be:c5:65:51:b4:9d:82:a2: c5:bf:1d:cc:6b:12:42:eb:43:6d:c7:bf:6f:84:29:6a:1b:5a: 76:70:b2:8f:93:6d:61:42:d2:d0:90:a8:7a:c1:b6:89:f8:56: 48:68:8e:d8:d9:4d:e2:0c:a8:e8:1b:d5:32:3d:ef:8a:7d:35: c6:d2:3e:66:6a:31:0f:6b:61:0d:a3:3d:9d:46:c5:c1:0e:4e: 53:ba:da:01:ec:4a:99:d2:46:2d:01:0f:f0:62:62:8d:a7:c6: ee:63:9e:d6:9c:5a:b2:11:92:c0:fa:c4:f8:40:04:18:59:51: 72:7a:72:c1:d4:6f:fe:41:e4:23:dc:97:52:49:47:12:6f:17: 80:c6:4d:50:70:eb:a3:b4:78:80:e3:5e:58:de:b6:cf:da:bb: aa:a2:e9:b4:c2:07:01:2a:54:3b:5b:c1:dc:6c:ca:40:cf:c4: d2:d1:ea:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUxMjI1MDA0ODQ5WhcNMjYwMTAxMDA0ODQ5WjAYMRYwFAYD VQQDDA02OTRjODlmMS1lNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusUSEHN0h6xr9VJC2HG3cuYImqCWS3M0I8F4efUbS0+lHe/slDS3w3YrgQHV CI0fZzMsBQ7+Jn5vLFoP4l8OTxhau+ymksZzp6Cu92CVmxVECjwIGnxMj9O2PlTP t5X6A9jM7BnD+z90OwevmySzaFf8enO0a7EOsxyKkhrA1V0Myf00WhG/L7HvunTy 3+W2nRWkL8NlYXgdtk5rCOLj+QhOm134inrV7riXk4CSnOKoNzpIb3QY/IiGT+6W eXjwCsEzAl6A+sMZgYNxS1MkaqxO4Y8Lt/GvTyzPVW1Z02yUleEEnc5Uap9xsnQb dKo0u+yjfzHhmf2bJEISB9jchQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSaYuUC 5I3gKXU3ZOWjuTuf6bvUMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+C7XwPaZKW/F9FPL2S6NJNiqsuXfwPpUYo9ntjXF4hFl5hxE3N9ZJ BRLHCjgnKrFzQPvqNSFY2yyWZ30bQ8HiEXdDf0zamx9cpJup5cNZxonevsVlUbSd gqLFvx3MaxJC60Ntx79vhClqG1p2cLKPk21hQtLQkKh6wbaJ+FZIaI7Y2U3iDKjo G9UyPe+KfTXG0j5majEPa2ENoz2dRsXBDk5TutoB7EqZ0kYtAQ/wYmKNp8buY57W nFqyEZLA+sT4QAQYWVFyenLB1G/+QeQj3JdSSUcSbxeAxk1QcOujtHiA415Y3rbP 2ruqoum0wgcBKlQ7W8HcbMpAz8TS0eoH -----END CERTIFICATE-----Generated at Thu Dec 25 03:31:43 2025 by rpki-client