This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: WJT/yPb9wZCdpcLZMZ2Fxs98V1fpuP6uLE6be7nzoZw= Subject key identifier: 68:B4:28:8A:A3:35:3B:F1:CF:BD:5A:AD:2B:F0:9D:0B:A2:5F:D7:D6 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 0261 Signing time: Fri 19 Dec 2025 00:56:33 +0000 Manifest this update: Fri 19 Dec 2025 00:56:32 +0000 Manifest next update: Fri 26 Dec 2025 00:56:32 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: P9RcsJCY22pKr/GRMs46nOM5i1prijfFrzyv9UP7ubk=) 2: C1ECF984D07411F0B0B35C27C4F9AE02.roa (hash: Zx7rYsejQ1YlFVO9cuwtdX2i5qCKmmBnnVOVbWpVt7A=) 3: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: o8g8BiOgmVHVzswzRKLrO3Y0f0RfD3gZqIklITdkjzE=) 4: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: QKPxnsl5W/cKLCZuMQFferj3l2oedmhBT9kPnPZhJg4=) 5: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: TDnPqTOeUPSwecuAJae6VdxJudb0os3v67TLQq2OSMs=) 6: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: n/PvsW9zebDkTZCp50BwuzM/P+LxZ4UecYhiS0C/Z2s=) 7: A4B9732E372211F088B77741C4F9AE02.roa (hash: 0dSvCmKLef9Oa4TUk6FVx6l4EnK1M32ajCwnmpc9ysE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Dec 19 00:56:32 2025 GMT Not After : Dec 26 00:56:32 2025 GMT Subject: CN=6944a2c0-920c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cd:44:28:85:10:2b:36:f6:e0:49:08:b6:bb: 25:e1:fa:4b:92:d6:15:a3:2b:9b:53:3f:52:30:40: 1f:29:bc:22:89:1a:55:f3:00:f2:7d:d4:12:a4:81: ef:cc:79:12:f2:76:d1:ef:33:4a:88:b2:97:ef:7d: 91:ec:94:db:27:0b:63:b5:2a:5b:26:c5:f9:21:e5: 04:8c:fa:17:b1:17:77:d0:e2:54:9f:8f:a0:46:ee: ed:cf:6d:38:14:84:a1:1e:2f:8c:2d:6d:80:1d:03: a0:81:6f:2e:0d:a2:7c:d9:61:da:5e:04:e0:be:b7: 75:ed:98:0e:04:c1:bb:07:80:c1:86:e9:d6:b6:65: 44:08:5a:fc:d8:f6:e7:13:f6:75:7b:fb:f2:a1:15: 56:1e:68:b1:b1:52:52:7e:97:0c:79:6b:fe:87:13: 49:9c:26:a9:61:fb:00:69:cc:4f:c1:f4:0c:84:3a: 85:1f:c8:4a:ff:f4:46:80:bb:c8:78:de:21:33:a7: d3:7a:0e:21:2b:62:61:6a:66:7c:65:09:3b:fc:89: e4:dd:65:94:75:ff:01:55:1a:46:50:aa:0b:c0:c4: d5:cc:9b:88:7c:44:83:a5:a0:1c:50:15:8f:89:80: be:f5:da:11:1f:1c:d7:14:25:71:ab:ce:8c:b2:54: 1c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B4:28:8A:A3:35:3B:F1:CF:BD:5A:AD:2B:F0:9D:0B:A2:5F:D7:D6 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6e:18:1b:12:66:17:f9:89:55:9d:0e:65:2d:26:02:20:d1: a6:88:52:94:b5:8e:16:04:f7:ac:c9:11:28:ab:95:7c:55:f6: c5:ac:98:b5:2c:20:bc:86:46:81:71:b6:17:1e:e0:1d:b5:60: b0:1f:04:74:de:c3:6c:c1:64:4c:00:ea:8a:8d:be:0f:8b:6d: d3:14:38:ec:00:4b:00:23:1c:c2:73:d8:e7:90:1c:8d:6d:20: 28:fa:f6:ac:79:58:b0:ca:22:fd:a4:aa:42:7b:1c:e7:c3:a2: 50:c6:6b:95:05:b6:1d:c4:1d:04:43:eb:94:76:f8:91:f0:46: 0d:3a:72:ca:1a:4b:bb:f9:52:6c:98:0f:af:1c:d0:73:14:9a: f2:cf:76:de:a8:e9:7b:c6:1f:2c:bc:bf:45:f7:e9:9e:80:05: 72:33:40:b1:82:ce:2b:44:b4:a6:68:1b:9e:b6:a2:1d:33:69: 03:c3:d3:75:16:f5:20:b0:aa:9d:a3:e5:36:0f:f1:d6:17:d5: e6:c0:11:d3:32:d0:71:3a:12:71:75:ae:22:7e:64:c4:16:3f: 11:13:c6:6a:8f:1a:8d:0b:c8:7a:d7:95:ac:93:c9:6b:4b:fe: 12:db:5a:b4:04:40:9a:b5:c4:f2:8c:72:75:5e:3d:cf:af:03: 7e:70:7c:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUxMjE5MDA1NjMyWhcNMjUxMjI2MDA1NjMyWjAYMRYwFAYD VQQDDA02OTQ0YTJjMC05MjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzc1EKIUQKzb24EkItrsl4fpLktYVoyubUz9SMEAfKbwiiRpV8wDyfdQSpIHv zHkS8nbR7zNKiLKX732R7JTbJwtjtSpbJsX5IeUEjPoXsRd30OJUn4+gRu7tz204 FIShHi+MLW2AHQOggW8uDaJ82WHaXgTgvrd17ZgOBMG7B4DBhunWtmVECFr82Pbn E/Z1e/vyoRVWHmixsVJSfpcMeWv+hxNJnCapYfsAacxPwfQMhDqFH8hK//RGgLvI eN4hM6fTeg4hK2JhamZ8ZQk7/Ink3WWUdf8BVRpGUKoLwMTVzJuIfESDpaAcUBWP iYC+9doRHxzXFCVxq86MslQctQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGi0KIqj NTvxz71arSvwnQuiX9fWMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBbhgbEmYX+YlVnQ5lLSYCINGmiFKUtY4WBPesyREoq5V8VfbFrJi1 LCC8hkaBcbYXHuAdtWCwHwR03sNswWRMAOqKjb4Pi23TFDjsAEsAIxzCc9jnkByN bSAo+vaseViwyiL9pKpCexznw6JQxmuVBbYdxB0EQ+uUdviR8EYNOnLKGku7+VJs mA+vHNBzFJryz3beqOl7xh8svL9F9+megAVyM0Cxgs4rRLSmaBuetqIdM2kDw9N1 FvUgsKqdo+U2D/HWF9XmwBHTMtBxOhJxda4ifmTEFj8RE8ZqjxqNC8h615Wsk8lr S/4S21q0BECatcTyjHJ1Xj3PrwN+cHzP -----END CERTIFICATE-----Generated at Sat Dec 20 21:07:20 2025 by rpki-client