This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft File: zmNwmX29E9IOXsYWW1qe46KCprA.mft (raw, json) Hash identifier: 7OCeGnRbnxSHHCJSRxB3mlAtLocrRGx/FNYaTcTUR9E= Subject key identifier: BA:EB:06:B4:4B:70:20:C1:D9:97:E3:71:CD:8B:97:56:9F:73:59:7E Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft Manifest number: 0182 Signing time: Mon 29 Dec 2025 02:55:38 +0000 Manifest this update: Mon 29 Dec 2025 02:55:37 +0000 Manifest next update: Mon 05 Jan 2026 02:55:37 +0000 Files and hashes: 1: zmNwmX29E9IOXsYWW1qe46KCprA.crl (hash: T6Oi7rv/V7V9x8opdBc8WsNw63kfAxh9dSqTCAA8rlM=) 2: 830F1BDA978411F08BB09F58C4F9AE02.roa (hash: FpYEPHuQF99JDKCuUc3yqcVj2WEdBYJEb7SK3ufBnnQ=) 3: 4D73A1D0978411F08E9E8257C4F9AE02.roa (hash: vFJD24sm3q+X0tzldJmiXgclrTTUTfBHbE5J1wRCfmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 02:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8, serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: Dec 29 02:55:37 2025 GMT Not After : Jan 5 02:55:37 2026 GMT Subject: CN=6951edaa-2aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f6:38:66:e8:92:a8:c3:ba:91:8d:eb:e2:91: 5b:28:cf:f9:cc:5a:09:a8:5c:84:90:ec:b9:1f:89: 71:bf:39:6a:f7:a9:09:07:5d:55:aa:a4:be:13:88: 1a:bb:84:d1:5b:c1:21:69:e7:cb:69:a2:0c:50:c5: 25:16:12:88:6d:b6:87:18:f9:3c:78:07:2f:22:fe: 7f:29:b2:1a:12:fa:94:c7:00:bc:47:e6:29:14:50: 6c:a5:ef:2c:7c:10:88:29:c3:ca:5e:7e:30:c5:26: 74:7b:c3:8d:09:b1:c9:a9:f4:e3:37:e4:e4:12:f3: f4:bd:dd:40:61:7c:af:92:75:19:57:40:c2:ec:f3: 9f:c0:4b:32:ea:76:8c:fd:c8:c1:9d:40:02:8f:bb: 20:07:0e:3b:7a:d6:64:4c:b2:95:63:97:36:df:ba: b9:e3:9e:74:88:a5:ce:24:06:68:4a:05:c5:fd:86: de:86:c4:62:d2:29:c9:58:b7:d8:61:f7:1b:85:58: 08:ca:c7:0d:3c:8c:9c:55:45:d5:1a:83:cf:39:56: 62:65:63:20:f0:62:d8:a1:ba:ff:73:b7:b1:1e:37: a9:01:d1:53:df:e8:1c:5f:90:88:a1:84:e8:1e:a1: b4:b2:0c:94:98:78:57:4f:e6:b2:dd:72:51:a3:39: 68:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EB:06:B4:4B:70:20:C1:D9:97:E3:71:CD:8B:97:56:9F:73:59:7E X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:92:31:db:cd:99:5a:22:e0:fb:14:4c:5e:87:5a:6e:f0:8b: ad:65:97:3d:d5:f7:ba:f9:9c:ef:79:1b:e0:dc:93:38:8e:39: d4:81:1a:f2:7b:d3:fe:0d:c0:91:7c:99:e8:1d:1d:b2:79:13: 62:ba:f4:a7:65:19:bb:1d:23:3f:4d:cc:7d:b2:4e:66:08:70: 81:97:8f:57:4f:7c:01:33:c0:33:dc:1c:69:a9:4f:45:6a:74: bc:d3:94:2f:95:bf:1f:b0:dd:27:9a:c9:c6:37:a9:e9:31:c8: af:9b:d9:34:9c:91:77:44:77:b8:02:9d:b7:82:2e:16:55:05: e9:63:4b:f6:0b:7f:16:e6:d1:93:a0:2a:8e:cc:c8:82:76:4a: a7:71:7b:58:1f:8e:22:29:87:35:d3:47:d7:f5:d1:29:6e:f7: 16:34:ed:10:ce:5a:7b:1b:7d:ee:15:80:5d:9e:85:46:74:96: 0f:d1:27:b3:70:92:76:49:20:61:70:65:4d:bd:f7:1e:03:71: e2:96:d6:53:bf:df:4f:89:d9:5e:46:67:f9:88:ab:7e:cb:2b: 87:fb:3a:ff:42:ab:ba:04:43:54:21:f6:7b:bf:fb:00:6f:74: a0:a7:e2:f7:93:7a:e2:40:ff:be:1d:b1:3d:34:8a:19:fd:da: 7a:a7:ad:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjUxMjI5MDI1NTM3WhcNMjYwMTA1MDI1NTM3WjAYMRYwFAYD VQQDDA02OTUxZWRhYS0yYWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/Y4ZuiSqMO6kY3r4pFbKM/5zFoJqFyEkOy5H4lxvzlq96kJB11VqqS+E4ga u4TRW8EhaefLaaIMUMUlFhKIbbaHGPk8eAcvIv5/KbIaEvqUxwC8R+YpFFBspe8s fBCIKcPKXn4wxSZ0e8ONCbHJqfTjN+TkEvP0vd1AYXyvknUZV0DC7POfwEsy6naM /cjBnUACj7sgBw47etZkTLKVY5c237q54550iKXOJAZoSgXF/YbehsRi0inJWLfY YfcbhVgIyscNPIycVUXVGoPPOVZiZWMg8GLYobr/c7exHjepAdFT3+gcX5CIoYTo HqG0sgyUmHhXT+ay3XJRozloEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrrBrRL cCDB2Zfjcc2Ll1afc1l+MB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNBOC9GOTcxNEFFNkFBRkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5 SU9Yc1lXVzFxZTQ2S0NwckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYkjHbzZlaIuD7FExeh1pu8IutZZc91fe6+ZzveRvg3JM4jjnUgRry e9P+DcCRfJnoHR2yeRNiuvSnZRm7HSM/Tcx9sk5mCHCBl49XT3wBM8Az3BxpqU9F anS805Qvlb8fsN0nmsnGN6npMcivm9k0nJF3RHe4Ap23gi4WVQXpY0v2C38W5tGT oCqOzMiCdkqncXtYH44iKYc100fX9dEpbvcWNO0Qzlp7G33uFYBdnoVGdJYP0Sez cJJ2SSBhcGVNvfceA3HiltZTv99PidleRmf5iKt+yyuH+zr/Qqu6BENUIfZ7v/sA b3Sgp+L3k3riQP++HbE9NIoZ/dp6p63r -----END CERTIFICATE-----Generated at Tue Dec 30 08:50:19 2025 by rpki-client