This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft File: tZsFZqgqmDvebfHF3kxYLJvKg5I.mft (raw, json) Hash identifier: Vwut4VVRYve6bui0nc+qxzG8/LmK1OLCwPEqtxRYGgg= Subject key identifier: CE:3A:5D:E8:4C:00:63:09:52:06:D1:7D:34:85:55:D2:65:A4:6D:3D Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft Manifest number: 0C45 Signing time: Thu 18 Dec 2025 18:25:54 +0000 Manifest this update: Thu 18 Dec 2025 18:25:54 +0000 Manifest next update: Thu 25 Dec 2025 18:25:54 +0000 Files and hashes: 1: tZsFZqgqmDvebfHF3kxYLJvKg5I.crl (hash: 9X/53V07bxJVnwARCVJ4T5ceGXNmPVXrJc8rp/f029g=) 2: CFF8393A232C11F0B9CB2044C4F9AE02.roa (hash: nfqNeR+bbEfavJF+ova8yLO5QWoKeC1GYyFqfwg0csE=) 3: CB46AC50509111EF9E40402FC4F9AE02.roa (hash: ad0J4ZFgNbW6j5IO3p20cgw4SuRj+wZOS+Yi86cuNgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E, serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Dec 18 18:25:54 2025 GMT Not After : Dec 25 18:25:54 2025 GMT Subject: CN=69444732-cd0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a5:81:9e:1f:20:d0:99:51:ad:07:0d:9f:e7: 50:33:7e:4e:6f:c9:55:31:bb:41:38:9a:ca:57:d1: 88:b3:71:37:d3:cb:a7:51:f2:49:ff:39:4f:59:b4: 06:88:18:56:01:39:3e:74:d1:de:bd:71:fe:c9:e8: 45:e0:e7:47:ef:2e:67:df:d6:41:23:32:3c:e6:1d: fa:a8:38:13:55:ec:4a:eb:6e:96:6b:19:8c:43:ed: d8:10:e4:47:ab:fd:b8:89:bb:ee:a9:1d:ab:0b:ac: 77:3b:41:51:3c:92:c8:24:62:75:ac:b2:bd:8a:03: a0:9b:5b:66:17:71:61:b5:cc:12:bc:78:f1:82:36: 89:2c:66:ff:2c:a6:ee:40:9a:9c:3c:c9:3e:7e:00: f0:7c:e0:57:06:1d:60:80:28:eb:a9:21:df:f2:07: f0:dd:55:75:1f:91:d4:f7:17:45:10:bd:33:73:46: 77:24:e0:32:9d:df:5c:e6:d0:75:30:55:7c:51:d3: e7:12:ef:09:e4:d1:c2:8b:f4:74:39:c1:0c:d5:a8: 04:01:ca:ee:4e:bd:29:aa:6d:bd:17:b6:ad:55:c5: 21:7f:ba:8d:a8:31:fb:ba:7d:c4:e9:5c:d7:91:21: 26:3f:39:a9:5e:0d:de:92:0f:73:f9:11:de:60:f4: db:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3A:5D:E8:4C:00:63:09:52:06:D1:7D:34:85:55:D2:65:A4:6D:3D X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:a1:b9:f0:b8:ba:50:b8:3c:9f:5c:fb:01:59:d9:da:10:f4: 2c:84:d9:d6:87:c4:d1:9d:c2:47:84:95:13:46:2c:f3:6b:a5: ea:31:52:c6:22:2a:cc:7e:38:74:e6:1d:20:77:e5:5e:86:2f: af:55:19:03:c4:2a:ef:8c:d7:a0:d5:30:b7:50:5d:b7:86:97: c0:1b:1c:dc:d1:25:94:a8:ef:01:e2:d4:ff:f5:c3:0a:de:74: 3f:d7:10:35:9b:55:f1:0d:59:57:71:c1:f2:2f:af:40:52:9e: c5:9f:71:93:c8:2d:e1:74:e9:1d:2a:dd:f8:85:64:17:20:e3: be:8f:2b:c5:18:70:10:45:05:55:5c:0d:0a:95:c2:14:7b:10: c3:95:29:5e:0c:62:2e:15:13:b2:2d:4a:81:88:25:e1:54:7b: ed:0f:57:73:be:5e:e8:a9:71:72:e5:fc:7d:4c:fc:84:8f:47: 38:59:f5:f1:1e:ce:18:ed:f8:40:1c:3b:08:80:88:59:fb:97: 88:09:ec:9b:fb:79:fd:58:7a:13:fd:fe:57:5c:76:c0:0a:c3: 27:36:bc:71:6b:43:82:9d:bb:b1:67:5e:52:14:9c:80:00:52: a7:b5:44:eb:e2:0a:07:41:4a:99:32:fc:6e:10:97:69:1a:78: 1a:b5:9e:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjUxMjE4MTgyNTU0WhcNMjUxMjI1MTgyNTU0WjAYMRYwFAYD VQQDDA02OTQ0NDczMi1jZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqWBnh8g0JlRrQcNn+dQM35Ob8lVMbtBOJrKV9GIs3E308unUfJJ/zlPWbQG iBhWATk+dNHevXH+yehF4OdH7y5n39ZBIzI85h36qDgTVexK626WaxmMQ+3YEORH q/24ibvuqR2rC6x3O0FRPJLIJGJ1rLK9igOgm1tmF3FhtcwSvHjxgjaJLGb/LKbu QJqcPMk+fgDwfOBXBh1ggCjrqSHf8gfw3VV1H5HU9xdFEL0zc0Z3JOAynd9c5tB1 MFV8UdPnEu8J5NHCi/R0OcEM1agEAcruTr0pqm29F7atVcUhf7qNqDH7un3E6VzX kSEmPzmpXg3ekg9z+RHeYPTbBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM46XehM AGMJUgbRfTSFVdJlpG09MB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxRS9DNzhFNEE3MjFDQTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1E dmViZkhGM2t4WUxKdktnNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQobnwuLpQuDyfXPsBWdnaEPQshNnWh8TRncJHhJUTRizza6XqMVLG IirMfjh05h0gd+Vehi+vVRkDxCrvjNeg1TC3UF23hpfAGxzc0SWUqO8B4tT/9cMK 3nQ/1xA1m1XxDVlXccHyL69AUp7Fn3GTyC3hdOkdKt34hWQXIOO+jyvFGHAQRQVV XA0KlcIUexDDlSleDGIuFROyLUqBiCXhVHvtD1dzvl7oqXFy5fx9TPyEj0c4WfXx Hs4Y7fhAHDsIgIhZ+5eICeyb+3n9WHoT/f5XXHbACsMnNrxxa0OCnbuxZ15SFJyA AFKntUTr4goHQUqZMvxuEJdpGngatZ7g -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:28 2025 by rpki-client