This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft File: p0zn2tX7UE2xa75wwvnfCqnwBgk.mft (raw, json) Hash identifier: b6kDqPERxHZF6X7uPO4SLklEc711dAAILSR4TO19PUU= Subject key identifier: E9:29:1E:BC:39:76:70:BB:29:EE:F3:1A:A7:73:87:1E:D8:53:90:7D Authority key identifier: A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 Certificate issuer: /CN=A918D699/serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft Manifest number: 0132 Signing time: Sun 21 Dec 2025 03:48:08 +0000 Manifest this update: Sun 21 Dec 2025 03:48:07 +0000 Manifest next update: Sun 28 Dec 2025 03:48:07 +0000 Files and hashes: 1: p0zn2tX7UE2xa75wwvnfCqnwBgk.crl (hash: PZsm0WggyXU0/I+qbOOB5SaHWLGIhVWe7LZsZdENRNU=) 2: C564E80017E911EF9D471E18C4F9AE02.roa (hash: ovencPjh3DETl3TFknJbkwLv9wBQOuWaZf8yT96L04E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D699, serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Validity Not Before: Dec 21 03:48:07 2025 GMT Not After : Dec 28 03:48:07 2025 GMT Subject: CN=69476df7-a69c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:72:42:55:59:11:5e:5a:cd:3b:49:b1:06:d2: 63:0f:51:9c:c9:55:34:6f:0c:68:25:dd:65:10:9b: a7:be:18:53:2b:89:18:1d:60:71:4d:fa:0d:2a:d3: c7:17:42:3d:12:9d:1c:c0:5b:a1:2e:d1:98:bd:fc: eb:54:e2:f4:19:e6:1e:e9:58:75:0d:86:81:7e:2c: fb:58:b3:13:c0:db:ce:a0:53:59:ca:48:7e:3d:d4: 6d:bb:1f:2d:ea:4f:03:31:31:db:54:01:fa:d9:50: 0a:80:e1:8f:27:d1:07:9d:a0:43:24:7b:b0:45:8a: b1:a6:d9:a3:80:e0:03:70:93:63:d1:eb:06:62:30: 98:61:bb:3a:c4:e2:1e:30:78:f8:fc:2e:f0:8d:57: 2a:bd:b0:c9:19:6c:76:5b:19:09:ba:73:fa:60:79: f3:f1:51:59:45:d1:51:c6:16:20:27:ba:a3:8e:79: b6:ce:5e:95:c5:5f:cb:65:72:5d:33:0b:ee:d8:bb: f3:a2:e5:71:79:38:a3:30:dc:be:d2:e3:67:0f:b1: af:54:c6:7c:90:6e:64:c1:43:82:3a:82:94:be:34: 08:24:14:85:d0:b1:51:ab:3e:73:35:d6:7e:c2:61: ca:3d:3c:6b:2f:85:15:5b:a0:ce:f3:c9:d6:2c:b5: 32:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:29:1E:BC:39:76:70:BB:29:EE:F3:1A:A7:73:87:1E:D8:53:90:7D X509v3 Authority Key Identifier: keyid:A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:8a:54:38:a2:c9:4c:1c:a1:cd:d3:f6:c8:69:5c:44:a0:f6: 3e:22:e1:c1:63:18:bf:97:4c:eb:3b:84:22:d4:4c:af:42:de: 94:39:f6:10:44:3c:19:32:8e:3f:ee:27:ba:21:28:02:cd:00: 2d:39:fc:1a:9f:32:13:0f:cf:b4:7f:8d:cb:2f:a9:1a:3d:23: 47:03:c0:54:10:90:09:b9:0b:1c:b6:6b:ac:d3:68:36:78:f4: 2d:27:ef:52:7a:28:82:de:99:65:40:58:65:d6:40:67:ae:b7: 88:d2:2e:1a:be:b6:8e:39:bd:79:d6:52:e2:d2:b0:4f:04:73: 3c:49:3f:13:a9:e0:5b:8d:3f:38:2e:18:52:37:a4:0d:55:0d: 05:ec:25:a3:27:a8:88:2f:b7:35:bf:8c:c8:b6:75:bc:62:79: 13:81:26:18:96:2c:8d:b6:f2:24:6f:58:d1:36:bd:f0:24:35: 64:9a:98:36:90:05:44:0d:cb:b6:5e:fc:cd:b3:a2:9f:6e:5d: 3b:43:96:9d:fe:b9:4f:3c:e9:60:98:96:96:2d:61:92:94:36: 08:59:a4:03:c5:1b:ef:53:7f:81:49:32:38:c7:0e:e3:ee:fc: 24:99:04:f1:1c:9c:38:28:b0:cd:e8:3e:5a:1c:14:9a:4a:72: 15:51:a7:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2OTkxMTAvBgNVBAUTKEE3NENFN0RBRDVGQjUwNERCMTZCQkU3MEMyRjlERjBB QTlGMDA2MDkwHhcNMjUxMjIxMDM0ODA3WhcNMjUxMjI4MDM0ODA3WjAYMRYwFAYD VQQDDA02OTQ3NmRmNy1hNjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3JCVVkRXlrNO0mxBtJjD1GcyVU0bwxoJd1lEJunvhhTK4kYHWBxTfoNKtPH F0I9Ep0cwFuhLtGYvfzrVOL0GeYe6Vh1DYaBfiz7WLMTwNvOoFNZykh+PdRtux8t 6k8DMTHbVAH62VAKgOGPJ9EHnaBDJHuwRYqxptmjgOADcJNj0esGYjCYYbs6xOIe MHj4/C7wjVcqvbDJGWx2WxkJunP6YHnz8VFZRdFRxhYgJ7qjjnm2zl6VxV/LZXJd Mwvu2LvzouVxeTijMNy+0uNnD7GvVMZ8kG5kwUOCOoKUvjQIJBSF0LFRqz5zNdZ+ wmHKPTxrL4UVW6DO88nWLLUy9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkpHrw5 dnC7Ke7zGqdzhx7YU5B9MB8GA1UdIwQYMBaAFKdM59rV+1BNsWu+cML53wqp8AYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDY5OS81NTg2RUY2QTE3 RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VFMnhhNzV3d3ZuZkNxbndC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Awem4ydFg3VUUyeGE3NXd3dm5mQ3Fud0Jnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDY5OS81NTg2RUY2QTE3RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VF MnhhNzV3d3ZuZkNxbndCZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFilQ4oslMHKHN0/bIaVxEoPY+IuHBYxi/l0zrO4Qi1EyvQt6UOfYQ RDwZMo4/7ie6ISgCzQAtOfwanzITD8+0f43LL6kaPSNHA8BUEJAJuQsctmus02g2 ePQtJ+9SeiiC3pllQFhl1kBnrreI0i4avraOOb151lLi0rBPBHM8ST8TqeBbjT84 LhhSN6QNVQ0F7CWjJ6iIL7c1v4zItnW8YnkTgSYYliyNtvIkb1jRNr3wJDVkmpg2 kAVEDcu2XvzNs6Kfbl07Q5ad/rlPPOlgmJaWLWGSlDYIWaQDxRvvU3+BSTI4xw7j 7vwkmQTxHJw4KLDN6D5aHBSaSnIVUad1 -----END CERTIFICATE-----Generated at Mon Dec 22 18:47:45 2025 by rpki-client