This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft File: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft (raw, json) Hash identifier: K4H5pe8T2P9sMQ6z9fT9gXDi9u5a5vamEKDz/NBpsho= Subject key identifier: 22:F5:88:0E:53:8E:D4:31:0B:FB:8A:49:07:62:64:C2:68:F3:60:39 Authority key identifier: 0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A Certificate issuer: /CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Certificate serial: 05C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft Manifest number: 05B5 Signing time: Mon 22 Dec 2025 22:14:35 +0000 Manifest this update: Mon 22 Dec 2025 22:14:35 +0000 Manifest next update: Mon 29 Dec 2025 22:14:35 +0000 Files and hashes: 1: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl (hash: b1COPmwh8J1d9xOJ0b1ElXcgTCIyojzodlLtWO4IDfQ=) 2: 63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa (hash: +wwZvfyRXDthJJkJ0XOqFhEVzeFcdp8Qe5FfX5dJEpg=) 3: 64720824EF6611EB9A7EFE0EC4F9AE02.roa (hash: 7yL6U8ud5pLwixKeXetRxZPEaqHv1CH+VsXl+F/+77I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1473 (0x5c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E0B2, serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Validity Not Before: Dec 22 22:14:35 2025 GMT Not After : Dec 29 22:14:35 2025 GMT Subject: CN=6949c2cb-135e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:95:be:21:60:ea:a0:a4:c2:c3:2c:af:a4:37: a6:e4:76:99:cb:d8:e7:07:c1:b1:42:4e:eb:b7:90: 06:22:6a:68:89:e9:49:a6:cb:f2:89:01:69:71:d2: 3b:fd:59:9f:1d:dd:3a:a3:97:f2:3b:64:5e:57:c5: 85:a6:ea:ce:51:5c:7d:2d:c2:9c:75:d1:9c:47:3c: 79:14:b3:5b:42:eb:bd:f1:56:6c:74:39:d1:55:22: 20:d7:5d:21:67:a3:3e:ad:58:ce:3a:82:be:a9:82: 63:d0:32:96:0b:0a:e9:35:47:d1:f2:5b:13:26:7b: 46:70:27:2d:1a:ad:e8:78:ee:80:c0:1c:64:95:cc: 7e:dd:07:12:9f:b3:b4:01:a5:89:0c:87:39:65:49: 2f:fe:9f:2d:3d:4e:d0:07:fa:3a:f7:1a:6c:7f:4a: 00:31:8a:06:61:5d:b1:58:a5:07:ea:42:17:de:dc: 0e:63:0f:61:3c:a4:e4:5c:63:8d:20:54:5b:9b:d1: 2f:46:b9:ce:ca:61:c4:79:ff:bd:90:c5:ce:06:30: 60:be:d0:2c:40:b6:af:ce:57:78:4e:e4:a6:94:a6: b3:1a:40:d5:99:07:8c:a0:91:cb:ec:f1:ad:93:36: 01:88:83:99:89:8e:9c:f2:ba:45:87:79:80:27:d1: 86:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F5:88:0E:53:8E:D4:31:0B:FB:8A:49:07:62:64:C2:68:F3:60:39 X509v3 Authority Key Identifier: keyid:0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:da:c8:f5:5e:55:b7:1f:0f:d1:c0:d6:95:88:a9:32:30:b7: a7:22:37:87:3c:9a:72:54:74:e1:9c:39:6f:c3:91:83:13:0f: 18:c5:79:23:b4:ad:13:cd:70:e3:e9:11:0f:3b:38:8d:f3:33: d8:09:49:8a:b7:cd:da:4c:c6:5a:cf:f9:e9:ee:bc:01:5c:00: c2:89:a5:7e:8c:49:99:49:10:9c:8a:12:07:f7:21:3d:4b:76: e5:7a:25:32:be:0c:11:fa:a5:14:48:9d:6e:64:86:b8:78:89: 72:e1:9e:37:82:63:63:62:a4:c6:31:e5:f7:87:cd:10:51:f2: 36:01:bc:c6:1e:5f:b3:bc:61:93:95:b7:26:55:b1:9b:d4:16: f4:db:6c:d9:b6:1c:15:67:f6:58:c6:66:3c:73:b4:c0:b0:cc: 73:f3:60:0a:77:ce:ca:2c:af:70:bf:73:e6:48:d8:1b:47:00: 1f:96:13:eb:90:e9:24:8e:c1:6d:87:96:0b:3a:18:3f:8a:db: 68:60:ec:6f:86:cc:c8:91:42:10:23:95:b9:1f:f1:f2:32:c7: 8d:07:d6:6b:d8:b8:8e:81:e3:a7:34:96:36:f0:81:67:db:6c: f7:66:a5:95:48:03:c2:1f:8a:fa:19:c6:26:71:90:b8:2b:97: 24:fb:6d:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUwQjIxMTAvBgNVBAUTKDBCM0VCQTg4RjFBREExQTFCNTA4OTFCMjY1MzFBM0U3 MDlCRjY1OUEwHhcNMjUxMjIyMjIxNDM1WhcNMjUxMjI5MjIxNDM1WjAYMRYwFAYD VQQDDA02OTQ5YzJjYi0xMzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5W+IWDqoKTCwyyvpDem5HaZy9jnB8GxQk7rt5AGImpoielJpsvyiQFpcdI7 /VmfHd06o5fyO2ReV8WFpurOUVx9LcKcddGcRzx5FLNbQuu98VZsdDnRVSIg110h Z6M+rVjOOoK+qYJj0DKWCwrpNUfR8lsTJntGcCctGq3oeO6AwBxklcx+3QcSn7O0 AaWJDIc5ZUkv/p8tPU7QB/o69xpsf0oAMYoGYV2xWKUH6kIX3twOYw9hPKTkXGON IFRbm9EvRrnOymHEef+9kMXOBjBgvtAsQLavzld4TuSmlKazGkDVmQeMoJHL7PGt kzYBiIOZiY6c8rpFh3mAJ9GG9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCL1iA5T jtQxC/uKSQdiZMJo82A5MB8GA1UdIwQYMBaAFAs+uojxraGhtQiRsmUxo+cJv2Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTBCMi82NzA0MkMxOEVG NjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9hRzFDSkd5WlRHajV3bV9a Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6NjZpUEd0b2FHMUNKR3laVEdqNXdtX1paby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTBCMi82NzA0MkMxOEVGNjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9h RzFDSkd5WlRHajV3bV9aWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy2sj1XlW3Hw/RwNaViKkyMLenIjeHPJpyVHThnDlvw5GDEw8YxXkj tK0TzXDj6REPOziN8zPYCUmKt83aTMZaz/np7rwBXADCiaV+jEmZSRCcihIH9yE9 S3bleiUyvgwR+qUUSJ1uZIa4eIly4Z43gmNjYqTGMeX3h80QUfI2AbzGHl+zvGGT lbcmVbGb1Bb022zZthwVZ/ZYxmY8c7TAsMxz82AKd87KLK9wv3PmSNgbRwAflhPr kOkkjsFth5YLOhg/ittoYOxvhszIkUIQI5W5H/HyMseNB9Zr2LiOgeOnNJY28IFn 22z3ZqWVSAPCH4r6GcYmcZC4K5ck+23Q -----END CERTIFICATE-----Generated at Wed Dec 24 16:19:00 2025 by rpki-client