This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: LdkFGFDgytw5hsHD2E8gejbyBdr4yc+TVRPJty2WJPM= Subject key identifier: AD:9E:41:6D:5F:41:53:85:1F:DE:A3:49:76:20:B6:16:ED:FB:A1:29 Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 2323 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 22E0 Signing time: Sat 20 Dec 2025 15:42:06 +0000 Manifest this update: Sat 20 Dec 2025 15:42:05 +0000 Manifest next update: Sat 27 Dec 2025 15:42:05 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: 8a77KcPRg5/eNdQp/e6AyVTcWCzl97qDJuIf5UKXYjY=) 2: 443C3AF2D3F611EFB03C5C14C4F9AE02.roa (hash: QalrWEPHK1c0+wAh4Y9v/QxVAuOH9u4KL51JrDmBQPs=) 3: 1AC9199AD3CB11EF84052053C4F9AE02.roa (hash: 3g8CG6eXI2y/sKSche4ErWaN1/woBDrqwhgjSA2yZ4o=) 4: DD73806ED3C811EF9D76942FC4F9AE02.roa (hash: yV/SjGOrZoU6XjMAo/QC3pR5jQlSni/vmLDt0r4ftkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8995 (0x2323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: Dec 20 15:42:05 2025 GMT Not After : Dec 27 15:42:05 2025 GMT Subject: CN=6946c3ce-6fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:f7:d1:08:95:f9:82:ae:03:4e:38:1e:db:8a: c2:08:b9:84:75:51:db:0a:b0:09:25:ab:9c:81:b1: 64:fc:df:69:62:f9:e9:cf:7f:43:38:c1:b2:d6:e9: 24:f0:13:b4:28:95:dc:5a:24:f5:34:c7:b5:1a:3b: 39:91:19:2f:c8:1f:0a:37:e1:6b:44:f2:09:4f:68: d2:97:e5:60:d8:1f:cc:ac:23:90:11:25:d5:69:cb: 02:38:23:99:58:1c:00:85:ca:76:12:5e:b5:b0:63: 39:98:d2:fd:d4:56:85:42:bc:37:70:06:48:54:b5: 9b:a9:36:66:f5:a4:01:1a:74:26:3f:e8:34:50:6a: 59:86:c4:99:40:24:b5:3d:0b:8c:a4:1b:68:a3:49: 4e:43:d7:1d:2f:79:e9:b4:c9:e7:59:b1:8b:a2:ba: 0c:e4:ec:84:26:30:9c:7b:44:63:4d:73:70:98:66: b0:ca:be:98:99:e4:2e:05:c3:95:ef:9c:65:0b:c0: 6c:2f:c6:2a:56:b6:e8:f1:4f:aa:82:57:92:20:d3: f1:cf:7e:b8:d9:96:13:0c:49:91:9c:a0:04:20:c9: 23:27:71:b7:b9:b3:08:11:ad:5e:51:25:e3:40:16: c5:e8:4f:b3:ff:9c:0e:ee:5a:40:f9:7f:83:01:23: 23:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:9E:41:6D:5F:41:53:85:1F:DE:A3:49:76:20:B6:16:ED:FB:A1:29 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:8a:b4:9c:74:ca:61:7e:51:2c:d3:06:cd:0d:14:84:d7:4a: fe:bc:97:5c:e4:e7:39:86:77:a7:e3:d3:10:51:ab:99:06:6f: 55:ff:d7:3e:28:3c:f9:d1:f6:7b:02:3b:cf:14:fa:55:d1:90: 8d:aa:2f:db:e3:84:39:6f:e4:f0:58:9a:5b:f7:ec:14:0a:48: 9c:0e:7c:ce:88:ac:01:3b:60:64:b7:5f:bd:f3:69:58:42:36: 21:76:5f:0d:ab:0a:2a:80:0f:d6:4f:39:ae:d4:66:78:78:b3: 37:2d:4a:d2:0b:bd:58:51:4d:13:f8:d1:30:12:78:d4:10:5e: da:86:e2:51:73:cb:3a:88:2f:a0:7f:84:c2:56:5a:01:52:3b: 40:f2:e6:cc:5f:5e:c6:4f:61:4b:79:da:4c:7d:19:a8:b0:3a: b1:c6:50:51:e9:14:9f:8a:37:c6:c5:98:d1:f2:2d:bf:87:eb: f4:ba:8d:07:1c:dc:43:d8:43:f2:e0:fa:7e:79:97:f0:b4:4c: c2:ce:c9:c8:48:55:04:1d:9c:ca:9a:08:b7:85:ff:dc:e7:e4: 94:f2:cc:67:3c:be:ef:2b:f6:27:33:26:86:3b:e2:a9:1e:a1: 08:17:51:0b:5c:f5:1f:a8:8d:2f:cf:ab:61:87:02:98:4e:0c: 87:28:d1:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUxMjIwMTU0MjA1WhcNMjUxMjI3MTU0MjA1WjAYMRYwFAYD VQQDDA02OTQ2YzNjZS02ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj/fRCJX5gq4DTjge24rCCLmEdVHbCrAJJaucgbFk/N9pYvnpz39DOMGy1ukk 8BO0KJXcWiT1NMe1Gjs5kRkvyB8KN+FrRPIJT2jSl+Vg2B/MrCOQESXVacsCOCOZ WBwAhcp2El61sGM5mNL91FaFQrw3cAZIVLWbqTZm9aQBGnQmP+g0UGpZhsSZQCS1 PQuMpBtoo0lOQ9cdL3nptMnnWbGLoroM5OyEJjCce0RjTXNwmGawyr6YmeQuBcOV 75xlC8BsL8YqVrbo8U+qgleSINPxz3642ZYTDEmRnKAEIMkjJ3G3ubMIEa1eUSXj QBbF6E+z/5wO7lpA+X+DASMj7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2eQW1f QVOFH96jSXYgthbt+6EpMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGirScdMphflEs0wbNDRSE10r+vJdc5Oc5hnen49MQUauZBm9V/9c+ KDz50fZ7AjvPFPpV0ZCNqi/b44Q5b+TwWJpb9+wUCkicDnzOiKwBO2Bkt1+982lY QjYhdl8NqwoqgA/WTzmu1GZ4eLM3LUrSC71YUU0T+NEwEnjUEF7ahuJRc8s6iC+g f4TCVloBUjtA8ubMX17GT2FLedpMfRmosDqxxlBR6RSfijfGxZjR8i2/h+v0uo0H HNxD2EPy4Pp+eZfwtEzCzsnISFUEHZzKmgi3hf/c5+SU8sxnPL7vK/YnMyaGO+Kp HqEIF1ELXPUfqI0vz6thhwKYTgyHKNGA -----END CERTIFICATE-----Generated at Sun Dec 21 06:19:51 2025 by rpki-client