This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft File: A4zy4oB33yytpFdW-12ZpuJA_Qk.mft (raw, json) Hash identifier: gvq/VXAnTE8RL8a8JRJwfu79nDr5XnYXUuM4sTEAz7E= Subject key identifier: B5:B9:54:E6:6A:00:76:AE:F9:1F:0E:0F:E9:55:36:58:7D:2E:CC:57 Authority key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 Certificate issuer: /CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft Manifest number: 34F3 Signing time: Mon 22 Dec 2025 15:02:43 +0000 Manifest this update: Mon 22 Dec 2025 15:02:43 +0000 Manifest next update: Mon 29 Dec 2025 15:02:43 +0000 Files and hashes: 1: A4zy4oB33yytpFdW-12ZpuJA_Qk.crl (hash: /IU/MFZNe9MLlHjjH3YCMhh4y5RTZp52oR4YmSR1WHQ=) 2: 55A4C5C004AA11E8935B7021C4F9AE02.roa (hash: kZdCLZLr7MrW3XdEboMd7BRjcidMEtmhtIWvhKUYQqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112CEC, serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Validity Not Before: Dec 22 15:02:43 2025 GMT Not After : Dec 29 15:02:43 2025 GMT Subject: CN=69495d93-f7e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:5f:5a:41:0a:e2:13:55:ad:e4:91:17:f8:8a: 27:5a:4b:6a:49:44:36:f4:ee:76:3a:1a:e2:60:36: 21:10:19:ed:12:f3:81:83:a1:ee:57:86:9c:51:08: a4:2e:58:6b:2b:84:cf:53:81:6d:10:b7:a3:05:ac: 13:57:3f:b1:74:fe:03:eb:78:36:16:21:b8:c9:56: 1f:c7:aa:96:61:55:c7:a5:25:ef:3a:a9:1f:57:77: 1e:fd:4d:17:9f:1d:34:92:b4:fa:66:dc:15:d0:c6: 4f:9e:d5:b5:cd:30:d2:44:12:05:ed:d7:88:6b:2a: 9e:11:05:ee:bc:db:88:19:df:42:36:78:3f:0b:f0: 8f:9d:54:ca:a3:97:bc:59:2f:43:f5:ea:85:ba:87: bd:c6:4b:5e:66:75:87:03:c8:86:64:11:75:e4:90: 7f:a9:5e:6e:d5:c0:3a:48:da:2d:21:30:9f:de:94: 95:74:6f:43:62:0c:b1:b6:bf:c4:55:91:00:bd:a7: bd:cb:5c:d1:30:84:fb:95:3b:fd:1a:a6:50:6f:d2: 23:36:ca:4e:c5:02:25:b6:31:45:0d:9f:6c:1b:18: 71:9c:c9:25:1f:66:02:0f:b0:77:f2:3c:90:a0:a1: c3:7d:12:9f:7b:d1:8f:e2:38:e8:b6:8b:ab:cf:7c: 66:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B9:54:E6:6A:00:76:AE:F9:1F:0E:0F:E9:55:36:58:7D:2E:CC:57 X509v3 Authority Key Identifier: keyid:03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:27:66:36:a6:d1:e2:a4:49:f2:af:e2:88:50:59:59:71:76: 70:b4:e3:f1:a7:b4:fa:eb:a7:c8:78:45:ae:02:40:12:81:98: 4f:71:02:50:e9:58:5b:13:a3:9f:1f:9c:f5:4d:8c:9a:39:d2: 76:78:f4:c3:56:38:c8:be:6b:d2:3d:02:dd:a0:4c:4f:93:4c: 8b:4a:56:bb:a3:35:2f:4b:c4:cc:ad:61:01:5f:54:53:06:a1: 5a:44:50:d2:62:66:4c:66:18:3c:14:9b:14:01:e3:9f:e1:44: 7a:bf:a4:a5:d5:13:bb:d5:4b:81:98:56:ac:95:2f:ee:47:e3: d4:f0:fb:9b:98:67:7f:96:d0:1a:12:11:e8:fa:d1:aa:a3:17: 3e:a9:68:f7:58:74:53:9e:1f:c7:05:d6:48:4b:a4:bb:e1:83: f2:ba:24:8b:79:75:19:98:02:3d:1e:f7:4b:54:7d:f4:f3:da: 07:a2:80:46:29:62:9b:23:98:b9:e7:63:16:e2:33:22:35:20: 23:c3:56:6c:38:54:d8:67:79:34:5d:14:ca:12:4c:2a:d6:7a: ad:7d:0a:12:1a:e2:2c:7a:38:27:08:53:08:33:fa:cd:c9:f2: 0b:df:a5:63:20:eb:13:46:76:89:7e:d3:0f:9d:82:53:d8:b0: 97:a0:66:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJDRUMxMTAvBgNVBAUTKDAzOENGMkUyODA3N0RGMkNBREE0NTc1NkZCNUQ5OUE2 RTI0MEZEMDkwHhcNMjUxMjIyMTUwMjQzWhcNMjUxMjI5MTUwMjQzWjAYMRYwFAYD VQQDDA02OTQ5NWQ5My1mN2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAil9aQQriE1Wt5JEX+IonWktqSUQ29O52OhriYDYhEBntEvOBg6HuV4acUQik LlhrK4TPU4FtELejBawTVz+xdP4D63g2FiG4yVYfx6qWYVXHpSXvOqkfV3ce/U0X nx00krT6ZtwV0MZPntW1zTDSRBIF7deIayqeEQXuvNuIGd9CNng/C/CPnVTKo5e8 WS9D9eqFuoe9xkteZnWHA8iGZBF15JB/qV5u1cA6SNotITCf3pSVdG9DYgyxtr/E VZEAvae9y1zRMIT7lTv9GqZQb9IjNspOxQIltjFFDZ9sGxhxnMklH2YCD7B38jyQ oKHDfRKfe9GP4jjotourz3xmbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLW5VOZq AHau+R8OD+lVNlh9LsxXMB8GA1UdIwQYMBaAFAOM8uKAd98sraRXVvtdmabiQP0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkNFQy9COEIwQzc4ODFE QTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5eXRwRmRXLTEyWnB1SkFf UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0enk0b0IzM3l5dHBGZFctMTJacHVKQV9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkNFQy9COEIwQzc4ODFEQTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5 eXRwRmRXLTEyWnB1SkFfUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEJ2Y2ptHipEnyr+KIUFlZcXZwtOPxp7T666fIeEWuAkASgZhPcQJQ 6VhbE6OfH5z1TYyaOdJ2ePTDVjjIvmvSPQLdoExPk0yLSla7ozUvS8TMrWEBX1RT BqFaRFDSYmZMZhg8FJsUAeOf4UR6v6Sl1RO71UuBmFaslS/uR+PU8PubmGd/ltAa EhHo+tGqoxc+qWj3WHRTnh/HBdZIS6S74YPyuiSLeXUZmAI9HvdLVH3089oHooBG KWKbI5i552MW4jMiNSAjw1ZsOFTYZ3k0XRTKEkwq1nqtfQoSGuIsejgnCFMIM/rN yfIL36VjIOsTRnaJftMPnYJT2LCXoGYB -----END CERTIFICATE-----Generated at Tue Dec 23 06:39:28 2025 by rpki-client