This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: B25XI26rLJ07NsSol1Cnv96EKgu3NX7VJZjLq4OXobw= Subject key identifier: 61:57:FD:2F:07:F2:E2:B2:0C:17:D6:D0:B0:D2:5F:75:E4:76:5B:D0 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 0169 Signing time: Tue 23 Dec 2025 02:59:17 +0000 Manifest this update: Tue 23 Dec 2025 02:59:16 +0000 Manifest next update: Tue 30 Dec 2025 02:59:16 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: QD5N1c+I+QA61K/kdxI2VsNhoAxSPFGoGMRhMyjbtOQ=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Dec 23 02:59:16 2025 GMT Not After : Dec 30 02:59:16 2025 GMT Subject: CN=694a0584-0035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:48:1a:47:9a:7e:89:1b:8c:10:47:7e:f6:fd: be:fe:fa:11:b8:fc:79:54:89:06:f5:f5:88:da:99: 9e:8f:96:7a:1b:5e:2c:45:8e:95:15:9e:84:be:1d: 31:89:c5:d2:3e:d4:31:22:dc:b5:33:a3:ae:ae:29: 99:20:28:17:f3:8f:f2:0f:8d:fd:99:1c:8b:75:f6: 23:69:3b:0a:23:29:7c:02:f3:0e:8a:95:16:50:db: 76:cf:bb:de:3e:a9:69:23:57:41:ec:af:0a:29:8b: ee:fd:e2:d8:73:ce:9f:2b:c6:8f:42:8f:c8:c2:fa: 01:78:ae:3b:68:60:6e:f4:3e:db:54:bf:46:75:4d: 93:13:3a:3a:d4:39:7e:a8:a8:7c:d9:b1:8b:6c:a6: b3:54:20:9d:0e:c5:3c:11:b0:60:5e:37:ca:7a:1f: 41:54:4e:96:07:c8:87:45:21:f5:33:6d:0f:55:d2: f1:82:34:fc:3f:76:6b:14:78:23:16:2d:e4:3c:f3: 52:72:83:c6:4e:79:b7:7b:e1:c0:b0:4f:d7:a8:a9: 99:d1:fb:d4:12:57:21:9a:b9:07:b4:98:0a:99:5a: a4:87:2d:61:f2:5c:80:01:87:da:bf:54:3c:58:e5: 55:4e:5b:05:1b:0d:4c:b6:af:83:fc:cc:a5:41:ce: 48:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:57:FD:2F:07:F2:E2:B2:0C:17:D6:D0:B0:D2:5F:75:E4:76:5B:D0 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:11:7e:3b:db:50:85:75:7e:1e:3d:83:16:56:55:ad:17:7c: 1c:a2:aa:4e:34:13:0e:e2:32:4b:d6:14:3c:99:d2:a0:9b:39: 7a:ed:6a:d8:b1:3a:f5:48:b9:20:e1:7f:10:20:51:28:48:cf: b5:0a:f6:b7:8c:95:9b:cf:8e:5a:84:08:63:31:01:63:c0:4a: 2e:4a:c1:c2:07:69:6a:1c:ca:5e:59:27:17:ee:24:d0:ef:c1: f4:4c:05:82:a7:c3:96:b1:46:c5:dc:5a:1b:99:80:7f:06:d9: f8:a4:28:29:f2:de:f7:49:83:d3:b7:ae:7f:c2:b0:b3:0b:19: d6:01:6b:f4:fc:e0:15:58:39:9e:03:92:ad:e9:36:a4:8a:71: 6c:04:c6:9f:24:95:61:13:e6:34:78:27:ea:dc:b9:48:8e:32: 99:2c:5f:12:d2:6d:cf:e6:95:29:d7:49:9f:f2:8e:9a:60:35: 8c:91:52:c4:2f:18:8e:f9:27:aa:7b:a1:93:59:41:a3:92:00: 4f:b9:1e:ec:1c:b2:49:f1:b7:68:13:f9:9a:15:0b:74:70:a5: 73:8a:50:bd:ca:1c:a5:57:77:ee:63:0d:67:f8:e9:f1:cd:61: 56:30:32:a5:0b:46:db:a6:93:b3:f2:0a:55:7e:68:04:cb:be: 64:27:56:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUxMjIzMDI1OTE2WhcNMjUxMjMwMDI1OTE2WjAYMRYwFAYD VQQDDA02OTRhMDU4NC0wMDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEgaR5p+iRuMEEd+9v2+/voRuPx5VIkG9fWI2pmej5Z6G14sRY6VFZ6Evh0x icXSPtQxIty1M6OurimZICgX84/yD439mRyLdfYjaTsKIyl8AvMOipUWUNt2z7ve PqlpI1dB7K8KKYvu/eLYc86fK8aPQo/IwvoBeK47aGBu9D7bVL9GdU2TEzo61Dl+ qKh82bGLbKazVCCdDsU8EbBgXjfKeh9BVE6WB8iHRSH1M20PVdLxgjT8P3ZrFHgj Fi3kPPNScoPGTnm3e+HAsE/XqKmZ0fvUElchmrkHtJgKmVqkhy1h8lyAAYfav1Q8 WOVVTlsFGw1Mtq+D/MylQc5IqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFX/S8H 8uKyDBfW0LDSX3XkdlvQMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMEX4721CFdX4ePYMWVlWtF3wcoqpONBMO4jJL1hQ8mdKgmzl67WrY sTr1SLkg4X8QIFEoSM+1Cva3jJWbz45ahAhjMQFjwEouSsHCB2lqHMpeWScX7iTQ 78H0TAWCp8OWsUbF3FobmYB/Btn4pCgp8t73SYPTt65/wrCzCxnWAWv0/OAVWDme A5Kt6TakinFsBMafJJVhE+Y0eCfq3LlIjjKZLF8S0m3P5pUp10mf8o6aYDWMkVLE LxiO+Seqe6GTWUGjkgBPuR7sHLJJ8bdoE/maFQt0cKVzilC9yhylV3fuYw1n+Onx zWFWMDKlC0bbppOz8gpVfmgEy75kJ1as -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:59 2025 by rpki-client