This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft File: CZJdtntKud9gBue9K8HY7cjMfhk.mft (raw, json) Hash identifier: APrEJ79ikQVnLhlQ7pYrCPzYetsXL4r71/kmnuLmnSQ= Subject key identifier: AF:29:D1:01:46:32:2E:44:3F:08:DC:E4:70:6A:C8:50:5D:3F:12:53 Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0B8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft Manifest number: 0B79 Signing time: Mon 22 Dec 2025 18:35:38 +0000 Manifest this update: Mon 22 Dec 2025 18:35:37 +0000 Manifest next update: Mon 29 Dec 2025 18:35:37 +0000 Files and hashes: 1: CZJdtntKud9gBue9K8HY7cjMfhk.crl (hash: hVVLOotqDCUR+UBIp+zr5fLDfaD7rJw/ylWXYLwgUt4=) 2: 6808E6322F1C11EDA3E29B09C4F9AE02.roa (hash: nAoyRMyYyi12azDp6SE/qwN7pgPQQg1HLkgUECyRET0=) 3: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (hash: t/HPU+yh192od5cagMC/Ly+EKdd9LBvDzwx4CBBAw8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2, serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: Dec 22 18:35:37 2025 GMT Not After : Dec 29 18:35:37 2025 GMT Subject: CN=69498f7a-f40f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:ba:ff:24:3d:75:a3:37:0f:cd:d6:58:3f: 8f:2e:ce:a3:5c:06:7b:c3:45:db:a6:c9:fa:cc:40: 17:08:ba:96:f9:32:ff:ac:a7:90:f5:18:8f:a7:b3: fa:ab:46:a7:0d:36:56:dc:5b:17:7a:65:5c:e1:b4: 74:fc:38:84:40:57:33:98:2a:76:48:91:cb:32:66: de:e2:46:c6:9f:17:71:79:83:ae:b6:43:13:fb:bc: 43:9e:67:11:ab:3f:fa:77:c3:ca:6b:71:d9:df:77: 61:ab:95:dc:c4:eb:50:b3:c6:ae:3b:5b:43:7e:80: 97:33:43:1f:28:31:3d:83:39:b2:5a:17:88:64:7b: 0a:06:71:ac:c4:ba:50:fd:3e:db:f0:e5:44:b7:cb: ee:92:f4:8b:a3:44:22:16:28:ed:c6:5b:9c:c5:dd: 3f:88:3f:59:9e:6a:77:5c:77:4d:36:fe:d4:d6:09: 83:4f:01:f4:7e:67:8f:e2:39:bd:38:f5:16:f7:3e: e0:9e:8a:df:fa:42:16:01:8c:01:49:4a:45:30:53: cb:ae:47:a3:84:f9:e5:91:0f:cc:fc:8e:2e:f1:11: fe:0e:e9:65:7b:b4:5b:42:b6:f2:fb:ae:a9:f4:85: 07:d1:2b:7d:3f:c0:b0:3c:6d:ca:0e:6d:6a:93:6c: d7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:29:D1:01:46:32:2E:44:3F:08:DC:E4:70:6A:C8:50:5D:3F:12:53 X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ff:95:d2:f0:32:7a:b7:11:04:51:c2:48:8b:c1:cf:b3:6c: 8b:6a:69:20:88:e7:51:79:e3:14:60:d0:ff:77:2a:75:3c:b2: 2b:15:3b:f7:04:21:d5:19:51:7c:07:26:66:25:bc:40:aa:66: a8:57:e5:95:75:84:a1:1c:44:f5:ec:c5:29:18:8e:8f:06:5c: 39:e3:88:58:04:d8:16:cc:9c:a2:2d:2e:f1:52:64:00:79:4c: 55:fd:52:b7:ac:76:9c:4e:d2:e3:3e:c0:fb:d6:a8:a7:6d:96: 68:a1:27:d3:2c:22:49:2f:d3:4a:6f:8e:92:37:95:38:06:cd: 28:07:40:7f:9b:20:3c:bc:1b:8d:79:1c:5a:4e:59:07:3e:62: bf:f7:bf:18:c9:77:a8:dc:5b:67:60:be:a3:2a:b9:be:20:6a: 8d:61:b6:ae:12:ac:6b:f2:39:bb:0c:13:4d:39:33:04:d2:a6: 47:68:40:5a:ff:5e:13:2c:74:ee:fb:28:f7:1b:0c:0a:a3:18: 7e:3e:46:3a:b0:53:d3:d4:ff:c3:08:52:5f:56:3a:ad:f2:db: 4e:b1:86:00:12:5b:ee:40:02:eb:65:da:f7:cd:bf:be:ef:91: 4e:b1:b1:92:f6:e9:97:b5:14:42:82:09:31:c6:e2:1b:24:0a: 8a:a4:22:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjUxMjIyMTgzNTM3WhcNMjUxMjI5MTgzNTM3WjAYMRYwFAYD VQQDDA02OTQ5OGY3YS1mNDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0C6/yQ9daM3D83WWD+PLs6jXAZ7w0Xbpsn6zEAXCLqW+TL/rKeQ9RiPp7P6 q0anDTZW3FsXemVc4bR0/DiEQFczmCp2SJHLMmbe4kbGnxdxeYOutkMT+7xDnmcR qz/6d8PKa3HZ33dhq5XcxOtQs8auO1tDfoCXM0MfKDE9gzmyWheIZHsKBnGsxLpQ /T7b8OVEt8vukvSLo0QiFijtxlucxd0/iD9Znmp3XHdNNv7U1gmDTwH0fmeP4jm9 OPUW9z7gnorf+kIWAYwBSUpFMFPLrkejhPnlkQ/M/I4u8RH+Dulle7RbQrby+66p 9IUH0St9P8CwPG3KDm1qk2zXkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8p0QFG Mi5EPwjc5HBqyFBdPxJTMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdCMi80MDY2NTAwODQxNkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3Vk OWdCdWU5SzhIWTdjak1maGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8/5XS8DJ6txEEUcJIi8HPs2yLamkgiOdReeMUYND/dyp1PLIrFTv3 BCHVGVF8ByZmJbxAqmaoV+WVdYShHET17MUpGI6PBlw544hYBNgWzJyiLS7xUmQA eUxV/VK3rHacTtLjPsD71qinbZZooSfTLCJJL9NKb46SN5U4Bs0oB0B/myA8vBuN eRxaTlkHPmK/978YyXeo3FtnYL6jKrm+IGqNYbauEqxr8jm7DBNNOTME0qZHaEBa /14TLHTu+yj3GwwKoxh+PkY6sFPT1P/DCFJfVjqt8ttOsYYAElvuQALrZdr3zb++ 75FOsbGS9umXtRRCggkxxuIbJAqKpCIA -----END CERTIFICATE-----Generated at Wed Dec 24 14:13:50 2025 by rpki-client