This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft File: WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft (raw, json) Hash identifier: s31e1BYU96nhGGPa6FcA4mF4eVNL2it2Pv5F93naVkw= Subject key identifier: CF:56:01:1E:9C:3E:14:DC:C2:3E:35:38:A3:FE:6D:ED:92:9C:F1:79 Authority key identifier: 59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 Certificate issuer: /CN=A913C4FD/serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft Manifest number: CE Signing time: Tue 23 Dec 2025 04:43:30 +0000 Manifest this update: Tue 23 Dec 2025 04:43:30 +0000 Manifest next update: Tue 30 Dec 2025 04:43:30 +0000 Files and hashes: 1: WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl (hash: r0uDGkn8MdQllDIg/LMq9Aw0IdvTC8juBt9sAal88Iw=) 2: 7C321BDEA55711EFB8317F6BC4F9AE02.roa (hash: xTT8Qi7eRLtjGj1MJV5lOZ1nPkMc9OMOKapYnFfPneA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C4FD, serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Validity Not Before: Dec 23 04:43:30 2025 GMT Not After : Dec 30 04:43:30 2025 GMT Subject: CN=694a1df2-729b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9b:a8:cb:a3:ba:7c:6e:58:58:a8:ee:b3:d6: 90:71:c9:f4:56:e3:11:3a:4a:5f:df:1c:82:99:9e: 15:77:cf:82:38:42:fd:32:ed:c9:04:12:17:7e:a4: 5e:a0:ec:a3:78:50:d1:7d:cb:90:a2:28:a6:8a:1d: 24:d5:6f:65:5c:72:c1:4f:cd:c7:8a:26:df:f4:d8: 28:25:4a:be:07:34:d0:f5:2e:35:f8:77:19:d2:a4: ae:b1:07:59:3f:ff:8b:6f:1e:78:31:7b:2e:d7:ae: ce:14:36:aa:7c:c8:1f:b3:bf:9f:5d:aa:47:58:00: 4b:2b:90:7f:81:b7:d9:6e:4e:eb:21:82:ca:ef:eb: 0c:71:66:4c:32:1a:2f:51:2d:e2:cb:f9:1f:c5:c2: 2c:34:9b:6b:59:d2:61:99:31:b2:e9:a2:93:9e:ae: 45:d1:f5:17:3a:65:b1:c9:e8:e6:08:1b:7c:f5:aa: 20:52:91:8b:88:75:c9:70:34:df:ae:c9:8a:99:35: 20:c7:3d:f7:9e:80:4c:2a:bd:df:8c:0d:d4:84:26: 2c:85:75:a0:4d:8e:0f:fe:62:8d:9e:91:f2:45:5b: 1f:af:15:bb:1b:e6:00:5d:91:fd:c9:2d:dd:3d:03: 94:86:bd:f7:74:26:e9:ca:d0:d9:c3:20:4b:34:65: 78:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:56:01:1E:9C:3E:14:DC:C2:3E:35:38:A3:FE:6D:ED:92:9C:F1:79 X509v3 Authority Key Identifier: keyid:59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:7e:71:bf:ea:9b:0d:41:b7:c3:bb:6d:3f:05:84:13:56:1d: d3:b3:ce:e2:ba:30:f1:fe:59:ab:99:c2:38:59:02:c5:10:c4: e3:48:a6:fd:da:db:21:e8:75:02:41:32:55:0d:22:44:2c:a6: f0:fd:d7:62:2c:fe:7a:2e:c2:63:7a:2d:c3:b3:2f:d2:c6:a4: b0:2f:13:87:4e:de:3f:87:cc:55:3c:6f:d7:6f:d2:ed:d2:76: 56:71:cb:41:92:f5:c0:86:cf:03:10:73:07:86:4c:fd:55:ed: 6d:0d:5f:d6:cc:d6:78:dc:61:89:c5:21:65:ac:d9:81:ea:3c: 69:33:1b:d8:1a:5b:68:42:3e:43:7d:0f:c1:41:6d:ad:95:79: cf:02:4f:91:3d:a9:c6:8a:a2:e8:b8:fc:ab:26:8c:b3:95:6a: 34:ef:56:e3:76:f7:b7:55:c8:87:21:6a:70:23:9d:7a:de:9e: 4f:5c:f2:ea:bc:12:fd:61:26:06:2b:54:10:ca:24:15:4d:5a: 99:4a:40:ab:cc:c9:2e:ce:f3:8d:e4:a5:32:96:b1:86:4e:90: 33:46:f4:74:54:04:40:77:80:81:3a:52:4b:bd:3a:d0:66:5c: 15:25:b7:41:55:b0:bd:70:5f:b2:bb:93:85:00:1b:6c:76:a7: b5:14:84:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0RkQxMTAvBgNVBAUTKDU5OTBGNEMzQkIyMzQzNkM5NTEwMEI0ODQ4REM5MTg2 QUE0OTUzMTkwHhcNMjUxMjIzMDQ0MzMwWhcNMjUxMjMwMDQ0MzMwWjAYMRYwFAYD VQQDDA02OTRhMWRmMi03MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55uoy6O6fG5YWKjus9aQccn0VuMROkpf3xyCmZ4Vd8+COEL9Mu3JBBIXfqRe oOyjeFDRfcuQoiimih0k1W9lXHLBT83Hiibf9NgoJUq+BzTQ9S41+HcZ0qSusQdZ P/+Lbx54MXsu167OFDaqfMgfs7+fXapHWABLK5B/gbfZbk7rIYLK7+sMcWZMMhov US3iy/kfxcIsNJtrWdJhmTGy6aKTnq5F0fUXOmWxyejmCBt89aogUpGLiHXJcDTf rsmKmTUgxz33noBMKr3fjA3UhCYshXWgTY4P/mKNnpHyRVsfrxW7G+YAXZH9yS3d PQOUhr33dCbpytDZwyBLNGV4WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9WAR6c PhTcwj41OKP+be2SnPF5MB8GA1UdIwQYMBaAFFmQ9MO7I0NslRALSEjckYaqSVMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzRGRC9BNTdDQUJFQ0E1 NTQxMUVGOEE5NzUyNDdDNEY5QUUwMi9XWkQwdzdzalEyeVZFQXRJU055UmhxcEpV eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1daRDB3N3NqUTJ5VkVBdElTTnlSaHFwSlV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzRGRC9BNTdDQUJFQ0E1NTQxMUVGOEE5NzUyNDdDNEY5QUUwMi9XWkQwdzdzalEy eVZFQXRJU055UmhxcEpVeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0fnG/6psNQbfDu20/BYQTVh3Ts87iujDx/lmrmcI4WQLFEMTjSKb9 2tsh6HUCQTJVDSJELKbw/ddiLP56LsJjei3Dsy/SxqSwLxOHTt4/h8xVPG/Xb9Lt 0nZWcctBkvXAhs8DEHMHhkz9Ve1tDV/WzNZ43GGJxSFlrNmB6jxpMxvYGltoQj5D fQ/BQW2tlXnPAk+RPanGiqLouPyrJoyzlWo071bjdve3VciHIWpwI5163p5PXPLq vBL9YSYGK1QQyiQVTVqZSkCrzMkuzvON5KUylrGGTpAzRvR0VARAd4CBOlJLvTrQ ZlwVJbdBVbC9cF+yu5OFABtsdqe1FISa -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:38 2025 by rpki-client