This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: 65EW4n5/XRIEgmFClc094p7iXapXT42+LQvNlpt2B/I= Subject key identifier: 4C:B2:B2:72:C2:F1:AE:27:B1:6E:27:7A:B3:4A:FE:3A:CD:45:54:9E Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 10DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 10D2 Signing time: Mon 22 Dec 2025 17:00:02 +0000 Manifest this update: Mon 22 Dec 2025 17:00:02 +0000 Manifest next update: Mon 29 Dec 2025 17:00:02 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: YHEuvn7LrZsSYY9tsewAjqK99Q+8MgvqL6t1rcNJzjI=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4316 (0x10dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Dec 22 17:00:02 2025 GMT Not After : Dec 29 17:00:02 2025 GMT Subject: CN=69497912-e65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a0:93:09:fb:2b:6e:bc:6a:8a:70:21:00:f0: 0d:b6:65:95:62:de:31:8a:4f:4a:b0:81:2c:98:1b: 16:f7:e7:da:60:9b:db:bb:c4:64:a3:32:4c:53:7c: 93:06:96:58:d0:40:68:3d:03:8e:0a:50:9b:d8:b6: cd:f6:94:28:d4:56:05:4b:06:25:cd:a6:81:c8:a2: 71:19:64:3b:8a:ec:25:39:1e:e8:0b:21:30:eb:49: c4:8e:5a:98:bc:cf:22:c1:5b:e0:3b:da:be:b9:a6: 86:19:05:f9:5e:42:23:e5:5e:7a:51:1b:c3:4a:c9: 42:60:4c:ba:2c:80:ea:c8:32:3c:2c:d5:40:89:84: a8:58:29:4d:9b:7e:4a:19:8a:f9:ac:6f:84:8a:22: 5b:18:50:3d:56:a8:5e:10:f1:5a:bf:26:45:74:e9: 4e:93:71:3b:07:5e:b4:46:76:64:25:39:92:ba:89: ae:c9:78:a1:d8:80:b5:cc:6e:2b:25:c4:0e:9c:56: 78:09:1a:03:4a:72:6d:da:28:08:11:22:e1:35:60: 62:bf:6e:cc:e0:75:cc:e5:08:3b:b2:9c:3e:52:b9: b0:a3:56:14:c1:53:60:99:9b:d5:2e:ca:cd:58:ea: 76:5e:c3:1f:87:c2:37:0c:09:27:57:68:db:5f:39: bc:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B2:B2:72:C2:F1:AE:27:B1:6E:27:7A:B3:4A:FE:3A:CD:45:54:9E X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:d9:bd:e2:2a:43:85:5b:95:74:b9:ed:f5:01:fe:9d:2c:4f: 71:9e:19:af:cb:5e:97:34:2c:b4:e6:bd:b2:2b:f3:1b:2e:56: a3:63:45:21:f1:5c:25:2e:02:0f:12:46:fd:63:c2:1b:c8:5a: 50:76:13:20:5a:d0:81:eb:cb:8c:b6:71:0a:ae:dd:9c:d5:45: 5a:d9:04:65:2f:b8:4a:16:1f:b5:7c:dc:3c:a1:24:fb:5f:a3: b5:bc:12:d7:a0:11:c5:d5:20:65:3e:1e:82:1f:d7:8f:9f:fa: be:38:a0:4a:85:1e:90:f6:23:89:df:c5:95:02:44:18:ff:40: ea:8a:ae:40:6b:33:69:c0:6d:fe:8c:5b:db:05:c2:b4:45:06: fc:86:2e:ef:36:b7:ec:68:58:5e:a6:01:bd:9d:54:36:bd:a9: 9a:36:86:99:ab:aa:27:9f:87:e0:d2:8d:df:a9:19:eb:65:29: 14:14:02:ab:39:31:12:f6:f9:5a:4a:36:28:90:97:c7:a5:16: f9:9d:6d:b7:ca:ba:0c:e0:f4:9b:d9:73:d0:a9:47:a6:0f:63: 1a:da:19:36:f4:67:f9:4d:39:01:84:73:bd:72:4d:f2:ce:1e: 8d:52:ce:28:de:4e:43:1a:bd:27:44:e8:ee:f9:6d:3b:57:94: ca:bd:13:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUxMjIyMTcwMDAyWhcNMjUxMjI5MTcwMDAyWjAYMRYwFAYD VQQDDA02OTQ5NzkxMi1lNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKCTCfsrbrxqinAhAPANtmWVYt4xik9KsIEsmBsW9+faYJvbu8RkozJMU3yT BpZY0EBoPQOOClCb2LbN9pQo1FYFSwYlzaaByKJxGWQ7iuwlOR7oCyEw60nEjlqY vM8iwVvgO9q+uaaGGQX5XkIj5V56URvDSslCYEy6LIDqyDI8LNVAiYSoWClNm35K GYr5rG+EiiJbGFA9VqheEPFavyZFdOlOk3E7B160RnZkJTmSuomuyXih2IC1zG4r JcQOnFZ4CRoDSnJt2igIESLhNWBiv27M4HXM5Qg7spw+Urmwo1YUwVNgmZvVLsrN WOp2XsMfh8I3DAknV2jbXzm88wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyysnLC 8a4nsW4nerNK/jrNRVSeMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN2b3iKkOFW5V0ue31Af6dLE9xnhmvy16XNCy05r2yK/MbLlajY0Uh 8VwlLgIPEkb9Y8IbyFpQdhMgWtCB68uMtnEKrt2c1UVa2QRlL7hKFh+1fNw8oST7 X6O1vBLXoBHF1SBlPh6CH9ePn/q+OKBKhR6Q9iOJ38WVAkQY/0Dqiq5AazNpwG3+ jFvbBcK0RQb8hi7vNrfsaFhepgG9nVQ2vamaNoaZq6onn4fg0o3fqRnrZSkUFAKr OTES9vlaSjYokJfHpRb5nW23yroM4PSb2XPQqUemD2Ma2hk29Gf5TTkBhHO9ck3y zh6NUs4o3k5DGr0nROju+W07V5TKvRMS -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:44 2025 by rpki-client