This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: kzmTSmD2LK0FNoi7Qcyg51zmo/RiByhzDXA4H90J5Bc= Subject key identifier: 4C:5D:0F:80:95:D1:1A:19:59:5E:7E:30:9C:D7:63:E5:4A:DA:C3:3F Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 01C1 Signing time: Tue 23 Dec 2025 02:00:10 +0000 Manifest this update: Tue 23 Dec 2025 02:00:10 +0000 Manifest next update: Tue 30 Dec 2025 02:00:10 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: pcDeOHibVKEmwp7yqNUIieExDF43lqR3XzsH3Zzx/9U=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Q5zuiPpefsNxFRaG9cl+nmTsBfZwCymfR2pPktbzlnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Dec 23 02:00:10 2025 GMT Not After : Dec 30 02:00:10 2025 GMT Subject: CN=6949f7aa-d257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:9d:0d:36:d4:79:d8:fa:87:22:70:f8:79:bc: 85:d8:61:bf:a9:17:be:08:48:3f:45:7e:ba:6e:8e: 7c:e0:9b:b4:49:81:0f:01:43:71:a1:9d:04:de:1f: f1:bb:d4:e9:62:b4:a0:c5:19:47:39:a8:5b:6c:e6: 40:51:17:9e:80:a3:c2:6b:1f:2c:12:30:2b:c5:ab: 68:52:d1:b9:67:58:6c:25:f9:62:d5:7b:b8:82:47: f7:95:50:a4:3a:86:01:fe:a3:52:41:4f:76:05:f0: ca:f0:e4:f1:e4:d0:76:ae:6d:25:af:8e:f5:ec:20: be:5b:1a:30:17:3b:fc:85:6e:dc:ea:91:50:92:f1: f9:16:b4:c9:c7:60:5c:a9:d8:63:4f:48:b1:66:6f: 11:5b:eb:c3:45:02:7b:ce:78:a0:5b:a4:61:08:91: bc:5c:a3:a3:36:2f:5d:8d:20:38:58:af:67:01:e6: 64:35:48:e9:1a:65:b4:04:5f:51:0b:3b:26:ab:6e: d0:f2:51:fa:c1:60:21:c7:7b:8d:37:fc:45:78:8c: ee:98:7e:9e:a3:6f:b0:b2:13:98:fc:97:d5:e7:b6: 40:c9:b5:27:07:90:cf:0e:d0:c2:e1:1e:30:04:e7: b3:8e:71:fe:d9:6e:af:8b:39:38:fb:50:0f:61:66: 11:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5D:0F:80:95:D1:1A:19:59:5E:7E:30:9C:D7:63:E5:4A:DA:C3:3F X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:2b:e2:f5:85:31:3c:f1:c9:e7:67:25:bf:78:f0:4d:bf:c4: eb:83:4b:c5:5f:0a:f8:3d:17:0c:2e:bb:58:95:3c:20:e6:1e: 8a:8e:a4:99:a4:db:6f:13:d9:96:b4:36:58:bd:c7:27:e1:f0: 6b:50:6f:6b:eb:9f:9b:0a:c7:ae:0e:cf:b3:d1:18:d4:4e:98: 12:7a:d5:39:80:17:5e:a1:73:e6:49:3c:2f:86:f9:fa:13:bf: 24:7d:21:8e:ee:7d:c8:c8:71:e7:c3:ee:c4:63:1e:be:57:97: e8:f4:67:d6:c1:b5:ef:da:e7:15:e1:0a:43:99:6a:63:e2:d5: 90:c4:74:b7:23:45:e5:37:17:23:76:06:b0:36:da:5d:5f:28: d1:a8:89:bd:47:d4:20:48:51:92:27:16:07:9d:6a:a2:14:f4: 42:61:0e:52:f0:c6:45:52:f2:d4:cf:89:40:e0:5b:bf:b9:0e: cf:cb:f4:22:1d:c8:b2:d5:62:a6:14:a9:38:bf:fd:ea:57:c0: d2:99:94:92:50:6e:cb:39:79:c5:fc:04:11:a9:fd:df:20:57: 85:5d:72:a1:fd:1c:36:8c:fa:95:ef:ed:66:27:0c:cf:26:65: 5e:98:ad:fa:ff:1a:b1:5d:c7:c5:60:be:37:8a:74:52:f6:76: 6a:fa:f2:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUxMjIzMDIwMDEwWhcNMjUxMjMwMDIwMDEwWjAYMRYwFAYD VQQDDA02OTQ5ZjdhYS1kMjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9J0NNtR52PqHInD4ebyF2GG/qRe+CEg/RX66bo584Ju0SYEPAUNxoZ0E3h/x u9TpYrSgxRlHOahbbOZAUReegKPCax8sEjArxatoUtG5Z1hsJfli1Xu4gkf3lVCk OoYB/qNSQU92BfDK8OTx5NB2rm0lr4717CC+WxowFzv8hW7c6pFQkvH5FrTJx2Bc qdhjT0ixZm8RW+vDRQJ7znigW6RhCJG8XKOjNi9djSA4WK9nAeZkNUjpGmW0BF9R Czsmq27Q8lH6wWAhx3uNN/xFeIzumH6eo2+wshOY/JfV57ZAybUnB5DPDtDC4R4w BOezjnH+2W6vizk4+1APYWYRCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExdD4CV 0RoZWV5+MJzXY+VK2sM/MB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJK+L1hTE88cnnZyW/ePBNv8Trg0vFXwr4PRcMLrtYlTwg5h6KjqSZ pNtvE9mWtDZYvccn4fBrUG9r65+bCseuDs+z0RjUTpgSetU5gBdeoXPmSTwvhvn6 E78kfSGO7n3IyHHnw+7EYx6+V5fo9GfWwbXv2ucV4QpDmWpj4tWQxHS3I0XlNxcj dgawNtpdXyjRqIm9R9QgSFGSJxYHnWqiFPRCYQ5S8MZFUvLUz4lA4Fu/uQ7Py/Qi Hciy1WKmFKk4v/3qV8DSmZSSUG7LOXnF/AQRqf3fIFeFXXKh/Rw2jPqV7+1mJwzP JmVemK36/xqxXcfFYL43inRS9nZq+vLb -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:16 2025 by rpki-client