This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft File: Zctcy-UxzE70Kh0wffe0XLDpdNk.mft (raw, json) Hash identifier: 243nFEiFnet0sa1BwjWTJWx1eUCwuX5Vr1PVGi84s6U= Subject key identifier: D7:87:EE:B4:BC:81:38:35:8F:52:B2:8A:85:2D:DF:D1:8E:60:C7:E9 Authority key identifier: 65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 Certificate issuer: /CN=A915451D/serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Certificate serial: 091A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft Manifest number: 0913 Signing time: Mon 22 Dec 2025 19:38:57 +0000 Manifest this update: Mon 22 Dec 2025 19:38:57 +0000 Manifest next update: Mon 29 Dec 2025 19:38:57 +0000 Files and hashes: 1: Zctcy-UxzE70Kh0wffe0XLDpdNk.crl (hash: k9LC11wxU+HIphKUGZGr8xTxqXW7pGDk1qYVNCYHP9w=) 2: 593FC45EB89011EA8C060064C4F9AE02.roa (hash: u4NwNX2RS8lU0XdSU+16dmpCRTKIRZP13s5jIKokArg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2330 (0x91a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915451D, serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Validity Not Before: Dec 22 19:38:57 2025 GMT Not After : Dec 29 19:38:57 2025 GMT Subject: CN=69499e51-0ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:65:8f:c8:81:2a:d5:a7:05:7f:41:97:71:25: db:24:a7:34:6b:77:f6:34:81:95:fc:db:e8:f4:60: c8:49:85:f7:bb:ac:01:6f:7d:43:f5:32:82:9b:19: 71:d0:df:48:47:d6:0a:ed:ab:80:e4:aa:f3:db:5a: b2:3f:05:dd:79:e5:ba:0d:90:d3:ae:48:96:39:15: 27:03:91:d7:b5:02:03:e4:e8:9d:38:c5:62:d0:eb: 43:57:e1:82:b0:52:99:07:e4:84:34:cf:1f:84:aa: 25:c1:ab:a5:40:62:a9:b6:4a:6c:95:f9:6b:02:f9: 4a:87:72:fc:8a:af:d4:5e:7c:8b:71:e3:34:44:bc: 1f:d2:0b:da:4c:c6:41:6c:27:7a:3b:65:58:2c:22: 5b:d4:ea:eb:12:24:a1:ea:87:c4:35:6b:65:66:e6: 15:e1:09:55:8c:e5:c5:71:d6:cb:ed:88:a3:4f:a4: 2b:33:e2:36:2c:d2:64:0f:79:16:d2:44:72:3a:da: 59:0e:7b:3f:3c:f7:34:f2:04:d5:53:63:76:88:01: 78:f1:ba:04:b8:f9:38:2d:eb:1a:6e:fe:df:59:61: 14:b1:c8:a7:5f:a0:3b:78:aa:dc:bb:8b:1f:52:21: 60:4d:07:1e:12:3b:4b:9d:cb:2c:59:07:ba:1e:38: 14:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:87:EE:B4:BC:81:38:35:8F:52:B2:8A:85:2D:DF:D1:8E:60:C7:E9 X509v3 Authority Key Identifier: keyid:65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:9d:91:36:cf:ee:ce:10:a0:1d:b7:4f:ae:3e:87:32:c3:50: 02:da:d0:58:c0:cf:72:89:fd:4d:cd:ff:46:b1:0d:dc:e4:4d: 55:fc:66:5e:c5:52:85:47:4a:2b:5b:ae:d0:3e:29:00:3e:8d: 30:96:d1:00:51:83:ac:eb:e8:1e:08:2b:fd:88:00:07:c0:32: cb:ab:9e:17:21:51:7c:cd:f9:62:ce:15:4d:3d:b0:2b:5f:62: 36:ea:d6:58:b8:b2:85:58:76:c4:c5:73:c4:ce:e0:77:1a:74: 2e:72:7c:09:b4:b2:46:a9:54:7b:93:03:82:11:9f:5b:8a:c5: 9a:54:59:61:c9:9f:ac:49:1c:b1:ad:4c:7f:94:b6:66:9b:c7: 31:52:8c:78:36:c1:86:27:6e:cd:92:1c:78:48:9e:cb:c6:62: 33:8b:23:b0:32:98:21:8c:b4:10:c4:27:77:c3:59:3d:34:e1: c5:70:7c:2e:d1:fe:7f:18:d5:28:d7:66:01:37:19:ac:59:bc: 22:ac:5b:83:91:82:e1:e2:8d:60:c5:c2:11:e1:c1:c9:27:02: e4:2d:b6:16:b2:68:fc:7a:6d:fd:7b:e6:fc:af:df:79:85:2f: 51:0d:7b:87:4b:83:eb:84:17:4e:cc:d0:b2:15:09:27:3a:7d: d7:7e:06:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MUQxMTAvBgNVBAUTKDY1Q0I1Q0NCRTUzMUNDNEVGNDJBMUQzMDdERjdCNDVD QjBFOTc0RDkwHhcNMjUxMjIyMTkzODU3WhcNMjUxMjI5MTkzODU3WjAYMRYwFAYD VQQDDA02OTQ5OWU1MS0wZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWWPyIEq1acFf0GXcSXbJKc0a3f2NIGV/Nvo9GDISYX3u6wBb31D9TKCmxlx 0N9IR9YK7auA5Krz21qyPwXdeeW6DZDTrkiWORUnA5HXtQID5OidOMVi0OtDV+GC sFKZB+SENM8fhKolwaulQGKptkpslflrAvlKh3L8iq/UXnyLceM0RLwf0gvaTMZB bCd6O2VYLCJb1OrrEiSh6ofENWtlZuYV4QlVjOXFcdbL7YijT6QrM+I2LNJkD3kW 0kRyOtpZDns/PPc08gTVU2N2iAF48boEuPk4Lesabv7fWWEUscinX6A7eKrcu4sf UiFgTQceEjtLncssWQe6HjgUXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeH7rS8 gTg1j1KyioUt39GOYMfpMB8GA1UdIwQYMBaAFGXLXMvlMcxO9CodMH33tFyw6XTZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUxRC81Q0IxRUEwNkI4 OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpFNzBLaDB3ZmZlMFhMRHBk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pjdGN5LVV4ekU3MEtoMHdmZmUwWExEcGROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDUxRC81Q0IxRUEwNkI4OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpF NzBLaDB3ZmZlMFhMRHBkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCenZE2z+7OEKAdt0+uPocyw1AC2tBYwM9yif1Nzf9GsQ3c5E1V/GZe xVKFR0orW67QPikAPo0wltEAUYOs6+geCCv9iAAHwDLLq54XIVF8zflizhVNPbAr X2I26tZYuLKFWHbExXPEzuB3GnQucnwJtLJGqVR7kwOCEZ9bisWaVFlhyZ+sSRyx rUx/lLZmm8cxUox4NsGGJ27Nkhx4SJ7LxmIziyOwMpghjLQQxCd3w1k9NOHFcHwu 0f5/GNUo12YBNxmsWbwirFuDkYLh4o1gxcIR4cHJJwLkLbYWsmj8em39e+b8r995 hS9RDXuHS4PrhBdOzNCyFQknOn3Xfgbc -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:24 2025 by rpki-client