This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: TqJGixUezvfWgcwNBtSALrn42a6/2wuPXyItlMSOUAc= Subject key identifier: BB:A5:C8:CA:A2:36:C7:3E:2B:DB:66:DD:7D:22:6B:49:76:02:61:47 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 01E8 Signing time: Tue 23 Dec 2025 01:46:54 +0000 Manifest this update: Tue 23 Dec 2025 01:46:53 +0000 Manifest next update: Tue 30 Dec 2025 01:46:53 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: dvXdBNyKF4hDuGo4EkK3v2oMROB1NX6Qgs2MFYeMSLU=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: p/oubbOjEb8Zn+B8haVjlomp+846cFby5ixQFCvfJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Dec 23 01:46:53 2025 GMT Not After : Dec 30 01:46:53 2025 GMT Subject: CN=6949f48e-24f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7a:65:79:dd:f1:0c:e3:c0:87:37:29:9e:c8: 18:46:08:99:1e:42:63:87:22:b8:80:1d:bd:e2:c6: 66:68:35:e5:66:63:1f:f4:b2:cf:e6:65:83:94:28: eb:aa:a8:4f:70:99:a7:06:4d:06:14:ec:9e:60:60: 30:87:4c:57:70:fc:3a:38:23:e2:23:b8:6e:21:b9: 16:06:6f:e1:9b:65:18:1c:a2:f7:63:79:68:fa:c7: 53:0e:46:33:1e:37:97:8c:6a:8c:36:15:3c:73:4f: da:3e:86:41:37:5e:5b:cf:70:04:ea:36:80:df:99: c1:44:1d:a0:9a:74:04:e8:5a:c1:6f:ea:2a:7c:ef: fe:33:6a:ef:f8:6d:a3:93:f3:28:c6:74:58:ab:9f: 9e:3d:05:9f:2e:36:1b:e3:b5:19:fe:d2:e6:82:89: 95:28:a6:4f:2e:08:71:1a:c9:51:d9:15:c3:b2:8e: 12:03:9b:75:fa:0e:1a:77:ce:c2:8a:91:91:bf:e4: d3:b5:9e:f5:b6:07:91:a1:d6:7f:94:13:c4:3d:6f: 44:8f:ca:dc:cc:13:dc:5c:bd:5e:07:85:2c:69:38: 2f:5b:4b:98:7f:33:87:4e:e4:ef:2d:5c:70:9f:9c: 16:33:51:63:97:8f:a3:aa:5a:ba:7b:8d:c3:2d:00: c5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A5:C8:CA:A2:36:C7:3E:2B:DB:66:DD:7D:22:6B:49:76:02:61:47 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a1:a4:85:ee:0f:71:a2:92:45:8b:c4:9a:4a:27:08:b6:ce: d5:e5:f7:d7:1a:8f:a0:d9:36:40:13:12:91:b6:fc:b2:00:91: 32:08:be:0a:8c:2e:ff:47:55:0a:47:3f:1e:91:d3:32:97:c6: 16:ce:47:27:b0:a6:41:2d:f6:a6:79:16:6b:47:ab:ce:fd:75: b3:16:74:0a:b3:bf:0f:1d:e4:4f:93:a4:f2:7d:04:90:e7:9a: 39:8c:e9:80:79:bb:9d:ee:bd:e5:14:c8:be:2c:97:56:74:10: 00:8a:e0:25:1c:a8:ce:16:55:9d:59:ae:87:eb:3f:28:0b:e2: 83:25:dc:c1:20:57:ac:ff:33:1d:65:16:ab:55:ec:42:a9:80: b1:0b:99:e1:42:27:29:4a:71:dd:05:4e:05:5c:2d:25:1e:d3: bc:a4:6e:54:e9:21:32:5f:37:ce:79:b1:31:91:e9:63:38:ce: 28:74:92:07:bc:64:4a:3c:f6:fa:f5:c5:39:ec:cc:12:c9:12: 5a:1b:80:e2:7a:20:b1:38:7a:20:02:a2:80:fa:29:d6:11:ce: cd:df:de:a7:9b:ce:fb:dd:a0:9c:bf:0c:44:cc:7e:fb:6a:6d: 60:7f:fa:ce:93:db:c4:5e:8a:96:d9:64:a9:d9:b5:60:9d:ff: 6d:10:d2:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjUxMjIzMDE0NjUzWhcNMjUxMjMwMDE0NjUzWjAYMRYwFAYD VQQDDA02OTQ5ZjQ4ZS0yNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznpled3xDOPAhzcpnsgYRgiZHkJjhyK4gB294sZmaDXlZmMf9LLP5mWDlCjr qqhPcJmnBk0GFOyeYGAwh0xXcPw6OCPiI7huIbkWBm/hm2UYHKL3Y3lo+sdTDkYz HjeXjGqMNhU8c0/aPoZBN15bz3AE6jaA35nBRB2gmnQE6FrBb+oqfO/+M2rv+G2j k/MoxnRYq5+ePQWfLjYb47UZ/tLmgomVKKZPLghxGslR2RXDso4SA5t1+g4ad87C ipGRv+TTtZ71tgeRodZ/lBPEPW9Ej8rczBPcXL1eB4UsaTgvW0uYfzOHTuTvLVxw n5wWM1Fjl4+jqlq6e43DLQDFGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLulyMqi Nsc+K9tm3X0ia0l2AmFHMB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCooaSF7g9xopJFi8SaSicIts7V5ffXGo+g2TZAExKRtvyyAJEyCL4K jC7/R1UKRz8ekdMyl8YWzkcnsKZBLfameRZrR6vO/XWzFnQKs78PHeRPk6TyfQSQ 55o5jOmAebud7r3lFMi+LJdWdBAAiuAlHKjOFlWdWa6H6z8oC+KDJdzBIFes/zMd ZRarVexCqYCxC5nhQicpSnHdBU4FXC0lHtO8pG5U6SEyXzfOebExkeljOM4odJIH vGRKPPb69cU57MwSyRJaG4DieiCxOHogAqKA+inWEc7N396nm8773aCcvwxEzH77 am1gf/rOk9vEXoqW2WSp2bVgnf9tENJF -----END CERTIFICATE-----Generated at Tue Dec 23 10:24:43 2025 by rpki-client