This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: NsgeO3tpAkdMUJYSgJpWGF5leQIyV510W1vFw/Eqt3Q= Subject key identifier: 52:F7:03:9C:39:D0:1D:A9:0C:2F:5D:F3:39:04:B5:FC:CB:C2:DB:CE Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 0201 Signing time: Tue 23 Dec 2025 01:26:12 +0000 Manifest this update: Tue 23 Dec 2025 01:26:12 +0000 Manifest next update: Tue 30 Dec 2025 01:26:12 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: CC66pw6TMHSAdGhme7EOqgXeaF1jhkhlyY6aFs5AT0c=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Dec 23 01:26:12 2025 GMT Not After : Dec 30 01:26:12 2025 GMT Subject: CN=6949efb4-baeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:72:9e:56:26:9a:ce:4c:a1:2c:71:8d:48:7f: 8c:c0:a2:99:05:5a:af:3f:25:cb:fb:03:4c:a8:f2: 06:c8:bd:bb:f1:61:52:2f:92:c7:88:25:15:f3:eb: 2b:f5:59:ea:a4:04:d2:59:26:e7:ea:ef:66:91:11: 2d:64:46:07:52:fd:7f:4c:eb:4e:a9:d1:e9:aa:c2: 23:25:df:ae:4d:ad:8d:42:ef:e1:7c:f5:72:bc:ab: 6c:2a:ae:a2:ea:97:47:65:e1:f8:cb:d8:67:68:58: fd:1f:ee:9d:fe:b3:ec:7f:f5:81:8d:b8:75:fd:e5: 32:09:6a:39:94:3e:3e:e4:6a:bb:41:07:93:ee:68: 10:a1:dd:6f:f5:ac:ec:d5:53:21:b0:b1:aa:3f:04: 5a:71:00:41:f0:a6:f6:ae:ef:11:1c:00:b7:19:0f: 54:65:70:52:75:99:66:e7:6a:c2:ab:3d:dc:a7:ee: 9f:45:7d:76:ca:04:a1:38:9a:a3:88:f1:11:a4:f7: 79:d8:f8:3b:b6:36:9e:41:ea:a3:f2:7a:d1:11:44: 71:bd:28:57:29:14:16:3b:1b:31:ec:8a:12:f4:6d: 15:aa:24:79:2e:93:ce:f3:43:03:93:49:7e:a1:84: 2b:82:30:f9:7f:0d:f8:29:fa:d6:6f:07:2d:2b:2d: 30:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F7:03:9C:39:D0:1D:A9:0C:2F:5D:F3:39:04:B5:FC:CB:C2:DB:CE X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:86:e6:7f:9f:ce:58:93:3e:6e:b2:ba:76:d7:e6:64:e2:a1: a1:01:84:ea:7d:93:f2:cb:d1:94:e3:3b:03:a0:e3:08:da:01: 3b:8b:09:7c:c8:ac:bb:97:4c:09:a4:27:42:fb:87:2e:0c:61: 63:ef:6b:ca:81:78:3b:d3:63:cb:4e:f6:b3:cc:40:09:95:38: a3:b3:bc:48:bc:94:7c:70:a6:38:63:f3:12:7c:df:37:63:bd: e1:03:1f:07:9b:c2:5b:25:90:1e:01:68:b7:83:c7:c2:c0:ad: 70:70:6f:12:46:6c:24:24:b6:c8:04:a8:54:ea:20:27:9c:a0: ce:95:cd:ee:b6:c7:6c:cf:aa:37:52:bd:d6:b2:09:68:87:44: 14:74:b7:05:b2:19:76:dd:e4:fd:23:a1:1d:a8:55:2b:4d:8b: ff:36:2c:4e:e4:32:be:f0:54:2c:9d:4d:3d:c7:59:e5:28:53: 25:7f:aa:b9:51:5d:6a:8d:b2:2d:53:0c:ab:25:42:dc:d0:50: fb:1d:e5:ed:7a:eb:26:09:be:b6:fe:e0:59:1d:26:c4:70:7a: 86:b7:cc:59:e2:3d:d4:a1:02:e8:c3:ff:ed:7e:32:93:c9:92: 1d:2c:9c:77:ce:b7:3e:10:50:2c:b9:e2:3e:a0:9c:6a:b4:3e: 12:95:63:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUxMjIzMDEyNjEyWhcNMjUxMjMwMDEyNjEyWjAYMRYwFAYD VQQDDA02OTQ5ZWZiNC1iYWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXKeViaazkyhLHGNSH+MwKKZBVqvPyXL+wNMqPIGyL278WFSL5LHiCUV8+sr 9VnqpATSWSbn6u9mkREtZEYHUv1/TOtOqdHpqsIjJd+uTa2NQu/hfPVyvKtsKq6i 6pdHZeH4y9hnaFj9H+6d/rPsf/WBjbh1/eUyCWo5lD4+5Gq7QQeT7mgQod1v9azs 1VMhsLGqPwRacQBB8Kb2ru8RHAC3GQ9UZXBSdZlm52rCqz3cp+6fRX12ygShOJqj iPERpPd52Pg7tjaeQeqj8nrREURxvShXKRQWOxsx7IoS9G0VqiR5LpPO80MDk0l+ oYQrgjD5fw34KfrWbwctKy0w8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFL3A5w5 0B2pDC9d8zkEtfzLwtvOMB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlhuZ/n85Ykz5usrp21+Zk4qGhAYTqfZPyy9GU4zsDoOMI2gE7iwl8 yKy7l0wJpCdC+4cuDGFj72vKgXg702PLTvazzEAJlTijs7xIvJR8cKY4Y/MSfN83 Y73hAx8Hm8JbJZAeAWi3g8fCwK1wcG8SRmwkJLbIBKhU6iAnnKDOlc3utsdsz6o3 Ur3Wsgloh0QUdLcFshl23eT9I6EdqFUrTYv/NixO5DK+8FQsnU09x1nlKFMlf6q5 UV1qjbItUwyrJULc0FD7HeXteusmCb62/uBZHSbEcHqGt8xZ4j3UoQLow//tfjKT yZIdLJx3zrc+EFAsueI+oJxqtD4SlWNW -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:21 2025 by rpki-client