This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: OhddgLqe9BzVO5D2GvJZdhfuWGK3zzDolKzroeRy4ds= Subject key identifier: 43:7C:3E:BE:0D:80:F6:23:12:BF:32:9A:00:E5:90:98:36:28:E9:0E Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0170 Signing time: Tue 23 Dec 2025 02:59:58 +0000 Manifest this update: Tue 23 Dec 2025 02:59:58 +0000 Manifest next update: Tue 30 Dec 2025 02:59:58 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: xX9k8iSBdAX9jxgGPkG7H4It40EjKg9uQiB1G0h4YBs=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: phqylkhfGei3IojXYcRRdYxObeB6TnyHw6jd5mx17zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Dec 23 02:59:58 2025 GMT Not After : Dec 30 02:59:58 2025 GMT Subject: CN=694a05ae-ebb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5f:d5:e3:02:4e:a0:e4:0c:65:c2:b0:79:d4: 65:7d:5e:1d:b7:da:73:fc:5c:af:f5:5e:a4:ea:df: 0d:a5:8b:6f:da:f2:a7:64:08:df:74:d8:05:df:d6: 28:19:50:75:65:6f:80:97:f2:9e:90:ca:a9:d2:82: 96:4c:97:05:34:74:91:2c:66:7a:eb:a6:7d:57:8b: b7:fb:b3:55:18:11:94:29:c3:e3:c5:af:0f:a2:b5: 3a:b0:35:43:cd:8a:1b:da:60:e2:65:70:3d:f3:20: 26:b5:a9:a5:cb:cf:5b:4d:5f:c3:55:84:9e:b0:b2: cc:1c:b4:3b:5b:c4:02:c6:97:3f:06:0b:44:fa:93: 6e:ef:69:01:72:1b:c1:62:7e:de:21:61:09:09:4c: 53:f5:16:4f:21:0d:2f:de:86:1c:98:7f:ed:3b:92: 6a:4e:7d:dc:ce:58:1a:e4:2e:9d:87:39:e0:08:8a: f8:2b:e0:6b:f0:27:20:0a:f5:5e:97:b0:ba:6c:e8: 6f:d4:8e:a1:9d:97:60:de:b1:12:ab:2b:26:8e:f8: 5a:b4:0d:23:86:a1:33:35:ae:6f:45:fa:a2:45:ab: 50:31:fe:30:84:57:f8:4f:d4:39:de:47:0f:b7:7e: e8:f1:3a:8a:0d:3f:07:b4:8c:07:2e:e0:8f:53:22: f0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:7C:3E:BE:0D:80:F6:23:12:BF:32:9A:00:E5:90:98:36:28:E9:0E X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:52:41:6c:83:f3:81:b4:fa:dc:08:85:82:9c:ad:1f:76:bc: 11:f9:81:f1:9a:d6:69:98:55:99:4f:08:d1:b4:99:bd:50:e6: 51:0f:28:2b:de:66:80:fd:ac:2d:7a:e6:9d:d0:82:d1:9a:e7: b5:ea:93:6d:cc:0a:64:31:92:74:f8:81:4b:ef:12:c4:3e:12: d3:ba:68:d9:86:aa:eb:df:f3:9b:6d:90:cb:84:22:ab:a3:d1: 33:37:0c:f9:ab:89:52:e0:e4:e7:4a:30:c9:78:61:1c:00:20: 9a:77:23:a3:0b:1e:01:6e:32:f1:dc:21:4c:50:f0:55:d1:96: 5e:4c:16:e6:d9:e1:85:8c:48:1c:b3:46:39:36:83:f5:86:eb: 15:a6:eb:a5:ed:0f:04:6f:11:46:42:2c:aa:21:94:bd:d8:85: 57:1f:3a:44:d2:09:1a:af:23:67:bd:48:7d:e4:29:f8:ad:ec: 33:c7:2e:6a:04:b2:b9:18:bb:5b:5c:31:10:81:62:03:e7:83: 28:40:15:af:09:a9:e7:1f:ca:c4:99:6d:e4:07:b6:bb:c6:ec: 42:49:21:42:f2:6f:e1:a4:e0:47:d0:33:9a:e9:f7:68:93:8a: ee:43:6e:9b:d2:09:6d:c1:d4:3c:9d:a6:53:c3:77:a2:a1:58: a5:de:b6:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUxMjIzMDI1OTU4WhcNMjUxMjMwMDI1OTU4WjAYMRYwFAYD VQQDDA02OTRhMDVhZS1lYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV/V4wJOoOQMZcKwedRlfV4dt9pz/Fyv9V6k6t8NpYtv2vKnZAjfdNgF39Yo GVB1ZW+Al/KekMqp0oKWTJcFNHSRLGZ666Z9V4u3+7NVGBGUKcPjxa8PorU6sDVD zYob2mDiZXA98yAmtamly89bTV/DVYSesLLMHLQ7W8QCxpc/BgtE+pNu72kBchvB Yn7eIWEJCUxT9RZPIQ0v3oYcmH/tO5JqTn3czlga5C6dhzngCIr4K+Br8CcgCvVe l7C6bOhv1I6hnZdg3rESqysmjvhatA0jhqEzNa5vRfqiRatQMf4whFf4T9Q53kcP t37o8TqKDT8HtIwHLuCPUyLwswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEN8Pr4N gPYjEr8ymgDlkJg2KOkOMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDUkFsg/OBtPrcCIWCnK0fdrwR+YHxmtZpmFWZTwjRtJm9UOZRDygr 3maA/awteuad0ILRmue16pNtzApkMZJ0+IFL7xLEPhLTumjZhqrr3/ObbZDLhCKr o9EzNwz5q4lS4OTnSjDJeGEcACCadyOjCx4BbjLx3CFMUPBV0ZZeTBbm2eGFjEgc s0Y5NoP1husVpuul7Q8EbxFGQiyqIZS92IVXHzpE0gkaryNnvUh95Cn4rewzxy5q BLK5GLtbXDEQgWID54MoQBWvCannH8rEmW3kB7a7xuxCSSFC8m/hpOBH0DOa6fdo k4ruQ26b0gltwdQ8naZTw3eioVil3rbC -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:41 2025 by rpki-client