This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: nabU5Lb9JdtwQ0Yksditrnc9P63hc2UTf5DvawYB6nc= Subject key identifier: E2:D0:9B:68:18:E4:58:E3:0E:4F:7B:8B:52:73:5B:2D:24:19:8A:39 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 018C Signing time: Sat 20 Dec 2025 16:34:36 +0000 Manifest this update: Sat 20 Dec 2025 16:34:35 +0000 Manifest next update: Sat 27 Dec 2025 16:34:35 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: wFA6uHxzLu1mdi89ru0UKhL3/86DrI88OMYB21Bw82U=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Dec 20 16:34:35 2025 GMT Not After : Dec 27 16:34:35 2025 GMT Subject: CN=6946d01c-e82a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c5:cf:3e:b1:ae:b0:6c:e3:ab:ac:39:a6:d5: df:f2:52:31:2b:2c:90:57:70:6d:e3:19:de:70:aa: d4:34:08:ac:51:88:bf:ab:c8:f2:b6:57:e1:da:62: 99:14:7a:92:56:32:41:e3:09:ab:e0:96:1a:f2:6c: df:5f:e3:b3:33:24:c5:dd:b9:61:6d:2c:ff:ec:2b: 8a:86:7c:d0:9b:66:84:21:59:bd:1b:64:26:0e:90: d7:b8:b3:9e:f8:93:e3:c3:c1:6e:d8:58:a2:3f:f5: e3:2a:e2:67:d0:e6:be:e5:7e:de:ac:7e:84:4c:c3: 95:93:b2:a6:13:5d:ca:be:68:75:3e:4a:2b:c4:4e: 85:82:83:75:bc:18:c6:cc:48:08:b7:68:94:29:08: bb:f2:2c:14:5d:2a:99:6e:eb:fd:f0:05:4a:2c:ee: b9:8c:07:21:ff:3d:0a:4d:a0:f6:3d:7f:e8:1a:1c: 92:77:d0:5d:5e:ac:4f:1b:be:4e:d2:7d:f5:f0:a5: 1e:a4:77:cc:27:97:d4:e5:ec:7b:98:b9:53:8a:b0: fb:3c:39:00:1f:ab:1d:ab:21:0e:ef:b1:da:4d:54: 4a:69:f0:cb:26:a6:81:c0:44:c7:b4:6f:51:55:87: c5:71:5d:8f:9b:53:26:f7:b7:19:3c:10:ef:e9:4c: 9f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D0:9B:68:18:E4:58:E3:0E:4F:7B:8B:52:73:5B:2D:24:19:8A:39 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:4a:ab:93:03:9a:de:eb:42:db:96:9d:a8:28:75:95:7b:bf: 9d:99:88:df:0b:83:94:07:ad:b0:e4:43:cb:12:4a:d6:b4:d4: 19:9b:6e:01:76:f9:ad:f7:bd:e0:c9:68:38:ff:74:74:3c:e1: 1a:11:bd:20:97:0a:53:b8:20:e4:59:f4:32:0c:0f:ea:33:4b: 37:8a:ee:37:bd:c0:a0:d4:e3:76:69:4d:c4:9f:4b:f9:50:87: 70:7f:e3:64:4f:a6:6c:63:e1:da:81:c1:da:17:dc:47:61:fb: 82:f4:64:72:05:9f:35:54:b7:88:24:07:7c:74:ea:76:27:46: d7:69:c2:f3:83:18:ff:38:6b:3d:1d:f4:48:80:25:82:46:7d: 0a:f8:14:44:b3:a0:98:fd:b8:39:1b:25:98:bb:82:09:9c:74: 9f:5d:0d:22:a1:d4:08:4d:26:21:ab:84:e1:d8:37:29:2c:3e: b3:bb:c7:aa:0e:7a:30:b9:3c:89:21:41:2e:33:f7:ad:fa:e0: 41:b3:a3:61:bb:09:46:f7:86:37:77:be:e9:7b:97:6f:05:69: d9:e1:d9:7b:f0:c5:89:c0:2e:0c:28:06:e1:5b:eb:c5:d4:74: 02:c8:bd:46:b7:0e:e3:3a:7d:0e:0e:22:67:7a:2f:85:98:9d: e0:35:21:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUxMjIwMTYzNDM1WhcNMjUxMjI3MTYzNDM1WjAYMRYwFAYD VQQDDA02OTQ2ZDAxYy1lODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscXPPrGusGzjq6w5ptXf8lIxKyyQV3Bt4xnecKrUNAisUYi/q8jytlfh2mKZ FHqSVjJB4wmr4JYa8mzfX+OzMyTF3blhbSz/7CuKhnzQm2aEIVm9G2QmDpDXuLOe +JPjw8Fu2FiiP/XjKuJn0Oa+5X7erH6ETMOVk7KmE13Kvmh1PkorxE6FgoN1vBjG zEgIt2iUKQi78iwUXSqZbuv98AVKLO65jAch/z0KTaD2PX/oGhySd9BdXqxPG75O 0n318KUepHfMJ5fU5ex7mLlTirD7PDkAH6sdqyEO77HaTVRKafDLJqaBwETHtG9R VYfFcV2Pm1Mm97cZPBDv6UyfeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLQm2gY 5FjjDk97i1JzWy0kGYo5MB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdSquTA5re60Lblp2oKHWVe7+dmYjfC4OUB62w5EPLEkrWtNQZm24B dvmt973gyWg4/3R0POEaEb0glwpTuCDkWfQyDA/qM0s3iu43vcCg1ON2aU3En0v5 UIdwf+NkT6ZsY+HagcHaF9xHYfuC9GRyBZ81VLeIJAd8dOp2J0bXacLzgxj/OGs9 HfRIgCWCRn0K+BREs6CY/bg5GyWYu4IJnHSfXQ0iodQITSYhq4Th2DcpLD6zu8eq DnowuTyJIUEuM/et+uBBs6NhuwlG94Y3d77pe5dvBWnZ4dl78MWJwC4MKAbhW+vF 1HQCyL1Gtw7jOn0ODiJnei+FmJ3gNSHz -----END CERTIFICATE-----Generated at Sun Dec 21 07:46:06 2025 by rpki-client