This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: P0MykgnoVRVDisdk8uv9IYsuKlOBhsq8qzLqudRz9cI= Subject key identifier: 12:34:E5:1D:84:9A:2E:FD:46:C9:30:32:65:2B:E6:27:F2:1E:4E:A8 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 0519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 0514 Signing time: Mon 22 Dec 2025 22:43:23 +0000 Manifest this update: Mon 22 Dec 2025 22:43:23 +0000 Manifest next update: Mon 29 Dec 2025 22:43:23 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: EslBuO7e1xrRuf4HQ2sxLGgi+rBBu1j3/LD4eaIDt5k=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1305 (0x519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: Dec 22 22:43:23 2025 GMT Not After : Dec 29 22:43:23 2025 GMT Subject: CN=6949c98b-4142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:40:04:10:b5:41:ce:76:ee:ce:70:1f:f0:9c: f2:44:f9:ec:9a:4b:14:c5:fa:e7:58:c8:48:33:26: 6c:cd:0c:70:22:53:c7:a1:5f:63:82:90:33:34:44: a4:15:93:2c:a5:48:60:1d:e8:14:35:e7:54:aa:18: bf:03:a6:15:27:e2:64:52:ec:6d:93:7f:9d:fc:72: 9a:57:38:b5:22:6a:18:1d:80:52:73:cc:43:ca:ef: 60:e9:d5:19:9a:3b:96:b0:70:3f:f6:66:ed:82:63: dd:fd:20:3c:81:6a:33:7b:85:6d:9a:21:64:c6:c5: cf:64:c0:b1:b5:6e:76:cc:9f:13:cc:b8:f6:fb:32: 07:75:8c:a6:f5:f9:c1:be:1f:79:0e:ef:39:67:6b: 51:ff:0b:ed:5f:f6:10:83:a7:a1:c5:7d:4e:10:9e: 63:e4:b4:33:37:b7:ba:77:99:c4:9c:71:18:6d:be: 10:6c:69:59:2d:91:93:d1:37:1f:84:4c:c8:5b:bd: 66:76:b4:0b:a5:48:1f:f9:37:cb:ba:d3:d9:6f:6d: 15:ca:d0:c0:9b:f1:5a:5c:ea:d6:c4:e8:c3:d8:48: 6b:62:3a:9b:3d:73:e9:4f:d4:b5:ea:0e:5f:78:34: 1b:05:08:a2:18:c7:27:9a:53:af:47:f3:3a:d9:f7: b5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:34:E5:1D:84:9A:2E:FD:46:C9:30:32:65:2B:E6:27:F2:1E:4E:A8 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:31:f0:21:88:6c:c5:c4:43:7d:88:38:17:d5:18:e8:28:27: ec:bb:09:1e:c1:5d:e9:ea:5d:b8:62:17:e0:26:ce:cf:7c:94: dc:09:f4:64:6a:ec:bc:29:23:fb:15:ff:5f:16:31:e5:87:87: 26:0d:0c:86:e8:be:60:a2:fd:50:47:de:de:3a:33:c6:63:95: 95:7f:31:fd:e6:a9:d9:fc:d3:91:17:06:e1:86:25:46:00:b6: c6:4b:02:61:b1:bb:ab:6c:a8:5d:cf:58:1f:fd:1e:a2:d3:54: c1:41:48:c0:9b:65:24:66:30:dc:00:5a:c8:b3:a3:7a:d3:5f: 47:15:c4:8b:80:d6:9a:34:fb:8b:94:a5:9c:15:c5:02:bf:8c: 48:e0:08:b1:c8:fa:57:88:b6:86:0f:9c:23:c2:f6:f1:2a:76: 2f:ba:f1:66:4e:b8:60:99:2d:c5:93:82:6e:0a:d6:57:94:ac: 77:e9:35:f1:c4:56:77:e0:fd:7d:f9:a4:07:83:1b:07:8b:a6: e8:3c:e5:b9:f8:b4:1e:29:3a:06:c0:c5:d9:ae:29:38:cf:ad: 07:a4:5b:0b:77:47:d6:45:89:75:2a:ca:47:c5:3e:96:d6:3c: 19:5a:cb:28:67:b5:8e:40:26:5b:80:67:86:50:5e:61:58:0a: eb:35:1e:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUxMjIyMjI0MzIzWhcNMjUxMjI5MjI0MzIzWjAYMRYwFAYD VQQDDA02OTQ5Yzk4Yi00MTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUAEELVBznbuznAf8JzyRPnsmksUxfrnWMhIMyZszQxwIlPHoV9jgpAzNESk FZMspUhgHegUNedUqhi/A6YVJ+JkUuxtk3+d/HKaVzi1ImoYHYBSc8xDyu9g6dUZ mjuWsHA/9mbtgmPd/SA8gWoze4VtmiFkxsXPZMCxtW52zJ8TzLj2+zIHdYym9fnB vh95Du85Z2tR/wvtX/YQg6ehxX1OEJ5j5LQzN7e6d5nEnHEYbb4QbGlZLZGT0Tcf hEzIW71mdrQLpUgf+TfLutPZb20VytDAm/FaXOrWxOjD2EhrYjqbPXPpT9S16g5f eDQbBQiiGMcnmlOvR/M62fe13QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBI05R2E mi79RskwMmUr5ifyHk6oMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrMfAhiGzFxEN9iDgX1RjoKCfsuwkewV3p6l24YhfgJs7PfJTcCfRk auy8KSP7Ff9fFjHlh4cmDQyG6L5gov1QR97eOjPGY5WVfzH95qnZ/NORFwbhhiVG ALbGSwJhsburbKhdz1gf/R6i01TBQUjAm2UkZjDcAFrIs6N6019HFcSLgNaaNPuL lKWcFcUCv4xI4AixyPpXiLaGD5wjwvbxKnYvuvFmTrhgmS3Fk4JuCtZXlKx36TXx xFZ34P19+aQHgxsHi6boPOW5+LQeKToGwMXZrik4z60HpFsLd0fWRYl1KspHxT6W 1jwZWssoZ7WOQCZbgGeGUF5hWArrNR7G -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:23 2025 by rpki-client