This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft File: AZcEvn5KzguhIRSzKOsCBxHvTq8.mft (raw, json) Hash identifier: cEsLIlZNXqqrfDVvqy58VL4n3X5tl3acaPWns8y+Eq8= Subject key identifier: 97:20:14:C1:D9:20:E6:31:44:1F:00:D5:A0:16:DF:43:01:11:5F:20 Authority key identifier: 01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF Certificate issuer: /CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft Manifest number: 0256 Signing time: Tue 23 Dec 2025 00:43:43 +0000 Manifest this update: Tue 23 Dec 2025 00:43:42 +0000 Manifest next update: Tue 30 Dec 2025 00:43:42 +0000 Files and hashes: 1: AZcEvn5KzguhIRSzKOsCBxHvTq8.crl (hash: VXjx9NUNJhOdAYxI6C1DjHH5GA56N0ADQBNUQiafaLA=) 2: 85AEBA76504C11ED829F7D24C4F9AE02.roa (hash: eVob+o4PqksNTa/Q5H7V6/lXUkpT0waGoTDuWTkrO5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91728E2, serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Validity Not Before: Dec 23 00:43:42 2025 GMT Not After : Dec 30 00:43:42 2025 GMT Subject: CN=6949e5bf-13cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:08:9c:18:c0:60:20:25:a7:6a:c6:54:f0:e5: 19:42:8c:3b:90:73:c0:73:a5:18:a0:0b:b8:46:a9: 20:eb:f6:ec:96:3b:f4:36:70:8c:7a:a2:75:91:85: bd:89:05:c6:e4:cf:2f:35:1a:3f:8a:c4:65:2a:7d: 2a:be:6d:6d:5c:f9:ad:78:ee:1b:8a:eb:11:e7:60: 31:3d:c1:77:e4:4e:1c:fc:78:d9:7f:f7:8a:a8:ec: cc:2b:86:72:c7:c8:bf:7d:2e:46:c8:60:fb:3e:29: 1c:a3:d9:3b:6d:09:7f:78:a2:3c:52:a4:96:72:62: 4d:5f:6b:57:a4:27:60:d3:66:ae:79:55:dc:1e:c3: 97:36:60:eb:8f:1f:b2:61:58:21:01:fa:d0:52:1d: 38:04:3c:2a:4d:84:2a:4b:26:f8:04:94:28:3c:ab: 51:20:9e:35:d7:e2:68:84:03:ae:a1:1e:c1:3b:41: f7:e2:53:36:e4:40:91:ac:1d:86:68:91:ca:67:e6: 2a:02:c7:91:ac:69:df:61:3c:e1:6e:0d:86:dd:26: 24:13:36:52:ae:82:34:62:ae:c7:5c:7b:8f:b2:c9: e0:a1:ff:d8:e7:f1:63:86:4d:7f:af:15:a7:8f:01: 50:21:ef:f3:1d:fa:05:bb:8b:a3:a6:52:2f:06:99: 6a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:20:14:C1:D9:20:E6:31:44:1F:00:D5:A0:16:DF:43:01:11:5F:20 X509v3 Authority Key Identifier: keyid:01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:60:c3:50:2e:66:78:2a:64:59:02:1e:2e:33:11:a9:87:0a: a6:59:ed:74:3b:87:d6:77:a7:30:14:6f:c4:8b:75:27:73:d1: 4d:0b:c0:26:e9:e3:e6:6f:84:ad:46:74:8d:a5:eb:a5:28:58: 0e:2c:de:b2:39:1a:bc:26:9a:a4:d0:80:7a:c7:44:85:45:5c: b4:71:ec:a5:97:a8:94:ca:f4:a9:d6:9f:bb:8d:3e:96:d4:82: 41:20:02:be:81:ca:30:6c:dc:21:42:69:ac:e0:12:a4:0a:85: 92:0e:0f:46:c6:00:f7:c7:3f:f3:48:be:d2:0b:1b:46:82:09: ce:91:f0:8a:fa:31:51:71:f8:f4:2b:47:d0:89:0b:24:73:c5: 84:11:95:e9:a3:f8:2b:06:16:bf:d6:6a:51:e5:01:f5:f9:34: 43:e0:79:40:2e:30:79:b7:81:b4:a6:e6:54:3d:33:de:71:63: 67:88:cf:95:9e:1a:76:21:a1:e0:71:e3:e4:75:92:3b:e3:be: eb:ee:2a:85:e6:a5:8e:5d:8f:e8:f2:a4:7b:ce:57:98:27:5c: 24:11:b2:a3:69:0e:26:13:0a:9d:42:0a:37:a5:3d:27:7c:4a: 08:f8:e5:f9:d8:04:dc:64:c5:24:b7:62:48:92:a7:9c:34:7c: b3:bd:c0:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4RTIxMTAvBgNVBAUTKDAxOTcwNEJFN0U0QUNFMEJBMTIxMTRCMzI4RUIwMjA3 MTFFRjRFQUYwHhcNMjUxMjIzMDA0MzQyWhcNMjUxMjMwMDA0MzQyWjAYMRYwFAYD VQQDDA02OTQ5ZTViZi0xM2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugicGMBgICWnasZU8OUZQow7kHPAc6UYoAu4Rqkg6/bsljv0NnCMeqJ1kYW9 iQXG5M8vNRo/isRlKn0qvm1tXPmteO4biusR52AxPcF35E4c/HjZf/eKqOzMK4Zy x8i/fS5GyGD7Pikco9k7bQl/eKI8UqSWcmJNX2tXpCdg02aueVXcHsOXNmDrjx+y YVghAfrQUh04BDwqTYQqSyb4BJQoPKtRIJ411+JohAOuoR7BO0H34lM25ECRrB2G aJHKZ+YqAseRrGnfYTzhbg2G3SYkEzZSroI0Yq7HXHuPssngof/Y5/Fjhk1/rxWn jwFQIe/zHfoFu4ujplIvBplqCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcgFMHZ IOYxRB8A1aAW30MBEV8gMB8GA1UdIwQYMBaAFAGXBL5+Ss4LoSEUsyjrAgcR706v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjhFMi85NzAxM0E0RTUw NDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pndWhJUlN6S09zQ0J4SHZU cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaY0V2bjVLemd1aElSU3pLT3NDQnhIdlRxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjhFMi85NzAxM0E0RTUwNDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pn dWhJUlN6S09zQ0J4SHZUcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEYMNQLmZ4KmRZAh4uMxGphwqmWe10O4fWd6cwFG/Ei3Unc9FNC8Am 6ePmb4StRnSNpeulKFgOLN6yORq8Jpqk0IB6x0SFRVy0ceyll6iUyvSp1p+7jT6W 1IJBIAK+gcowbNwhQmms4BKkCoWSDg9GxgD3xz/zSL7SCxtGggnOkfCK+jFRcfj0 K0fQiQskc8WEEZXpo/grBha/1mpR5QH1+TRD4HlALjB5t4G0puZUPTPecWNniM+V nhp2IaHgcePkdZI7477r7iqF5qWOXY/o8qR7zleYJ1wkEbKjaQ4mEwqdQgo3pT0n fEoI+OX52ATcZMUkt2JIkqecNHyzvcC0 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:17 2025 by rpki-client