This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: 7u7NEixCVYgsJYHTyldYNLaabY+BOAujnpt+a4ex9P0= Subject key identifier: 6F:D8:76:68:AA:9C:5A:10:FE:11:DA:2B:A5:AD:F5:67:EC:B9:58:84 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 025F Signing time: Mon 15 Dec 2025 01:02:08 +0000 Manifest this update: Mon 15 Dec 2025 01:02:07 +0000 Manifest next update: Mon 22 Dec 2025 01:02:07 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: fXsuOP9lX5VyPCkPZtR+QETlHAYOhbCXUsEiP8oBq3Y=) 2: C1ECF984D07411F0B0B35C27C4F9AE02.roa (hash: Zx7rYsejQ1YlFVO9cuwtdX2i5qCKmmBnnVOVbWpVt7A=) 3: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: QKPxnsl5W/cKLCZuMQFferj3l2oedmhBT9kPnPZhJg4=) 4: A4B9732E372211F088B77741C4F9AE02.roa (hash: 0dSvCmKLef9Oa4TUk6FVx6l4EnK1M32ajCwnmpc9ysE=) 5: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: TDnPqTOeUPSwecuAJae6VdxJudb0os3v67TLQq2OSMs=) 6: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: o8g8BiOgmVHVzswzRKLrO3Y0f0RfD3gZqIklITdkjzE=) 7: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: n/PvsW9zebDkTZCp50BwuzM/P+LxZ4UecYhiS0C/Z2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 01:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Dec 15 01:02:07 2025 GMT Not After : Dec 22 01:02:07 2025 GMT Subject: CN=693f5e10-1d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:45:8d:dd:7a:ca:5f:d9:ff:61:ce:ba:78:50: ef:2f:c5:12:c7:53:20:13:9e:c6:7e:36:61:81:62: 33:f4:fa:03:e9:ae:21:10:fa:13:0c:40:c0:88:5c: 4c:b6:09:ce:35:f6:29:a1:72:ec:72:aa:66:a5:60: 61:14:24:70:11:10:f5:45:e5:c8:66:42:3d:5a:8b: fb:ae:29:43:5d:46:6c:7b:e8:05:4e:f8:7f:aa:24: a0:82:ee:fb:27:04:55:45:54:56:9a:c0:fe:53:7b: 72:67:9e:53:36:ad:8c:42:2d:62:23:10:eb:65:2d: e1:3d:0e:9c:f7:3f:94:88:fa:35:55:7b:a8:e2:7f: 0d:55:6c:ac:43:8b:73:4b:8e:c9:ff:2e:0a:94:94: 59:d1:76:97:ae:73:04:ce:a2:49:d1:b2:65:3c:70: 5d:64:2f:77:79:a5:b2:44:0c:60:fb:4a:17:ef:ea: a0:ff:62:a6:60:3c:ca:01:59:13:c0:5a:73:73:56: 24:7c:1e:9c:c0:40:df:ab:46:62:0b:ef:4b:c1:f8: 2b:9e:07:db:09:f2:db:9a:7b:f7:35:49:8b:c6:71: d5:82:9f:0c:ae:30:46:b6:c5:f4:3a:86:cb:80:b1: a6:d9:a0:01:d7:cf:77:bc:d1:a5:a3:e1:2f:44:34: 04:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D8:76:68:AA:9C:5A:10:FE:11:DA:2B:A5:AD:F5:67:EC:B9:58:84 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:c3:3d:23:01:1a:40:0b:dd:6f:4b:ad:7b:ac:2b:d0:b9:13: bf:d3:60:58:72:c3:5e:01:06:97:5a:0d:89:cc:16:d1:54:29: 2d:73:e4:8d:8b:4e:9d:aa:09:21:27:b1:a5:91:92:74:4b:de: 5e:fc:ce:ae:c9:ad:88:e2:3a:e6:32:f0:cf:c1:9e:51:f6:ba: 7a:f5:e3:dc:15:77:a9:45:29:6c:12:0a:7a:16:a3:14:a3:2e: 02:ab:38:03:57:6b:14:f9:81:31:de:fe:91:f2:d9:45:28:1d: 17:ce:83:20:eb:88:3d:49:94:51:9e:64:e1:46:b1:6d:0d:16: 4c:fd:e0:ee:59:a6:9e:78:a6:67:4b:44:db:81:50:f8:8b:87: 6b:e3:c9:23:92:94:da:df:d3:bb:fa:aa:df:4d:95:7b:0c:04: 7e:0b:39:c0:ac:f2:57:26:7a:ef:20:a6:41:51:65:9e:18:71: 4a:9f:27:51:13:c9:ed:84:fc:41:fa:8e:f6:6d:fc:04:52:cd: 2d:44:7f:80:56:15:af:33:2a:15:75:bc:8e:8c:1e:05:f1:f4: 13:44:70:c9:af:d1:9e:a5:b6:92:9f:8c:b8:45:6a:75:ce:82: 73:04:af:e5:9b:24:4b:fc:b2:0f:ed:b3:3c:fa:43:92:34:12: e0:44:f8:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUxMjE1MDEwMjA3WhcNMjUxMjIyMDEwMjA3WjAYMRYwFAYD VQQDDA02OTNmNWUxMC0xZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7EWN3XrKX9n/Yc66eFDvL8USx1MgE57GfjZhgWIz9PoD6a4hEPoTDEDAiFxM tgnONfYpoXLscqpmpWBhFCRwERD1ReXIZkI9Wov7rilDXUZse+gFTvh/qiSggu77 JwRVRVRWmsD+U3tyZ55TNq2MQi1iIxDrZS3hPQ6c9z+UiPo1VXuo4n8NVWysQ4tz S47J/y4KlJRZ0XaXrnMEzqJJ0bJlPHBdZC93eaWyRAxg+0oX7+qg/2KmYDzKAVkT wFpzc1YkfB6cwEDfq0ZiC+9LwfgrngfbCfLbmnv3NUmLxnHVgp8MrjBGtsX0OobL gLGm2aAB1893vNGlo+EvRDQEVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/Ydmiq nFoQ/hHaK6Wt9WfsuViEMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjwz0jARpAC91vS617rCvQuRO/02BYcsNeAQaXWg2JzBbRVCktc+SN i06dqgkhJ7GlkZJ0S95e/M6uya2I4jrmMvDPwZ5R9rp69ePcFXepRSlsEgp6FqMU oy4CqzgDV2sU+YEx3v6R8tlFKB0XzoMg64g9SZRRnmThRrFtDRZM/eDuWaaeeKZn S0TbgVD4i4dr48kjkpTa39O7+qrfTZV7DAR+CznArPJXJnrvIKZBUWWeGHFKnydR E8nthPxB+o72bfwEUs0tRH+AVhWvMyoVdbyOjB4F8fQTRHDJr9GepbaSn4y4RWp1 zoJzBK/lmyRL/LIP7bM8+kOSNBLgRPiM -----END CERTIFICATE-----Generated at Tue Dec 16 14:42:02 2025 by rpki-client