This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: olUdbs6kKBIS/FwSEWCtO2Ubo15c7oNfh7cP9EX1gLU= Subject key identifier: BA:8F:2E:BF:62:44:AC:BA:BB:18:F0:E5:34:AC:BB:9D:49:41:C2:57 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 0598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 0591 Signing time: Tue 23 Dec 2025 09:20:00 +0000 Manifest this update: Tue 23 Dec 2025 09:20:00 +0000 Manifest next update: Tue 30 Dec 2025 09:20:00 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: s8UXEucFz+LZdIL1QuDkhIxtwqwBTz6q5B4BORISTi0=) 2: EC7B7E82DFD811F08F00FF64536F56BC.roa (hash: QD91TSR3ZuXrQJclCdD9lmSV7b6jH/GHsZe7m6lielA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 09:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1432 (0x598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Dec 23 09:20:00 2025 GMT Not After : Dec 30 09:20:00 2025 GMT Subject: CN=694a5ec0-2ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:13:ae:26:9c:a1:bc:2d:e7:17:98:9a:b1: f6:75:a7:6d:77:71:d6:44:69:40:2f:fa:29:d5:8e: d8:8e:c8:26:fa:cb:48:f8:7e:d6:de:00:3c:c7:7d: 05:77:14:e4:98:ea:d5:95:55:fa:66:d4:42:5d:0c: 71:e0:be:5b:6f:32:5f:4f:f1:fb:b6:7d:6a:f5:46: 7b:fb:48:f2:95:38:ce:4c:ac:73:64:1c:04:7f:d2: fb:6b:dc:63:e2:5c:1d:30:23:7e:75:58:84:7e:8f: 4a:47:8c:3e:ea:56:ec:a9:33:44:6f:87:70:5d:09: d0:f3:59:e4:dc:e2:5c:d6:49:84:37:bd:21:35:a8: 34:c1:82:f2:8c:00:c3:dc:16:41:35:8a:de:ea:c1: 8b:6c:bf:1a:af:71:56:9c:f9:47:67:03:43:b9:e9: e7:d3:eb:32:6b:06:e2:5c:5d:72:01:c7:c7:18:62: 20:c7:ca:ff:20:5a:3b:f0:da:f2:07:92:ca:c0:1b: 70:06:a4:9a:1c:90:f1:87:b2:dd:90:eb:60:da:3e: 1a:ec:f3:52:aa:f4:69:ee:0b:2b:83:7b:aa:2a:3c: 35:58:bd:88:c3:a8:89:a1:2b:93:09:31:e6:4c:44: 93:ab:42:3a:00:aa:c2:16:ea:a1:29:db:2c:ae:2e: 19:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:8F:2E:BF:62:44:AC:BA:BB:18:F0:E5:34:AC:BB:9D:49:41:C2:57 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:94:23:b3:24:b2:5f:2e:0d:d0:50:25:c9:95:59:c7:10:ca: e0:3f:3b:74:77:4a:46:3d:f3:2f:1a:4a:32:c4:74:67:93:7a: f7:04:a9:d6:25:d2:55:1e:12:3e:3c:cf:06:ad:2a:c0:5b:85: 90:ab:35:41:50:9a:af:0a:2e:01:c8:3f:89:aa:aa:ec:f9:0b: c3:4c:c6:2a:a8:cf:ff:4d:ca:8d:a3:6a:d1:80:04:e7:bd:00: 21:49:d8:61:cc:7e:b5:b4:d4:0f:6c:8a:b5:40:0f:bf:9e:26: cb:a9:30:f9:30:cb:64:9c:16:97:74:30:1b:df:73:03:0c:41: 35:d6:a7:14:16:a2:6d:68:ea:ed:5a:0e:ee:21:0a:bd:23:1e: 36:9c:f7:44:42:08:66:c3:52:9a:e4:cd:83:e3:74:6e:99:d7: d3:b1:5e:d7:5a:6a:b8:ec:ad:a7:9c:de:fc:68:e5:78:83:91: 64:bd:06:a1:d0:2a:22:cd:29:94:0d:c6:eb:39:a3:d0:49:4b: 5b:25:d4:28:0c:96:fd:02:22:25:c0:70:58:0f:6c:08:72:f3: c8:84:e7:be:20:9f:c6:0e:35:7e:19:9f:dd:5d:1c:bb:0a:0e: 68:49:75:4f:e1:ec:0d:f7:59:4e:58:2c:01:c6:24:75:c2:18: 2c:1a:20:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUxMjIzMDkyMDAwWhcNMjUxMjMwMDkyMDAwWjAYMRYwFAYD VQQDDA02OTRhNWVjMC0yZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumATriacobwt5xeYmrH2dadtd3HWRGlAL/op1Y7Yjsgm+stI+H7W3gA8x30F dxTkmOrVlVX6ZtRCXQxx4L5bbzJfT/H7tn1q9UZ7+0jylTjOTKxzZBwEf9L7a9xj 4lwdMCN+dViEfo9KR4w+6lbsqTNEb4dwXQnQ81nk3OJc1kmEN70hNag0wYLyjADD 3BZBNYre6sGLbL8ar3FWnPlHZwNDuenn0+syawbiXF1yAcfHGGIgx8r/IFo78Nry B5LKwBtwBqSaHJDxh7LdkOtg2j4a7PNSqvRp7gsrg3uqKjw1WL2Iw6iJoSuTCTHm TESTq0I6AKrCFuqhKdssri4ZBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqPLr9i RKy6uxjw5TSsu51JQcJXMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCilCOzJLJfLg3QUCXJlVnHEMrgPzt0d0pGPfMvGkoyxHRnk3r3BKnW JdJVHhI+PM8GrSrAW4WQqzVBUJqvCi4ByD+Jqqrs+QvDTMYqqM//TcqNo2rRgATn vQAhSdhhzH61tNQPbIq1QA+/nibLqTD5MMtknBaXdDAb33MDDEE11qcUFqJtaOrt Wg7uIQq9Ix42nPdEQghmw1Ka5M2D43RumdfTsV7XWmq47K2nnN78aOV4g5FkvQah 0CoizSmUDcbrOaPQSUtbJdQoDJb9AiIlwHBYD2wIcvPIhOe+IJ/GDjV+GZ/dXRy7 Cg5oSXVP4ewN91lOWCwBxiR1whgsGiB1 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:48 2025 by rpki-client