This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft File: 67oUOyhmNxjNjH2j9jEAmpgE7l8.mft (raw, json) Hash identifier: CLG0PPUAfNRRXVGzdbW4xBgt4c9shIWk7D5SPZOrBMA= Subject key identifier: BC:F3:71:ED:E8:E5:C4:1C:9B:90:2D:BE:CC:BB:5C:B9:38:EB:4F:7C Authority key identifier: EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F Certificate issuer: /CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft Manifest number: 0201 Signing time: Tue 23 Dec 2025 01:29:36 +0000 Manifest this update: Tue 23 Dec 2025 01:29:36 +0000 Manifest next update: Tue 30 Dec 2025 01:29:36 +0000 Files and hashes: 1: 67oUOyhmNxjNjH2j9jEAmpgE7l8.crl (hash: zkCr+oCmadrMt6AyPg3UvDtXncovG52iuvL65Ntv/Zg=) 2: D277F83CD3A411ED8C51160FC4F9AE02.roa (hash: svqT+ztwVAcsLzuBMu/xSdAzmsSO3QMnOMcc+rCxEvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919676F, serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Validity Not Before: Dec 23 01:29:36 2025 GMT Not After : Dec 30 01:29:36 2025 GMT Subject: CN=6949f080-31e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:c8:53:76:60:93:53:c4:da:49:99:52:ea: 54:41:72:52:b8:a1:b9:c4:e6:11:83:13:04:36:68: c7:2f:e3:d6:54:61:74:c7:e7:93:34:2e:b1:1d:75: 3f:8a:9d:52:e5:33:d5:44:16:3f:44:ed:fb:60:3c: d5:38:eb:d2:03:2b:78:11:ad:9f:5e:dd:16:74:53: 93:4a:e8:5a:a4:69:da:23:43:e1:5a:79:60:64:26: 47:ec:c2:70:79:16:e1:cb:29:c7:13:a8:49:ee:fc: 9b:c4:b4:ba:5d:aa:5f:96:79:c3:f3:98:b5:1b:d6: b5:05:66:9c:7d:cf:49:f6:72:f6:eb:6e:bf:22:8d: 6e:b7:cc:68:52:9e:74:a7:5c:09:ce:5c:24:12:79: 8e:90:40:7a:d8:c0:07:ee:ff:81:70:f1:29:71:e0: a2:e7:db:2a:db:28:65:b9:af:62:4f:08:2d:ed:19: cf:11:66:ce:76:5b:37:7a:48:7c:6e:13:0e:31:c4: 4d:e3:de:9b:69:c4:45:fd:73:e8:d6:7f:79:ad:68: 36:90:42:ba:44:8a:d4:98:ba:75:91:ce:68:e9:e4: 47:08:62:e6:a3:b1:24:0d:ab:a8:2f:a0:09:0c:cf: 5c:96:96:16:da:23:a2:8c:09:b1:f6:8e:42:f5:64: 25:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F3:71:ED:E8:E5:C4:1C:9B:90:2D:BE:CC:BB:5C:B9:38:EB:4F:7C X509v3 Authority Key Identifier: keyid:EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:c1:21:e2:d8:96:ba:4d:3d:b6:60:09:0a:79:a2:62:55:7c: e3:67:99:87:6d:da:22:49:4b:f4:7c:e1:40:01:c0:4b:b7:22: bb:fd:17:28:99:42:90:9b:56:78:8a:41:9d:7e:4b:38:ff:7c: f5:57:83:7b:2c:c9:e1:01:ea:7e:43:8f:a5:77:35:9d:78:3f: 28:a9:bf:34:f0:3e:a8:a5:c3:8d:37:b5:57:7c:2f:19:25:9d: 76:48:6f:a1:87:e4:54:3d:d7:9f:eb:25:bb:e6:e1:ba:8c:b8: 20:59:ef:e5:29:f3:b6:8d:eb:3f:6e:74:0e:56:1c:15:ac:cd: 71:d1:3d:a7:ad:f8:29:49:c5:64:06:c8:c3:54:e8:da:49:be: 8c:9c:29:9e:45:43:a9:c3:c5:2d:b6:c8:a0:d6:4b:62:85:93: 8c:d5:d1:00:1c:5f:a2:d5:a0:b3:aa:61:db:ac:74:34:4c:32: d3:ed:b2:9d:d7:d4:aa:9f:75:a4:a9:80:65:68:96:e6:cc:e9: b2:26:7d:46:89:92:20:f5:b2:4a:d6:61:29:91:c9:ac:63:4c: 33:86:6e:f5:cc:e8:08:2b:6b:82:67:8b:32:06:18:f8:e5:bb: 44:8a:f7:c2:97:af:0c:80:17:96:17:c6:d0:46:d8:04:65:c1: 35:83:17:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTY3NkYxMTAvBgNVBAUTKEVCQkExNDNCMjg2NjM3MThDRDhDN0RBM0Y2MzEwMDlB OTgwNEVFNUYwHhcNMjUxMjIzMDEyOTM2WhcNMjUxMjMwMDEyOTM2WjAYMRYwFAYD VQQDDA02OTQ5ZjA4MC0zMWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymPIU3Zgk1PE2kmZUupUQXJSuKG5xOYRgxMENmjHL+PWVGF0x+eTNC6xHXU/ ip1S5TPVRBY/RO37YDzVOOvSAyt4Ea2fXt0WdFOTSuhapGnaI0PhWnlgZCZH7MJw eRbhyynHE6hJ7vybxLS6XapflnnD85i1G9a1BWacfc9J9nL2626/Io1ut8xoUp50 p1wJzlwkEnmOkEB62MAH7v+BcPEpceCi59sq2yhlua9iTwgt7RnPEWbOdls3ekh8 bhMOMcRN496bacRF/XPo1n95rWg2kEK6RIrUmLp1kc5o6eRHCGLmo7EkDauoL6AJ DM9clpYW2iOijAmx9o5C9WQlEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzzce3o 5cQcm5Atvsy7XLk46098MB8GA1UdIwQYMBaAFOu6FDsoZjcYzYx9o/YxAJqYBO5f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njc2Ri9GRTQ5RkFDMkQz QTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54ak5qSDJqOWpFQW1wZ0U3 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3b1VPeWhtTnhqTmpIMmo5akVBbXBnRTdsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njc2Ri9GRTQ5RkFDMkQzQTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54 ak5qSDJqOWpFQW1wZ0U3bDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSwSHi2Ja6TT22YAkKeaJiVXzjZ5mHbdoiSUv0fOFAAcBLtyK7/Rco mUKQm1Z4ikGdfks4/3z1V4N7LMnhAep+Q4+ldzWdeD8oqb808D6opcONN7VXfC8Z JZ12SG+hh+RUPdef6yW75uG6jLggWe/lKfO2jes/bnQOVhwVrM1x0T2nrfgpScVk BsjDVOjaSb6MnCmeRUOpw8Uttsig1ktihZOM1dEAHF+i1aCzqmHbrHQ0TDLT7bKd 19Sqn3WkqYBlaJbmzOmyJn1GiZIg9bJK1mEpkcmsY0wzhm71zOgIK2uCZ4syBhj4 5btEivfCl68MgBeWF8bQRtgEZcE1gxcK -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:07 2025 by rpki-client