This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft File: k32ZUe4fk_ysJDM7CD-dfy458Pk.mft (raw, json) Hash identifier: RsQLqNzohLtGp0+PGWJ6oXwOBEm7qZWCG7YM4J0dFd4= Subject key identifier: 62:63:3B:FC:1E:5D:33:A3:71:3C:E7:AD:49:D2:F1:C0:8E:77:87:C1 Authority key identifier: 93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 Certificate issuer: /CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Certificate serial: 0904 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft Manifest number: 08FD Signing time: Thu 18 Dec 2025 19:52:29 +0000 Manifest this update: Thu 18 Dec 2025 19:52:28 +0000 Manifest next update: Thu 25 Dec 2025 19:52:28 +0000 Files and hashes: 1: k32ZUe4fk_ysJDM7CD-dfy458Pk.crl (hash: JT9Fk+qgOssBgGxbb5Rk7HWmTB8Xi/EeuS3xVtrzr+I=) 2: 6A3C327ABD1711EA8A3C8E20C4F9AE02.roa (hash: chUNg5uPEOUI/4y/JkNyLjCI88SKibEBtbB6b3Giy1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2308 (0x904) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8C4, serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Validity Not Before: Dec 18 19:52:28 2025 GMT Not After : Dec 25 19:52:28 2025 GMT Subject: CN=69445b7d-d663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:ff:dd:2a:19:ef:68:63:9d:41:2a:65:5d: d4:a7:c3:98:1d:38:66:78:d8:c8:33:ac:25:86:c8: 66:19:69:b7:57:aa:1e:c3:23:b6:26:49:f0:33:2c: 2c:5d:e7:18:9f:b5:4f:d0:de:f5:7e:a7:d5:1f:63: 6e:7d:ed:a5:77:1b:35:21:a1:0e:0e:5e:06:c1:c9: 61:92:98:94:83:05:8a:1c:51:3e:12:0a:3a:2e:83: 98:ef:b9:01:4c:55:a9:64:d7:84:ae:60:a4:e5:00: 6b:16:c3:e1:7f:f1:40:40:ac:ab:83:f5:15:ff:84: a4:17:b1:6f:26:e3:b6:56:bf:5e:d7:03:cd:7d:f0: 8b:cc:2a:f3:66:2b:3d:e2:ce:39:ea:57:06:c8:e8: 26:bc:41:e7:a1:a2:e1:6b:ea:5a:3b:3e:90:dc:34: 27:21:2c:ff:63:41:12:d8:7c:fe:72:f7:ab:c1:81: 53:a8:0b:66:48:74:a7:89:1d:71:78:e3:96:b3:24: ba:88:e3:eb:50:13:b1:4c:fa:1a:cf:c6:65:0d:eb: 2d:c8:8c:77:38:42:4b:3e:db:de:2e:9d:9d:1e:a7: 0f:68:49:f4:40:5a:ea:78:e3:1b:9c:b9:9c:d1:c1: d2:b2:0a:da:32:18:0b:74:b2:36:f9:a7:3d:c2:6f: ad:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:63:3B:FC:1E:5D:33:A3:71:3C:E7:AD:49:D2:F1:C0:8E:77:87:C1 X509v3 Authority Key Identifier: keyid:93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:09:07:ed:c6:3b:73:a2:22:8a:d1:4d:f7:f4:9b:15:fb:6b: 9f:d8:25:89:c5:e1:57:9a:3d:df:ba:e5:13:6a:d3:1d:67:c1: b0:f3:e3:db:d3:20:70:cd:d9:63:a9:31:20:2c:99:63:85:fa: 60:13:e9:ab:34:3c:7b:0d:e6:94:2b:c5:c3:16:b3:c5:53:b7: 49:d4:0f:20:16:37:5c:99:98:20:c6:43:05:90:e9:c1:77:bd: 82:bc:f8:07:53:58:fe:28:c9:73:d1:d9:3a:0a:7b:4d:be:4f: e4:8c:b2:1b:43:1d:88:80:3c:be:f0:1e:2f:27:7d:ea:09:11: 0a:71:77:9d:5f:40:dd:74:e4:07:12:e1:6d:68:8b:e3:65:f7: 19:75:df:ae:cf:b4:73:86:8e:5b:7c:b6:48:99:69:13:5f:a9: e4:c2:b3:75:ee:a9:03:29:ba:8d:1d:e9:bd:36:88:e0:e7:38: 70:66:c5:61:9b:8d:c5:3e:51:e1:87:f9:a1:d9:4d:d2:81:39: b0:7d:de:39:7b:1d:28:2b:dd:6d:78:46:80:f5:d6:ed:77:29: 34:46:32:54:3a:2e:bb:11:6b:97:5d:cd:11:06:cf:a9:97:ba: 8a:c1:7b:d9:ae:55:72:5f:f6:02:0c:66:44:15:67:55:9b:0e: d5:4d:f6:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4QzQxMTAvBgNVBAUTKDkzN0Q5OTUxRUUxRjkzRkNBQzI0MzMzQjA4M0Y5RDdG MkUzOUYwRjkwHhcNMjUxMjE4MTk1MjI4WhcNMjUxMjI1MTk1MjI4WjAYMRYwFAYD VQQDDA02OTQ0NWI3ZC1kNjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWv/3SoZ72hjnUEqZV3Up8OYHThmeNjIM6wlhshmGWm3V6oewyO2JknwMyws XecYn7VP0N71fqfVH2Nufe2ldxs1IaEODl4GwclhkpiUgwWKHFE+Ego6LoOY77kB TFWpZNeErmCk5QBrFsPhf/FAQKyrg/UV/4SkF7FvJuO2Vr9e1wPNffCLzCrzZis9 4s456lcGyOgmvEHnoaLha+paOz6Q3DQnISz/Y0ES2Hz+cverwYFTqAtmSHSniR1x eOOWsyS6iOPrUBOxTPoaz8ZlDestyIx3OEJLPtveLp2dHqcPaEn0QFrqeOMbnLmc 0cHSsgraMhgLdLI2+ac9wm+tgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJjO/we XTOjcTznrUnS8cCOd4fBMB8GA1UdIwQYMBaAFJN9mVHuH5P8rCQzOwg/nX8uOfD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhDNC9DMjQ0QzgzQUJE MTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0ZmtfeXNKRE03Q0QtZGZ5NDU4 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szMlpVZTRma195c0pETTdDRC1kZnk0NThQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhDNC9DMjQ0QzgzQUJEMTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0Zmtf eXNKRE03Q0QtZGZ5NDU4UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjCQftxjtzoiKK0U339JsV+2uf2CWJxeFXmj3fuuUTatMdZ8Gw8+Pb 0yBwzdljqTEgLJljhfpgE+mrNDx7DeaUK8XDFrPFU7dJ1A8gFjdcmZggxkMFkOnB d72CvPgHU1j+KMlz0dk6CntNvk/kjLIbQx2IgDy+8B4vJ33qCREKcXedX0DddOQH EuFtaIvjZfcZdd+uz7Rzho5bfLZImWkTX6nkwrN17qkDKbqNHem9Nojg5zhwZsVh m43FPlHhh/mh2U3SgTmwfd45ex0oK91teEaA9dbtdyk0RjJUOi67EWuXXc0RBs+p l7qKwXvZrlVyX/YCDGZEFWdVmw7VTfbV -----END CERTIFICATE-----Generated at Fri Dec 19 00:14:24 2025 by rpki-client