This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: B/Y6LhRVv3D0P/R9AVGpTKKe2vkofV+uBWvH5A5VN/o= Subject key identifier: 95:61:9F:4A:62:CC:12:CA:C3:26:C4:E9:83:61:76:5F:92:2D:D3:C4 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A44 Signing time: Sat 06 Dec 2025 18:58:45 +0000 Manifest this update: Sat 06 Dec 2025 18:58:45 +0000 Manifest next update: Sat 13 Dec 2025 18:58:45 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: fDZcflFfJ1D/utwW6YiB69v+d8F8LFEfqbKlA1M5gaM=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2654 (0xa5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Dec 6 18:58:45 2025 GMT Not After : Dec 13 18:58:45 2025 GMT Subject: CN=69347ce5-6322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:3f:c2:07:c2:9c:11:86:5b:af:d0:12:68: 77:2f:fe:c0:3b:b6:60:ac:26:46:48:e8:79:2b:f7: df:90:f0:be:88:e5:00:c1:76:42:dd:bc:f2:23:33: 7b:9f:b1:ce:bd:e4:94:89:9b:aa:09:b6:7a:82:3f: 84:d0:c5:da:63:f2:23:6c:15:40:02:51:6c:f6:02: f0:9d:2b:e4:5c:0e:db:45:8c:3d:98:3a:1e:89:11: e4:e8:d4:b1:9d:bc:49:7c:49:16:33:7c:0c:26:21: 81:c8:a6:be:d9:f1:5a:49:78:2e:93:80:23:89:fb: 51:f4:00:c6:7b:16:b8:e4:f0:7e:d2:a8:9f:e3:a0: 1f:78:c6:c7:58:ad:34:cb:24:63:26:12:18:1e:05: 4b:a3:7d:7b:a0:08:c3:ad:7c:5e:ca:67:f4:0c:35: 8d:9f:c5:c2:4f:60:11:50:0c:be:75:12:d1:bc:24: 1b:93:c6:8e:a1:0a:ea:e8:65:52:05:9a:0e:e7:7c: 9d:d5:3a:ee:a6:1a:89:71:36:fb:60:ed:34:14:45: 9a:8e:63:8f:1f:59:14:0a:b1:4f:8b:9c:69:32:57: 06:b7:e6:da:27:95:00:e9:00:1e:9b:29:6b:32:c8: 81:d0:dd:18:81:2d:8e:41:03:fb:a2:45:2e:86:83: 48:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:61:9F:4A:62:CC:12:CA:C3:26:C4:E9:83:61:76:5F:92:2D:D3:C4 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:da:93:bf:51:94:75:bd:7c:d7:c3:bf:04:65:23:17:eb:af: 4a:f0:a2:d0:eb:2c:40:76:6e:ce:55:68:1a:a1:5f:e8:95:d7: 44:dd:d4:19:01:69:00:4e:c1:2f:f4:45:0a:bd:bc:e7:fd:0d: 93:dd:00:3a:e2:76:98:51:3a:19:31:48:f4:07:89:23:e7:00: 8d:3f:b6:48:87:f3:b4:41:a2:b9:37:bc:c4:31:ea:48:0f:a1: 06:8b:5b:47:91:1e:a7:32:0b:3c:af:20:58:b0:43:8d:d6:4d: e7:38:d3:c6:1e:69:0d:99:15:84:59:6c:fd:10:33:53:b0:8a: 66:55:d8:0d:07:41:d9:d5:ce:23:94:80:16:18:3e:dc:ae:d8: 6a:ab:dd:c8:8f:e2:c3:b9:cf:f2:5b:de:43:b3:c6:0c:fd:00: fe:92:5e:e7:16:07:a7:e9:46:68:4b:e9:16:f5:63:83:b1:04: 52:f4:93:eb:64:3f:53:60:92:00:89:2e:fb:19:da:ba:46:d1: 3c:77:6a:2c:ef:64:c1:1d:1e:1a:47:bb:c4:e2:f1:11:6a:58: 18:3b:78:1d:be:8b:65:fb:c2:ff:33:27:c3:be:2b:38:89:d5: 26:61:65:43:ad:2e:3b:e2:06:2b:43:a9:72:fb:61:11:ba:bd: eb:fd:38:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUxMjA2MTg1ODQ1WhcNMjUxMjEzMTg1ODQ1WjAYMRYwFAYD VQQDEw02OTM0N2NlNS02MzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+c/wgfCnBGGW6/QEmh3L/7AO7ZgrCZGSOh5K/ffkPC+iOUAwXZC3bzyIzN7 n7HOveSUiZuqCbZ6gj+E0MXaY/IjbBVAAlFs9gLwnSvkXA7bRYw9mDoeiRHk6NSx nbxJfEkWM3wMJiGByKa+2fFaSXguk4AjiftR9ADGexa45PB+0qif46AfeMbHWK00 yyRjJhIYHgVLo317oAjDrXxeymf0DDWNn8XCT2ARUAy+dRLRvCQbk8aOoQrq6GVS BZoO53yd1TruphqJcTb7YO00FEWajmOPH1kUCrFPi5xpMlcGt+baJ5UA6QAemylr MsiB0N0YgS2OQQP7okUuhoNIBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVhn0pi zBLKwybE6YNhdl+SLdPEMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb2pO/UZR1vXzXw78EZSMX669K8KLQ6yxAdm7OVWgaoV/olddE3dQZ AWkATsEv9EUKvbzn/Q2T3QA64naYUToZMUj0B4kj5wCNP7ZIh/O0QaK5N7zEMepI D6EGi1tHkR6nMgs8ryBYsEON1k3nONPGHmkNmRWEWWz9EDNTsIpmVdgNB0HZ1c4j lIAWGD7crthqq93Ij+LDuc/yW95Ds8YM/QD+kl7nFgen6UZoS+kW9WODsQRS9JPr ZD9TYJIAiS77Gdq6RtE8d2os72TBHR4aR7vE4vERalgYO3gdvotl+8L/MyfDvis4 idUmYWVDrS474gYrQ6ly+2ERur3r/Tiv -----END CERTIFICATE-----Generated at Mon Dec 8 06:48:08 2025 by rpki-client