This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft File: cz1KHp8pnM0_jnJKteer9Ci7GV0.mft (raw, json) Hash identifier: SXeM7ProS1uxGyAJto+UnZn1MP7zuxFoAp2kWSGWCes= Subject key identifier: A4:20:81:C8:0E:5E:B0:00:C9:56:DE:62:0B:66:95:34:89:FB:92:63 Authority key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D Certificate issuer: /CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft Manifest number: 0166 Signing time: Tue 23 Dec 2025 03:05:21 +0000 Manifest this update: Tue 23 Dec 2025 03:05:21 +0000 Manifest next update: Tue 30 Dec 2025 03:05:21 +0000 Files and hashes: 1: cz1KHp8pnM0_jnJKteer9Ci7GV0.crl (hash: KX1Ll++ZpN7EZSWWRrXreFE4L2N7O7zn8wJz7EZj8lw=) 2: D035B7BE5BC711F097260D5EC4F9AE02.roa (hash: AlpyGioYVyajcJ7eEz9QWJBXQdVphfXg8wGbaRLMJmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Validity Not Before: Dec 23 03:05:21 2025 GMT Not After : Dec 30 03:05:21 2025 GMT Subject: CN=694a06f1-0e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e4:7a:85:81:23:ad:c9:76:7f:e1:a4:cf:bb: 98:ff:fd:ec:fa:ac:ef:17:0b:82:39:17:7b:4e:90: a3:ad:14:37:14:92:b1:5d:2e:92:b5:37:6c:69:10: 91:8b:42:ba:99:ee:ab:75:ac:cf:60:8d:8f:64:8b: 82:b4:cc:36:d6:6c:9e:d6:55:14:36:c0:49:e5:6e: af:da:27:f7:3a:cb:1f:ae:37:7c:b2:a9:29:61:e7: fa:2a:36:a9:a0:e6:8a:54:bb:92:99:45:b6:ad:e7: a1:f0:be:17:ed:ba:ab:37:c2:3a:6e:7c:de:51:ed: bd:fe:c4:cb:8c:3d:31:b4:c7:90:69:de:3e:d5:dc: fd:47:80:bd:cd:2a:79:ab:80:b8:83:b1:b8:ae:8a: 6d:6a:43:21:25:72:e2:bd:7b:26:95:92:d8:71:ae: 05:40:6c:eb:d8:5b:7e:63:8c:b6:9d:7f:ef:ed:b3: e7:8a:2f:c1:64:7e:78:5a:5f:1e:85:67:c5:a1:d9: a5:46:b2:ba:c7:93:62:26:44:f4:20:2f:15:5c:e8: 07:7d:32:44:64:98:5c:45:da:4f:5a:f7:67:c2:a6: 70:84:26:09:a1:d5:89:83:98:3d:45:01:4e:1f:7b: cb:a8:f9:50:0b:40:a4:39:33:88:90:4a:a9:ce:6e: 2c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:20:81:C8:0E:5E:B0:00:C9:56:DE:62:0B:66:95:34:89:FB:92:63 X509v3 Authority Key Identifier: keyid:73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:7f:51:ab:aa:6a:a7:04:31:5a:97:c9:2e:66:6f:52:d6:56: 31:b8:4f:cb:94:50:6c:2f:65:ab:7e:71:f2:e1:81:51:c7:bc: 84:4d:1f:e8:74:12:b5:17:f8:39:be:94:1b:bc:df:e4:81:c3: 2a:cd:27:72:47:00:e9:d9:5a:cb:57:53:f7:6a:4e:77:23:2c: c3:51:31:5f:6c:dc:3d:4d:31:4f:08:dd:ad:67:8a:dd:73:b0: a5:10:9a:d1:19:e7:77:87:65:d8:3b:24:d1:25:82:91:41:fb: 61:62:46:cf:05:b5:44:8d:6f:10:2e:c9:55:86:2d:34:b8:f3: a4:83:ef:fd:32:da:b2:71:03:14:1f:6f:28:dc:eb:85:9b:f0: 37:ea:6c:78:39:b6:e4:51:c9:ce:e5:fd:fc:38:31:29:09:1e: 59:09:0f:cb:a2:34:03:71:6a:b4:6e:6f:10:ae:a1:12:48:55: 2f:9f:29:57:75:f0:f9:e3:77:83:06:6d:09:90:a1:2f:9a:85: 44:37:a6:5f:d7:c6:07:5e:fa:5e:9d:7d:5b:cc:9a:57:fd:19: 64:77:1b:ed:ea:cb:59:c9:03:f7:51:23:1d:10:99:e9:b3:80: d0:8d:7e:46:5f:e0:d4:64:66:42:10:d2:03:97:fc:6f:2d:94: ad:a3:c8:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDczM0Q0QTFFOUYyOTlDQ0QzRjhFNzI0QUI1RTdBQkY0 MjhCQjE5NUQwHhcNMjUxMjIzMDMwNTIxWhcNMjUxMjMwMDMwNTIxWjAYMRYwFAYD VQQDDA02OTRhMDZmMS0wZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eR6hYEjrcl2f+Gkz7uY//3s+qzvFwuCORd7TpCjrRQ3FJKxXS6StTdsaRCR i0K6me6rdazPYI2PZIuCtMw21mye1lUUNsBJ5W6v2if3Ossfrjd8sqkpYef6Kjap oOaKVLuSmUW2reeh8L4X7bqrN8I6bnzeUe29/sTLjD0xtMeQad4+1dz9R4C9zSp5 q4C4g7G4roptakMhJXLivXsmlZLYca4FQGzr2Ft+Y4y2nX/v7bPnii/BZH54Wl8e hWfFodmlRrK6x5NiJkT0IC8VXOgHfTJEZJhcRdpPWvdnwqZwhCYJodWJg5g9RQFO H3vLqPlQC0CkOTOIkEqpzm4sdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQggcgO XrAAyVbeYgtmlTSJ+5JjMB8GA1UdIwQYMBaAFHM9Sh6fKZzNP45ySrXnq/Qouxld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC80OUU2RkU0NkM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5NMF9qbkpLdGVlcjlDaTdH VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N6MUtIcDhwbk0wX2puSkt0ZWVyOUNpN0dWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC80OUU2RkU0NkM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5N MF9qbkpLdGVlcjlDaTdHVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGf1GrqmqnBDFal8kuZm9S1lYxuE/LlFBsL2WrfnHy4YFRx7yETR/o dBK1F/g5vpQbvN/kgcMqzSdyRwDp2VrLV1P3ak53IyzDUTFfbNw9TTFPCN2tZ4rd c7ClEJrRGed3h2XYOyTRJYKRQfthYkbPBbVEjW8QLslVhi00uPOkg+/9MtqycQMU H28o3OuFm/A36mx4ObbkUcnO5f38ODEpCR5ZCQ/LojQDcWq0bm8QrqESSFUvnylX dfD543eDBm0JkKEvmoVEN6Zf18YHXvpenX1bzJpX/Rlkdxvt6stZyQP3USMdEJnp s4DQjX5GX+DUZGZCENIDl/xvLZSto8iJ -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:36 2025 by rpki-client