This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: 5WprcekyiKKtb5bebdC6ONbcxWEIZNgHQUGjSlQ/jNA= Subject key identifier: 8C:62:6C:EE:D6:E5:A2:18:B7:0B:09:61:C1:9F:22:26:BC:BD:9D:EF Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 01B8 Signing time: Fri 05 Dec 2025 01:19:30 +0000 Manifest this update: Fri 05 Dec 2025 01:19:30 +0000 Manifest next update: Fri 12 Dec 2025 01:19:30 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: 7aYWMKOR5UnlBEPv+0KJbTMyA3HynxJrHLpKMCupMSg=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Q5zuiPpefsNxFRaG9cl+nmTsBfZwCymfR2pPktbzlnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Dec 5 01:19:30 2025 GMT Not After : Dec 12 01:19:30 2025 GMT Subject: CN=69323322-2892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7f:4e:0d:58:65:5c:67:9c:4c:84:e8:1d:14: b2:53:a0:5e:ee:08:88:1f:d1:05:30:d9:ac:52:de: f6:49:b0:b7:d7:63:0b:19:e4:bf:f9:c2:4e:73:45: cb:0d:d9:f1:83:7a:04:4e:aa:78:c5:55:3f:4b:4d: 0a:24:73:08:cf:a7:f2:11:57:ed:bd:46:f5:98:2f: 69:d2:bf:6c:24:94:95:6d:53:25:48:4f:fc:28:a3: b2:cb:11:84:09:f3:2c:ec:02:b1:13:32:72:4b:8a: c6:a5:11:34:d1:eb:7d:91:2a:07:4d:b3:41:92:44: c3:18:69:89:7b:cf:e7:a4:90:64:ab:34:72:2c:eb: 4c:93:8f:6b:9b:a8:e9:80:9b:87:fc:2e:1a:8d:01: ed:e4:c7:32:3b:e3:19:82:8b:06:4a:a0:ab:42:06: 21:c3:8f:94:1a:4b:47:e4:53:67:bb:60:7c:35:5b: f2:fb:f1:6a:d6:35:33:2e:3f:ea:da:db:bc:14:f1: 4b:a5:4a:c9:a4:2f:62:13:7c:1e:d9:a1:33:c6:6a: ca:46:82:20:54:19:0b:e8:a7:ef:5c:e2:3a:11:99: 3c:98:c9:7b:b8:51:3b:21:0f:07:a9:ab:ec:84:db: 51:6f:25:69:cd:48:28:53:e7:5a:76:4d:57:a0:e6: c6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:62:6C:EE:D6:E5:A2:18:B7:0B:09:61:C1:9F:22:26:BC:BD:9D:EF X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:0f:a4:17:5a:37:78:a8:66:5d:83:87:78:e6:25:5d:45:48: 65:9f:77:94:44:9e:a9:aa:f4:c1:19:1b:25:b0:a2:0f:c1:f2: e4:a3:c6:4d:e7:2a:e9:43:1f:6c:16:55:02:11:36:fd:86:f9: 40:12:9e:b8:50:3f:b2:ec:2b:d6:59:05:fd:cc:1c:18:3f:f5: 7a:81:70:25:11:ea:61:cf:0a:fa:bc:e0:58:ac:5b:39:34:75: 55:32:02:e6:97:51:01:f1:40:81:6f:01:cc:b1:6d:78:37:a0: 37:4a:93:3b:c0:c6:a8:29:3e:5b:67:ea:38:a4:25:58:87:da: ea:b2:5d:fb:7d:db:0e:db:17:ce:f4:d6:1a:90:80:d2:b3:d5: aa:38:47:3e:09:c9:09:e0:76:32:6a:d1:e7:d5:84:d3:48:4d: ef:e1:ce:45:e9:03:12:ff:5e:bd:2a:28:12:3c:f8:b6:7b:bb: 8f:d3:9d:22:ba:fe:b6:25:c5:b6:c2:18:2c:89:57:e9:a6:a7: 47:fd:8e:84:75:3e:d8:11:74:1b:52:df:a4:e1:e9:31:ce:22: 2a:d5:b9:e7:75:3d:15:4b:b6:93:e0:12:d9:7c:b6:90:ac:20: f0:58:b9:8f:c1:10:a5:33:31:8a:eb:c9:76:91:c2:f6:7c:88: dc:29:bf:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUxMjA1MDExOTMwWhcNMjUxMjEyMDExOTMwWjAYMRYwFAYD VQQDEw02OTMyMzMyMi0yODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzn9ODVhlXGecTIToHRSyU6Be7giIH9EFMNmsUt72SbC312MLGeS/+cJOc0XL Ddnxg3oETqp4xVU/S00KJHMIz6fyEVftvUb1mC9p0r9sJJSVbVMlSE/8KKOyyxGE CfMs7AKxEzJyS4rGpRE00et9kSoHTbNBkkTDGGmJe8/npJBkqzRyLOtMk49rm6jp gJuH/C4ajQHt5McyO+MZgosGSqCrQgYhw4+UGktH5FNnu2B8NVvy+/Fq1jUzLj/q 2tu8FPFLpUrJpC9iE3we2aEzxmrKRoIgVBkL6KfvXOI6EZk8mMl7uFE7IQ8Hqavs hNtRbyVpzUgoU+dadk1XoObGpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxibO7W 5aIYtwsJYcGfIia8vZ3vMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJD6QXWjd4qGZdg4d45iVdRUhln3eURJ6pqvTBGRslsKIPwfLko8ZN 5yrpQx9sFlUCETb9hvlAEp64UD+y7CvWWQX9zBwYP/V6gXAlEephzwr6vOBYrFs5 NHVVMgLml1EB8UCBbwHMsW14N6A3SpM7wMaoKT5bZ+o4pCVYh9rqsl37fdsO2xfO 9NYakIDSs9WqOEc+CckJ4HYyatHn1YTTSE3v4c5F6QMS/169KigSPPi2e7uP050i uv62JcW2whgsiVfppqdH/Y6EdT7YEXQbUt+k4ekxziIq1bnndT0VS7aT4BLZfLaQ rCDwWLmPwRClMzGK68l2kcL2fIjcKb8M -----END CERTIFICATE-----Generated at Sun Dec 7 02:00:25 2025 by rpki-client