This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: cU67RHhU3yrRmU/QqHjv249hmc0jo50fFLp0o8NxOzw= Subject key identifier: 50:4D:80:E6:ED:5B:0E:75:12:52:EB:B7:70:5C:20:0F:FD:66:54:79 Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 0200 Signing time: Sun 21 Dec 2025 01:39:55 +0000 Manifest this update: Sun 21 Dec 2025 01:39:55 +0000 Manifest next update: Sun 28 Dec 2025 01:39:55 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: 6lwv2rUt9XgF+/v2WGYYYw46TJj0tAsO35NUGPl3eVk=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Dec 21 01:39:55 2025 GMT Not After : Dec 28 01:39:55 2025 GMT Subject: CN=69474feb-e8d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:43:28:96:41:96:f6:5a:99:c9:6e:fd:7c:2c: 20:60:9e:24:69:b6:f4:e5:cc:27:1d:31:1b:70:f2: 26:1e:df:fe:d4:60:02:a8:be:fe:13:6f:90:3c:c0: 6b:81:20:56:7f:58:29:1d:9b:51:25:7d:5c:b9:45: 3c:17:ec:b4:d2:92:ef:63:86:16:74:01:d9:4b:07: 2b:61:46:a3:54:5c:3a:14:25:6c:11:80:e7:df:9f: 98:5a:71:26:97:d3:44:f4:36:bb:92:95:a9:83:15: 02:cf:7a:92:d3:54:2a:31:38:ba:58:6a:f3:af:b2: c1:86:b8:b5:e9:50:8c:e6:53:f1:85:cb:e9:54:12: 67:18:a5:3e:0b:10:64:c5:a9:a0:19:46:94:13:6d: 54:10:d3:01:f5:75:ac:b8:68:6e:ee:13:41:8f:8e: 5d:28:83:b8:d5:b7:75:f7:be:9a:f2:d0:82:e2:76: 20:f9:38:0b:d5:75:57:b3:b4:c0:9b:a8:2a:06:b2: 41:0c:81:81:6f:21:0a:b4:fe:b0:14:68:51:14:0d: 5d:ba:37:16:41:ec:f6:0a:c9:fb:5d:97:dd:a6:b8: 5f:ea:08:3e:85:e6:ff:06:a5:26:8a:44:72:79:18: da:ba:72:65:18:b7:d6:5e:89:34:d6:45:18:7f:56: 46:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:4D:80:E6:ED:5B:0E:75:12:52:EB:B7:70:5C:20:0F:FD:66:54:79 X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f9:df:9e:9f:53:af:0a:44:9c:c5:1c:71:14:8e:a0:c8:63: ab:e8:ee:80:18:f9:03:77:b7:fe:c8:ae:02:13:33:d4:4d:25: 3a:cd:89:26:4b:37:6c:47:cb:c0:4b:3c:f7:5f:6a:2d:38:06: 62:bc:68:0d:52:74:fc:9e:6b:33:a5:5c:ae:7b:d3:0b:92:01: 37:93:37:8a:3c:36:25:14:6f:0b:b0:5a:26:42:b6:a1:a9:a9: 9a:01:2d:07:0e:e7:76:62:d2:ff:a0:0b:eb:69:d2:ff:22:f9: b0:26:d4:6b:52:89:85:6b:e3:32:b2:00:56:f0:f5:31:ee:c1: ef:ec:72:58:97:6c:ba:ae:42:77:65:cd:e1:fc:ff:81:62:2a: 46:cb:6f:16:a7:20:2d:44:59:d4:be:92:eb:de:16:93:50:dc: 6b:c6:b5:90:45:f4:f3:1e:8e:ca:89:d7:09:bf:d8:48:d4:26: 00:ff:46:01:ab:e2:90:d2:0f:7a:ed:ae:d1:41:42:69:ef:40: 8c:fa:79:dc:bc:ff:a7:cb:5b:90:d8:a6:e4:d1:5b:0f:0e:c0: 11:46:e8:06:71:d7:7d:4f:91:2a:da:9b:18:3f:24:d4:1a:37: 10:82:b9:1a:dd:af:1d:64:a6:47:64:e9:83:0c:17:eb:05:77: ec:47:8f:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUxMjIxMDEzOTU1WhcNMjUxMjI4MDEzOTU1WjAYMRYwFAYD VQQDDA02OTQ3NGZlYi1lOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kMolkGW9lqZyW79fCwgYJ4kabb05cwnHTEbcPImHt/+1GACqL7+E2+QPMBr gSBWf1gpHZtRJX1cuUU8F+y00pLvY4YWdAHZSwcrYUajVFw6FCVsEYDn35+YWnEm l9NE9Da7kpWpgxUCz3qS01QqMTi6WGrzr7LBhri16VCM5lPxhcvpVBJnGKU+CxBk xamgGUaUE21UENMB9XWsuGhu7hNBj45dKIO41bd1976a8tCC4nYg+TgL1XVXs7TA m6gqBrJBDIGBbyEKtP6wFGhRFA1dujcWQez2Csn7XZfdprhf6gg+heb/BqUmikRy eRjaunJlGLfWXok01kUYf1ZG5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBNgObt Ww51ElLrt3BcIA/9ZlR5MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC+d+en1OvCkScxRxxFI6gyGOr6O6AGPkDd7f+yK4CEzPUTSU6zYkm SzdsR8vASzz3X2otOAZivGgNUnT8nmszpVyue9MLkgE3kzeKPDYlFG8LsFomQrah qamaAS0HDud2YtL/oAvradL/IvmwJtRrUomFa+MysgBW8PUx7sHv7HJYl2y6rkJ3 Zc3h/P+BYipGy28WpyAtRFnUvpLr3haTUNxrxrWQRfTzHo7KidcJv9hI1CYA/0YB q+KQ0g967a7RQUJp70CM+nncvP+ny1uQ2Kbk0VsPDsARRugGcdd9T5Eq2psYPyTU GjcQgrka3a8dZKZHZOmDDBfrBXfsR4+Q -----END CERTIFICATE-----Generated at Mon Dec 22 12:52:10 2025 by rpki-client