This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: BdJTnO7cCmAhjdGCO/k2gaLVj6oRDxCPEpb5HIgAWF4= Subject key identifier: 1C:20:12:50:83:2B:A2:BF:00:3B:D1:42:AC:3C:57:BC:17:09:E9:8A Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0167 Signing time: Fri 05 Dec 2025 02:14:07 +0000 Manifest this update: Fri 05 Dec 2025 02:14:06 +0000 Manifest next update: Fri 12 Dec 2025 02:14:06 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: aHxDvQ4kcJoEkS3NNgZQbXTwnRTopdDalYhWGKZu4HQ=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: phqylkhfGei3IojXYcRRdYxObeB6TnyHw6jd5mx17zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Dec 5 02:14:06 2025 GMT Not After : Dec 12 02:14:06 2025 GMT Subject: CN=69323fee-d846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ce:1a:43:0b:d2:ca:68:8a:e8:29:c3:7c:2c: eb:28:88:50:a1:16:2a:a8:f6:ad:da:9d:5d:a4:14: 31:49:6a:90:05:6d:70:84:3e:58:99:c7:43:ca:f4: dd:41:81:b9:3d:54:19:0b:5d:80:e7:2c:50:54:fe: 3a:e0:bc:e9:f8:b4:9f:97:f5:84:c8:fa:da:b7:79: 93:3f:5d:40:dd:e1:12:7f:b0:b8:c0:2a:98:e8:86: 87:33:3c:80:ac:8b:7e:24:53:3c:57:0d:95:e1:24: d8:04:7a:8f:ec:01:59:87:de:ec:a9:29:a5:d6:29: e2:bd:47:93:95:cd:14:98:1c:56:c4:ed:8c:63:c2: dd:b1:6f:b5:05:27:64:83:a3:a8:c2:ee:bd:1e:ec: c6:e7:65:25:5b:44:c7:cc:c6:da:62:fc:ed:03:48: 04:48:aa:f5:a3:45:e3:2a:a4:84:bc:82:76:bd:ee: 93:2a:99:5c:b9:85:14:f7:57:2d:ff:a2:50:e8:67: f4:a7:40:80:22:32:73:66:d5:e0:a3:80:f9:b2:3b: 90:00:a1:e6:67:82:95:dd:6f:52:77:cb:3f:6f:a4: c5:3e:79:e6:71:d6:98:a0:b6:33:03:c8:22:e5:b0: e4:31:e6:87:b3:ef:04:6e:5c:e7:3b:2c:d3:8e:64: 45:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:20:12:50:83:2B:A2:BF:00:3B:D1:42:AC:3C:57:BC:17:09:E9:8A X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d7:6c:5a:1d:0d:ec:93:a1:09:27:dd:b3:6e:58:7e:af:26: 35:23:91:67:ed:c4:30:de:9e:08:4d:69:7c:77:43:83:09:b6: 0f:b3:fb:26:cb:8d:17:2b:0f:f5:b1:6e:e1:4e:7f:27:a8:0a: cb:54:61:c2:dc:29:7c:36:b0:c0:d1:b3:da:23:bf:29:69:ee: 40:f6:21:fa:cb:36:cf:8f:35:67:20:70:54:7c:8c:65:8a:ef: 63:50:17:4f:11:6b:81:01:d9:40:78:10:2e:6c:d4:20:da:5c: bd:75:80:a1:8a:c0:ec:11:d1:ba:99:6c:04:d3:39:83:b4:4f: 54:ca:f6:84:d8:40:e4:cf:a7:c4:31:d6:fa:4a:ad:f2:5e:2a: 68:4b:70:ce:3b:98:c8:c8:cb:2e:d4:f7:6c:a6:4c:23:ee:8c: 19:1b:27:7a:29:4c:cc:59:e2:b3:82:e8:39:2b:6d:ff:97:5e: c4:eb:ae:f4:99:04:b9:e5:7d:0a:74:3d:14:e3:81:93:2c:01: 90:f0:20:2d:a4:f0:1e:8f:26:b3:ae:38:b1:13:8f:f6:d0:90: c9:83:3b:a2:ad:3f:3f:9b:cf:ae:df:98:be:8d:0e:3f:80:a2: 45:af:e5:17:0e:23:0d:51:71:32:39:c0:33:99:dd:79:d7:f3: 0a:5e:b1:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUxMjA1MDIxNDA2WhcNMjUxMjEyMDIxNDA2WjAYMRYwFAYD VQQDEw02OTMyM2ZlZS1kODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4c4aQwvSymiK6CnDfCzrKIhQoRYqqPat2p1dpBQxSWqQBW1whD5YmcdDyvTd QYG5PVQZC12A5yxQVP464Lzp+LSfl/WEyPrat3mTP11A3eESf7C4wCqY6IaHMzyA rIt+JFM8Vw2V4STYBHqP7AFZh97sqSml1inivUeTlc0UmBxWxO2MY8LdsW+1BSdk g6Oowu69HuzG52UlW0THzMbaYvztA0gESKr1o0XjKqSEvIJ2ve6TKplcuYUU91ct /6JQ6Gf0p0CAIjJzZtXgo4D5sjuQAKHmZ4KV3W9Sd8s/b6TFPnnmcdaYoLYzA8gi 5bDkMeaHs+8EblznOyzTjmRFcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwgElCD K6K/ADvRQqw8V7wXCemKMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe12xaHQ3sk6EJJ92zblh+ryY1I5Fn7cQw3p4ITWl8d0ODCbYPs/sm y40XKw/1sW7hTn8nqArLVGHC3Cl8NrDA0bPaI78pae5A9iH6yzbPjzVnIHBUfIxl iu9jUBdPEWuBAdlAeBAubNQg2ly9dYChisDsEdG6mWwE0zmDtE9UyvaE2EDkz6fE Mdb6Sq3yXipoS3DOO5jIyMsu1Pdspkwj7owZGyd6KUzMWeKzgug5K23/l17E6670 mQS55X0KdD0U44GTLAGQ8CAtpPAejyazrjixE4/20JDJgzuirT8/m8+u35i+jQ4/ gKJFr+UXDiMNUXEyOcAzmd151/MKXrEw -----END CERTIFICATE-----Generated at Sat Dec 6 22:28:54 2025 by rpki-client