This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft File: _zNBly3YofaHHt6Gmjod2SUorrY.mft (raw, json) Hash identifier: iyY9WVvFDMGqn+SJj2C9OJ99Pm4X51eXxiMaGT8gk2g= Subject key identifier: 44:09:B4:CB:BB:90:AF:90:79:71:95:99:EB:0D:1B:A9:95:C7:A4:32 Authority key identifier: FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 Certificate issuer: /CN=A917E678/serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Certificate serial: 0DCA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft Manifest number: 0D2B Signing time: Sat 06 Dec 2025 16:25:26 +0000 Manifest this update: Sat 06 Dec 2025 16:25:25 +0000 Manifest next update: Sat 13 Dec 2025 16:25:25 +0000 Files and hashes: 1: _zNBly3YofaHHt6Gmjod2SUorrY.crl (hash: 1TDqoLIM48QEU6Zj/J/ZMM1sKrFcVOFs6Gn++4PHsw4=) 2: 69FDEAC6645511EFB98C143DC4F9AE02.roa (hash: r61Y1na2DnCg+opz0fva/EXKcH2bwZStVIeQ3Bbr1wo=) 3: F4A77A06CED911ED9BC69385C4F9AE02.roa (hash: OUewL85nRVoETpSnxouJtXZ3L1bDXbwRe3ztxVw9Gdo=) 4: 3D98B69C977111EFBB74DC15C4F9AE02.roa (hash: EOLGmACKTm1auu9j0c6NA1jcvwkgDjQQGsYCgT+bDMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3530 (0xdca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Validity Not Before: Dec 6 16:25:25 2025 GMT Not After : Dec 13 16:25:25 2025 GMT Subject: CN=693458f6-28a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:88:0d:52:27:95:d6:88:ed:47:7f:63:47: 72:38:40:7f:ff:6a:ba:b7:00:c0:dd:27:5b:0f:5d: e2:b6:3a:12:7b:89:39:dd:2b:a5:14:43:a3:c0:10: ed:73:a7:98:03:8c:0a:a2:60:04:e3:3c:da:48:49: 52:1a:ee:a1:15:d8:4f:8f:f4:b6:45:e6:c8:66:6e: 1f:e2:66:c8:fd:6c:b8:99:ca:00:4a:6e:e7:a1:16: 4e:91:7e:63:c4:be:48:86:de:82:c9:e6:36:04:c3: 11:95:9a:fc:3c:15:37:fc:ba:a2:76:88:ea:28:b0: ef:6f:9d:51:b6:8d:7b:07:32:a0:75:2f:9e:99:8a: 8f:21:f5:48:b8:e7:c6:c4:a7:1d:4e:03:66:b4:dd: 03:3a:e8:a7:2f:8f:3c:ca:18:52:2e:0f:82:a0:e9: 01:f4:72:46:a9:58:bd:1f:4b:80:fa:c6:8f:0a:06: d4:9e:0a:4b:d4:4b:74:0e:f8:a1:94:cc:76:04:63: 60:7c:aa:ce:11:f1:15:4a:4b:73:09:65:e5:3b:77: 0d:74:ae:44:f4:d1:a6:ba:ed:89:21:97:a8:59:15: de:1e:4c:47:32:b8:c7:d9:cd:49:0f:e3:8f:ce:2d: 99:6e:26:8b:dd:aa:4a:3b:5d:13:56:0d:c5:cb:82: c9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:09:B4:CB:BB:90:AF:90:79:71:95:99:EB:0D:1B:A9:95:C7:A4:32 X509v3 Authority Key Identifier: keyid:FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:ff:0a:47:97:57:4f:a6:86:73:61:7d:5d:ae:9e:a2:68:97: fe:31:54:e6:f4:d5:1a:d9:10:3c:09:b8:f3:75:7e:90:96:03: 8b:3c:f0:ff:1d:23:35:c0:45:c6:42:8f:70:86:7a:e3:1e:ae: 08:72:0e:75:ac:25:9a:b7:5d:4d:91:24:af:7c:62:a5:5c:76: 89:9f:dc:62:23:9b:83:ba:2b:f9:ba:c7:d7:bf:9b:de:1c:88: 8e:37:af:b3:63:e2:3b:cd:86:13:06:c2:07:d5:f4:62:09:01: 4a:e0:c5:c4:44:e8:f5:7c:57:fa:12:b5:f5:0b:dd:84:ec:32: 55:71:19:50:c9:0e:83:5f:c4:87:8b:5e:b4:d2:9e:ca:37:75: 93:2c:97:1e:3b:33:27:95:c2:e6:d9:2d:46:0c:e3:2a:92:f1: 37:77:88:5a:e5:e4:42:e6:6a:8d:da:ce:5b:13:21:60:ee:f8: 8a:da:84:07:53:d2:f0:ba:6c:dc:8f:03:c0:a2:9d:a6:0d:cc: 29:32:13:6b:e2:24:d1:3b:79:aa:85:ba:78:b6:c0:46:54:38: ea:06:47:35:da:5f:82:c0:7b:04:ec:19:5c:08:bc:64:8e:9d: 97:5a:c0:38:9f:16:84:6f:ff:c5:08:5c:04:ef:b2:a6:19:86: fb:44:5c:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEZGMzM0MTk3MkREOEExRjY4NzFFREU4NjlBM0ExREQ5 MjUyOEFFQjYwHhcNMjUxMjA2MTYyNTI1WhcNMjUxMjEzMTYyNTI1WjAYMRYwFAYD VQQDEw02OTM0NThmNi0yOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKSIDVInldaI7Ud/Y0dyOEB//2q6twDA3SdbD13itjoSe4k53SulFEOjwBDt c6eYA4wKomAE4zzaSElSGu6hFdhPj/S2RebIZm4f4mbI/Wy4mcoASm7noRZOkX5j xL5Iht6CyeY2BMMRlZr8PBU3/LqidojqKLDvb51Rto17BzKgdS+emYqPIfVIuOfG xKcdTgNmtN0DOuinL488yhhSLg+CoOkB9HJGqVi9H0uA+saPCgbUngpL1Et0Dvih lMx2BGNgfKrOEfEVSktzCWXlO3cNdK5E9NGmuu2JIZeoWRXeHkxHMrjH2c1JD+OP zi2ZbiaL3apKO10TVg3Fy4LJCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQJtMu7 kK+QeXGVmesNG6mVx6QyMB8GA1UdIwQYMBaAFP8zQZct2KH2hx7ehpo6HdklKK62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CRUIzMzNGQTIy NTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9mYUhIdDZHbWpvZDJTVW9y clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL196TkJseTNZb2ZhSEh0Nkdtam9kMlNVb3JyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CRUIzMzNGQTIyNTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9m YUhIdDZHbWpvZDJTVW9yclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0/wpHl1dPpoZzYX1drp6iaJf+MVTm9NUa2RA8CbjzdX6QlgOLPPD/ HSM1wEXGQo9whnrjHq4Icg51rCWat11NkSSvfGKlXHaJn9xiI5uDuiv5usfXv5ve HIiON6+zY+I7zYYTBsIH1fRiCQFK4MXEROj1fFf6ErX1C92E7DJVcRlQyQ6DX8SH i1600p7KN3WTLJceOzMnlcLm2S1GDOMqkvE3d4ha5eRC5mqN2s5bEyFg7viK2oQH U9LwumzcjwPAop2mDcwpMhNr4iTRO3mqhbp4tsBGVDjqBkc12l+CwHsE7BlcCLxk jp2XWsA4nxaEb//FCFwE77KmGYb7RFwt -----END CERTIFICATE-----Generated at Sun Dec 7 05:09:34 2025 by rpki-client