This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft File: ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft (raw, json) Hash identifier: 54CNBL3kNPGiQDYc75blzGccjcoVEOGdFJI+fJY2i8M= Subject key identifier: 44:2A:C0:51:3F:CF:9E:E9:5B:EB:15:B4:E8:0C:10:9C:A7:8B:4A:0B Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0B64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft Manifest number: 0B5C Signing time: Sat 06 Dec 2025 18:27:13 +0000 Manifest this update: Sat 06 Dec 2025 18:27:13 +0000 Manifest next update: Sat 13 Dec 2025 18:27:13 +0000 Files and hashes: 1: ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl (hash: taad0TmWTs+t/e3bSdyTixe0aYTTd+fwMJa7LAqCqiU=) 2: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (hash: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132, serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Validity Not Before: Dec 6 18:27:13 2025 GMT Not After : Dec 13 18:27:13 2025 GMT Subject: CN=69347581-8f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:75:e0:92:2c:df:91:c2:51:ce:5d:e3:bd:5d: 15:39:47:90:84:1b:a9:c7:10:9a:6e:e5:b9:70:7e: 95:ea:bb:ab:76:f8:34:a6:76:65:63:ad:de:5e:39: 7f:d0:71:c1:ef:77:08:6e:6d:86:27:9b:91:0a:00: 0b:14:e1:fa:5e:8c:ac:d5:13:62:92:4f:fb:42:32: 6b:6c:b6:f5:23:e9:73:1a:7a:66:f5:ce:ec:2e:ab: 77:31:1d:c0:8b:ce:b4:fd:f8:68:ec:26:6b:60:df: 4e:e8:36:9d:cd:fe:5a:6a:62:0e:d8:2d:8e:dc:86: 38:ff:0e:4b:00:c6:2e:1b:43:cb:3d:16:e2:75:52: 24:fa:41:11:5d:9c:15:10:85:d4:91:5f:70:bd:e3: 7c:2a:cf:62:7c:60:f4:90:4c:dd:0b:a9:80:5b:a7: 2c:b8:c4:35:26:58:93:7c:99:fa:cb:9c:94:87:f0: 4e:15:89:b1:1f:82:ab:01:65:f8:2c:01:e4:6c:d3: 68:65:73:71:7b:16:a8:22:93:26:45:4e:4d:73:de: 47:a7:a9:18:42:11:5e:24:3c:18:91:ad:5c:e9:a8: 30:74:48:80:67:9f:14:8f:ad:f4:5e:a9:4a:82:d5: 95:46:9f:90:3b:6c:50:ec:f1:84:b1:89:3a:34:fe: 58:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:2A:C0:51:3F:CF:9E:E9:5B:EB:15:B4:E8:0C:10:9C:A7:8B:4A:0B X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:29:04:56:5a:8d:03:ed:f8:61:c4:a7:9a:27:94:ac:bd:cd: c2:6a:7e:27:12:d0:59:2d:98:16:b6:87:0f:cc:23:c1:35:41: 99:f7:e3:95:16:ec:14:aa:fc:ae:30:8d:73:f6:f8:5e:41:ae: 2c:65:72:34:dd:72:bc:e0:dc:26:7b:1e:8d:f6:2d:be:19:2a: 79:b7:25:86:da:c3:fb:f3:cb:39:c8:dc:52:17:a8:f6:14:4f: 02:a9:58:fc:36:26:73:97:aa:fd:00:44:46:ce:2e:22:19:79: 5a:1b:06:f7:de:67:c3:fc:64:2c:30:de:9e:a6:9d:6c:40:00: 25:f3:4e:54:4d:91:5f:46:8e:59:4d:80:a7:e7:59:9e:25:1c: 79:cc:e8:9e:cc:38:69:1d:20:f5:2a:b9:13:3a:d4:53:cd:d6: 3f:aa:6f:68:16:54:e0:14:5b:3d:6d:b9:e2:33:44:be:a0:df: 20:35:69:5d:fb:c6:6f:e8:27:24:80:71:95:97:e2:2a:2c:b8: 10:63:70:d1:74:f7:b6:96:c7:0b:cb:a2:22:0c:bd:05:4c:d6: 85:d4:1b:0a:2e:2e:98:6f:fa:9a:10:39:9c:fd:c7:04:f4:df: f0:99:d6:f1:71:94:9e:a0:48:d5:67:8d:5a:5c:57:f5:a8:2d: ce:02:35:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUxMjA2MTgyNzEzWhcNMjUxMjEzMTgyNzEzWjAYMRYwFAYD VQQDEw02OTM0NzU4MS04ZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnXgkizfkcJRzl3jvV0VOUeQhBupxxCabuW5cH6V6rurdvg0pnZlY63eXjl/ 0HHB73cIbm2GJ5uRCgALFOH6Xoys1RNikk/7QjJrbLb1I+lzGnpm9c7sLqt3MR3A i860/fho7CZrYN9O6Dadzf5aamIO2C2O3IY4/w5LAMYuG0PLPRbidVIk+kERXZwV EIXUkV9wveN8Ks9ifGD0kEzdC6mAW6csuMQ1JliTfJn6y5yUh/BOFYmxH4KrAWX4 LAHkbNNoZXNxexaoIpMmRU5Nc95Hp6kYQhFeJDwYka1c6agwdEiAZ58Uj630XqlK gtWVRp+QO2xQ7PGEsYk6NP5YoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQqwFE/ z57pW+sVtOgMEJyni0oLMB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEzMi9EMjY0QTJBNDQ1OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2 WmhfdThjTnh0bnNqOGNVdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfKQRWWo0D7fhhxKeaJ5Ssvc3Can4nEtBZLZgWtocPzCPBNUGZ9+OV FuwUqvyuMI1z9vheQa4sZXI03XK84Nwmex6N9i2+GSp5tyWG2sP788s5yNxSF6j2 FE8CqVj8NiZzl6r9AERGzi4iGXlaGwb33mfD/GQsMN6epp1sQAAl805UTZFfRo5Z TYCn51meJRx5zOiezDhpHSD1KrkTOtRTzdY/qm9oFlTgFFs9bbniM0S+oN8gNWld +8Zv6CckgHGVl+IqLLgQY3DRdPe2lscLy6IiDL0FTNaF1BsKLi6Yb/qaEDmc/ccE 9N/wmdbxcZSeoEjVZ41aXFf1qC3OAjVj -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:12 2025 by rpki-client