This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: NxMbqcvxS9bO/OeEfdtBcFnYC6XbtrP7CuG2sui4VHo= Subject key identifier: 04:A1:F6:27:81:82:5A:FC:A7:CA:57:6D:F6:CF:47:2A:D1:C3:47:D4 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A97 Signing time: Thu 18 Dec 2025 19:10:18 +0000 Manifest this update: Thu 18 Dec 2025 19:10:18 +0000 Manifest next update: Thu 25 Dec 2025 19:10:18 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: zo0BR3rRzh9LHUfPb3lv0OwLsZxDnonxqUNiYrn9JqY=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) 3: 4A644958BA0311F084B11F0DC4F9AE02.roa (hash: Clegtkn9PCF2aAQpIGyhbE89o6/DeR6UqKiXB0Quw9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Dec 18 19:10:18 2025 GMT Not After : Dec 25 19:10:18 2025 GMT Subject: CN=6944519a-51b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6e:2a:f8:35:e9:a9:7c:a2:6e:4b:99:b0:25: 4f:1d:99:9d:18:b9:3b:9c:86:09:ab:52:95:d5:2f: 59:5a:e0:15:46:d8:1a:4c:88:2f:a5:be:b8:96:d5: 9f:4c:ce:9b:12:42:0a:6a:61:38:dc:96:57:04:99: 85:df:58:59:1c:df:ee:40:78:74:cc:51:33:db:b2: 46:8f:a1:1a:7e:19:6d:8a:be:37:e9:91:7b:a2:b5: a8:12:67:31:a3:ca:7c:90:4a:09:f9:7b:03:39:49: 7e:68:d4:83:3b:93:21:39:fd:bf:04:54:f8:9c:c0: 84:5f:77:9d:5f:99:ad:cc:b5:bd:b8:57:5f:a6:2a: 36:8f:5f:ef:b7:27:da:a3:53:07:02:94:e0:7f:2d: 72:7b:f9:2f:84:9f:7a:59:c3:b9:c0:50:46:02:55: d8:c3:5a:ce:b8:e6:02:0a:61:c7:38:7f:d0:a2:74: 34:f6:42:b1:51:90:19:2d:a0:3b:21:9c:62:02:e3: 7e:2a:1d:6a:6a:8b:c6:d3:9d:cd:35:f2:00:43:38: 1c:2e:bf:17:88:40:30:40:c9:b1:74:8e:8a:6e:45: 0a:49:3a:43:75:a1:02:6f:1e:11:b4:c3:7c:8e:5b: 27:b6:38:4f:03:c6:f3:7b:96:32:51:17:2f:d8:1f: f7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A1:F6:27:81:82:5A:FC:A7:CA:57:6D:F6:CF:47:2A:D1:C3:47:D4 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:f2:cc:3d:e5:96:90:4b:ad:b5:af:64:b4:7e:d8:a9:cc:dc: 31:93:f2:09:d5:b5:91:90:0a:e4:2e:bd:51:20:77:c7:4b:66: 86:03:19:25:dd:90:72:0a:87:29:27:81:97:d8:a4:f5:5e:8a: 91:7f:12:0d:fd:70:4f:64:b0:f7:71:8d:be:51:2d:27:27:da: 89:0a:f7:07:ec:02:7e:ae:d4:10:73:89:a2:0d:b2:87:0e:93: d5:f9:fb:8e:51:a2:a4:7c:2d:87:7f:68:32:0a:9f:a3:c7:5b: 7e:29:6b:2e:e6:be:7d:d9:4f:15:b6:ea:2e:69:23:fe:61:1f: c5:0f:58:11:15:56:08:21:14:97:21:22:bd:3a:24:6f:54:7e: 40:89:b7:2b:10:fa:61:36:9d:20:4a:29:c1:09:4e:5c:42:4b: 8b:c3:aa:8a:ae:ad:21:fa:3d:67:bc:6f:5e:db:d7:fe:db:86: a6:36:1c:9c:a9:e7:52:cd:fb:e0:22:ed:0b:3a:33:c7:ff:d3: cc:a2:3d:3f:95:2a:7e:42:7b:94:31:30:fb:20:94:49:06:54: 98:fb:96:70:78:20:a4:8b:c6:be:d0:e3:52:6b:f0:64:76:bf: 4d:d8:c7:52:f3:ce:99:91:04:68:e0:bc:32:1f:c0:a5:d7:21: 92:26:20:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUxMjE4MTkxMDE4WhcNMjUxMjI1MTkxMDE4WjAYMRYwFAYD VQQDDA02OTQ0NTE5YS01MWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy24q+DXpqXyibkuZsCVPHZmdGLk7nIYJq1KV1S9ZWuAVRtgaTIgvpb64ltWf TM6bEkIKamE43JZXBJmF31hZHN/uQHh0zFEz27JGj6Eafhltir436ZF7orWoEmcx o8p8kEoJ+XsDOUl+aNSDO5MhOf2/BFT4nMCEX3edX5mtzLW9uFdfpio2j1/vtyfa o1MHApTgfy1ye/kvhJ96WcO5wFBGAlXYw1rOuOYCCmHHOH/QonQ09kKxUZAZLaA7 IZxiAuN+Kh1qaovG053NNfIAQzgcLr8XiEAwQMmxdI6KbkUKSTpDdaECbx4RtMN8 jlsntjhPA8bze5YyURcv2B/3gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASh9ieB glr8p8pXbfbPRyrRw0fUMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV8sw95ZaQS621r2S0ftipzNwxk/IJ1bWRkArkLr1RIHfHS2aGAxkl 3ZByCocpJ4GX2KT1XoqRfxIN/XBPZLD3cY2+US0nJ9qJCvcH7AJ+rtQQc4miDbKH DpPV+fuOUaKkfC2Hf2gyCp+jx1t+KWsu5r592U8VtuouaSP+YR/FD1gRFVYIIRSX ISK9OiRvVH5AibcrEPphNp0gSinBCU5cQkuLw6qKrq0h+j1nvG9e29f+24amNhyc qedSzfvgIu0LOjPH/9PMoj0/lSp+QnuUMTD7IJRJBlSY+5ZweCCki8a+0ONSa/Bk dr9N2MdS886ZkQRo4LwyH8Cl1yGSJiAX -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:31 2025 by rpki-client