This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft File: zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft (raw, json) Hash identifier: wtWWHQrEQmdfCFtioHOfhtOk5Egovv5q3Xjf9EDgZiw= Subject key identifier: F9:6C:08:4C:44:53:FD:EF:C9:96:36:85:BB:39:AC:A3:F8:35:83:99 Authority key identifier: CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 Certificate issuer: /CN=A91565C6/serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft Manifest number: 98 Signing time: Fri 19 Dec 2025 05:28:06 +0000 Manifest this update: Fri 19 Dec 2025 05:28:06 +0000 Manifest next update: Fri 26 Dec 2025 05:28:06 +0000 Files and hashes: 1: zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl (hash: 5kew/TgkvVBqfVo6YYcq6wwwJ8fzPOiCR3F7YMFu6s8=) 2: 296C92D0F5B611EFB7E6426EC4F9AE02.roa (hash: DAG2avo3wM4Iv7tiFSCw0I7iwE7NYk5jbcu93twLDNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91565C6, serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Validity Not Before: Dec 19 05:28:06 2025 GMT Not After : Dec 26 05:28:06 2025 GMT Subject: CN=6944e266-946a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:50:59:97:43:3b:cc:23:40:4f:c2:1b:cb:6e: ed:62:5e:8e:77:b6:c8:fd:e2:9a:6c:3f:b8:a4:b8: ae:b6:40:aa:1e:6f:9b:aa:4e:fa:c3:63:26:3b:05: 47:ba:b8:01:c9:21:90:83:59:dc:96:ce:d9:d4:83: e6:54:90:2b:ee:de:82:79:5b:a3:ea:2a:eb:16:56: ed:d4:ee:e7:80:52:5a:c1:17:70:d5:5d:89:36:57: 8a:7b:8c:f5:c8:cd:19:cb:be:4b:44:d1:ee:13:86: 42:f4:c4:b0:5f:17:cd:c9:3e:3a:c9:28:47:db:42: 68:e4:5f:8e:45:b0:33:8a:0f:25:8e:e2:e7:9e:ea: 97:52:75:83:28:13:e2:a0:4e:ff:d6:bd:06:38:e6: 59:fb:ac:c2:22:cb:40:9b:de:0f:33:77:4a:eb:6d: 7b:35:a4:85:da:9a:7c:78:8e:6f:bc:88:1b:af:bf: 9e:24:cb:c0:c2:a2:7f:ac:c1:31:2a:54:d0:3b:ca: e4:34:31:30:81:84:14:0c:6e:8d:20:d9:74:2b:75: b8:7f:69:a3:fa:40:dd:c6:e4:ae:4b:17:8f:6a:3d: eb:42:64:2e:87:30:90:db:d3:70:12:a7:25:b3:4d: 35:c5:94:21:79:d4:a5:a4:b4:fa:84:51:48:5e:b9: eb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6C:08:4C:44:53:FD:EF:C9:96:36:85:BB:39:AC:A3:F8:35:83:99 X509v3 Authority Key Identifier: keyid:CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:43:9f:a6:4d:a0:39:35:8b:1c:ad:92:12:2a:3f:49:8f:ef: 71:fb:22:d2:e8:2d:ad:88:52:1d:e0:32:7b:cc:ad:d8:69:ff: d4:09:13:02:34:94:01:cb:74:14:4e:13:f0:f8:fb:0f:b3:90: 14:17:84:64:a1:94:e8:29:ae:ad:9b:7c:d1:f0:a4:a1:4d:b7: 96:81:3e:c1:01:20:1d:94:19:52:16:ea:cd:99:f3:a3:d6:71: 84:91:42:1d:dd:0d:1b:fc:b2:af:5b:fe:e6:5f:22:73:f8:42: 31:de:bc:76:5b:f5:b6:c1:c9:38:ff:18:1c:62:3b:b8:0c:44: 66:cd:b7:95:00:fb:00:2e:ab:08:81:3e:6e:df:b6:70:17:b8: c7:5c:2a:7d:fb:af:45:7e:57:ab:06:14:47:54:79:5a:e1:6c: 8d:b4:df:9e:00:e5:8f:32:5d:a2:e8:ed:ba:81:f8:58:ff:f6: 71:2a:91:3e:ec:01:b6:86:97:4d:e7:a8:84:7a:b0:cd:44:c2: 35:5e:3c:1d:fd:ed:43:77:8b:c2:4c:07:0a:b5:c0:0e:31:a2: 2e:ad:73:55:87:f6:5e:e3:a0:96:5a:13:b7:63:35:d2:80:7e: e3:a2:fd:06:62:c7:bb:60:1c:21:82:28:29:1c:5d:cf:c1:72: 67:2c:08:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY1QzYxMTAvBgNVBAUTKENENTM1QzdFQjMxQTQwQTNGREI4QUM0RDVENTc3QUY5 RDZDNTg4NDgwHhcNMjUxMjE5MDUyODA2WhcNMjUxMjI2MDUyODA2WjAYMRYwFAYD VQQDDA02OTQ0ZTI2Ni05NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFBZl0M7zCNAT8Iby27tYl6Od7bI/eKabD+4pLiutkCqHm+bqk76w2MmOwVH urgBySGQg1ncls7Z1IPmVJAr7t6CeVuj6irrFlbt1O7ngFJawRdw1V2JNleKe4z1 yM0Zy75LRNHuE4ZC9MSwXxfNyT46yShH20Jo5F+ORbAzig8ljuLnnuqXUnWDKBPi oE7/1r0GOOZZ+6zCIstAm94PM3dK6217NaSF2pp8eI5vvIgbr7+eJMvAwqJ/rMEx KlTQO8rkNDEwgYQUDG6NINl0K3W4f2mj+kDdxuSuSxePaj3rQmQuhzCQ29NwEqcl s001xZQhedSlpLT6hFFIXrnr5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlsCExE U/3vyZY2hbs5rKP4NYOZMB8GA1UdIwQYMBaAFM1TXH6zGkCj/bisTV1XevnWxYhI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjVDNi9EMjY1QjBDNkY0 MUYxMUVGODE3MDg4NjhDNEY5QUUwMi96Vk5jZnJNYVFLUDl1S3hOWFZkNi1kYkZp RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWTmNmck1hUUtQOXVLeE5YVmQ2LWRiRmlFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjVDNi9EMjY1QjBDNkY0MUYxMUVGODE3MDg4NjhDNEY5QUUwMi96Vk5jZnJNYVFL UDl1S3hOWFZkNi1kYkZpRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVQ5+mTaA5NYscrZISKj9Jj+9x+yLS6C2tiFId4DJ7zK3Yaf/UCRMC NJQBy3QUThPw+PsPs5AUF4RkoZToKa6tm3zR8KShTbeWgT7BASAdlBlSFurNmfOj 1nGEkUId3Q0b/LKvW/7mXyJz+EIx3rx2W/W2wck4/xgcYju4DERmzbeVAPsALqsI gT5u37ZwF7jHXCp9+69FflerBhRHVHla4WyNtN+eAOWPMl2i6O26gfhY//ZxKpE+ 7AG2hpdN56iEerDNRMI1Xjwd/e1Dd4vCTAcKtcAOMaIurXNVh/Ze46CWWhO3YzXS gH7jov0GYse7YBwhgigpHF3PwXJnLAiq -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:21 2025 by rpki-client