This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: Jq9pV7FDgD5iuKEf08Mh8/HaSnnxIqh970oPhSp02nk= Subject key identifier: B5:C2:EF:C1:78:0B:16:0E:45:A2:85:71:29:A8:B5:5B:39:F9:03:3F Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 06E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 06D6 Signing time: Sat 20 Dec 2025 21:29:15 +0000 Manifest this update: Sat 20 Dec 2025 21:29:14 +0000 Manifest next update: Sat 27 Dec 2025 21:29:14 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: 9r3FOT7HoRJ4F2lZRvOMFaRUPJwxFaxnc2Ed08g0dQg=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1760 (0x6e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Dec 20 21:29:14 2025 GMT Not After : Dec 27 21:29:14 2025 GMT Subject: CN=6947152a-5494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:76:38:87:86:05:11:5b:20:b1:0c:a6:21:cb: c6:fa:ac:96:5c:c5:9b:db:ce:6f:79:43:e1:d1:e8: e4:ba:0c:d5:5c:cf:8e:b4:43:53:45:64:49:ca:33: 5a:10:06:07:17:0a:83:80:21:d0:3a:1b:e0:a6:0a: 52:80:1d:79:33:0f:cf:db:57:0e:80:87:01:5a:e6: 28:69:06:8d:99:da:a5:54:a7:d4:3e:ed:81:7d:f2: 3c:91:b4:f1:8a:7e:34:67:e0:42:f3:ce:c6:c0:e7: af:7a:5b:12:ca:5f:3d:4b:72:f5:20:1d:6b:bc:0c: ad:95:79:c4:cb:a2:f5:fd:3a:8f:89:62:e1:ba:c5: a8:64:53:89:56:72:13:5a:e9:fd:b0:7e:08:a3:ae: a9:8a:3c:a7:30:be:52:d4:69:e0:d6:5d:64:8a:b7: 93:67:3d:3e:59:29:8b:4f:e4:15:ab:ac:3d:fa:ba: c5:db:74:70:82:20:67:00:e5:68:d2:e7:a9:f5:33: 54:ff:72:1d:e7:d9:27:6b:5a:d2:bf:40:c0:77:71: 0e:3c:1d:df:88:4c:82:01:44:08:e1:c0:01:e9:ba: de:05:11:72:33:a3:5f:4f:8b:95:00:40:c0:5a:0b: 9c:56:ce:c2:6d:36:42:5a:8e:e7:d3:30:e8:34:17: 0a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C2:EF:C1:78:0B:16:0E:45:A2:85:71:29:A8:B5:5B:39:F9:03:3F X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:9a:1f:86:94:b5:86:ea:0d:17:8a:44:24:ff:aa:3b:a0:99: 12:42:2c:19:5a:54:da:86:95:f4:8b:de:35:da:fe:d5:e7:51: 38:79:7c:f1:79:1d:4e:a3:3c:01:d4:2e:15:56:89:9c:07:c0: 81:24:c1:b2:66:b6:67:fd:1f:ce:f8:13:08:75:0e:27:83:54: 4b:36:e8:6d:e8:e7:98:88:5c:29:7e:1d:03:34:bc:a6:ea:3b: 53:1e:33:1b:24:dc:f0:f1:ed:7e:c5:5d:55:32:fc:62:92:f8: 99:21:14:50:12:93:af:e5:fe:5d:1d:70:b3:ff:fe:b8:ea:dd: 49:b9:7c:03:86:0d:47:ea:3e:74:dd:77:a4:f9:45:94:89:ff: 74:e3:13:49:f0:01:6b:dc:45:7a:fe:99:9c:33:a8:5a:d0:4d: 74:ae:c3:ce:fa:62:f4:8c:be:aa:f3:d9:91:ba:93:f6:db:48: 02:dd:05:d4:1a:fa:98:8e:39:c6:f7:05:86:da:53:78:78:aa: 98:6c:f1:75:ca:65:0d:91:3f:2e:3e:41:04:ea:c6:61:0c:5c: 91:dd:3a:00:72:ac:a2:21:05:83:e2:b3:fd:9a:94:77:d6:d7: 14:be:65:31:92:d5:47:36:36:7c:9f:c3:bf:9d:31:80:29:18: b1:84:83:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUxMjIwMjEyOTE0WhcNMjUxMjI3MjEyOTE0WjAYMRYwFAYD VQQDDA02OTQ3MTUyYS01NDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonY4h4YFEVsgsQymIcvG+qyWXMWb285veUPh0ejkugzVXM+OtENTRWRJyjNa EAYHFwqDgCHQOhvgpgpSgB15Mw/P21cOgIcBWuYoaQaNmdqlVKfUPu2BffI8kbTx in40Z+BC887GwOevelsSyl89S3L1IB1rvAytlXnEy6L1/TqPiWLhusWoZFOJVnIT Wun9sH4Io66pijynML5S1Gng1l1kireTZz0+WSmLT+QVq6w9+rrF23RwgiBnAOVo 0uep9TNU/3Id59kna1rSv0DAd3EOPB3fiEyCAUQI4cAB6breBRFyM6NfT4uVAEDA WgucVs7CbTZCWo7n0zDoNBcKKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXC78F4 CxYORaKFcSmotVs5+QM/MB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCmh+GlLWG6g0XikQk/6o7oJkSQiwZWlTahpX0i9412v7V51E4eXzx eR1OozwB1C4VVomcB8CBJMGyZrZn/R/O+BMIdQ4ng1RLNuht6OeYiFwpfh0DNLym 6jtTHjMbJNzw8e1+xV1VMvxikviZIRRQEpOv5f5dHXCz//646t1JuXwDhg1H6j50 3Xek+UWUif904xNJ8AFr3EV6/pmcM6ha0E10rsPO+mL0jL6q89mRupP220gC3QXU GvqYjjnG9wWG2lN4eKqYbPF1ymUNkT8uPkEE6sZhDFyR3ToAcqyiIQWD4rP9mpR3 1tcUvmUxktVHNjZ8n8O/nTGAKRixhIPF -----END CERTIFICATE-----Generated at Sun Dec 21 01:34:31 2025 by rpki-client