This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: bvusurrOnEBCAMf784/bURLBqbXGB8w6N9hp4kRqEwQ= Subject key identifier: FF:68:95:85:61:09:C3:CD:6E:F9:44:87:7C:12:70:81:71:C0:3F:12 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: F1 Signing time: Fri 19 Dec 2025 04:25:59 +0000 Manifest this update: Fri 19 Dec 2025 04:25:58 +0000 Manifest next update: Fri 26 Dec 2025 04:25:58 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: uISa67TVCGbIPPUPJXLn/U2G+VOBDtCBEC33Vew7IBQ=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: xTh/XECRIgCR6mcMb4Sy7r1o1s9piU8w2MVo6gmyMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Dec 19 04:25:58 2025 GMT Not After : Dec 26 04:25:58 2025 GMT Subject: CN=6944d3d7-e904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:32:07:97:e7:6c:fe:0b:07:bb:60:e8:12:88: 60:7f:e3:fd:9c:35:be:78:73:00:b9:ba:61:7a:2c: eb:a5:6b:18:87:b0:74:ea:63:57:e0:37:80:08:7b: 83:25:5d:a5:86:23:92:37:44:b5:84:79:b1:22:64: 49:35:66:4a:f0:7b:da:8c:3b:4b:01:5f:2c:6f:91: de:20:f6:10:b5:ca:5e:0c:44:62:23:19:a3:f5:a3: 08:46:28:fc:bd:7c:04:91:86:49:28:7b:4c:6d:ae: 14:99:c0:c0:9b:13:3c:d0:76:c8:2b:bb:be:bb:e4: f6:93:48:be:48:63:cf:1d:7d:5b:f0:75:62:08:94: 96:65:b8:9e:22:ef:9e:27:ed:4c:45:54:54:3c:30: e7:b8:58:e7:61:94:7f:d8:1c:29:e8:86:54:a5:ce: 4e:39:a6:7a:0a:2e:9a:55:d2:6e:bc:38:4b:1c:b1: 2c:89:33:f6:d8:41:01:90:c2:2d:83:b1:30:d2:2a: 81:ed:42:5d:8f:4d:33:27:48:a9:9a:a3:3e:0d:a1: 73:b8:81:79:4e:61:16:69:72:22:f9:10:fb:ae:c6: 04:0e:bd:0f:11:8c:53:bb:4f:7b:11:30:95:74:0e: 03:d8:91:65:97:80:09:11:4f:c3:55:d3:35:a9:6e: 6c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:68:95:85:61:09:C3:CD:6E:F9:44:87:7C:12:70:81:71:C0:3F:12 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:7e:5b:02:05:4c:bc:b4:a5:03:43:fc:2f:52:1f:7f:09:8e: f8:eb:6a:e2:1c:14:96:94:12:95:39:ea:97:8c:d5:7c:c1:e0: ba:19:d3:97:96:07:df:d9:b3:75:c1:ea:88:0e:12:e0:40:39: 5f:c3:71:72:26:ab:76:a7:57:23:49:28:19:df:d1:7f:53:3c: ae:10:ea:54:77:b1:a4:c4:bf:61:d0:a7:2d:75:56:95:18:5c: c5:96:5a:00:bd:ff:ca:5b:24:56:5e:4d:ac:50:02:ce:b1:b6: 1a:97:69:80:47:37:68:b5:c6:28:85:5c:df:9f:0d:af:88:d7: e1:f6:28:91:4b:65:a3:a1:c4:25:72:f6:0e:90:51:07:de:d1: 41:7b:0a:7d:ea:30:03:30:37:4d:eb:ed:63:da:3b:f8:a4:90: 84:48:e0:f6:95:ec:e0:6d:65:fd:23:d8:85:4f:81:87:52:23: ce:3d:42:f5:1a:ec:00:a8:83:85:6b:ba:e2:a9:a5:2f:2c:54: 9a:ce:54:17:eb:70:fd:a6:69:a4:f8:a7:d6:13:5b:70:cb:a5: 32:29:4c:7c:9d:e1:1b:73:5d:88:a9:12:f8:b3:eb:47:e8:f0: 91:28:c8:49:a2:69:47:25:86:83:be:e6:85:17:e0:d9:9b:e8: 55:fc:d6:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUxMjE5MDQyNTU4WhcNMjUxMjI2MDQyNTU4WjAYMRYwFAYD VQQDDA02OTQ0ZDNkNy1lOTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzIHl+ds/gsHu2DoEohgf+P9nDW+eHMAubpheizrpWsYh7B06mNX4DeACHuD JV2lhiOSN0S1hHmxImRJNWZK8HvajDtLAV8sb5HeIPYQtcpeDERiIxmj9aMIRij8 vXwEkYZJKHtMba4UmcDAmxM80HbIK7u+u+T2k0i+SGPPHX1b8HViCJSWZbieIu+e J+1MRVRUPDDnuFjnYZR/2Bwp6IZUpc5OOaZ6Ci6aVdJuvDhLHLEsiTP22EEBkMIt g7Ew0iqB7UJdj00zJ0ipmqM+DaFzuIF5TmEWaXIi+RD7rsYEDr0PEYxTu097ETCV dA4D2JFll4AJEU/DVdM1qW5siwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9olYVh CcPNbvlEh3wScIFxwD8SMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6flsCBUy8tKUDQ/wvUh9/CY7462riHBSWlBKVOeqXjNV8weC6GdOX lgff2bN1weqIDhLgQDlfw3FyJqt2p1cjSSgZ39F/UzyuEOpUd7GkxL9h0KctdVaV GFzFlloAvf/KWyRWXk2sUALOsbYal2mARzdotcYohVzfnw2viNfh9iiRS2WjocQl cvYOkFEH3tFBewp96jADMDdN6+1j2jv4pJCESOD2lezgbWX9I9iFT4GHUiPOPUL1 GuwAqIOFa7riqaUvLFSazlQX63D9pmmk+KfWE1twy6UyKUx8neEbc12IqRL4s+tH 6PCRKMhJomlHJYaDvuaFF+DZm+hV/Nbl -----END CERTIFICATE-----Generated at Sat Dec 20 00:53:06 2025 by rpki-client