This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft File: _Z_UV0WCGIOHdsDcCO-2FVIB42g.mft (raw, json) Hash identifier: taOWIZtmerm9qHt/348SGOUytnjpyUcCX3zVyZcaTtw= Subject key identifier: CE:3F:5B:58:00:D2:17:31:CE:92:08:6B:CF:67:52:2B:36:75:93:F0 Authority key identifier: FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 Certificate issuer: /CN=A91C6DD8/serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Certificate serial: 3554 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft Manifest number: 3524 Signing time: Sat 20 Dec 2025 14:27:00 +0000 Manifest this update: Sat 20 Dec 2025 14:26:59 +0000 Manifest next update: Sat 27 Dec 2025 14:26:59 +0000 Files and hashes: 1: _Z_UV0WCGIOHdsDcCO-2FVIB42g.crl (hash: kMxDLMIZV4H0Mcux3E/T/hb+zhR/maoqwSR6ysqk+2U=) 2: 2DED29046A8E11EF948C2811C4F9AE02.roa (hash: CZL34a4C5G0DmjPgUV/R8LPE+CW74MjYbH1UBH/HsLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13652 (0x3554) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6DD8, serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Validity Not Before: Dec 20 14:26:59 2025 GMT Not After : Dec 27 14:26:59 2025 GMT Subject: CN=6946b234-b0bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:25:04:c2:87:4a:a3:e3:23:4f:b9:c3:a1:9e: ec:71:01:01:20:88:25:67:12:3b:15:a2:60:7a:fd: 31:d7:9c:d9:28:ee:06:d7:c7:32:ce:78:50:62:32: 45:db:45:4a:4d:89:47:da:d7:9a:a7:b7:e4:0b:ad: 43:f4:74:e1:f8:4e:d6:ce:76:d0:ad:df:2a:57:53: bb:3e:1c:87:35:64:4c:f6:dd:ca:0b:7d:5a:89:97: 1e:0f:74:2f:c1:15:ab:f0:2b:1c:b0:6a:86:2b:b3: 56:0c:e2:87:8a:f4:74:2a:c4:a6:39:40:44:39:c8: f3:bd:00:9a:5a:c0:3b:d3:7c:59:6e:d6:d5:8d:8f: b0:5a:2e:61:58:1b:c2:17:41:50:ae:40:41:bd:1e: 7d:b2:79:e9:af:e4:fc:a9:1e:98:15:b9:32:39:53: ed:88:18:84:e9:97:53:74:dd:f4:d2:c4:58:84:14: 61:60:bc:87:50:62:55:4a:45:04:1f:8d:b3:fd:07: 61:6b:34:60:56:59:a4:92:66:77:fe:be:dd:31:27: 13:7a:dc:6f:fa:62:14:5a:53:38:fa:55:4c:ef:48: 77:c6:e9:da:28:cc:59:da:b6:e6:09:c3:ee:3a:14: 87:85:67:d7:f8:56:1e:2d:0c:5c:3b:31:2c:ad:2e: d3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3F:5B:58:00:D2:17:31:CE:92:08:6B:CF:67:52:2B:36:75:93:F0 X509v3 Authority Key Identifier: keyid:FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:c2:d7:73:a3:99:4d:1b:6d:33:3e:96:2b:c7:6a:34:9c:01: dd:b0:b0:b5:3c:44:00:16:87:ed:d1:33:96:05:15:f2:bd:03: cb:07:6c:33:15:6e:77:d6:17:07:63:a3:ba:13:f1:40:4c:31: ee:75:87:84:ec:d2:14:fc:c6:fe:a0:a1:a4:ab:3d:4c:32:8e: 0a:77:d6:d6:45:a3:ae:2a:4b:4c:bb:0d:7d:85:b4:c9:0e:c2: bd:17:33:e5:db:c7:fa:38:6f:c4:ed:60:eb:de:c8:85:0c:9f: 4c:f8:35:d1:53:18:40:96:59:12:09:6d:8f:37:8f:9c:75:0d: 7b:6b:b6:88:a2:24:21:0e:b8:cf:50:e1:c7:77:bc:e2:b6:b7: 29:ef:cb:8d:ff:dc:bc:92:89:a0:b0:91:2e:74:67:87:2f:f1: 8d:6e:2e:f3:aa:f4:00:43:d0:66:cf:50:cf:c3:b7:87:3e:38: fa:be:1c:f0:06:53:27:a1:ed:12:55:41:46:f3:c0:a6:78:da: 1f:07:74:ca:17:de:c6:16:71:77:d3:f9:ac:0e:78:29:88:e0: 27:97:27:1b:7a:d9:5c:fc:52:ad:50:89:cb:a1:10:38:fb:c5: c4:d2:0d:22:43:62:38:72:ce:25:4d:e2:e5:da:f8:1c:b3:c8: b8:59:e2:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZERDgxMTAvBgNVBAUTKEZEOUZENDU3NDU4MjE4ODM4Nzc2QzBEQzA4RUZCNjE1 NTIwMUUzNjgwHhcNMjUxMjIwMTQyNjU5WhcNMjUxMjI3MTQyNjU5WjAYMRYwFAYD VQQDDA02OTQ2YjIzNC1iMGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCUEwodKo+MjT7nDoZ7scQEBIIglZxI7FaJgev0x15zZKO4G18cyznhQYjJF 20VKTYlH2teap7fkC61D9HTh+E7WznbQrd8qV1O7PhyHNWRM9t3KC31aiZceD3Qv wRWr8CscsGqGK7NWDOKHivR0KsSmOUBEOcjzvQCaWsA703xZbtbVjY+wWi5hWBvC F0FQrkBBvR59snnpr+T8qR6YFbkyOVPtiBiE6ZdTdN300sRYhBRhYLyHUGJVSkUE H42z/QdhazRgVlmkkmZ3/r7dMScTetxv+mIUWlM4+lVM70h3xunaKMxZ2rbmCcPu OhSHhWfX+FYeLQxcOzEsrS7TVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4/W1gA 0hcxzpIIa89nUis2dZPwMB8GA1UdIwQYMBaAFP2f1FdFghiDh3bA3AjvthVSAeNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkREOC9GMDQ4NTI0MjFE ODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJT0hkc0RjQ08tMkZWSUI0 MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19aX1VWMFdDR0lPSGRzRGNDTy0yRlZJQjQyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkREOC9GMDQ4NTI0MjFEODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJ T0hkc0RjQ08tMkZWSUI0MmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAawtdzo5lNG20zPpYrx2o0nAHdsLC1PEQAFoft0TOWBRXyvQPLB2wz FW531hcHY6O6E/FATDHudYeE7NIU/Mb+oKGkqz1MMo4Kd9bWRaOuKktMuw19hbTJ DsK9FzPl28f6OG/E7WDr3siFDJ9M+DXRUxhAllkSCW2PN4+cdQ17a7aIoiQhDrjP UOHHd7zitrcp78uN/9y8komgsJEudGeHL/GNbi7zqvQAQ9Bmz1DPw7eHPjj6vhzw BlMnoe0SVUFG88CmeNofB3TKF97GFnF30/msDngpiOAnlycbetlc/FKtUInLoRA4 +8XE0g0iQ2I4cs4lTeLl2vgcs8i4WeKM -----END CERTIFICATE-----Generated at Sun Dec 21 17:26:52 2025 by rpki-client