This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: HS5w8cuNe2OUfbCvlfct5rvFj4t17dZeh7lvlaff8q8= Subject key identifier: 8D:15:F9:EB:5C:DB:7A:4A:6B:02:7B:8F:40:34:2C:74:BD:9A:46:96 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 038F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 038A Signing time: Fri 19 Dec 2025 00:03:28 +0000 Manifest this update: Fri 19 Dec 2025 00:03:27 +0000 Manifest next update: Fri 26 Dec 2025 00:03:27 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: 3poez5jSkpJq4BYW2S0R/l2L9wLcVaTWk0xvD/1UDyU=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qH/kmALWQxd9w+o7ml/PHWheO95UYxgo26aceJX0/p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 911 (0x38f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: Dec 19 00:03:27 2025 GMT Not After : Dec 26 00:03:27 2025 GMT Subject: CN=69449650-734e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:89:4f:be:80:9c:f8:b7:c1:3e:a0:1d:f0:45: 00:ed:8c:84:72:c2:c9:15:dd:b3:ea:d4:31:b2:77: 66:6f:43:5d:0a:42:41:c9:67:53:1e:34:68:61:e6: 69:88:3d:08:cb:9d:59:02:dc:9f:89:7c:55:04:33: fc:a0:c6:42:53:1a:a5:87:bd:fc:ed:2a:71:44:8d: 44:70:a9:85:7f:58:f0:35:09:b9:98:a4:c5:0b:94: 34:11:8e:b8:19:10:03:60:eb:bb:a9:e6:1c:4c:6f: 9e:56:da:19:4c:3a:e7:50:8c:56:bc:ce:05:dc:31: 64:47:fc:51:f7:34:68:76:81:99:c8:3d:8a:19:90: ce:10:4e:ab:b9:64:ec:80:bf:09:35:a8:f8:1e:87: f9:9f:8e:73:cf:82:4f:d7:87:0c:57:a2:2a:f7:6f: a4:d7:24:7a:1a:a6:6e:19:c4:37:12:7e:20:c1:f5: 97:08:2a:7c:5a:26:35:37:f5:1d:55:4b:bb:06:25: 97:70:eb:d8:89:31:e8:2f:6f:c4:2e:af:bc:5c:8b: 0f:b7:af:5a:2f:c4:e9:6d:d0:17:f7:a6:2b:65:99: e5:dc:32:1c:b9:be:37:da:63:79:39:72:57:3a:d8: 39:0b:f0:02:4a:09:c2:b2:c1:71:bf:d7:c2:b2:c9: f9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:15:F9:EB:5C:DB:7A:4A:6B:02:7B:8F:40:34:2C:74:BD:9A:46:96 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:c2:46:06:1a:6c:f5:bc:55:d4:08:3d:7f:b8:71:9a:db:3e: b2:e5:9f:69:ab:1e:7b:b9:c1:e7:25:60:e1:34:89:f3:e1:6d: 60:3a:97:bb:5d:10:16:0b:3f:dc:f7:76:95:85:d9:1e:81:dd: 77:a4:fe:6d:14:00:01:56:16:f9:11:21:b7:a4:92:84:4f:32: 46:17:f7:c4:55:55:81:62:25:34:df:ac:4f:41:23:5a:e4:d7: db:94:b6:ab:c8:2f:4a:60:67:d0:41:e4:7c:41:a2:b0:56:b3: 29:d0:a0:1d:af:ce:f8:86:4b:62:57:28:f2:4c:1a:50:60:e8: b5:9b:67:5e:cc:e0:23:b3:7b:ad:fa:59:31:65:57:1a:56:0d: 0b:f7:7d:d4:38:c0:1e:31:2f:69:b9:be:87:9c:0d:96:8e:2b: 4b:04:9f:f5:5c:8d:e4:ae:1c:7f:48:18:a6:80:80:4a:38:38: 10:9b:0a:ed:94:c1:76:e6:69:90:70:6c:9d:a1:28:1b:08:1a: a9:82:65:ea:d0:65:ac:39:49:fb:1e:fa:61:d1:3a:b4:5a:ab: 25:ef:03:77:49:d4:2f:b0:56:2f:b0:b8:0b:55:10:f3:f0:17: 0b:27:07:1f:22:22:c1:65:8f:52:49:16:27:0f:fd:08:6b:2e: dd:8a:3e:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUxMjE5MDAwMzI3WhcNMjUxMjI2MDAwMzI3WjAYMRYwFAYD VQQDDA02OTQ0OTY1MC03MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0olPvoCc+LfBPqAd8EUA7YyEcsLJFd2z6tQxsndmb0NdCkJByWdTHjRoYeZp iD0Iy51ZAtyfiXxVBDP8oMZCUxqlh7387SpxRI1EcKmFf1jwNQm5mKTFC5Q0EY64 GRADYOu7qeYcTG+eVtoZTDrnUIxWvM4F3DFkR/xR9zRodoGZyD2KGZDOEE6ruWTs gL8JNaj4Hof5n45zz4JP14cMV6Iq92+k1yR6GqZuGcQ3En4gwfWXCCp8WiY1N/Ud VUu7BiWXcOvYiTHoL2/ELq+8XIsPt69aL8TpbdAX96YrZZnl3DIcub432mN5OXJX Otg5C/ACSgnCssFxv9fCssn5FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0V+etc 23pKawJ7j0A0LHS9mkaWMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTwkYGGmz1vFXUCD1/uHGa2z6y5Z9pqx57ucHnJWDhNInz4W1gOpe7 XRAWCz/c93aVhdkegd13pP5tFAABVhb5ESG3pJKETzJGF/fEVVWBYiU036xPQSNa 5NfblLaryC9KYGfQQeR8QaKwVrMp0KAdr874hktiVyjyTBpQYOi1m2dezOAjs3ut +lkxZVcaVg0L933UOMAeMS9pub6HnA2WjitLBJ/1XI3krhx/SBimgIBKODgQmwrt lMF25mmQcGydoSgbCBqpgmXq0GWsOUn7Hvph0Tq0Wqsl7wN3SdQvsFYvsLgLVRDz 8BcLJwcfIiLBZY9SSRYnD/0Iay7dij7e -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:37 2025 by rpki-client