This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft File: cZYTj9n8jHj-hDolPLBICtzFfw0.mft (raw, json) Hash identifier: otSZX33dh8KUdoWUKJp8cwS+0pO92rNY+dBEme4DJy4= Subject key identifier: 1E:FC:9E:0B:E6:8A:C0:06:0C:0A:D2:0A:D9:94:A4:BF:36:59:58:EA Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 0835 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft Manifest number: 0829 Signing time: Sat 20 Dec 2025 20:15:05 +0000 Manifest this update: Sat 20 Dec 2025 20:15:04 +0000 Manifest next update: Sat 27 Dec 2025 20:15:04 +0000 Files and hashes: 1: cZYTj9n8jHj-hDolPLBICtzFfw0.crl (hash: 6aUfqI5XNpt+YTwpmjAY4GAkQVELQKi4Svr93jO2+hg=) 2: 9920D2E6F7C611EA8B23C30CC4F9AE02.roa (hash: aPoLWPstwsO+freisIa5/qBSIqgnIR7f63xsHuA2Fdc=) 3: 986F0854F7C611EA8B23C30CC4F9AE02.roa (hash: nZkvb14BrukF0xrl+mqOEwQXndGaGVD7etvG6n2ebqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2101 (0x835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590, serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Dec 20 20:15:04 2025 GMT Not After : Dec 27 20:15:04 2025 GMT Subject: CN=694703c8-06ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:48:b0:61:86:1a:06:ac:72:58:84:b8:04:52: 28:a5:5d:01:bf:8b:b6:78:20:18:bb:45:6f:51:2b: e8:52:77:ea:76:6d:0a:4a:de:40:d4:20:c7:ec:de: 79:18:92:74:08:0f:9a:55:7e:f9:38:06:39:c8:2c: b8:d5:5c:ba:d1:40:09:9c:52:87:e1:e8:31:0e:90: 00:ce:84:97:a8:02:89:5f:01:21:80:4e:71:a3:af: 6f:af:61:b8:54:a9:9f:45:58:ce:44:55:7d:58:43: 12:4c:bb:e0:c4:97:4d:63:2a:18:10:34:46:8b:01: 64:6f:9f:3e:e3:25:50:85:fd:d6:25:33:86:3b:9f: f0:f1:84:fe:96:70:7c:cd:31:24:eb:96:63:95:46: 6c:37:fb:03:ed:13:9b:19:63:74:5a:d3:34:c5:58: eb:0c:19:9e:0a:f4:5e:7a:0c:5f:9d:f8:e0:fb:98: 28:fe:e9:b8:2b:12:2f:a1:0a:55:e3:00:05:f2:59: 84:12:30:08:d1:da:cb:4f:aa:2a:34:19:c2:fa:e6: b5:5a:34:3b:1b:01:fc:85:bf:c8:ee:7f:d6:3a:3e: 10:39:97:ec:e4:c5:57:2d:c8:e4:86:ff:c9:23:6e: 53:69:f9:9f:19:df:6d:02:ac:15:d8:a7:3e:5f:3d: ad:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FC:9E:0B:E6:8A:C0:06:0C:0A:D2:0A:D9:94:A4:BF:36:59:58:EA X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:1c:38:1b:28:8f:37:41:9a:6a:39:10:c0:06:f7:1c:7f:ac: 36:45:46:ae:29:f9:df:2d:87:a1:5f:0b:4a:82:66:0d:6b:85: 04:da:46:b1:b7:bc:1c:3f:ab:4b:9d:33:8a:75:46:61:2d:d5: 99:b8:2e:ce:2e:af:d7:a4:19:de:40:f8:04:2a:94:b7:8a:3b: 7d:52:11:d0:93:a6:e9:c1:5f:8a:e9:70:a9:0a:93:c5:0c:ca: 22:d9:61:6c:39:b8:3e:c0:c8:59:59:39:54:fc:33:6a:64:27: 49:56:1b:02:36:11:aa:5f:d4:2b:b8:b8:3b:e8:56:32:f1:51: dc:92:0e:36:15:09:ed:60:fc:4f:7a:83:b8:62:77:4f:02:32: 41:53:76:d9:b9:fc:f0:5c:cf:01:fa:5f:7c:5f:e6:7d:f2:77: 60:b6:8d:e6:22:af:9c:01:ef:69:50:16:a2:3d:b5:74:0d:2d: bc:b6:b9:72:0f:8a:77:03:6d:5b:25:04:45:c0:1f:15:46:6b: 77:e5:e0:94:31:7a:47:dc:26:73:e6:a5:12:b3:b1:f5:56:df: d7:71:5d:bb:3a:0b:4c:6d:00:e2:3a:b9:32:b5:0b:1d:72:ed: 25:0d:b8:77:29:89:46:a4:cd:11:71:fb:d4:6e:b9:0f:4e:67: 67:6d:52:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjUxMjIwMjAxNTA0WhcNMjUxMjI3MjAxNTA0WjAYMRYwFAYD VQQDDA02OTQ3MDNjOC0wNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUiwYYYaBqxyWIS4BFIopV0Bv4u2eCAYu0VvUSvoUnfqdm0KSt5A1CDH7N55 GJJ0CA+aVX75OAY5yCy41Vy60UAJnFKH4egxDpAAzoSXqAKJXwEhgE5xo69vr2G4 VKmfRVjORFV9WEMSTLvgxJdNYyoYEDRGiwFkb58+4yVQhf3WJTOGO5/w8YT+lnB8 zTEk65ZjlUZsN/sD7RObGWN0WtM0xVjrDBmeCvReegxfnfjg+5go/um4KxIvoQpV 4wAF8lmEEjAI0drLT6oqNBnC+ua1WjQ7GwH8hb/I7n/WOj4QOZfs5MVXLcjkhv/J I25TafmfGd9tAqwV2Kc+Xz2tXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB78ngvm isAGDArSCtmUpL82WVjqMB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTU5MC9BODk1MjQ5RUY3QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpI ai1oRG9sUExCSUN0ekZmdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxHDgbKI83QZpqORDABvccf6w2RUauKfnfLYehXwtKgmYNa4UE2kax t7wcP6tLnTOKdUZhLdWZuC7OLq/XpBneQPgEKpS3ijt9UhHQk6bpwV+K6XCpCpPF DMoi2WFsObg+wMhZWTlU/DNqZCdJVhsCNhGqX9QruLg76FYy8VHckg42FQntYPxP eoO4YndPAjJBU3bZufzwXM8B+l98X+Z98ndgto3mIq+cAe9pUBaiPbV0DS28trly D4p3A21bJQRFwB8VRmt35eCUMXpH3CZz5qUSs7H1Vt/XcV27OgtMbQDiOrkytQsd cu0lDbh3KYlGpM0RcfvUbrkPTmdnbVKk -----END CERTIFICATE-----Generated at Sun Dec 21 06:06:37 2025 by rpki-client