This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft File: zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft (raw, json) Hash identifier: Rq/seWEd7Mh7igSi3WF9moI1DUAmEd64v/BFn9Lec9c= Subject key identifier: 13:74:39:33:11:32:E4:66:50:4F:07:9E:C7:24:56:6C:A5:C5:0C:A8 Authority key identifier: CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B Certificate issuer: /CN=A91DFA25/serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft Manifest number: 09 Signing time: Thu 01 Jan 2026 07:33:24 +0000 Manifest this update: Thu 01 Jan 2026 07:33:24 +0000 Manifest next update: Thu 08 Jan 2026 07:33:24 +0000 Files and hashes: 1: zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl (hash: cQm8UVT0Jr33Plqj2HBwT7lLzv0mcA30ifdjG1gzOEA=) 2: 9E283D22E07A11F0AD28F7913A6F56BC.roa (hash: kvLeQTrBrWwHA2shiEotr3VQqnyo8ZeA1spX1g7O3vU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 07:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFA25, serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Validity Not Before: Jan 1 07:33:24 2026 GMT Not After : Jan 8 07:33:24 2026 GMT Subject: CN=69562344-9fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:ee:72:af:f3:01:37:1a:dc:76:c0:02:a6: 79:4b:99:0f:30:72:4d:73:69:a2:df:45:9b:19:eb: 77:1c:8b:ab:d8:40:3c:44:c2:88:1b:5f:c7:b2:a4: 75:b5:08:ef:8e:2c:19:a8:ad:35:bc:fc:d1:4b:a7: 75:91:d9:0f:a6:ce:ab:8c:f2:23:d5:f1:70:19:77: ee:bd:d5:a9:f6:91:e3:7a:35:f5:13:97:0f:50:14: 7b:fc:91:a7:d4:a8:e7:0c:df:2c:00:8d:21:fc:cf: a2:61:56:db:df:0e:9d:76:b8:77:8e:48:6f:82:11: c1:98:df:c6:c6:2d:9e:f3:9c:44:95:14:46:e3:f7: b0:51:2a:1a:8c:b9:89:94:34:dc:d5:5e:fe:d2:87: 47:88:a3:00:79:dd:b0:6b:24:62:46:4e:2e:7f:ea: 17:e8:7d:c4:4c:45:1b:9c:8b:fd:b5:3a:2c:8a:47: 22:57:63:5b:b2:3f:65:9c:bb:73:75:6e:8a:e8:90: e3:97:65:2d:17:f9:c9:39:8e:13:2b:8b:76:04:b1: 08:c0:62:e1:d4:4e:7e:b6:8c:67:75:6c:92:00:1e: b3:b4:51:f7:3f:7f:7e:60:d0:71:18:2b:31:a5:59: cb:8c:1f:d3:2c:9a:1f:01:e4:71:60:cd:66:0b:73: d5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:74:39:33:11:32:E4:66:50:4F:07:9E:C7:24:56:6C:A5:C5:0C:A8 X509v3 Authority Key Identifier: keyid:CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:e9:0f:34:13:90:a4:81:f0:85:a2:25:83:71:23:64:3a:9f: 2f:23:81:1c:0e:8c:e2:00:63:93:6d:19:ef:98:97:a4:fe:09: a7:4f:c7:9e:41:b2:0b:8d:0d:4c:36:c4:c9:f4:74:a7:fe:0c: 01:c7:a4:19:e3:fd:84:56:7b:b5:81:2d:0f:b9:f3:b7:8a:d5: 7a:1e:93:25:7b:8b:ac:0f:83:96:b8:c5:9c:de:53:f0:b9:e5: 02:18:02:14:75:83:00:a1:cc:a1:cb:ab:92:8c:1b:0f:b1:3a: 77:a9:d4:e7:43:36:c8:18:8c:4f:67:88:a4:3b:fb:8c:4a:f2: 57:82:e4:fb:07:eb:5c:77:5a:74:46:00:e8:5a:f0:a1:01:66: 89:84:86:e1:c8:05:e3:01:81:18:90:4d:cd:eb:e2:64:04:2d: 7c:05:bf:aa:20:81:00:ea:3a:ed:b8:f2:89:51:97:b2:51:ef: 0b:8f:45:17:07:67:42:cc:74:f7:f0:9d:9f:73:85:82:2a:a2: bc:5b:8b:f6:01:dd:08:ab:3d:f5:4e:ab:46:b5:5a:be:ef:19: ad:17:e7:36:44:d1:0e:8e:ba:9f:29:10:f6:59:27:8a:dc:c5: 14:c1:4c:fd:f7:65:ee:69:f9:c8:37:32:a5:3b:08:d1:d4:1b: da:a1:2f:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFE RkEyNTExMC8GA1UEBRMoQ0M3MEQ4NzM0Mjg5RDMwNUE1MjMzQTk5QjA5Q0Q3OEI4 RkQ2NjY0QjAeFw0yNjAxMDEwNzMzMjRaFw0yNjAxMDgwNzMzMjRaMBgxFjAUBgNV BAMMDTY5NTYyMzQ0LTlmZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1De5yr/MBNxrcdsACpnlLmQ8wck1zaaLfRZsZ63cci6vYQDxEwogbX8eypHW1 CO+OLBmorTW8/NFLp3WR2Q+mzquM8iPV8XAZd+691an2keN6NfUTlw9QFHv8kafU qOcM3ywAjSH8z6JhVtvfDp12uHeOSG+CEcGY38bGLZ7znESVFEbj97BRKhqMuYmU NNzVXv7Sh0eIowB53bBrJGJGTi5/6hfofcRMRRuci/21OiyKRyJXY1uyP2Wcu3N1 borokOOXZS0X+ck5jhMri3YEsQjAYuHUTn62jGd1bJIAHrO0Ufc/f35g0HEYKzGl WcuMH9Msmh8B5HFgzWYLc9UlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE3Q5MxEy 5GZQTweexyRWbKXFDKgwHwYDVR0jBBgwFoAUzHDYc0KJ0wWlIzqZsJzXi4/WZksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGQTI1LzcwRjk3OEYyRTA3 NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdXbEl6cVpzSnpYaTRfV1pr cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekhEWWMwS0owd1dsSXpxWnNKelhpNF9XWmtzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG QTI1LzcwRjk3OEYyRTA3NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdX bEl6cVpzSnpYaTRfV1prcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHrpDzQTkKSB8IWiJYNxI2Q6ny8jgRwOjOIAY5NtGe+Yl6T+CadPx55B sguNDUw2xMn0dKf+DAHHpBnj/YRWe7WBLQ+587eK1XoekyV7i6wPg5a4xZzeU/C5 5QIYAhR1gwChzKHLq5KMGw+xOnep1OdDNsgYjE9niKQ7+4xK8leC5PsH61x3WnRG AOha8KEBZomEhuHIBeMBgRiQTc3r4mQELXwFv6oggQDqOu248olRl7JR7wuPRRcH Z0LMdPfwnZ9zhYIqorxbi/YB3QirPfVOq0a1Wr7vGa0X5zZE0Q6Oup8pEPZZJ4rc xRTBTP33Ze5p+cg3MqU7CNHUG9qhL2s= -----END CERTIFICATE-----Generated at Fri Jan 2 00:35:55 2026 by rpki-client