This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: 9IEstKqyyYRzOH0nkianBHcFBv8SUBeIFStW6AQGz0Y= Subject key identifier: 0C:8F:94:94:F0:32:44:8D:04:56:BD:6C:48:C4:D3:B9:88:97:7C:36 Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 0878 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 0872 Signing time: Thu 18 Dec 2025 20:07:06 +0000 Manifest this update: Thu 18 Dec 2025 20:07:06 +0000 Manifest next update: Thu 25 Dec 2025 20:07:06 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: +MpDvPNu4wmwpo4KYPmXwRxr6+XeZukbfqyxlOS/xN8=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Dec 18 20:07:06 2025 GMT Not After : Dec 25 20:07:06 2025 GMT Subject: CN=69445eea-2e0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:44:ee:d4:3c:e0:ae:2f:95:c1:0b:37:9f:e2: 17:5d:56:0c:1e:50:ad:76:da:ed:4b:51:8b:ac:1e: 9f:3b:39:ab:cb:15:7e:89:55:ec:05:fd:55:63:99: 04:16:3d:1d:88:39:e3:07:17:1f:58:a7:ed:7d:0e: 0a:bc:93:f9:08:21:1b:e4:3f:33:b0:63:bc:0e:07: b7:8f:48:65:97:29:16:aa:49:ac:69:07:3b:e0:ab: 9e:7f:fb:73:9e:4b:fd:cc:ed:9b:86:2a:9a:0d:23: ce:47:e9:15:77:6b:2e:14:9a:6b:af:09:e6:98:db: 5b:5f:07:6a:c7:b4:8e:f4:d7:96:ff:a4:2a:7d:71: fd:77:3a:f2:da:82:57:99:46:6c:a5:c7:41:bb:88: 54:52:d0:fe:52:fa:e2:9a:df:61:c0:5c:9a:f7:a6: 70:48:22:9c:af:e2:e6:03:41:77:5d:e0:03:bf:b8: 1a:3b:a8:61:fa:fd:37:85:dc:59:21:78:52:8f:e4: f5:8b:df:76:17:04:c6:9c:7d:e0:d2:07:d4:98:82: c3:b9:95:3e:fd:35:a0:2f:d5:96:2f:d1:94:03:08: 60:b6:f2:a2:f6:3a:07:a6:9d:c3:86:d8:fd:fe:12: 25:c2:da:1c:22:68:46:d7:39:dc:ca:18:f9:cb:5a: bc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:8F:94:94:F0:32:44:8D:04:56:BD:6C:48:C4:D3:B9:88:97:7C:36 X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:e5:59:d6:7b:79:a7:ab:0a:d0:cb:1a:1d:e6:1e:0a:b4:bf: 33:40:c9:d3:95:4a:bd:b8:4d:4b:f8:c5:03:50:17:07:ba:86: 37:bc:b8:52:1b:3c:f2:fc:6a:2a:02:1a:fc:5f:62:66:ad:88: 2f:a6:88:78:15:c7:02:4c:16:38:1c:f4:0f:16:75:1b:4f:e5: af:22:ca:a7:9d:5e:2d:6c:34:1d:c6:39:f3:8a:00:4d:80:44: f7:15:39:bd:57:ef:ba:cc:ab:5b:db:b2:07:85:bd:0e:7f:78: 76:b4:1c:ad:f5:b4:42:1c:c0:29:20:7a:f1:8b:2c:e4:58:e4: 9e:be:e7:89:3f:d0:f4:4c:50:4a:2e:b8:1f:51:73:d1:66:4f: d4:90:76:67:fd:01:63:0e:a5:dd:fc:74:58:be:ed:f9:4a:53: ab:10:00:36:e1:df:0d:bc:15:1d:30:ef:1d:44:07:72:ae:a3: 3d:61:54:ee:2a:15:bb:b3:03:a7:5e:94:a4:40:11:d4:cd:18: b8:e2:2d:c4:50:cb:4f:b1:0f:ff:d0:68:72:1f:a7:00:15:21: 1a:c1:17:0c:f7:65:03:14:7d:5a:76:bc:4b:07:e4:76:df:b6: 69:20:87:4b:36:75:fc:28:8e:47:4b:fc:37:0b:4f:10:85:b8: 07:2f:54:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjUxMjE4MjAwNzA2WhcNMjUxMjI1MjAwNzA2WjAYMRYwFAYD VQQDDA02OTQ0NWVlYS0yZTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kTu1Dzgri+VwQs3n+IXXVYMHlCtdtrtS1GLrB6fOzmryxV+iVXsBf1VY5kE Fj0diDnjBxcfWKftfQ4KvJP5CCEb5D8zsGO8Dge3j0hllykWqkmsaQc74Kuef/tz nkv9zO2bhiqaDSPOR+kVd2suFJprrwnmmNtbXwdqx7SO9NeW/6QqfXH9dzry2oJX mUZspcdBu4hUUtD+Uvrimt9hwFya96ZwSCKcr+LmA0F3XeADv7gaO6hh+v03hdxZ IXhSj+T1i992FwTGnH3g0gfUmILDuZU+/TWgL9WWL9GUAwhgtvKi9joHpp3Dhtj9 /hIlwtocImhG1zncyhj5y1q80QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyPlJTw MkSNBFa9bEjE07mIl3w2MB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt5VnWe3mnqwrQyxod5h4KtL8zQMnTlUq9uE1L+MUDUBcHuoY3vLhS Gzzy/GoqAhr8X2JmrYgvpoh4FccCTBY4HPQPFnUbT+WvIsqnnV4tbDQdxjnzigBN gET3FTm9V++6zKtb27IHhb0Of3h2tByt9bRCHMApIHrxiyzkWOSevueJP9D0TFBK LrgfUXPRZk/UkHZn/QFjDqXd/HRYvu35SlOrEAA24d8NvBUdMO8dRAdyrqM9YVTu KhW7swOnXpSkQBHUzRi44i3EUMtPsQ//0GhyH6cAFSEawRcM92UDFH1adrxLB+R2 37ZpIIdLNnX8KI5HS/w3C08QhbgHL1QF -----END CERTIFICATE-----Generated at Fri Dec 19 18:58:10 2025 by rpki-client