This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: Z5C20ltLKEzyRGtfeFvujPOTKLZqwJm7Rh6Uw9m4A/U= Subject key identifier: 38:F6:BD:9C:D0:3F:2D:06:57:CB:F5:7E:2F:C7:3C:B3:2D:F3:2A:B5 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CF1 Signing time: Wed 31 Dec 2025 17:51:26 +0000 Manifest this update: Wed 31 Dec 2025 17:51:25 +0000 Manifest next update: Wed 07 Jan 2026 17:51:25 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: BRxHBU78X0O+njpvS3Q6yZGupDZyQ8a1TxeYmVPZ290=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 17:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3320 (0xcf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Dec 31 17:51:25 2025 GMT Not After : Jan 7 17:51:25 2026 GMT Subject: CN=6955629e-823d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a7:ce:e3:5b:67:47:bf:e5:a7:87:e7:35:66: 6d:92:7f:87:82:ca:2c:79:11:28:5f:78:7b:c7:d0: 76:3f:a3:57:b3:4e:7b:7f:29:27:4f:16:85:ce:fa: c8:14:c3:0f:f4:ed:5e:b5:92:57:33:c5:19:09:d6: 3e:75:ad:53:e7:16:35:93:a4:b9:9b:b1:eb:e0:6a: ac:bc:ae:66:32:c6:d5:ce:40:47:a1:04:88:19:c6: e0:98:c8:45:00:cb:1b:79:ab:c3:f9:b5:77:8b:19: ca:72:80:ab:b0:2d:3a:5f:93:c7:e0:e0:9e:e1:e3: db:6d:b3:01:20:d6:f7:13:c7:78:82:3a:d7:64:b6: b3:e8:7f:67:fd:33:dd:97:63:9d:39:38:b0:4f:92: 6a:ea:a7:be:54:79:e1:e9:52:92:20:8e:82:57:e3: 4e:93:79:d8:e3:f6:59:84:7d:c2:c4:f8:40:50:12: 60:ae:b7:54:5a:99:92:2c:c3:a9:34:de:52:e7:98: f1:e1:e4:4d:4d:d2:9e:16:1e:68:f4:67:63:22:63: 5e:27:c1:3c:7d:59:d6:7c:da:6c:19:8b:8d:c0:16: a2:fb:c2:cc:15:4b:2c:2b:c5:d4:3c:e4:7a:14:05: 25:07:a8:57:6b:fb:9f:a9:14:47:04:2f:4a:db:b1: 62:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F6:BD:9C:D0:3F:2D:06:57:CB:F5:7E:2F:C7:3C:B3:2D:F3:2A:B5 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:a4:a1:59:75:c2:16:7a:47:22:95:aa:01:f0:4d:3b:e1:fb: f8:b6:6b:48:b0:af:0b:10:a8:92:44:9d:0f:23:7a:e6:f1:8e: 09:92:3d:d6:06:c6:21:8d:4c:0e:6a:d4:e1:e2:2a:e6:4d:bb: 18:56:45:24:22:42:47:6b:27:1e:64:39:60:a3:38:e3:06:5d: f9:8d:3a:c0:a8:4c:c1:21:9e:a1:b0:f2:04:c3:ed:b0:c4:b1: 86:a1:25:30:ee:5b:17:2b:f6:8f:72:67:e8:f7:05:26:da:99: c0:b5:bc:18:91:41:6c:d1:6f:73:2e:c9:bd:b5:c7:3c:b2:7f: 90:11:c3:c9:a6:96:b9:67:ce:4b:b0:40:7b:14:9a:60:73:37: ad:66:a5:51:aa:1f:19:d8:28:82:c7:cf:9f:0d:59:87:07:40: fd:bb:ca:28:56:cb:21:af:91:c8:c1:e8:36:7d:b6:b8:b9:09: 60:6e:90:d8:56:f9:39:c0:db:e3:89:74:68:a7:98:c2:16:b0: 52:bb:6a:55:07:29:94:a9:d9:d2:b0:c0:c5:f9:b7:10:e6:92: a4:58:bf:4c:be:46:b3:e5:47:33:7f:f6:de:68:81:b3:5c:cc: 64:b8:23:84:49:03:15:fe:aa:d3:8f:7a:d1:93:d2:4e:87:7d: ba:cb:44:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUxMjMxMTc1MTI1WhcNMjYwMTA3MTc1MTI1WjAYMRYwFAYD VQQDDA02OTU1NjI5ZS04MjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzafO41tnR7/lp4fnNWZtkn+HgsoseREoX3h7x9B2P6NXs057fyknTxaFzvrI FMMP9O1etZJXM8UZCdY+da1T5xY1k6S5m7Hr4GqsvK5mMsbVzkBHoQSIGcbgmMhF AMsbeavD+bV3ixnKcoCrsC06X5PH4OCe4ePbbbMBINb3E8d4gjrXZLaz6H9n/TPd l2OdOTiwT5Jq6qe+VHnh6VKSII6CV+NOk3nY4/ZZhH3CxPhAUBJgrrdUWpmSLMOp NN5S55jx4eRNTdKeFh5o9GdjImNeJ8E8fVnWfNpsGYuNwBai+8LMFUssK8XUPOR6 FAUlB6hXa/ufqRRHBC9K27FicQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDj2vZzQ Py0GV8v1fi/HPLMt8yq1MB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcpKFZdcIWekcilaoB8E074fv4tmtIsK8LEKiSRJ0PI3rm8Y4Jkj3W BsYhjUwOatTh4irmTbsYVkUkIkJHayceZDlgozjjBl35jTrAqEzBIZ6hsPIEw+2w xLGGoSUw7lsXK/aPcmfo9wUm2pnAtbwYkUFs0W9zLsm9tcc8sn+QEcPJppa5Z85L sEB7FJpgczetZqVRqh8Z2CiCx8+fDVmHB0D9u8ooVsshr5HIweg2fba4uQlgbpDY Vvk5wNvjiXRop5jCFrBSu2pVBymUqdnSsMDF+bcQ5pKkWL9Mvkaz5Uczf/beaIGz XMxkuCOESQMV/qrTj3rRk9JOh326y0Q4 -----END CERTIFICATE-----Generated at Thu Jan 1 11:02:38 2026 by rpki-client