This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: c5RszNXQZfhNev+jjGx36qTToFpSkEJckWD9FJoDUxU= Subject key identifier: D2:31:49:16:D1:86:F5:D7:7C:6A:7C:E6:E3:9B:EE:47:2D:3E:97:EA Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 040B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 0407 Signing time: Sat 20 Dec 2025 23:39:56 +0000 Manifest this update: Sat 20 Dec 2025 23:39:56 +0000 Manifest next update: Sat 27 Dec 2025 23:39:56 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: ZJEGrB0gC5wVLFXoEYyOur2aOifBFlupwCjnf4LWUL8=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Dec 20 23:39:56 2025 GMT Not After : Dec 27 23:39:56 2025 GMT Subject: CN=694733cc-1a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d3:ba:42:1d:bd:07:80:fc:d8:bf:20:e2:d1: 06:65:c6:86:7b:48:11:7b:f8:d1:40:09:a8:e4:60: 41:f0:85:e9:02:1c:cd:fe:9a:d3:cd:d1:fc:f8:83: 66:18:82:fb:c3:61:c7:71:99:4d:59:b4:b9:ae:8b: 59:6f:f8:d5:2e:1f:e8:8e:a1:f8:9a:9b:46:98:47: 28:ce:e6:7a:24:80:2f:bb:ff:1b:03:77:b9:00:91: 5d:c4:64:6c:b3:51:cf:83:df:f8:57:ef:25:33:eb: f6:80:1b:89:b6:05:3b:64:e8:e8:1d:2c:7f:4e:72: 9a:42:68:9f:da:f5:c4:bb:30:9b:df:01:b0:e2:a2: c0:48:8b:a8:51:4b:60:78:0d:19:55:74:2c:f5:6c: 00:2a:88:b7:02:91:d0:01:8e:63:cb:0f:fc:11:cc: ae:28:9d:b4:81:8e:d1:eb:1c:9b:34:95:d4:56:7e: ab:24:f2:05:ac:f2:3b:f8:e2:95:35:d4:ea:02:68: 2a:3d:1f:75:b5:f7:de:4d:14:70:0f:68:82:14:7f: d7:c8:d9:58:f3:6c:07:26:b4:0d:c6:f1:0c:2f:f2: ea:e6:e8:96:0a:2f:29:5f:69:a8:12:b2:1a:7e:ec: 6e:71:ef:8a:8e:9b:74:17:0b:28:6f:db:f3:04:b4: 25:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:31:49:16:D1:86:F5:D7:7C:6A:7C:E6:E3:9B:EE:47:2D:3E:97:EA X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ee:b1:a4:09:1e:dd:7b:c1:bd:a0:9a:44:d4:3e:49:a0:ef: c4:b6:fa:4a:47:4a:b5:96:b3:2f:92:aa:fb:85:5c:72:30:2a: da:6a:ea:86:00:69:70:d8:ef:6f:84:2d:3a:8b:75:e0:64:e4: c0:f7:c0:8d:84:7f:f4:03:95:c6:d8:29:7c:4b:85:5b:c8:cf: 8d:c2:25:06:93:b7:8d:41:ac:dc:20:ba:b9:e3:a5:3d:b8:bc: 65:e8:d5:b6:07:1f:0f:13:92:42:09:72:d6:2a:8a:b4:c9:b6: d1:45:93:e0:04:88:e6:b4:2d:d2:2e:bf:62:31:d7:fb:51:95: 9e:a9:58:78:7b:d5:c9:dc:8d:17:06:a2:b1:4e:39:53:d7:1c: c2:ee:12:ac:b3:13:3e:e6:18:11:12:af:1d:dd:ac:81:d0:4d: ef:ff:12:26:ef:23:97:6f:40:34:c2:f6:11:74:65:35:34:05: e3:3e:93:1b:44:74:85:d0:c3:df:4c:39:ab:09:38:42:1c:19: 84:78:a7:8a:07:bc:42:ec:48:70:9b:ff:fb:45:7b:1b:22:79: 4b:6c:9b:07:c8:b0:36:a2:30:d3:f4:f2:2f:fa:a0:9f:48:48: c3:09:f9:b5:c3:22:56:59:62:50:0a:c4:27:74:cb:2f:35:2c: 13:65:86:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUxMjIwMjMzOTU2WhcNMjUxMjI3MjMzOTU2WjAYMRYwFAYD VQQDDA02OTQ3MzNjYy0xYThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNO6Qh29B4D82L8g4tEGZcaGe0gRe/jRQAmo5GBB8IXpAhzN/prTzdH8+INm GIL7w2HHcZlNWbS5rotZb/jVLh/ojqH4mptGmEcozuZ6JIAvu/8bA3e5AJFdxGRs s1HPg9/4V+8lM+v2gBuJtgU7ZOjoHSx/TnKaQmif2vXEuzCb3wGw4qLASIuoUUtg eA0ZVXQs9WwAKoi3ApHQAY5jyw/8EcyuKJ20gY7R6xybNJXUVn6rJPIFrPI7+OKV NdTqAmgqPR91tffeTRRwD2iCFH/XyNlY82wHJrQNxvEML/Lq5uiWCi8pX2moErIa fuxuce+Kjpt0Fwsob9vzBLQlKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIxSRbR hvXXfGp85uOb7kctPpfqMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA37rGkCR7de8G9oJpE1D5JoO/EtvpKR0q1lrMvkqr7hVxyMCraauqG AGlw2O9vhC06i3XgZOTA98CNhH/0A5XG2Cl8S4VbyM+NwiUGk7eNQazcILq546U9 uLxl6NW2Bx8PE5JCCXLWKoq0ybbRRZPgBIjmtC3SLr9iMdf7UZWeqVh4e9XJ3I0X BqKxTjlT1xzC7hKssxM+5hgREq8d3ayB0E3v/xIm7yOXb0A0wvYRdGU1NAXjPpMb RHSF0MPfTDmrCThCHBmEeKeKB7xC7Ehwm//7RXsbInlLbJsHyLA2ojDT9PIv+qCf SEjDCfm1wyJWWWJQCsQndMsvNSwTZYZU -----END CERTIFICATE-----Generated at Sun Dec 21 12:01:25 2025 by rpki-client