This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: 54MoDyNqZT0zAU8VwTUe1ErMaYFbbk0pPp948M53xME= Subject key identifier: 06:CF:44:2D:22:02:22:F3:F8:B7:0B:AA:D4:30:DA:07:72:CC:D6:9D Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: FC Signing time: Sun 21 Dec 2025 04:19:02 +0000 Manifest this update: Sun 21 Dec 2025 04:19:01 +0000 Manifest next update: Sun 28 Dec 2025 04:19:01 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: 6OGZFKo3Xx73fIWmY9NU9DmgJbQo4zsUQZRUOnNaMYw=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: nTbnCk4P5H9oOH4eL195jhnWczLlGOgjmjreKYWM0EU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Dec 21 04:19:01 2025 GMT Not After : Dec 28 04:19:01 2025 GMT Subject: CN=69477536-4756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b4:57:b6:ee:39:cd:87:96:90:9a:ce:66:19: 5b:a0:b8:1f:5c:cd:12:79:3b:6f:15:82:26:39:40: 8f:ac:da:ee:32:43:dc:87:11:4c:2e:06:b5:49:56: bb:6e:5c:30:c1:61:ae:32:d7:c3:47:4b:1e:9d:14: 4a:18:f4:60:82:92:ca:11:2c:1b:6b:50:95:ff:d0: 40:04:6f:be:ff:a9:b2:5a:6b:0d:42:d8:c0:69:38: 96:88:13:2d:d8:ec:8d:0c:18:3c:64:a4:fc:7d:7f: 06:a8:ea:36:d0:0a:3c:b6:3e:39:9b:58:e8:50:cf: 50:ca:21:79:85:02:45:cb:d8:8c:77:18:08:d0:32: ca:41:d3:15:d1:2a:7a:ee:93:9f:03:76:d2:57:c3: 07:09:2b:5a:6f:7c:9e:a3:ae:db:e5:25:c6:59:a2: 34:c1:2a:38:9f:dd:b1:0d:b5:9b:d8:9e:11:3d:0d: 23:5a:aa:f8:29:51:96:9f:57:95:d7:25:08:9b:ad: 8c:b5:c5:c7:de:e9:0e:4e:9b:65:16:79:47:2c:55: 5b:66:b3:34:4e:2d:26:52:c7:f9:f1:19:d4:f7:cd: 8b:16:b0:5c:f8:50:2f:59:81:70:a7:cb:70:ab:e6: dc:e7:db:17:70:6b:4f:1e:79:3c:27:32:02:47:7c: af:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:CF:44:2D:22:02:22:F3:F8:B7:0B:AA:D4:30:DA:07:72:CC:D6:9D X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:5a:71:ec:7e:29:60:8f:56:50:02:d4:98:f3:e9:ce:fc:bb: 13:ce:76:d9:5c:87:e9:95:98:81:0a:fb:5d:5d:f1:07:3e:3a: 57:0a:4e:3c:16:90:0c:f8:a0:82:e3:6e:fc:dd:87:69:9b:f5: 3d:4a:d2:87:a6:c8:72:63:2c:72:93:73:62:a3:04:32:3b:b3: 5a:0f:c7:6a:49:a5:21:82:e9:53:cd:80:38:b6:72:53:1c:23: 3b:e7:dc:fe:be:ec:f1:df:e6:5a:d7:8d:98:42:e4:35:60:5e: 59:09:6a:fd:9f:23:49:05:ae:a1:62:54:0e:1b:a4:d9:d2:f1: 00:b8:44:1e:49:75:f9:88:6b:8d:33:6c:f2:5a:ea:9c:39:e4: 5d:d9:b5:b7:d0:99:1f:80:7c:60:fb:0b:98:a0:3b:a9:19:48: f0:51:40:ff:6a:c2:54:e6:2a:aa:8d:c1:75:33:66:3f:c4:a5: 90:5d:c4:cb:54:8e:f1:9d:25:c4:44:b0:82:c3:f7:dd:91:cf: d7:a1:0b:04:80:57:5b:3b:37:fb:90:2e:55:44:5a:c9:c4:2e: 1c:c6:52:30:8b:d5:f4:14:23:66:40:91:1c:9f:2e:e5:bb:56: eb:0c:bb:0d:72:37:fe:5e:29:b4:f3:ff:b2:85:87:34:c8:dc: 28:08:0e:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjUxMjIxMDQxOTAxWhcNMjUxMjI4MDQxOTAxWjAYMRYwFAYD VQQDDA02OTQ3NzUzNi00NzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprRXtu45zYeWkJrOZhlboLgfXM0SeTtvFYImOUCPrNruMkPchxFMLga1SVa7 blwwwWGuMtfDR0senRRKGPRggpLKESwba1CV/9BABG++/6myWmsNQtjAaTiWiBMt 2OyNDBg8ZKT8fX8GqOo20Ao8tj45m1joUM9QyiF5hQJFy9iMdxgI0DLKQdMV0Sp6 7pOfA3bSV8MHCStab3yeo67b5SXGWaI0wSo4n92xDbWb2J4RPQ0jWqr4KVGWn1eV 1yUIm62MtcXH3ukOTptlFnlHLFVbZrM0Ti0mUsf58RnU982LFrBc+FAvWYFwp8tw q+bc59sXcGtPHnk8JzICR3yvewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbPRC0i AiLz+LcLqtQw2gdyzNadMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIWnHsfilgj1ZQAtSY8+nO/LsTznbZXIfplZiBCvtdXfEHPjpXCk48 FpAM+KCC42783Ydpm/U9StKHpshyYyxyk3NiowQyO7NaD8dqSaUhgulTzYA4tnJT HCM759z+vuzx3+Za142YQuQ1YF5ZCWr9nyNJBa6hYlQOG6TZ0vEAuEQeSXX5iGuN M2zyWuqcOeRd2bW30JkfgHxg+wuYoDupGUjwUUD/asJU5iqqjcF1M2Y/xKWQXcTL VI7xnSXERLCCw/fdkc/XoQsEgFdbOzf7kC5VRFrJxC4cxlIwi9X0FCNmQJEcny7l u1brDLsNcjf+Xim08/+yhYc0yNwoCA6+ -----END CERTIFICATE-----Generated at Sun Dec 21 06:08:21 2025 by rpki-client