This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft File: ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft (raw, json) Hash identifier: wSe5zTAOs8ruyQwSbANRuAzBcaKbN/SF+Sw+l+dG5xI= Subject key identifier: CE:5F:A4:4C:5C:EE:CA:D9:1B:3E:F9:97:A2:EB:97:BF:BA:09:4E:EF Authority key identifier: 66:73:0B:B9:A4:0B:35:CF:E5:9B:11:85:F6:22:DB:D0:90:0C:6D:90 Certificate issuer: /CN=A91100B2/serialNumber=66730BB9A40B35CFE59B1185F622DBD0900C6D90 Certificate serial: 0A72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft Manifest number: 120E Signing time: Mon 22 Dec 2025 19:03:11 +0000 Manifest this update: Mon 22 Dec 2025 19:03:11 +0000 Manifest next update: Mon 29 Dec 2025 19:03:11 +0000 Files and hashes: 1: ZnMLuaQLNc_lmxGF9iLb0JAMbZA.crl (hash: vVGBYsRYXfmvUXR/Uzzi3RftoHD/Syv1d+WcimBfQYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.crl rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2674 (0xa72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91100B2, serialNumber=66730BB9A40B35CFE59B1185F622DBD0900C6D90 Validity Not Before: Dec 22 19:03:11 2025 GMT Not After : Dec 29 19:03:11 2025 GMT Subject: CN=694995ef-1d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:d6:fd:aa:2a:d8:b0:f3:14:e0:a8:84:40: 18:a6:bb:e9:8c:92:e5:78:b0:12:d5:54:89:53:0d: e5:1e:46:c1:6f:3f:63:25:2e:5d:6e:35:ed:00:e9: 4b:18:2d:15:23:49:2d:1d:a1:4d:14:3f:02:2f:5e: 6d:3a:85:de:ae:6f:c2:68:8b:f5:4e:db:33:fc:43: 0f:21:dd:4f:64:72:27:e9:c9:a7:5c:0b:87:bb:46: 09:9c:11:50:1a:9e:c1:63:f7:75:5f:80:9f:1e:b8: 16:78:27:d2:dc:78:ca:1c:31:3d:be:f3:db:2e:0a: 08:4b:ee:98:45:af:fc:15:1b:af:91:2c:fa:cf:49: 75:68:b7:7c:42:33:c3:de:c3:0f:b3:a4:64:2b:14: f6:0e:c6:69:92:73:7e:f1:9b:8f:fd:6d:97:94:ee: 04:27:16:d1:42:b4:3d:e8:8d:ad:32:94:23:9d:ab: 72:36:70:ff:f4:36:0e:d2:c7:c5:aa:de:f4:84:3c: a9:1c:03:fe:c9:58:40:46:ad:52:1c:22:7d:4f:3a: fb:9a:e2:71:bb:6f:55:82:19:d4:2a:83:41:54:68: cc:5f:56:7e:62:70:d2:31:8a:88:d7:23:98:f2:11: 96:33:37:43:d8:40:23:c8:78:fb:78:ef:c5:78:90: d9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:5F:A4:4C:5C:EE:CA:D9:1B:3E:F9:97:A2:EB:97:BF:BA:09:4E:EF X509v3 Authority Key Identifier: keyid:66:73:0B:B9:A4:0B:35:CF:E5:9B:11:85:F6:22:DB:D0:90:0C:6D:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/ZnMLuaQLNc_lmxGF9iLb0JAMbZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:18:32:8a:4d:ad:fe:d8:54:26:75:d3:c5:9e:70:37:69:60: b5:39:a5:34:00:94:d2:80:c5:fa:59:ab:35:8c:85:c1:ea:0f: ea:bf:0d:5b:66:a7:12:f4:1b:98:60:66:72:bd:3e:c5:cc:be: 1c:20:4b:16:cd:1b:b1:70:5b:61:89:40:d2:58:86:4b:e1:28: 89:2b:68:8c:cb:35:dd:41:55:2b:62:3f:12:50:0c:90:40:1a: 49:17:64:de:6a:ec:cc:3b:cb:88:0a:dd:a0:d6:e8:73:70:71: 1c:13:3c:78:45:3d:68:b3:a4:ac:22:f8:85:b7:dc:4e:4d:70: b3:49:82:13:7a:99:87:40:f2:8b:6a:82:6f:ca:63:08:1b:b9: 71:3f:69:1f:54:d1:5f:4c:b4:4c:e5:a0:c7:3b:13:c4:31:0f: 9e:cf:3c:86:64:f8:6e:d1:8e:dc:c6:5b:33:79:91:30:cc:d3: 0a:d6:dc:b6:f5:d0:65:b2:4a:58:0d:ff:91:fc:c8:83:f5:38: 64:c5:01:39:4b:d7:cb:03:2f:de:58:44:1a:36:7f:43:2f:be: 58:d8:82:99:3d:59:ab:3c:71:f3:74:76:94:02:ec:37:24:d9: eb:ed:6a:81:67:ed:27:5e:f0:89:19:fc:03:9e:9b:21:56:f9: 9b:a2:03:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAwQjIxMTAvBgNVBAUTKDY2NzMwQkI5QTQwQjM1Q0ZFNTlCMTE4NUY2MjJEQkQw OTAwQzZEOTAwHhcNMjUxMjIyMTkwMzExWhcNMjUxMjI5MTkwMzExWjAYMRYwFAYD VQQDDA02OTQ5OTVlZi0xZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxbW/aoq2LDzFOCohEAYprvpjJLleLAS1VSJUw3lHkbBbz9jJS5dbjXtAOlL GC0VI0ktHaFNFD8CL15tOoXerm/CaIv1Ttsz/EMPId1PZHIn6cmnXAuHu0YJnBFQ Gp7BY/d1X4CfHrgWeCfS3HjKHDE9vvPbLgoIS+6YRa/8FRuvkSz6z0l1aLd8QjPD 3sMPs6RkKxT2DsZpknN+8ZuP/W2XlO4EJxbRQrQ96I2tMpQjnatyNnD/9DYO0sfF qt70hDypHAP+yVhARq1SHCJ9Tzr7muJxu29VghnUKoNBVGjMX1Z+YnDSMYqI1yOY 8hGWMzdD2EAjyHj7eO/FeJDZkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5fpExc 7srZGz75l6Lrl7+6CU7vMB8GA1UdIwQYMBaAFGZzC7mkCzXP5ZsRhfYi29CQDG2Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDBCMi8wQUY2RUIyQTcz RTgxMUVBODg1MUY4N0NDNEY5QUUwMi9abk1MdWFRTE5jX2xteEdGOWlMYjBKQU1i WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1puTUx1YVFMTmNfbG14R0Y5aUxiMEpBTWJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDBCMi8wQUY2RUIyQTczRTgxMUVBODg1MUY4N0NDNEY5QUUwMi9abk1MdWFRTE5j X2xteEdGOWlMYjBKQU1iWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUGDKKTa3+2FQmddPFnnA3aWC1OaU0AJTSgMX6Was1jIXB6g/qvw1b ZqcS9BuYYGZyvT7FzL4cIEsWzRuxcFthiUDSWIZL4SiJK2iMyzXdQVUrYj8SUAyQ QBpJF2TeauzMO8uICt2g1uhzcHEcEzx4RT1os6SsIviFt9xOTXCzSYITepmHQPKL aoJvymMIG7lxP2kfVNFfTLRM5aDHOxPEMQ+ezzyGZPhu0Y7cxlszeZEwzNMK1ty2 9dBlskpYDf+R/MiD9ThkxQE5S9fLAy/eWEQaNn9DL75Y2IKZPVmrPHHzdHaUAuw3 JNnr7WqBZ+0nXvCJGfwDnpshVvmbogMm -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:02 2025 by rpki-client