This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft File: z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json) Hash identifier: HvOULfG6cGUYmkaqZGKS5n/qeZukfIjahiUsq5PTdBM= Subject key identifier: DD:CC:C7:75:66:A4:2F:68:71:D7:1B:F3:A3:03:F7:61:0F:9D:B4:E7 Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft Manifest number: D5 Signing time: Tue 23 Dec 2025 04:40:54 +0000 Manifest this update: Tue 23 Dec 2025 04:40:54 +0000 Manifest next update: Tue 30 Dec 2025 04:40:54 +0000 Files and hashes: 1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: nKYUlO7mbjhDZ6QVlUMWGE1vl/uq/hrBSK8x3fOoYWw=) 2: F2DF64BAD28511F0A20E5C80C4F9AE02.roa (hash: s1vpGIKirgtSHmf9KuCxnuNf6mZcAnxglDUHzp5/fcY=) 3: A48892E4DE4A11EFACE66748C4F9AE02.roa (hash: FavPk/VPzNmdyfzTqwHdLB9v/tbBaIwGatOG8UgLR7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E, serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Validity Not Before: Dec 23 04:40:54 2025 GMT Not After : Dec 30 04:40:54 2025 GMT Subject: CN=694a1d56-5984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4f:c2:d1:d6:b7:18:0e:25:f2:f8:76:5d:35: 52:d8:fe:86:e6:50:a2:64:1a:71:be:0f:b8:72:07: cf:57:ac:71:8f:c6:92:e2:5e:55:74:c5:42:ae:83: e6:fd:84:47:7a:51:be:1b:a9:6a:36:2c:62:de:a4: 4b:c7:ac:d1:14:53:15:d6:d5:ca:66:4d:a7:60:86: a7:9f:02:54:21:22:9e:36:d5:28:7c:07:6a:db:fa: d9:63:5e:b2:40:43:a7:53:e2:5c:b4:b7:f1:93:85: ae:7c:52:d5:34:ba:c1:65:26:c5:5d:8d:bf:c1:38: a0:1a:40:21:cb:e8:85:4c:fb:e6:00:db:9a:d8:e6: 24:a3:ae:d4:78:8e:43:4b:84:38:0e:39:cb:36:9d: 29:45:0b:f9:27:1a:78:ba:1b:27:be:a0:d7:ac:c3: e3:d1:4c:bf:4f:0f:7b:62:dd:c1:c7:a3:52:49:d1: bf:8a:af:79:bc:ab:5d:ce:c9:c5:5a:d8:17:c1:49: 84:03:eb:04:18:21:cc:c4:32:9e:2c:c2:f0:c0:cd: ea:4e:16:44:cd:9d:17:f9:b1:26:e0:28:30:e3:08: 55:16:26:c2:10:14:6c:4c:5d:01:ff:21:eb:0a:11: 8c:e6:c6:ea:62:f8:74:b1:7e:e1:99:6b:7b:24:e0: 83:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CC:C7:75:66:A4:2F:68:71:D7:1B:F3:A3:03:F7:61:0F:9D:B4:E7 X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e3:83:00:f0:bb:de:ec:e7:2b:91:56:18:13:b2:42:f7:e1: a9:33:2a:14:e6:2a:bf:3f:47:d6:79:2d:b2:31:a8:98:7c:e9: e5:f6:a8:26:c2:1d:f4:a6:0e:74:ee:e1:89:f1:4c:1a:74:de: 48:cf:43:12:d0:10:c2:a3:67:98:7f:be:c6:4c:9f:bd:ec:5e: cc:a4:78:f4:1f:03:1c:aa:77:b7:c2:b1:4e:83:26:5c:79:2d: 6f:56:2d:05:42:9e:57:6f:f1:1a:f3:51:79:04:d1:c6:53:85: 35:c1:1e:f3:78:21:a4:7b:77:fe:e4:53:06:c5:8e:bc:c6:e3: f1:fa:b5:1b:e9:50:7d:23:72:f0:f0:b1:9c:8a:ee:c2:2c:6e: 28:f0:4a:27:3f:6a:99:67:89:ba:7c:ce:85:c7:a0:90:98:ce: a2:08:d2:42:0f:9c:be:70:14:b3:aa:09:7e:21:1c:5e:aa:fa: 5a:bc:50:85:b7:f2:c5:fa:30:57:44:bf:8a:2d:11:61:a0:bc: 7c:5c:1e:f5:f5:d1:43:00:f8:4c:30:7f:18:c6:8f:ec:8c:e1: 29:36:6b:f1:f0:5a:72:2a:cd:52:d3:f3:2e:89:53:98:a6:5e: e7:0a:42:c2:9c:47:9f:2c:13:76:82:84:ed:f4:3a:fc:00:11: 69:b4:13:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU4N0UxMTAvBgNVBAUTKENGNzlDNjVGNEI1NTAxMEZCMjVDRTZDNDVCOEM5MTlE QjA5M0EzMkQwHhcNMjUxMjIzMDQ0MDU0WhcNMjUxMjMwMDQ0MDU0WjAYMRYwFAYD VQQDDA02OTRhMWQ1Ni01OTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U/C0da3GA4l8vh2XTVS2P6G5lCiZBpxvg+4cgfPV6xxj8aS4l5VdMVCroPm /YRHelG+G6lqNixi3qRLx6zRFFMV1tXKZk2nYIannwJUISKeNtUofAdq2/rZY16y QEOnU+JctLfxk4WufFLVNLrBZSbFXY2/wTigGkAhy+iFTPvmANua2OYko67UeI5D S4Q4DjnLNp0pRQv5Jxp4uhsnvqDXrMPj0Uy/Tw97Yt3Bx6NSSdG/iq95vKtdzsnF WtgXwUmEA+sEGCHMxDKeLMLwwM3qThZEzZ0X+bEm4Cgw4whVFibCEBRsTF0B/yHr ChGM5sbqYvh0sX7hmWt7JOCD5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3Mx3Vm pC9ocdcb86MD92EPnbTnMB8GA1UdIwQYMBaAFM95xl9LVQEPslzmxFuMkZ2wk6Mt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTg3RS84NDI4QjlFNkEx Q0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFRLXlYT2JFVzR5Um5iQ1Rv eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTg3RS84NDI4QjlFNkExQ0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFR LXlYT2JFVzR5Um5iQ1RveTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC644MA8Lve7OcrkVYYE7JC9+GpMyoU5iq/P0fWeS2yMaiYfOnl9qgm wh30pg507uGJ8UwadN5Iz0MS0BDCo2eYf77GTJ+97F7MpHj0HwMcqne3wrFOgyZc eS1vVi0FQp5Xb/Ea81F5BNHGU4U1wR7zeCGke3f+5FMGxY68xuPx+rUb6VB9I3Lw 8LGciu7CLG4o8EonP2qZZ4m6fM6Fx6CQmM6iCNJCD5y+cBSzqgl+IRxeqvpavFCF t/LF+jBXRL+KLRFhoLx8XB719dFDAPhMMH8Yxo/sjOEpNmvx8FpyKs1S0/MuiVOY pl7nCkLCnEefLBN2goTt9Dr8ABFptBOS -----END CERTIFICATE-----Generated at Wed Dec 24 21:06:34 2025 by rpki-client