This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft File: ZI5HI0RBcbar4W19wDDonAbwUNw.mft (raw, json) Hash identifier: M7bjKznXXqhqQJpxnJBCynGr70HZ3FnOdwDR1WU2WTc= Subject key identifier: A7:6A:F7:86:F9:DD:35:FD:52:15:D4:45:B1:58:77:0A:34:91:D7:4F Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0B7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft Manifest number: 0B78 Signing time: Wed 24 Dec 2025 18:38:53 +0000 Manifest this update: Wed 24 Dec 2025 18:38:52 +0000 Manifest next update: Wed 31 Dec 2025 18:38:52 +0000 Files and hashes: 1: ZI5HI0RBcbar4W19wDDonAbwUNw.crl (hash: NCtzgfZgrloGK9KuWE3A9XIXxDKuEGXX/LlPbytrErs=) 2: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (hash: +N5jmkplHBxyDznfmd7ebgnemm9ct5hvDRURAbbUFuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2943 (0xb7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE, serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Dec 24 18:38:52 2025 GMT Not After : Dec 31 18:38:52 2025 GMT Subject: CN=694c333d-ad0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:77:d4:ff:8e:ba:5d:a2:e0:7b:86:a4:dd:aa: 06:c6:16:65:83:1c:58:15:0e:f9:fd:ac:f9:61:23: 0a:65:d1:c5:cb:ab:df:3a:87:19:e3:e4:2b:9e:dc: 82:94:2d:e8:49:5c:ff:f6:83:c3:dc:8b:e1:72:d9: 08:a6:2c:13:b2:28:5b:ec:fd:f9:0e:9d:bd:f8:44: 72:7a:7d:35:fe:75:e4:d7:f9:36:49:cd:09:d6:79: a1:c9:4e:1b:60:03:72:53:88:b8:00:de:91:89:04: b1:4e:3b:e1:21:9e:54:9f:16:77:f0:91:3b:44:ca: 57:01:df:b0:bd:b0:a8:e3:7b:00:14:8a:80:8c:8b: e7:4b:6e:0f:cc:b0:83:66:fa:6b:6b:d4:88:67:95: 43:34:e5:39:6d:7c:2b:0c:4b:c7:de:1a:76:e3:73: f8:eb:d7:d2:dc:5a:6a:02:a2:53:1a:b1:6a:c8:08: 3e:d3:00:4a:63:d0:7f:84:97:06:ea:bf:51:1f:82: 6e:94:1c:28:5b:1f:2d:ad:60:dc:b6:b7:fb:dd:72: b2:f8:f4:52:46:30:56:c6:8e:fd:ea:6b:3e:33:82: c0:64:0d:df:f4:df:49:d2:a2:37:98:44:c4:79:b8: 73:b3:62:4b:6c:3b:17:ac:54:53:ee:2d:7b:37:85: 46:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:6A:F7:86:F9:DD:35:FD:52:15:D4:45:B1:58:77:0A:34:91:D7:4F X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:58:45:fb:68:bf:25:e8:02:8e:97:9d:b7:9d:20:b1:db:c3: 26:15:9d:9a:70:14:7c:0f:e8:eb:15:0d:83:c1:e9:f9:44:29: 9b:36:59:32:34:81:87:ea:53:ca:8d:8b:f9:1a:c8:bd:01:06: 45:c3:02:38:24:4a:27:f2:d4:23:ef:f4:26:8b:7e:98:7c:26: af:28:15:73:82:c4:72:40:02:c9:c8:ae:13:64:91:63:74:64: f4:63:48:21:6b:05:b1:81:c0:c3:3a:ff:41:06:24:9c:59:0a: 49:be:92:23:12:08:55:3a:19:f6:33:7a:75:5a:4b:8b:17:43: 87:af:18:0a:77:ea:d9:75:9e:0b:ae:cf:7a:69:8a:e9:d1:6e: 74:9a:65:4e:93:8e:02:b7:2e:b7:87:8c:fe:2b:35:7e:db:c1: 55:b4:4f:28:15:f2:e4:58:83:76:e8:7c:f8:9d:e0:34:3d:14: 72:36:19:3a:2d:f8:08:f5:aa:61:eb:eb:fb:03:43:63:29:1c: 9f:a8:0c:5c:89:25:24:73:a2:10:47:38:27:f2:43:90:0e:f2: 32:62:3d:40:5f:f8:1c:32:fc:2c:60:40:19:d9:4d:96:53:9b: 43:af:66:f5:6d:a4:13:6f:15:89:b4:4d:2f:69:c2:b7:09:2c: 7f:0f:f2:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjUxMjI0MTgzODUyWhcNMjUxMjMxMTgzODUyWjAYMRYwFAYD VQQDDA02OTRjMzMzZC1hZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkXfU/466XaLge4ak3aoGxhZlgxxYFQ75/az5YSMKZdHFy6vfOocZ4+QrntyC lC3oSVz/9oPD3IvhctkIpiwTsihb7P35Dp29+ERyen01/nXk1/k2Sc0J1nmhyU4b YANyU4i4AN6RiQSxTjvhIZ5UnxZ38JE7RMpXAd+wvbCo43sAFIqAjIvnS24PzLCD Zvpra9SIZ5VDNOU5bXwrDEvH3hp243P469fS3FpqAqJTGrFqyAg+0wBKY9B/hJcG 6r9RH4JulBwoWx8trWDctrf73XKy+PRSRjBWxo796ms+M4LAZA3f9N9J0qI3mETE ebhzs2JLbDsXrFRT7i17N4VGmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdq94b5 3TX9UhXURbFYdwo0kddPMB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDhCRS9BMkM4MjdFRTQxMEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNi YXI0VzE5d0REb25BYndVTncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuWEX7aL8l6AKOl523nSCx28MmFZ2acBR8D+jrFQ2Dwen5RCmbNlky NIGH6lPKjYv5Gsi9AQZFwwI4JEon8tQj7/Qmi36YfCavKBVzgsRyQALJyK4TZJFj dGT0Y0ghawWxgcDDOv9BBiScWQpJvpIjEghVOhn2M3p1WkuLF0OHrxgKd+rZdZ4L rs96aYrp0W50mmVOk44Cty63h4z+KzV+28FVtE8oFfLkWIN26Hz4neA0PRRyNhk6 LfgI9aph6+v7A0NjKRyfqAxciSUkc6IQRzgn8kOQDvIyYj1AX/gcMvwsYEAZ2U2W U5tDr2b1baQTbxWJtE0vacK3CSx/D/IG -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:26 2025 by rpki-client