This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft File: zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft (raw, json) Hash identifier: rkzEG6qe3ovQaU5L+WuMuGVWv1hBtEFVRWa/3NI2kLw= Subject key identifier: 9B:CC:BF:21:58:A1:0E:6C:36:27:6B:8E:49:87:D1:1A:49:59:21:42 Authority key identifier: CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 Certificate issuer: /CN=A91565C6/serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft Manifest number: 99 Signing time: Sun 21 Dec 2025 05:29:02 +0000 Manifest this update: Sun 21 Dec 2025 05:29:01 +0000 Manifest next update: Sun 28 Dec 2025 05:29:01 +0000 Files and hashes: 1: zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl (hash: 7TL146ycfcsg1vggdF3GfAyB7keeZGU8U226MLdh/GQ=) 2: 296C92D0F5B611EFB7E6426EC4F9AE02.roa (hash: DAG2avo3wM4Iv7tiFSCw0I7iwE7NYk5jbcu93twLDNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91565C6, serialNumber=CD535C7EB31A40A3FDB8AC4D5D577AF9D6C58848 Validity Not Before: Dec 21 05:29:01 2025 GMT Not After : Dec 28 05:29:01 2025 GMT Subject: CN=6947859e-33da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:53:ed:89:bc:53:ee:bd:2a:95:21:16:70:24: f5:bc:c2:ad:ec:41:68:55:3a:19:77:83:35:97:dd: 31:3a:c6:b6:78:73:b7:da:29:23:bb:5b:7c:a0:dd: 25:bc:a8:e3:e4:fb:63:b4:23:25:1f:4f:c9:3d:d1: 6d:a1:0e:cd:53:19:46:45:6a:7a:b1:ef:82:b0:8d: 6f:6a:2a:db:59:22:aa:7c:b5:41:ef:42:a3:2a:61: e7:52:df:d8:2b:a8:70:95:ff:9d:f3:7a:ad:36:dd: 3e:a7:2b:cb:d0:f7:cd:21:4a:76:7c:d6:7e:4c:f9: 0f:44:d9:65:6f:ef:3e:69:56:46:75:d9:a7:45:2e: ec:c3:21:26:d8:d5:50:c5:f5:56:83:3b:cc:6a:ea: b5:ae:66:04:88:fb:7a:cd:e8:ee:3f:c8:e2:94:af: b8:49:c3:6c:3f:39:f3:79:1f:40:68:c0:1a:81:75: 3d:30:6c:ba:8b:cb:4c:34:64:1d:68:34:7f:ee:ff: 71:cf:48:b7:bb:5d:17:65:e0:94:20:82:b6:66:c1: 2b:da:f7:75:1a:c3:22:f4:8d:a4:3d:d6:53:86:2b: c6:7c:39:5c:5d:2e:bf:bb:97:13:85:50:59:82:f3: 36:5a:6b:7a:46:e6:3b:be:9f:2c:12:8e:8f:e1:bb: 1e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CC:BF:21:58:A1:0E:6C:36:27:6B:8E:49:87:D1:1A:49:59:21:42 X509v3 Authority Key Identifier: keyid:CD:53:5C:7E:B3:1A:40:A3:FD:B8:AC:4D:5D:57:7A:F9:D6:C5:88:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVNcfrMaQKP9uKxNXVd6-dbFiEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91565C6/D265B0C6F41F11EF81708868C4F9AE02/zVNcfrMaQKP9uKxNXVd6-dbFiEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:63:f2:b3:4f:3b:01:17:8a:6c:76:bc:2c:5b:de:8c:4b:83: fd:a3:6d:2d:6b:29:9f:2d:b6:a1:31:7f:da:6f:c6:7c:03:75: a0:76:18:43:3d:c2:de:96:dd:89:4c:63:5b:4c:a7:a2:6b:46: 72:fd:ad:1b:8b:b6:3b:11:c4:f0:6c:92:ec:26:7a:ac:4b:3b: 5a:28:35:df:3a:13:16:a2:02:3d:35:77:4b:e4:8f:5b:33:82: ef:0e:4f:9e:a0:49:22:db:5e:5d:a3:be:e3:21:88:57:6f:e4: c8:49:f9:06:53:aa:a8:4a:eb:53:02:dd:c6:53:10:06:f4:95: bb:8c:11:8c:38:06:d8:8e:71:25:32:51:26:1e:30:67:12:27: 80:f3:10:ce:e4:58:2e:4c:97:5e:7c:39:3d:70:64:0d:3b:23: 50:ff:86:c1:0b:dd:7d:a6:1c:b4:a0:8a:91:a6:00:be:56:15: 9a:83:a1:cb:44:8c:27:15:b6:51:7d:97:33:77:4a:75:0f:a2: 15:6b:a7:aa:dd:81:82:ca:0d:c8:3e:ee:4a:98:d6:3e:9f:9a: 22:29:6d:6a:ec:de:8c:35:34:2c:90:dc:b1:df:9f:63:02:68: e4:b8:99:8f:94:12:22:ca:e4:d2:b8:7a:56:c7:eb:1e:76:aa: 5c:6c:0f:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY1QzYxMTAvBgNVBAUTKENENTM1QzdFQjMxQTQwQTNGREI4QUM0RDVENTc3QUY5 RDZDNTg4NDgwHhcNMjUxMjIxMDUyOTAxWhcNMjUxMjI4MDUyOTAxWjAYMRYwFAYD VQQDDA02OTQ3ODU5ZS0zM2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkFPtibxT7r0qlSEWcCT1vMKt7EFoVToZd4M1l90xOsa2eHO32ikju1t8oN0l vKjj5PtjtCMlH0/JPdFtoQ7NUxlGRWp6se+CsI1vairbWSKqfLVB70KjKmHnUt/Y K6hwlf+d83qtNt0+pyvL0PfNIUp2fNZ+TPkPRNllb+8+aVZGddmnRS7swyEm2NVQ xfVWgzvMauq1rmYEiPt6zejuP8jilK+4ScNsPznzeR9AaMAagXU9MGy6i8tMNGQd aDR/7v9xz0i3u10XZeCUIIK2ZsEr2vd1GsMi9I2kPdZThivGfDlcXS6/u5cThVBZ gvM2Wmt6RuY7vp8sEo6P4bsecwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvMvyFY oQ5sNidrjkmH0RpJWSFCMB8GA1UdIwQYMBaAFM1TXH6zGkCj/bisTV1XevnWxYhI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjVDNi9EMjY1QjBDNkY0 MUYxMUVGODE3MDg4NjhDNEY5QUUwMi96Vk5jZnJNYVFLUDl1S3hOWFZkNi1kYkZp RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWTmNmck1hUUtQOXVLeE5YVmQ2LWRiRmlFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjVDNi9EMjY1QjBDNkY0MUYxMUVGODE3MDg4NjhDNEY5QUUwMi96Vk5jZnJNYVFL UDl1S3hOWFZkNi1kYkZpRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLY/KzTzsBF4psdrwsW96MS4P9o20taymfLbahMX/ab8Z8A3WgdhhD PcLelt2JTGNbTKeia0Zy/a0bi7Y7EcTwbJLsJnqsSztaKDXfOhMWogI9NXdL5I9b M4LvDk+eoEki215do77jIYhXb+TISfkGU6qoSutTAt3GUxAG9JW7jBGMOAbYjnEl MlEmHjBnEieA8xDO5FguTJdefDk9cGQNOyNQ/4bBC919phy0oIqRpgC+VhWag6HL RIwnFbZRfZczd0p1D6IVa6eq3YGCyg3IPu5KmNY+n5oiKW1q7N6MNTQskNyx359j AmjkuJmPlBIiyuTSuHpWx+sedqpcbA8u -----END CERTIFICATE-----Generated at Tue Dec 23 04:08:16 2025 by rpki-client