This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: w1ZQ0LDsXQ6/3yQqvUnQrVC6K6PziZLW4TnWD5Dw56M= Subject key identifier: 91:98:10:54:D9:D0:20:B2:2D:5A:F0:70:E3:10:33:3E:1D:41:C6:5E Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0B25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0B1D Signing time: Mon 22 Dec 2025 18:47:05 +0000 Manifest this update: Mon 22 Dec 2025 18:47:04 +0000 Manifest next update: Mon 29 Dec 2025 18:47:04 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: In54AGWm8BGdnkWJGbPhMWGPq8KhDUWXNonoRo5raEg=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: lj/CFwKu+N9KL+BN8rOtiVH/zU3sp7+mG9hyAnPkezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Dec 22 18:47:04 2025 GMT Not After : Dec 29 18:47:04 2025 GMT Subject: CN=69499229-dba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:15:b2:aa:5b:91:d0:bb:11:7f:8b:37:9e:60: 82:fa:62:b5:54:60:8c:12:fe:b0:fa:b3:ea:dc:49: 1c:2b:19:9f:7f:39:60:29:f9:9f:40:07:b0:08:5e: 58:cc:c4:8e:2a:7c:a2:48:41:59:53:3c:93:9a:74: 64:fe:62:55:2a:0c:51:69:1a:10:12:57:84:53:5e: db:e5:30:76:ef:33:67:1d:28:0c:c9:10:57:78:61: 51:6b:a0:50:5e:d7:de:7d:ee:1d:be:7d:51:36:e7: b2:a9:03:a8:13:b7:48:b5:ae:cf:d3:b5:d1:b4:3e: b9:95:ef:75:02:bb:dc:4f:5b:1e:19:47:03:b1:5d: 4f:77:e8:04:46:9c:47:c4:99:d2:29:3a:fb:72:f7: 64:4a:e6:4f:de:5e:1a:b5:3e:03:db:52:95:af:2e: 72:9c:c8:aa:3c:a1:ba:68:f4:cf:3e:a2:f6:49:38: 1c:b8:4e:83:66:bf:75:61:0c:1d:65:eb:af:db:b3: 3f:16:e7:a3:7d:34:54:1b:1a:cb:bf:a0:e0:5f:80: 97:16:32:2f:1f:58:4b:bd:01:b8:9f:11:16:18:b4: 11:4a:e2:33:66:71:2f:e0:84:98:e3:95:f5:97:19: bf:e7:9c:62:8a:19:90:fe:a7:0f:04:e1:2f:cf:14: 55:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:98:10:54:D9:D0:20:B2:2D:5A:F0:70:E3:10:33:3E:1D:41:C6:5E X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ba:f5:b1:41:48:8a:08:a0:fb:81:33:c5:46:0a:7f:a3:25: 81:ef:48:2e:fb:bf:e4:a5:02:35:5c:11:f3:e7:0a:75:9b:91: 9d:42:c9:d6:86:d9:77:6f:60:84:9a:d3:ad:d5:42:d5:b2:c8: a1:6f:f0:9b:92:0f:1b:bb:43:89:e6:88:b8:5b:02:76:9c:91: 16:56:f0:28:84:62:26:85:f8:bc:75:a1:73:6a:9a:11:0d:ac: d9:43:93:4f:2d:8b:26:56:43:fb:74:b9:40:07:4c:5e:6a:fe: 18:15:66:ea:b3:66:27:3f:7f:f0:a4:df:9a:13:31:43:2c:b5: 2a:4c:8f:73:31:1a:06:32:50:e4:b4:58:8b:e0:3f:ea:90:1e: fd:d5:fc:89:1d:35:6a:c7:40:30:2a:e7:09:13:68:6e:65:3b: e4:be:5a:08:45:fa:e4:ae:a0:3b:0c:15:2e:50:99:8c:98:58: 00:bd:24:b6:50:b2:d6:69:5a:eb:31:3a:a6:25:50:c1:85:04: 31:ca:d5:94:6d:60:77:b1:6f:ff:45:e4:31:3f:9c:2a:f3:26: 74:c6:f6:f6:08:9e:db:6d:f2:41:95:70:87:80:bb:a6:e0:fb: 9b:f3:93:91:c3:83:d8:ca:d3:c4:27:ae:7a:4c:26:9a:66:d2: 43:d6:f2:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjUxMjIyMTg0NzA0WhcNMjUxMjI5MTg0NzA0WjAYMRYwFAYD VQQDDA02OTQ5OTIyOS1kYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hWyqluR0LsRf4s3nmCC+mK1VGCMEv6w+rPq3EkcKxmffzlgKfmfQAewCF5Y zMSOKnyiSEFZUzyTmnRk/mJVKgxRaRoQEleEU17b5TB27zNnHSgMyRBXeGFRa6BQ Xtfefe4dvn1RNueyqQOoE7dIta7P07XRtD65le91ArvcT1seGUcDsV1Pd+gERpxH xJnSKTr7cvdkSuZP3l4atT4D21KVry5ynMiqPKG6aPTPPqL2STgcuE6DZr91YQwd Zeuv27M/FuejfTRUGxrLv6DgX4CXFjIvH1hLvQG4nxEWGLQRSuIzZnEv4ISY45X1 lxm/55xiihmQ/qcPBOEvzxRVXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGYEFTZ 0CCyLVrwcOMQMz4dQcZeMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRuvWxQUiKCKD7gTPFRgp/oyWB70gu+7/kpQI1XBHz5wp1m5GdQsnW htl3b2CEmtOt1ULVssihb/Cbkg8bu0OJ5oi4WwJ2nJEWVvAohGImhfi8daFzapoR DazZQ5NPLYsmVkP7dLlAB0xeav4YFWbqs2YnP3/wpN+aEzFDLLUqTI9zMRoGMlDk tFiL4D/qkB791fyJHTVqx0AwKucJE2huZTvkvloIRfrkrqA7DBUuUJmMmFgAvSS2 ULLWaVrrMTqmJVDBhQQxytWUbWB3sW//ReQxP5wq8yZ0xvb2CJ7bbfJBlXCHgLum 4Pub85ORw4PYytPEJ656TCaaZtJD1vKW -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:15 2025 by rpki-client