This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft File: Z-1VajxcS_wnyhWKWXdWTDIHzso.mft (raw, json) Hash identifier: Xymja2sQyF+IAW7tHzY629Ga6761YZl/IUS22LTtR2s= Subject key identifier: A0:A1:8B:4F:16:D2:B5:2E:14:A5:87:C0:F7:34:33:37:5E:02:56:F2 Authority key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA Certificate issuer: /CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Certificate serial: 30A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft Manifest number: 309A Signing time: Thu 18 Dec 2025 15:24:20 +0000 Manifest this update: Thu 18 Dec 2025 15:24:19 +0000 Manifest next update: Thu 25 Dec 2025 15:24:19 +0000 Files and hashes: 1: Z-1VajxcS_wnyhWKWXdWTDIHzso.crl (hash: zBtolRFOe8R9t8T+lZMrZ3s50P2oJtfVaDEK3ObIR3o=) 2: 22E2E3C24E2911EF8BEE8E10C4F9AE02.roa (hash: hQKUzdzJskNaUaPGl2kmEUdrCcgwSNhHBQ7D6gtHv6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12457 (0x30a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91752F4, serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Validity Not Before: Dec 18 15:24:19 2025 GMT Not After : Dec 25 15:24:19 2025 GMT Subject: CN=69441ca4-d6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:05:3b:b6:6c:4b:30:a4:7e:b3:63:e3:46:eb: 31:52:12:83:c9:9a:ca:b8:f8:cd:b1:10:46:a1:78: f5:a5:9b:31:93:8a:04:fe:7f:34:0a:8b:33:5a:58: 36:be:a3:7a:1f:7b:37:75:c4:20:aa:bc:e7:86:d6: c5:42:46:84:de:11:ca:a3:8e:bf:a9:c7:97:eb:6c: 4c:46:c5:42:66:1a:ae:a9:70:67:2a:42:3a:94:3e: 2f:c9:07:8f:b0:d2:94:49:75:1d:b3:fe:a0:57:6e: ef:5b:d4:3c:4c:65:ff:89:a7:2e:7a:be:5d:83:dd: 37:7d:46:cc:45:af:54:12:70:84:52:41:07:ed:ef: e9:21:0d:40:0c:a7:11:92:bd:a7:34:9b:8c:6b:36: ff:1a:01:e8:83:84:aa:03:9e:c4:73:22:b5:d5:b4: ba:0d:f2:fd:d3:c4:94:c4:84:62:f1:a6:1a:25:04: 16:13:33:7f:62:8a:37:dd:f7:a7:7f:68:f5:84:a9: 8a:a2:d7:60:3f:10:72:23:24:77:48:59:ac:77:87: 69:60:14:66:e4:9a:e7:bc:97:34:83:07:fd:17:86: 5f:84:c6:04:4a:67:71:7c:34:05:53:77:0c:1c:fe: c6:86:22:1a:4a:51:6f:7a:de:db:f3:7c:a3:71:f1: 71:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A1:8B:4F:16:D2:B5:2E:14:A5:87:C0:F7:34:33:37:5E:02:56:F2 X509v3 Authority Key Identifier: keyid:67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:5c:ed:4f:56:dd:b3:d2:df:8c:81:14:8b:ba:f7:d0:d6:31: a8:d8:d8:de:37:5f:f3:8c:1c:e0:37:f0:8a:67:fc:a2:8b:11: 44:7c:4b:4f:a3:69:f3:78:d0:72:28:b1:3b:ad:27:74:c4:d9: 6f:da:48:2b:ca:73:43:cb:9c:5e:c0:11:96:08:9d:01:c4:a2: 76:34:c9:bb:c6:af:0f:bc:59:d1:55:59:71:6b:f1:14:e1:2c: 3a:02:62:af:8c:8c:c1:80:99:bd:66:0a:72:ce:50:23:79:45: 4d:b0:d1:78:6e:20:dd:5d:cf:c1:28:26:35:1c:a9:cc:5f:32: a7:63:f3:18:ab:7e:0f:65:30:f9:57:64:2f:11:9d:ce:3a:01: 08:83:43:c1:4d:81:12:b2:c1:b0:57:9a:f8:ad:ef:26:2a:38: dd:d5:0f:9b:89:e6:b8:a1:2d:64:ef:f3:06:e6:6e:7b:d4:6a: 4d:a6:19:f9:d9:5d:f9:73:45:f6:29:2f:48:91:d3:7e:93:65: 43:55:75:6f:e7:bf:dd:03:1b:e8:f4:8a:97:49:af:f9:e0:d4: 60:2e:03:87:24:b1:c4:01:e3:b7:09:0e:36:39:11:45:91:d6: e6:02:25:e7:c0:2e:88:b7:b0:2c:2e:e7:57:32:78:7d:fb:7e: ed:bc:bc:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyRjQxMTAvBgNVBAUTKDY3RUQ1NTZBM0M1QzRCRkMyN0NBMTU4QTU5Nzc1NjRD MzIwN0NFQ0EwHhcNMjUxMjE4MTUyNDE5WhcNMjUxMjI1MTUyNDE5WjAYMRYwFAYD VQQDDA02OTQ0MWNhNC1kNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AU7tmxLMKR+s2PjRusxUhKDyZrKuPjNsRBGoXj1pZsxk4oE/n80CoszWlg2 vqN6H3s3dcQgqrznhtbFQkaE3hHKo46/qceX62xMRsVCZhquqXBnKkI6lD4vyQeP sNKUSXUds/6gV27vW9Q8TGX/iacuer5dg903fUbMRa9UEnCEUkEH7e/pIQ1ADKcR kr2nNJuMazb/GgHog4SqA57EcyK11bS6DfL908SUxIRi8aYaJQQWEzN/Yoo33fen f2j1hKmKotdgPxByIyR3SFmsd4dpYBRm5JrnvJc0gwf9F4ZfhMYESmdxfDQFU3cM HP7GhiIaSlFvet7b83yjcfFxmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKChi08W 0rUuFKWHwPc0MzdeAlbyMB8GA1UdIwQYMBaAFGftVWo8XEv8J8oVill3VkwyB87K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTJGNC84MDE2NEY0RUY4 QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nfd255aFdLV1hkV1RESUh6 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1otMVZhanhjU193bnloV0tXWGRXVERJSHpzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTJGNC84MDE2NEY0RUY4QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nf d255aFdLV1hkV1RESUh6c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwXO1PVt2z0t+MgRSLuvfQ1jGo2NjeN1/zjBzgN/CKZ/yiixFEfEtP o2nzeNByKLE7rSd0xNlv2kgrynNDy5xewBGWCJ0BxKJ2NMm7xq8PvFnRVVlxa/EU 4Sw6AmKvjIzBgJm9ZgpyzlAjeUVNsNF4biDdXc/BKCY1HKnMXzKnY/MYq34PZTD5 V2QvEZ3OOgEIg0PBTYESssGwV5r4re8mKjjd1Q+biea4oS1k7/MG5m571GpNphn5 2V35c0X2KS9IkdN+k2VDVXVv57/dAxvo9IqXSa/54NRgLgOHJLHEAeO3CQ42ORFF kdbmAiXnwC6It7AsLudXMnh9+37tvLyy -----END CERTIFICATE-----Generated at Sat Dec 20 14:05:44 2025 by rpki-client