This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: mcJf1J7YjSwl6UAYDGh4V4tRQjSdOlPjzuesCPTnKIs= Subject key identifier: 51:84:39:91:12:B5:C1:E1:CC:D8:B8:87:69:65:C4:24:18:16:48:10 Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 06D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 06CF Signing time: Sat 06 Dec 2025 21:06:56 +0000 Manifest this update: Sat 06 Dec 2025 21:06:56 +0000 Manifest next update: Sat 13 Dec 2025 21:06:56 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: vyinbGqpN5/cjvqfBygwJyUzf5pLKGEGzI7YmXDydHA=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:06:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Dec 6 21:06:56 2025 GMT Not After : Dec 13 21:06:56 2025 GMT Subject: CN=69349af0-8c63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:06:98:ea:ab:62:60:dd:43:d6:0b:cf:0e:5b: 61:91:ec:fc:0d:21:22:bf:36:1d:16:1c:67:4a:d7: c8:11:f8:cd:a0:a7:88:0f:8e:e0:1b:5d:e5:b6:da: 28:44:01:9d:e9:39:86:1b:95:e6:b2:9b:8d:a1:ce: dc:34:94:c8:09:22:82:72:68:47:59:e8:fe:03:d4: a6:6f:7c:05:1b:80:b2:20:83:c4:1f:d5:a4:cd:d5: 80:7b:55:57:3a:b8:ed:a8:d7:7f:76:7d:65:22:5e: 02:8b:bf:85:d9:3b:45:e8:f6:15:09:b0:73:b4:b5: 4e:9d:79:38:5a:df:b0:a9:04:40:12:fe:43:8f:89: 23:96:1b:15:ad:0a:16:46:37:32:ce:50:c2:29:9e: 0d:84:3a:2a:b9:6a:40:7b:24:d7:d6:84:30:73:0b: 67:06:0d:8f:cd:58:53:3a:1b:94:ee:f1:59:07:0a: 96:c2:9a:7d:91:c1:65:82:32:96:8d:79:aa:a9:82: ba:61:38:d1:9b:ec:1c:6b:db:06:57:6b:77:27:77: 2c:fb:e0:9a:ee:ec:a4:5e:42:d2:c5:33:7d:05:38: f3:68:ab:85:d2:e4:a0:81:2f:10:08:6d:b9:c9:a2: f3:7c:de:37:37:24:6a:30:f9:06:2e:c7:61:9b:cf: 85:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:84:39:91:12:B5:C1:E1:CC:D8:B8:87:69:65:C4:24:18:16:48:10 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:ef:c5:f6:14:75:88:27:e4:8c:cb:55:83:a8:65:62:07:2e: 1d:91:d1:f4:0f:1d:4d:cb:5e:da:43:95:b3:28:0e:8a:b7:45: cc:64:d8:b0:c7:88:af:e0:10:6a:b7:8c:d6:94:f8:8d:fe:90: 72:eb:50:fc:7e:00:f4:af:38:71:1f:00:67:9d:89:55:d5:c4: 23:a7:da:54:3d:d3:ee:70:d3:ee:cb:7e:6b:4c:f9:ba:e4:06: 79:9e:78:13:ac:56:bf:bd:6c:82:71:82:36:53:d9:b3:cd:f4: 96:dc:5a:e8:2c:30:81:15:35:7a:cd:15:84:6e:4a:16:36:f6: b2:62:d2:57:d1:48:31:ae:e9:15:f6:99:8c:f3:f3:07:07:23: c2:89:3b:af:10:3e:14:62:53:8a:11:4b:f9:52:9d:f9:8a:7e: 50:21:8c:6a:58:af:eb:64:e6:81:92:04:8e:d0:7d:5d:53:97: 98:a7:ac:f5:f3:24:9f:94:05:9c:6e:dc:7b:0c:97:96:c2:e5: b0:6b:d3:71:97:15:dc:d7:2f:a1:ae:fa:63:a0:aa:31:25:d4: f0:9b:8c:b9:54:bd:b5:69:b0:a2:57:58:64:4e:37:99:d9:a2: 58:04:33:39:d7:35:28:2d:0a:13:63:c6:8d:8c:e8:2e:9e:db: cb:db:1b:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUxMjA2MjEwNjU2WhcNMjUxMjEzMjEwNjU2WjAYMRYwFAYD VQQDEw02OTM0OWFmMC04YzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAaY6qtiYN1D1gvPDlthkez8DSEivzYdFhxnStfIEfjNoKeID47gG13lttoo RAGd6TmGG5XmspuNoc7cNJTICSKCcmhHWej+A9Smb3wFG4CyIIPEH9WkzdWAe1VX OrjtqNd/dn1lIl4Ci7+F2TtF6PYVCbBztLVOnXk4Wt+wqQRAEv5Dj4kjlhsVrQoW RjcyzlDCKZ4NhDoquWpAeyTX1oQwcwtnBg2PzVhTOhuU7vFZBwqWwpp9kcFlgjKW jXmqqYK6YTjRm+wca9sGV2t3J3cs++Ca7uykXkLSxTN9BTjzaKuF0uSggS8QCG25 yaLzfN43NyRqMPkGLsdhm8+FIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGEOZES tcHhzNi4h2llxCQYFkgQMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC78X2FHWIJ+SMy1WDqGViBy4dkdH0Dx1Ny17aQ5WzKA6Kt0XMZNiw x4iv4BBqt4zWlPiN/pBy61D8fgD0rzhxHwBnnYlV1cQjp9pUPdPucNPuy35rTPm6 5AZ5nngTrFa/vWyCcYI2U9mzzfSW3FroLDCBFTV6zRWEbkoWNvayYtJX0UgxrukV 9pmM8/MHByPCiTuvED4UYlOKEUv5Up35in5QIYxqWK/rZOaBkgSO0H1dU5eYp6z1 8ySflAWcbtx7DJeWwuWwa9NxlxXc1y+hrvpjoKoxJdTwm4y5VL21abCiV1hkTjeZ 2aJYBDM51zUoLQoTY8aNjOguntvL2xtH -----END CERTIFICATE-----Generated at Mon Dec 8 06:46:33 2025 by rpki-client