This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: LqeqHHD7puFDzQoghayJmFU6BFm72juFygc20gI2Xck= Subject key identifier: 5D:48:31:01:D1:76:73:8B:06:7A:13:F4:F4:7E:01:79:94:CB:69:D5 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: E9 Signing time: Wed 03 Dec 2025 03:48:14 +0000 Manifest this update: Wed 03 Dec 2025 03:48:14 +0000 Manifest next update: Wed 10 Dec 2025 03:48:14 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: 6UJCY/u2hAPccvZzSQ0yEy+ZBirPTC3bQCqJwQpzQP0=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: xTh/XECRIgCR6mcMb4Sy7r1o1s9piU8w2MVo6gmyMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 03:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Dec 3 03:48:14 2025 GMT Not After : Dec 10 03:48:14 2025 GMT Subject: CN=692fb2fe-15ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:18:29:69:60:f5:8b:9a:85:a6:df:3f:a4:81: 74:72:8f:80:36:32:9f:a4:a8:9a:ca:94:22:ca:d5: bc:17:2c:17:b2:4f:51:18:a7:56:5c:ff:7c:e1:cb: 5b:2d:f0:4f:50:52:44:20:0d:27:cd:20:ce:40:19: 01:6b:6e:f5:28:ed:14:33:b9:f1:d5:93:22:48:36: a5:97:da:4d:83:6c:e7:85:32:bd:8f:fd:d0:cf:ca: 9a:04:2b:64:5f:37:05:ef:67:92:83:c2:28:55:b4: 3e:e5:04:4e:b9:30:41:d0:36:09:d0:b1:80:f6:81: a4:d1:1f:50:00:6f:37:a6:86:1f:23:c2:d9:df:62: c0:ad:5f:9b:ec:78:1d:d5:b3:40:61:b4:2c:2d:cf: b7:50:eb:80:56:91:31:08:c6:e1:24:99:db:f0:09: 86:32:a8:0a:22:39:d6:0c:df:3a:95:bd:73:7c:48: 69:e1:04:8c:a5:45:9e:00:1f:1d:88:12:4e:37:b9: 9b:5e:d4:50:93:44:b2:6d:cc:f0:eb:55:9f:a4:38: cc:0b:75:5d:10:92:1e:0e:26:a3:6d:f1:9e:83:f2: b1:7a:b8:13:d5:44:2e:7e:54:9d:90:ad:19:10:34: a7:2e:04:a9:d1:39:00:05:f7:b8:9c:31:26:22:9f: 22:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:48:31:01:D1:76:73:8B:06:7A:13:F4:F4:7E:01:79:94:CB:69:D5 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:de:41:87:a9:48:43:bc:c5:47:59:7e:49:26:61:8c:c3:19: a8:60:84:56:a4:b1:31:47:c7:6b:f8:5f:07:64:39:2b:e7:a6: 9e:cb:91:24:87:13:26:93:6a:bd:5c:ea:63:e5:67:0c:89:dc: 6a:f8:29:0f:f3:67:9c:c7:94:21:d3:41:2c:ca:b0:d7:64:3f: ea:d3:e8:4f:dd:08:4f:13:b7:e1:19:c1:95:91:86:71:e2:b7: 9a:ee:66:69:97:60:e5:85:0c:1b:77:b3:22:f8:dc:fd:c4:6e: 3b:fc:44:5d:2a:aa:2e:03:bd:56:bf:9e:d6:07:9d:b5:1f:46: 46:83:a1:f6:10:98:bb:46:c2:5f:2d:9e:91:6e:20:0d:73:f1: 72:fc:eb:06:cc:8a:54:75:90:f5:92:10:b7:c9:d0:7d:6f:35: d5:ae:ff:f8:17:59:d7:cf:5f:be:07:ac:6a:43:e4:8d:48:bf: 05:41:b3:e7:94:77:33:c2:4a:28:2a:9d:3b:cc:6d:92:89:96: 12:59:94:4d:4f:3e:0b:27:67:89:d6:cf:19:dc:61:6d:6f:e2: 07:95:1d:74:a1:1a:d5:6b:a8:bb:c3:f3:43:10:69:c2:3c:7b: bb:6e:b0:e3:0c:8f:fe:fe:86:c1:70:bc:df:f3:51:3e:11:71: 85:58:3a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUxMjAzMDM0ODE0WhcNMjUxMjEwMDM0ODE0WjAYMRYwFAYD VQQDEw02OTJmYjJmZS0xNWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xgpaWD1i5qFpt8/pIF0co+ANjKfpKiaypQiytW8FywXsk9RGKdWXP984ctb LfBPUFJEIA0nzSDOQBkBa271KO0UM7nx1ZMiSDall9pNg2znhTK9j/3Qz8qaBCtk XzcF72eSg8IoVbQ+5QROuTBB0DYJ0LGA9oGk0R9QAG83poYfI8LZ32LArV+b7Hgd 1bNAYbQsLc+3UOuAVpExCMbhJJnb8AmGMqgKIjnWDN86lb1zfEhp4QSMpUWeAB8d iBJON7mbXtRQk0Sybczw61WfpDjMC3VdEJIeDiajbfGeg/KxergT1UQuflSdkK0Z EDSnLgSp0TkABfe4nDEmIp8iBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1IMQHR dnOLBnoT9PR+AXmUy2nVMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi3kGHqUhDvMVHWX5JJmGMwxmoYIRWpLExR8dr+F8HZDkr56aey5Ek hxMmk2q9XOpj5WcMidxq+CkP82ecx5Qh00EsyrDXZD/q0+hP3QhPE7fhGcGVkYZx 4rea7mZpl2DlhQwbd7Mi+Nz9xG47/ERdKqouA71Wv57WB521H0ZGg6H2EJi7RsJf LZ6RbiANc/Fy/OsGzIpUdZD1khC3ydB9bzXVrv/4F1nXz1++B6xqQ+SNSL8FQbPn lHczwkooKp07zG2SiZYSWZRNTz4LJ2eJ1s8Z3GFtb+IHlR10oRrVa6i7w/NDEGnC PHu7brDjDI/+/obBcLzf81E+EXGFWDqw -----END CERTIFICATE-----Generated at Wed Dec 3 16:06:59 2025 by rpki-client