This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json) Hash identifier: vniguKo2jqh7+Cy48dXwSHGCLvZsZxRy6EXWuOPEdaI= Subject key identifier: D8:05:69:44:D6:91:BA:92:83:D3:87:2E:F1:C7:86:09:62:E9:48:E5 Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 297D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft Manifest number: 295C Signing time: Sat 20 Dec 2025 15:28:19 +0000 Manifest this update: Sat 20 Dec 2025 15:28:19 +0000 Manifest next update: Sat 27 Dec 2025 15:28:19 +0000 Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: tEo2l9wN7isWKQumNxX/JwsY6WsUReKv3b3UqcZbxBk=) 2: 58292E96774111F0A079543BC4F9AE02.roa (hash: cB0aG0QBKc7lbuLj1XFyRNR3680AdznFwoFOUAcWcEg=) 3: F4246CDA561811E98A165872C4F9AE02.roa (hash: C/PaFQfpTy7SRBE+0XzPzL+bck/ugVag2KSCjWGbACs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10621 (0x297d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: Dec 20 15:28:19 2025 GMT Not After : Dec 27 15:28:19 2025 GMT Subject: CN=6946c093-a4fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b9:c6:96:bf:8d:90:56:d2:ae:95:04:ac:79: d1:c3:48:6a:d5:9d:c8:51:1e:dc:9b:ea:88:9a:62: 2d:6f:b8:40:39:55:e6:cc:5c:f8:4a:fd:84:79:1b: ba:1a:e4:a7:2d:87:49:4f:2f:96:45:a3:d6:b9:cb: a0:fd:db:45:84:78:91:1d:cc:b8:34:5b:40:e2:9b: 0a:91:d5:d9:75:5d:91:4e:f7:02:8e:ae:06:0d:0e: e3:34:b3:c4:a0:1f:58:dd:79:ac:5f:d3:c8:c3:fc: 03:1c:5d:bf:71:7b:d6:b1:93:df:93:ab:11:f0:4f: c9:28:c5:43:2e:e5:e5:7c:47:63:06:f2:7a:4b:50: e9:d2:f7:08:5f:67:27:54:ca:e2:71:ab:f6:7f:71: e7:57:af:e5:ee:04:96:fb:8b:0f:58:50:cf:79:24: c1:85:9b:a4:f4:0a:ca:ba:38:65:a8:59:0f:ef:52: a1:09:9e:8e:67:58:0c:41:76:b4:49:9d:7f:1f:30: 31:be:57:b2:6d:6a:2e:eb:e0:69:ef:28:3b:f2:19: eb:92:90:f0:69:f4:a1:39:6a:ef:09:b2:ba:00:b3: 79:0b:bd:78:d6:56:6c:6d:f5:1d:0d:f7:cc:f5:ce: db:be:ee:b3:4e:bb:88:da:ea:ac:04:9c:75:83:91: 44:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:05:69:44:D6:91:BA:92:83:D3:87:2E:F1:C7:86:09:62:E9:48:E5 X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:fd:fd:30:01:dd:88:9d:e0:a9:d0:25:03:7e:fd:23:87:05: 56:ac:e4:2c:c3:22:cb:35:19:13:51:c1:bb:3e:72:ca:b3:12: 47:9b:9b:e1:56:7a:dc:b9:a3:3a:43:e0:f9:25:39:3a:53:70: 56:16:dd:a6:fb:f9:17:db:28:2a:bf:12:2a:6b:92:cb:1d:4e: e0:27:d2:b5:04:ca:25:b5:1b:4e:91:93:65:70:44:03:2a:3b: bb:6e:af:b4:a5:a9:4d:c7:19:cb:3e:f4:49:bc:56:06:fa:25: 3c:f2:0a:35:ac:40:c5:68:71:eb:ae:bd:47:7c:2f:da:96:c2: c9:88:62:de:04:c1:d0:8b:1f:6a:2f:8a:89:b3:39:70:f9:63: bb:2b:a8:cc:92:9a:37:61:b1:7b:d3:d5:e0:80:28:0a:2c:68: 6d:ec:f1:83:72:9c:98:f3:c9:5f:d3:a7:0e:9a:8e:ca:96:47: d8:57:28:97:bb:ed:68:52:47:ac:85:08:c5:ba:59:9b:20:09: 22:a0:e4:57:da:44:9b:0c:04:65:2b:fe:42:37:19:99:8d:b9: 14:68:da:c6:8d:1e:5c:84:41:4a:ba:47:43:15:a5:94:60:81: e5:04:e3:31:d9:b5:60:e2:65:79:aa:b6:e3:1c:e5:d1:2f:06: f2:00:6b:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjUxMjIwMTUyODE5WhcNMjUxMjI3MTUyODE5WjAYMRYwFAYD VQQDDA02OTQ2YzA5My1hNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7nGlr+NkFbSrpUErHnRw0hq1Z3IUR7cm+qImmItb7hAOVXmzFz4Sv2EeRu6 GuSnLYdJTy+WRaPWucug/dtFhHiRHcy4NFtA4psKkdXZdV2RTvcCjq4GDQ7jNLPE oB9Y3XmsX9PIw/wDHF2/cXvWsZPfk6sR8E/JKMVDLuXlfEdjBvJ6S1Dp0vcIX2cn VMricav2f3HnV6/l7gSW+4sPWFDPeSTBhZuk9ArKujhlqFkP71KhCZ6OZ1gMQXa0 SZ1/HzAxvleybWou6+Bp7yg78hnrkpDwafShOWrvCbK6ALN5C7141lZsbfUdDffM 9c7bvu6zTruI2uqsBJx1g5FEUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgFaUTW kbqSg9OHLvHHhgli6UjlMB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5/f0wAd2IneCp0CUDfv0jhwVWrOQswyLLNRkTUcG7PnLKsxJHm5vh VnrcuaM6Q+D5JTk6U3BWFt2m+/kX2ygqvxIqa5LLHU7gJ9K1BMoltRtOkZNlcEQD Kju7bq+0palNxxnLPvRJvFYG+iU88go1rEDFaHHrrr1HfC/alsLJiGLeBMHQix9q L4qJszlw+WO7K6jMkpo3YbF709XggCgKLGht7PGDcpyY88lf06cOmo7KlkfYVyiX u+1oUkeshQjFulmbIAkioORX2kSbDARlK/5CNxmZjbkUaNrGjR5chEFKukdDFaWU YIHlBOMx2bVg4mV5qrbjHOXRLwbyAGtD -----END CERTIFICATE-----Generated at Sat Dec 20 20:13:32 2025 by rpki-client