This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: tauJyO6DLF0VIEzJif5XNGNsq7/wcwwBuE5DEOpPHwQ= Subject key identifier: 8D:C1:E5:C7:82:E2:1E:A7:D7:49:C8:AB:2C:DB:9D:44:0D:28:72:2C Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0688 Signing time: Sat 20 Dec 2025 21:47:54 +0000 Manifest this update: Sat 20 Dec 2025 21:47:53 +0000 Manifest next update: Sat 27 Dec 2025 21:47:53 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: npPUvcgLukEb4c+NpEhmnestID6ZHst4GPOKkUveqPM=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: Up4WhD3Nf9WRZOsGh/RIfu2ds6rWcEA9ea8zVjDFpwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Dec 20 21:47:53 2025 GMT Not After : Dec 27 21:47:53 2025 GMT Subject: CN=6947198a-d242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ba:64:fc:d3:fe:89:eb:1c:7c:cd:b4:71:20: 65:96:b1:0f:c5:28:61:8f:24:d1:da:f4:17:61:a9: 91:cc:a9:b2:32:23:40:37:0b:7b:25:83:94:b7:53: 0e:6d:a6:17:fd:53:3d:28:93:74:35:92:0a:90:69: 7c:62:72:08:24:af:24:37:fc:cc:74:3e:6a:4d:5c: 22:9e:99:7c:e5:0d:c9:60:bc:1b:38:de:92:50:67: 20:6c:69:a7:fd:3e:75:7b:19:e9:7c:5b:87:02:dc: 1d:ef:07:f6:56:79:44:f4:ee:bf:39:25:5d:47:2a: da:ca:be:37:ef:75:50:b6:71:a3:91:f7:54:2d:dd: 46:54:7b:08:26:74:d8:5d:68:b0:91:7d:21:35:05: b2:9b:b5:c8:a8:4e:4e:51:41:39:3b:a5:3f:92:d6: 6d:47:5b:73:d2:f1:f6:f5:d3:8e:5b:14:ae:70:57: 07:19:d0:d9:27:14:12:04:cb:28:a5:f1:4a:d6:ce: c5:d1:cf:ba:24:98:2b:7d:58:77:cc:5e:b1:2e:fd: d1:b3:fa:f2:4e:43:41:68:23:70:3e:cf:5e:4b:79: 6f:7c:0a:45:8f:48:ff:29:9a:80:da:b6:0e:81:1e: cd:47:65:cd:fa:55:fe:d9:5c:b7:7e:20:cf:f6:8e: 5c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C1:E5:C7:82:E2:1E:A7:D7:49:C8:AB:2C:DB:9D:44:0D:28:72:2C X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:34:c3:43:f1:34:4d:8d:4f:c5:52:bc:eb:5a:dc:c9:6a:12: a2:78:3a:41:15:4f:90:41:52:80:b1:8c:f2:90:92:fb:4d:76: 17:a7:30:8d:7e:26:ef:a0:9f:a7:c1:f8:37:f2:a9:23:c5:f3: ab:02:59:f3:22:2f:15:0a:2d:17:f1:28:6c:62:73:dd:2b:28: 39:5a:2a:da:ef:22:c1:c4:5c:ed:cc:90:8b:ba:cb:e8:65:cc: a0:4b:0e:4b:76:fb:92:ae:27:b1:a6:a5:28:5f:d8:fa:47:6b: 62:3e:5e:18:0f:1d:be:36:9a:5f:71:21:14:24:86:cd:28:92: 1e:7b:37:fa:22:22:be:5e:cd:5e:9a:e8:b4:01:84:24:11:5a: 88:af:a1:d8:cb:07:d8:82:d6:c0:0d:5b:cf:5e:57:48:0a:ee: 29:2e:35:9e:40:5b:8f:a6:3b:0a:6b:1e:c6:fc:8a:d2:95:89: 4b:71:87:18:1a:89:3b:10:54:05:d7:ce:57:41:0f:fb:7e:5f: 50:92:58:c3:ab:26:60:3e:79:27:ed:7b:19:8e:05:de:95:94: 71:fa:f9:94:1b:1e:73:64:89:79:e9:c0:d7:1b:32:9f:9c:5e: 55:09:d2:50:a2:c0:da:ac:f0:45:b5:fe:ba:6c:7d:93:0d:c5: c5:90:88:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUxMjIwMjE0NzUzWhcNMjUxMjI3MjE0NzUzWjAYMRYwFAYD VQQDDA02OTQ3MTk4YS1kMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbpk/NP+iescfM20cSBllrEPxShhjyTR2vQXYamRzKmyMiNANwt7JYOUt1MO baYX/VM9KJN0NZIKkGl8YnIIJK8kN/zMdD5qTVwinpl85Q3JYLwbON6SUGcgbGmn /T51exnpfFuHAtwd7wf2VnlE9O6/OSVdRyrayr4373VQtnGjkfdULd1GVHsIJnTY XWiwkX0hNQWym7XIqE5OUUE5O6U/ktZtR1tz0vH29dOOWxSucFcHGdDZJxQSBMso pfFK1s7F0c+6JJgrfVh3zF6xLv3Rs/ryTkNBaCNwPs9eS3lvfApFj0j/KZqA2rYO gR7NR2XN+lX+2Vy3fiDP9o5cQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3B5ceC 4h6n10nIqyzbnUQNKHIsMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAENMND8TRNjU/FUrzrWtzJahKieDpBFU+QQVKAsYzykJL7TXYXpzCN fibvoJ+nwfg38qkjxfOrAlnzIi8VCi0X8ShsYnPdKyg5Wira7yLBxFztzJCLusvo ZcygSw5LdvuSriexpqUoX9j6R2tiPl4YDx2+NppfcSEUJIbNKJIeezf6IiK+Xs1e mui0AYQkEVqIr6HYywfYgtbADVvPXldICu4pLjWeQFuPpjsKax7G/IrSlYlLcYcY Gok7EFQF185XQQ/7fl9QkljDqyZgPnkn7XsZjgXelZRx+vmUGx5zZIl56cDXGzKf nF5VCdJQosDarPBFtf66bH2TDcXFkIhu -----END CERTIFICATE-----Generated at Mon Dec 22 05:49:24 2025 by rpki-client