This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: nIJb75aLAWzuk2mPsPCzir/tBNv2UMAEFthTt1S8RLQ= Subject key identifier: AE:26:B5:82:26:C3:9F:B4:3E:29:73:70:BE:64:B4:9F:44:6E:2E:F1 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 0202 Signing time: Tue 23 Dec 2025 01:25:52 +0000 Manifest this update: Tue 23 Dec 2025 01:25:52 +0000 Manifest next update: Tue 30 Dec 2025 01:25:52 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: yyyrt16Obe464WO/SV7O4FeW6MERf0OU/YQ/Gl2sDv0=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:25:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Dec 23 01:25:52 2025 GMT Not After : Dec 30 01:25:52 2025 GMT Subject: CN=6949efa0-a56c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:80:a9:a6:d8:07:17:97:d6:49:5c:6e:4e:0f: e5:38:56:79:da:91:9a:44:a4:cc:4d:5a:72:2d:27: 07:85:ab:f9:f3:d6:da:3c:9e:10:c7:6b:37:25:18: 45:5b:39:76:84:ba:44:6d:79:83:64:fa:7b:5d:ed: 72:3a:81:18:0b:19:27:13:62:42:e7:6a:be:5d:c3: 59:42:fe:83:ab:f5:70:0b:f0:3b:18:16:dd:75:0c: 0b:43:3f:c3:e7:b9:0f:0e:71:0d:f7:6b:83:b3:1f: a8:3a:d1:59:86:9f:2b:76:0b:18:5d:21:d1:bd:a0: 46:86:fb:6a:a5:07:2b:f0:c9:54:d4:76:2f:32:6f: 17:a4:f8:28:94:05:a5:d7:f5:41:2b:87:da:a2:d1: b0:ae:86:95:ea:82:84:4b:6c:93:87:b3:d9:6d:e3: 65:37:97:0a:d0:40:ec:fc:4e:1c:ed:64:d0:6b:82: a4:1f:60:18:23:8c:47:21:e6:0b:12:6d:f1:db:1f: d9:ca:4b:39:ad:54:75:2b:2d:06:4f:3f:fa:b1:85: 94:11:90:52:4e:36:f2:0a:41:e5:df:6b:7b:2d:00: 77:b6:53:de:4d:7a:70:a0:d7:55:42:0a:ba:d7:0e: 8e:6f:d9:d0:fa:86:18:6f:1d:8f:9b:49:7f:c3:04: ef:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:26:B5:82:26:C3:9F:B4:3E:29:73:70:BE:64:B4:9F:44:6E:2E:F1 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:9e:b0:de:b9:ef:fe:39:57:f6:98:81:1c:dc:2f:e0:e2:f1: d6:d1:c0:a1:5d:f3:c6:8d:78:e3:61:c1:b0:9b:7f:61:20:bf: 12:ec:33:c5:73:5c:66:01:3b:08:bd:92:b8:92:82:51:58:1d: 46:49:6e:cd:b8:5d:ab:01:fb:b4:83:1d:ba:bd:d8:69:82:2b: 9b:66:a6:ac:d2:bb:e5:7e:41:50:7e:ef:04:cb:47:d3:76:cd: f6:16:26:c9:01:a7:b1:bd:a5:3b:87:6f:d4:be:30:4d:5f:0d: a5:c5:c4:9c:fd:75:ac:09:68:60:ef:27:69:ad:9b:66:4f:a8: d2:43:6d:da:85:21:57:3f:8f:4f:4e:67:a7:bc:c4:c7:f9:55: ca:1e:88:23:85:24:ef:7f:97:50:8a:0c:9f:05:bd:ea:6b:5d: 55:27:59:b3:49:82:2d:a9:9d:86:9d:d6:71:d3:d8:68:b5:93: d6:59:dc:43:6f:fc:06:9f:26:c1:9c:8d:af:8d:8a:d1:f3:17: ae:9a:17:a1:40:2c:53:d3:be:95:48:9e:29:49:c8:c6:e1:b3: 6e:72:90:3f:95:a4:43:95:2f:a5:8f:a4:46:05:34:ce:7b:d4: a6:71:f0:c1:19:e1:d1:c1:75:9b:d6:a1:d7:cc:8a:a6:00:74: e3:18:fd:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUxMjIzMDEyNTUyWhcNMjUxMjMwMDEyNTUyWjAYMRYwFAYD VQQDDA02OTQ5ZWZhMC1hNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoCpptgHF5fWSVxuTg/lOFZ52pGaRKTMTVpyLScHhav589baPJ4Qx2s3JRhF Wzl2hLpEbXmDZPp7Xe1yOoEYCxknE2JC52q+XcNZQv6Dq/VwC/A7GBbddQwLQz/D 57kPDnEN92uDsx+oOtFZhp8rdgsYXSHRvaBGhvtqpQcr8MlU1HYvMm8XpPgolAWl 1/VBK4faotGwroaV6oKES2yTh7PZbeNlN5cK0EDs/E4c7WTQa4KkH2AYI4xHIeYL Em3x2x/Zyks5rVR1Ky0GTz/6sYWUEZBSTjbyCkHl32t7LQB3tlPeTXpwoNdVQgq6 1w6Ob9nQ+oYYbx2Pm0l/wwTvsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4mtYIm w5+0PilzcL5ktJ9Ebi7xMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAInrDeue/+OVf2mIEc3C/g4vHW0cChXfPGjXjjYcGwm39hIL8S7DPF c1xmATsIvZK4koJRWB1GSW7NuF2rAfu0gx26vdhpgiubZqas0rvlfkFQfu8Ey0fT ds32FibJAaexvaU7h2/UvjBNXw2lxcSc/XWsCWhg7ydprZtmT6jSQ23ahSFXP49P TmenvMTH+VXKHogjhSTvf5dQigyfBb3qa11VJ1mzSYItqZ2GndZx09hotZPWWdxD b/wGnybBnI2vjYrR8xeumhehQCxT076VSJ4pScjG4bNucpA/laRDlS+lj6RGBTTO e9SmcfDBGeHRwXWb1qHXzIqmAHTjGP2s -----END CERTIFICATE-----Generated at Tue Dec 23 07:40:26 2025 by rpki-client