This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: wMOifu/D8K4kPHITcqNK9ehxIxq2kjMyuQv+LJscdSg= Subject key identifier: 93:EA:E5:07:72:3C:C2:E5:59:14:8D:BC:2B:8A:F3:5E:8C:F9:3B:45 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: 010C Signing time: Tue 23 Dec 2025 03:57:25 +0000 Manifest this update: Tue 23 Dec 2025 03:57:24 +0000 Manifest next update: Tue 30 Dec 2025 03:57:24 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: 3PEuLiNbD28ssTboxrmoozJmlsd4UBzoQ8ZlKqZ8SuY=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: Ds5OYRTGE1+nmc/fXAPDPY24vX1TYbGT7zDa8IDd+kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Dec 23 03:57:24 2025 GMT Not After : Dec 30 03:57:24 2025 GMT Subject: CN=694a1325-18d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:21:c9:58:dd:a1:1f:5c:d8:23:73:28:01:b0: 8e:f1:ed:17:d1:c0:f0:f6:22:f5:81:94:af:dc:af: e6:0c:88:84:d3:53:45:2b:e3:d5:40:e1:82:6c:7e: 93:c2:56:a1:d1:b4:ec:1d:13:fd:02:e5:cc:42:70: eb:6e:c8:2c:8e:3e:96:48:97:be:5c:b7:4c:1e:63: 8d:b5:14:e4:39:c4:4e:8d:77:dc:be:61:cc:d3:94: be:24:c7:1e:51:e8:a5:cb:be:7e:6f:12:fb:cb:bf: 11:6f:a5:80:bd:79:5d:3c:d0:e7:92:c2:19:66:b0: ca:bc:9b:8e:64:98:df:0b:5c:0c:33:e1:f5:45:c3: 29:48:45:7b:e9:f3:9a:26:cb:36:35:c0:de:0f:dd: 2d:ce:b7:34:ed:5a:7d:3f:3b:b6:65:f5:8c:f4:6b: 9c:a9:5b:c1:85:08:41:40:d2:bf:d0:b1:81:7b:e0: a5:ac:a2:74:8e:6b:08:a5:9b:ab:8e:05:a6:32:ce: 0f:c4:84:ce:40:97:2f:2a:2d:76:15:9b:94:aa:74: bd:a7:03:25:a8:c6:b7:ba:fd:00:e4:3b:9f:3e:e7: 73:ff:32:f1:c3:aa:a7:86:25:25:45:67:81:6c:09: 0a:c6:04:c2:25:ea:fd:82:06:39:f0:ac:2b:f1:30: 7b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EA:E5:07:72:3C:C2:E5:59:14:8D:BC:2B:8A:F3:5E:8C:F9:3B:45 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:6b:1e:f2:4e:93:e4:c6:a9:58:c2:a4:20:ec:36:2a:00:13: 47:35:35:25:99:5a:cc:41:41:2c:ff:f7:c3:ec:50:31:f1:83: 7a:a6:58:ef:b8:dc:bb:30:22:a3:ef:20:a8:3e:1b:11:85:dc: 18:1c:f4:96:02:57:a6:8d:ab:55:ec:b9:57:0e:de:74:56:7e: 8b:d7:71:7f:9b:e7:12:d3:49:a6:57:8a:e6:d9:89:eb:42:4a: 4a:37:28:89:61:c1:7a:c7:61:82:fc:19:ca:94:a7:f7:bb:4c: ac:12:13:8a:0a:8c:c2:77:0b:08:73:6d:ad:73:4c:c1:a4:f4: d7:f6:98:e8:4a:fb:19:d7:3b:b6:1b:2e:d6:26:d2:e4:0a:9d: b4:57:86:88:a0:d9:75:79:ec:d1:f9:0e:65:e6:0a:05:34:59: d3:60:e1:02:23:75:69:8b:d2:d8:77:a7:88:80:11:6b:b9:3d: f9:96:44:55:c2:03:e3:1b:ab:b0:b3:b9:e8:61:94:88:ba:ec: 9b:3d:b2:a4:a4:d2:75:de:60:58:b7:d8:f9:4b:f7:63:ce:1e: d2:c3:d5:e2:5b:8f:42:f7:4c:63:f6:37:c9:ae:7d:cb:e7:c0: a1:c6:90:74:cf:98:23:86:32:61:87:90:72:69:d1:42:59:1f: 5d:0b:4b:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUxMjIzMDM1NzI0WhcNMjUxMjMwMDM1NzI0WjAYMRYwFAYD VQQDDA02OTRhMTMyNS0xOGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAniHJWN2hH1zYI3MoAbCO8e0X0cDw9iL1gZSv3K/mDIiE01NFK+PVQOGCbH6T wlah0bTsHRP9AuXMQnDrbsgsjj6WSJe+XLdMHmONtRTkOcROjXfcvmHM05S+JMce Ueily75+bxL7y78Rb6WAvXldPNDnksIZZrDKvJuOZJjfC1wMM+H1RcMpSEV76fOa Jss2NcDeD90tzrc07Vp9Pzu2ZfWM9GucqVvBhQhBQNK/0LGBe+ClrKJ0jmsIpZur jgWmMs4PxITOQJcvKi12FZuUqnS9pwMlqMa3uv0A5DufPudz/zLxw6qnhiUlRWeB bAkKxgTCJer9ggY58Kwr8TB7rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPq5Qdy PMLlWRSNvCuK816M+TtFMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtax7yTpPkxqlYwqQg7DYqABNHNTUlmVrMQUEs//fD7FAx8YN6pljv uNy7MCKj7yCoPhsRhdwYHPSWAlemjatV7LlXDt50Vn6L13F/m+cS00mmV4rm2Ynr QkpKNyiJYcF6x2GC/BnKlKf3u0ysEhOKCozCdwsIc22tc0zBpPTX9pjoSvsZ1zu2 Gy7WJtLkCp20V4aIoNl1eezR+Q5l5goFNFnTYOECI3Vpi9LYd6eIgBFruT35lkRV wgPjG6uws7noYZSIuuybPbKkpNJ13mBYt9j5S/djzh7Sw9XiW49C90xj9jfJrn3L 58ChxpB0z5gjhjJhh5ByadFCWR9dC0sI -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:46 2025 by rpki-client