This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft File: zI7F8Y4keEmlxwbphTthhkju8qY.mft (raw, json) Hash identifier: lroaXY780eaL/rA3pcoFy61ZPQq3lkpxOHHiFcKZaXE= Subject key identifier: 28:93:83:D1:74:BB:C1:F0:46:BA:B6:65:CF:1E:2B:A1:3C:19:EC:15 Authority key identifier: CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 Certificate issuer: /CN=A91B8C12/serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft Manifest number: 0227 Signing time: Tue 23 Dec 2025 01:07:36 +0000 Manifest this update: Tue 23 Dec 2025 01:07:36 +0000 Manifest next update: Tue 30 Dec 2025 01:07:36 +0000 Files and hashes: 1: zI7F8Y4keEmlxwbphTthhkju8qY.crl (hash: 0FKvjM88ib0vWy7SbnzUNh6GhJGiY4rg09WHU3JjWq4=) 2: F9141F4891AA11EDBEE1242EC4F9AE02.roa (hash: g9yTbSsNaqPreIw0oU07/CNACl2sTNgPee6hfuDh8F4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C12, serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Validity Not Before: Dec 23 01:07:36 2025 GMT Not After : Dec 30 01:07:36 2025 GMT Subject: CN=6949eb58-f3af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e7:83:64:bd:8e:c0:66:6e:16:38:11:0e:38: 86:89:c8:38:96:32:f7:b0:36:5e:03:9d:68:ce:41: 27:90:a4:49:ac:a4:e9:62:55:77:db:ad:99:88:7d: 21:5c:be:7b:b1:39:cd:e2:5b:15:a6:5f:f0:69:1b: 01:69:ae:f6:17:6a:a2:5d:9f:71:14:83:5e:8b:2a: c1:79:94:29:f6:ed:fc:ee:a5:7d:75:f3:5c:9e:61: 07:cf:d6:9b:3e:e9:43:8e:43:96:2a:1b:b9:03:24: 5d:cb:b6:b3:93:f4:95:c4:f0:61:e6:b1:5c:f7:8e: 9e:55:3a:9d:1d:1a:1e:01:9d:eb:9a:9f:8c:92:45: 75:59:2b:45:84:63:b4:99:7f:af:58:fa:99:e7:c0: d7:95:44:cf:3c:97:1f:75:77:9a:3b:c2:bd:eb:a9: 82:ab:83:74:73:64:a3:9f:38:d2:43:0d:e8:65:ba: a4:30:72:65:1f:54:b2:02:ab:44:d9:86:64:11:38: ee:e6:5f:cd:2e:84:ae:82:0c:ce:ad:33:1f:b7:60: bf:da:75:81:43:01:80:b8:a3:94:cd:77:33:48:bf: d4:9c:30:b7:f7:b9:d1:96:16:02:f0:5c:ec:f7:95: 70:fe:57:02:c6:96:15:b8:2e:77:33:1c:5f:a5:b5: 4d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:93:83:D1:74:BB:C1:F0:46:BA:B6:65:CF:1E:2B:A1:3C:19:EC:15 X509v3 Authority Key Identifier: keyid:CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:6c:b8:e1:cc:cb:8d:1b:9c:a7:8c:43:f8:e4:7e:5b:29:65: 6e:6e:98:dc:9a:ac:0c:0f:9c:b1:0f:84:8b:43:0a:1f:04:21: fd:57:88:a4:59:f2:67:09:92:5c:77:0c:e0:00:5d:f2:aa:1c: 10:7a:d6:68:e0:6a:7a:66:b7:48:50:1a:e2:7a:ac:81:b3:2f: 23:05:29:c0:a5:35:9c:2c:a4:97:7e:b8:06:35:2b:46:06:c2: bc:14:2a:9f:64:84:d7:6b:3a:41:c3:b1:c9:8b:0b:96:41:b1: 9a:1b:62:87:64:c7:62:f8:ce:13:dd:eb:f9:4e:7a:8d:2f:07: c3:47:43:65:ea:44:9d:11:4b:68:80:e5:f8:5f:aa:c3:2c:40: 98:3a:b6:d1:35:b8:00:4f:b0:a7:24:4b:41:2a:b6:2b:b4:5b: 13:77:e0:65:da:5b:45:5c:56:09:22:6a:04:84:23:d7:c3:86: e9:3e:1d:91:c5:2f:c6:a3:72:01:23:80:30:3d:3f:e4:10:6c: 5e:c8:02:75:e7:31:44:d5:37:56:f1:b0:97:3b:3b:c6:c5:35: f8:2e:5b:af:21:2d:99:13:65:ee:8f:33:84:f3:57:38:d7:7d: fe:c1:45:68:a9:48:f7:ec:e6:12:48:5e:d3:ef:27:67:a6:77: aa:bb:2f:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTIxMTAvBgNVBAUTKENDOEVDNUYxOEUyNDc4NDlBNUM3MDZFOTg1M0I2MTg2 NDhFRUYyQTYwHhcNMjUxMjIzMDEwNzM2WhcNMjUxMjMwMDEwNzM2WjAYMRYwFAYD VQQDDA02OTQ5ZWI1OC1mM2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOeDZL2OwGZuFjgRDjiGicg4ljL3sDZeA51ozkEnkKRJrKTpYlV3262ZiH0h XL57sTnN4lsVpl/waRsBaa72F2qiXZ9xFINeiyrBeZQp9u387qV9dfNcnmEHz9ab PulDjkOWKhu5AyRdy7azk/SVxPBh5rFc946eVTqdHRoeAZ3rmp+MkkV1WStFhGO0 mX+vWPqZ58DXlUTPPJcfdXeaO8K966mCq4N0c2SjnzjSQw3oZbqkMHJlH1SyAqtE 2YZkETju5l/NLoSuggzOrTMft2C/2nWBQwGAuKOUzXczSL/UnDC397nRlhYC8Fzs 95Vw/lcCxpYVuC53MxxfpbVN8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiTg9F0 u8HwRrq2Zc8eK6E8GewVMB8GA1UdIwQYMBaAFMyOxfGOJHhJpccG6YU7YYZI7vKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMi8zRUQwODUyNjkx QTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VFbWx4d2JwaFR0aGhranU4 cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJN0Y4WTRrZUVtbHh3YnBoVHRoaGtqdThxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMi8zRUQwODUyNjkxQTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VF bWx4d2JwaFR0aGhranU4cVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCibLjhzMuNG5ynjEP45H5bKWVubpjcmqwMD5yxD4SLQwofBCH9V4ik WfJnCZJcdwzgAF3yqhwQetZo4Gp6ZrdIUBrieqyBsy8jBSnApTWcLKSXfrgGNStG BsK8FCqfZITXazpBw7HJiwuWQbGaG2KHZMdi+M4T3ev5TnqNLwfDR0Nl6kSdEUto gOX4X6rDLECYOrbRNbgAT7CnJEtBKrYrtFsTd+Bl2ltFXFYJImoEhCPXw4bpPh2R xS/Go3IBI4AwPT/kEGxeyAJ15zFE1TdW8bCXOzvGxTX4LluvIS2ZE2XujzOE81c4 133+wUVoqUj37OYSSF7T7ydnpnequy/G -----END CERTIFICATE-----Generated at Tue Dec 23 06:46:25 2025 by rpki-client