This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: Pai6LK238Qd83n7Z/jv38cuX9RJeOpDbXO1van0UCPs= Subject key identifier: AE:E5:77:06:FE:4B:E3:58:D1:14:07:31:C8:4A:A6:D0:BD:AD:20:6B Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: 010A Signing time: Tue 23 Dec 2025 04:00:31 +0000 Manifest this update: Tue 23 Dec 2025 04:00:31 +0000 Manifest next update: Tue 30 Dec 2025 04:00:31 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: eiAlk1u3kcvmb8WTBWJmohZkvvgW2o/CcisLzvkel+A=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: aOiSDYOcKoNPJK5dAvtJf70EvscXRCj0p7VI3j21/MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F, serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: Dec 23 04:00:31 2025 GMT Not After : Dec 30 04:00:31 2025 GMT Subject: CN=694a13df-9058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:22:d6:00:26:e3:f2:5e:13:ad:e9:80:fc:66: b4:03:f7:df:1e:41:04:77:bf:ef:89:05:00:17:04: 1f:7a:2c:b7:93:9e:8c:35:16:4d:25:9e:f8:ca:8d: e5:4f:b7:29:d3:86:fc:e2:c8:f6:a9:75:37:14:83: 66:f3:7f:61:b6:01:01:7e:81:e2:a5:4e:47:79:6b: 5e:10:32:4c:e5:5b:17:7a:a4:c1:b9:76:97:37:c0: fb:a6:52:01:44:c9:82:0e:96:2b:61:43:31:2a:70: 7f:90:06:b0:9d:23:43:b1:d7:61:ef:18:fb:30:f7: f8:f4:1f:76:08:d7:13:3c:80:73:44:e5:75:ec:d0: 18:94:14:80:1b:93:d0:2a:0a:e4:9f:0c:e7:0f:ef: a8:d9:d1:e1:b1:1e:19:af:0b:49:4f:c6:c4:d3:8b: b0:23:78:21:36:68:2d:56:4f:33:9d:26:82:7d:a1: c6:f2:fa:8e:27:a5:3b:76:df:ed:c3:ea:73:3a:5f: a0:4d:47:cb:d6:ae:a6:80:ef:06:f5:3b:9d:0b:76: bb:15:99:a6:2f:28:1f:08:ad:b3:fa:2b:f5:36:2d: f2:c6:e1:0f:cb:26:f6:f6:92:92:1d:86:88:58:1d: 26:57:64:85:75:2c:5e:f6:b8:4d:81:fd:1f:bb:c9: 59:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E5:77:06:FE:4B:E3:58:D1:14:07:31:C8:4A:A6:D0:BD:AD:20:6B X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:aa:eb:79:94:28:62:46:84:8c:28:09:d0:2d:1c:85:e6:3b: 69:24:ab:56:d5:85:35:e7:be:d4:09:cf:bf:f3:63:40:a8:b4: bf:4d:ff:44:15:79:64:85:78:ad:1e:eb:ef:d3:5f:50:fe:5d: ae:13:9f:0e:03:de:3b:9b:67:ce:64:90:63:d3:ff:dd:39:a5: 86:a0:88:33:5d:40:c8:0a:33:81:b9:41:03:94:0c:5b:7e:6c: cc:cd:05:1b:f2:6c:b3:53:ac:66:02:75:c1:14:46:46:8a:0a: ed:39:3b:a8:8c:7f:74:ea:05:01:2e:20:51:22:b0:3a:4c:35: 02:41:18:00:97:8b:bf:a1:53:84:3d:41:6c:da:30:1e:3e:a0: 93:36:a4:78:c9:05:af:3a:1b:cc:27:75:93:b1:97:6d:80:c6: 9c:48:a4:e9:ab:8e:ce:8c:77:5c:4d:3d:32:e6:a0:77:4e:1a: 61:3f:00:a2:fa:d5:ea:9b:33:b9:e0:1e:14:ea:94:7e:ea:6f: f8:fd:0b:26:2d:7a:80:37:d4:2d:75:ac:03:d2:f2:d1:d5:0f: 6c:9d:67:32:92:e1:1f:ee:55:0e:87:47:37:8a:09:32:c6:db: a3:11:ce:0d:66:58:c4:f4:53:0b:9a:fa:62:94:bb:e4:93:cb: 44:3d:c8:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyM0YxMTAvBgNVBAUTKENDRENGRjIxMkE2QjY5OUE1NzBCNEE5RDE3NUYxNjIz NzE4MzJDQTUwHhcNMjUxMjIzMDQwMDMxWhcNMjUxMjMwMDQwMDMxWjAYMRYwFAYD VQQDDA02OTRhMTNkZi05MDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyLWACbj8l4TremA/Ga0A/ffHkEEd7/viQUAFwQfeiy3k56MNRZNJZ74yo3l T7cp04b84sj2qXU3FINm839htgEBfoHipU5HeWteEDJM5VsXeqTBuXaXN8D7plIB RMmCDpYrYUMxKnB/kAawnSNDsddh7xj7MPf49B92CNcTPIBzROV17NAYlBSAG5PQ KgrknwznD++o2dHhsR4ZrwtJT8bE04uwI3ghNmgtVk8znSaCfaHG8vqOJ6U7dt/t w+pzOl+gTUfL1q6mgO8G9TudC3a7FZmmLygfCK2z+iv1Ni3yxuEPyyb29pKSHYaI WB0mV2SFdSxe9rhNgf0fu8lZPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7ldwb+ S+NY0RQHMchKptC9rSBrMB8GA1UdIwQYMBaAFMzc/yEqa2maVwtKnRdfFiNxgyyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjIzRi8zMzhCMkY0ODRB MkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFacFhDMHFkRjE4V0kzR0RM S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjIzRi8zMzhCMkY0ODRBMkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFa cFhDMHFkRjE4V0kzR0RMS1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7qut5lChiRoSMKAnQLRyF5jtpJKtW1YU1577UCc+/82NAqLS/Tf9E FXlkhXitHuvv019Q/l2uE58OA947m2fOZJBj0//dOaWGoIgzXUDICjOBuUEDlAxb fmzMzQUb8myzU6xmAnXBFEZGigrtOTuojH906gUBLiBRIrA6TDUCQRgAl4u/oVOE PUFs2jAePqCTNqR4yQWvOhvMJ3WTsZdtgMacSKTpq47OjHdcTT0y5qB3ThphPwCi +tXqmzO54B4U6pR+6m/4/QsmLXqAN9QtdawD0vLR1Q9snWcykuEf7lUOh0c3igky xtujEc4NZljE9FMLmvpilLvkk8tEPciv -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:22 2025 by rpki-client