This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft File: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft (raw, json) Hash identifier: 3S2aSWPkC+S8kNTplFHYXiub3h5ET/F9+ZbmZFghgV8= Subject key identifier: B8:81:90:7C:5B:53:17:C6:D3:9C:A0:36:0E:A7:8D:E3:FF:0C:CA:98 Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft Manifest number: 98 Signing time: Tue 23 Dec 2025 05:25:48 +0000 Manifest this update: Tue 23 Dec 2025 05:25:48 +0000 Manifest next update: Tue 30 Dec 2025 05:25:48 +0000 Files and hashes: 1: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl (hash: f+kobwNnfKzMTc3VM5cqAaBzxTCHRayZDZJB7fVPnpY=) 2: 992A7358004211F0AC90656CC4F9AE02.roa (hash: rg22dLtvUVEIca2HHu+lw9opygD3mcPgsF/jKiaHrGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Validity Not Before: Dec 23 05:25:48 2025 GMT Not After : Dec 30 05:25:48 2025 GMT Subject: CN=694a27dc-7dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:30:c8:d2:80:c1:03:a6:da:18:f4:dd:7b:6d: e1:5a:d2:f5:73:90:13:b8:c3:e0:71:c9:5b:fb:d8: bc:6f:fa:48:98:2e:37:3a:06:d9:95:ea:97:31:d3: 1c:a6:98:b3:ac:b9:f3:c2:25:33:b8:16:db:a8:ed: d0:f5:fd:85:9c:47:9a:e3:33:da:ee:27:83:b3:2d: 01:38:a5:b2:00:ee:5b:f1:ae:2a:ea:58:43:ea:ee: bd:8e:e2:8e:32:0a:31:6a:38:4b:11:4b:07:18:3f: 19:d0:12:45:87:7c:4f:bf:ff:64:b6:55:00:e8:01: 73:5b:08:2e:06:50:42:38:d9:f3:19:b5:da:bc:3d: 02:72:b3:8b:4a:ea:96:45:b2:d3:02:6f:29:73:4f: ed:bd:24:a4:36:bc:a5:24:f4:ac:5f:f6:d3:2c:31: 06:cb:13:99:20:fa:d2:45:55:18:3c:55:ad:bf:aa: 8e:c3:70:5b:e3:9f:91:5a:aa:27:50:5b:3e:75:06: 31:57:1b:3e:51:f2:13:66:67:33:7a:37:56:4c:a1: 88:17:74:bc:56:60:6a:9e:55:66:1a:07:72:97:c5: 6a:55:e6:97:6a:19:ef:54:53:44:45:80:e0:2c:bc: 7d:18:f2:2b:93:48:8c:45:23:aa:ac:bb:9f:7a:90: 04:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:81:90:7C:5B:53:17:C6:D3:9C:A0:36:0E:A7:8D:E3:FF:0C:CA:98 X509v3 Authority Key Identifier: keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d6:c5:66:bb:82:b2:7c:8d:19:e0:db:5f:7c:10:54:b9:ad: 1c:64:91:79:2b:9a:05:95:3b:3a:6a:e7:97:85:01:b9:0e:9e: 6c:a9:c5:34:c4:94:1d:92:8f:5a:9d:ae:8b:5e:d9:8f:8e:71: b5:82:da:00:0f:f2:1a:51:2c:57:e8:af:97:9c:0b:64:67:35: 02:d8:f6:e3:4e:07:d3:a7:ea:fc:cd:f5:ee:86:e8:7c:c1:0c: 4d:4d:fc:4a:e0:c7:4b:0d:7a:44:0b:aa:c9:d3:6b:04:26:08: 07:e7:80:84:c1:a4:03:f8:6e:cc:f9:c5:17:a5:3d:d1:74:8d: 5a:e8:75:eb:b3:0a:75:3b:cf:23:59:e9:d7:ce:38:99:98:e7: fe:60:7e:89:b7:7f:6a:3f:52:df:bc:b0:41:3d:88:07:e8:39: df:20:d9:0a:ea:dc:d1:67:e6:51:ea:02:56:04:80:41:a8:b1: f2:cd:79:01:ac:2a:f2:f2:32:7f:d8:2d:2f:a1:6a:21:3f:cd: 0d:75:0c:d6:ca:3e:13:06:4e:06:23:b5:39:9b:22:ad:c6:f8: ed:6b:7c:22:e4:42:e0:9b:92:2c:2f:ed:06:12:f5:ba:3d:4a: 27:8f:99:4b:53:34:9b:18:d1:09:1c:6e:ce:ff:f3:60:21:59: bc:a3:e4:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDY2NEU1OUEwMDBCOTFFNzJGODAzRTZEODY4NDExNTRD ODA1NkI4OEEwHhcNMjUxMjIzMDUyNTQ4WhcNMjUxMjMwMDUyNTQ4WjAYMRYwFAYD VQQDDA02OTRhMjdkYy03ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzDI0oDBA6baGPTde23hWtL1c5ATuMPgcclb+9i8b/pImC43OgbZleqXMdMc ppizrLnzwiUzuBbbqO3Q9f2FnEea4zPa7ieDsy0BOKWyAO5b8a4q6lhD6u69juKO MgoxajhLEUsHGD8Z0BJFh3xPv/9ktlUA6AFzWwguBlBCONnzGbXavD0CcrOLSuqW RbLTAm8pc0/tvSSkNrylJPSsX/bTLDEGyxOZIPrSRVUYPFWtv6qOw3Bb45+RWqon UFs+dQYxVxs+UfITZmczejdWTKGIF3S8VmBqnlVmGgdyl8VqVeaXahnvVFNERYDg LLx9GPIrk0iMRSOqrLufepAEvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiBkHxb UxfG05ygNg6njeP/DMqYMB8GA1UdIwQYMBaAFGZOWaAAuR5y+APm2GhBFUyAVriK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9FQ0IwMEI0MjAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9aazVab0FDNUhuTDRBLWJZYUVFVlRJQld1 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1prNVpvQUM1SG5MNEEtYllhRUVWVElCV3VJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9FQ0IwMEI0MjAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9aazVab0FDNUhu TDRBLWJZYUVFVlRJQld1SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy1sVmu4KyfI0Z4NtffBBUua0cZJF5K5oFlTs6aueXhQG5Dp5sqcU0 xJQdko9ana6LXtmPjnG1gtoAD/IaUSxX6K+XnAtkZzUC2PbjTgfTp+r8zfXuhuh8 wQxNTfxK4MdLDXpEC6rJ02sEJggH54CEwaQD+G7M+cUXpT3RdI1a6HXrswp1O88j WenXzjiZmOf+YH6Jt39qP1LfvLBBPYgH6DnfINkK6tzRZ+ZR6gJWBIBBqLHyzXkB rCry8jJ/2C0voWohP80NdQzWyj4TBk4GI7U5myKtxvjta3wi5ELgm5IsL+0GEvW6 PUonj5lLUzSbGNEJHG7O//NgIVm8o+S2 -----END CERTIFICATE-----Generated at Thu Dec 25 05:12:55 2025 by rpki-client