This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft File: zIQ-FAouPvvguUneDtgDg5BgVB0.mft (raw, json) Hash identifier: ywDvzKcTlx7lCU0huvNEzlZw3HbMt/b41w14M9zJdv0= Subject key identifier: DC:80:1F:D4:CD:A6:11:FA:18:61:2E:55:B5:9F:8B:FA:84:9F:5F:0F Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 3116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft Manifest number: 30FD Signing time: Mon 22 Dec 2025 15:18:38 +0000 Manifest this update: Mon 22 Dec 2025 15:18:37 +0000 Manifest next update: Mon 29 Dec 2025 15:18:37 +0000 Files and hashes: 1: zIQ-FAouPvvguUneDtgDg5BgVB0.crl (hash: V2G2LTvgLWqcRzOOrXyawHlv8EGJZk3QjW7K47tmr1c=) 2: C3F53A0654F011E7BE4A6431C4F9AE02.roa (hash: 54WI7bxOwof+H1Cz8+uPiLZ+tzpprbk2GuCnR0w5MUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12566 (0x3116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37, serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: Dec 22 15:18:37 2025 GMT Not After : Dec 29 15:18:37 2025 GMT Subject: CN=6949614d-3117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:6c:f8:50:f8:56:fe:d4:dc:a7:74:7e:9c:1c: de:5c:ca:24:6b:28:ea:cd:f9:7b:e8:6b:d0:12:a5: ab:06:1f:19:8e:97:72:e4:87:33:7c:ca:ef:b5:bd: d1:e7:6b:42:7e:32:24:7d:db:99:f8:77:90:7d:c6: d0:a1:e4:13:99:67:61:ed:16:83:6f:f7:54:3e:83: 79:c6:de:d5:00:42:72:d3:b2:78:0b:cf:7c:d5:01: 35:c1:29:26:ec:9a:8a:bb:25:b6:99:db:2a:df:e8: 00:38:2f:61:19:06:64:53:d9:cf:70:b1:48:bf:fc: a8:f7:08:2d:46:51:bb:9b:d9:33:a1:00:be:3e:c3: fe:98:48:66:58:1b:82:8c:1f:e9:3f:92:20:35:a3: fb:b9:43:1e:81:5d:30:c8:bd:ef:ca:cf:32:8a:8d: 2c:07:42:3f:c4:48:a6:3d:d4:ac:38:2b:8e:4b:0e: 9e:25:a0:5d:30:dd:b5:c2:0c:48:2f:8f:7d:a1:21: 7d:06:2f:1b:50:f8:62:81:b4:b2:18:71:3b:d3:ba: 25:80:f6:42:d5:5a:72:bc:9b:02:8a:c6:dd:02:61: 8f:1e:8f:87:87:e3:b3:76:7a:97:9c:f4:98:57:a2: 93:d1:d5:7d:0a:58:7e:30:be:3d:e2:50:1e:e3:40: 09:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:80:1F:D4:CD:A6:11:FA:18:61:2E:55:B5:9F:8B:FA:84:9F:5F:0F X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ad:ff:d3:ad:16:94:e8:88:9a:e0:1d:39:0b:1d:9a:a3:8c: 25:63:b7:b7:9f:f1:bb:a0:46:e8:fb:a4:7a:9a:07:cf:6d:b7: e4:59:db:56:eb:84:22:ab:f8:1e:d6:79:81:00:ca:00:f9:f6: 39:62:d1:98:da:e3:97:44:1b:6e:48:41:45:6b:3e:28:29:71: 96:50:be:7c:99:2c:a3:50:3e:8a:4b:73:8c:10:bd:e9:05:c9: c7:a3:e1:1c:80:8f:17:3c:b3:ba:5f:f6:44:65:31:da:07:bc: 9e:a1:53:c5:1d:f0:c3:11:e3:6f:e9:e9:36:9f:c1:4b:ea:65: 41:f4:72:b8:cc:8a:44:f0:af:c2:07:b4:f7:f3:f8:47:bb:86: cf:bd:bc:2a:10:b9:62:7e:6c:74:a6:a4:3c:76:18:7b:05:99: a7:7e:5b:60:3d:a4:03:c9:8a:ab:54:9f:7c:b6:0f:a6:97:c7: 54:98:ac:03:f6:de:48:2a:2b:85:de:49:67:50:c0:92:83:6b: 8d:e7:02:e8:b8:77:6e:45:7a:ea:e8:04:99:f8:0c:9c:97:ab: e9:6f:5b:88:6c:ed:45:ff:5f:07:e0:86:05:86:c4:e9:43:18: ca:e8:32:65:73:64:33:30:a1:1e:7c:24:52:d3:28:8a:8f:f7: 18:21:9c:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjUxMjIyMTUxODM3WhcNMjUxMjI5MTUxODM3WjAYMRYwFAYD VQQDDA02OTQ5NjE0ZC0zMTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+2z4UPhW/tTcp3R+nBzeXMokayjqzfl76GvQEqWrBh8Zjpdy5IczfMrvtb3R 52tCfjIkfduZ+HeQfcbQoeQTmWdh7RaDb/dUPoN5xt7VAEJy07J4C8981QE1wSkm 7JqKuyW2mdsq3+gAOC9hGQZkU9nPcLFIv/yo9wgtRlG7m9kzoQC+PsP+mEhmWBuC jB/pP5IgNaP7uUMegV0wyL3vys8yio0sB0I/xEimPdSsOCuOSw6eJaBdMN21wgxI L499oSF9Bi8bUPhigbSyGHE707olgPZC1VpyvJsCisbdAmGPHo+Hh+OzdnqXnPSY V6KT0dV9Clh+ML494lAe40AJ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyAH9TN phH6GGEuVbWfi/qEn18PMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUEzNy82ODY4RTAyOEU3RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2 dmd1VW5lRHRnRGc1QmdWQjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjrf/TrRaU6Iia4B05Cx2ao4wlY7e3n/G7oEbo+6R6mgfPbbfkWdtW 64Qiq/ge1nmBAMoA+fY5YtGY2uOXRBtuSEFFaz4oKXGWUL58mSyjUD6KS3OMEL3p BcnHo+EcgI8XPLO6X/ZEZTHaB7yeoVPFHfDDEeNv6ek2n8FL6mVB9HK4zIpE8K/C B7T38/hHu4bPvbwqELlifmx0pqQ8dhh7BZmnfltgPaQDyYqrVJ98tg+ml8dUmKwD 9t5IKiuF3klnUMCSg2uN5wLouHduRXrq6ASZ+Aycl6vpb1uIbO1F/18H4IYFhsTp QxjK6DJlc2QzMKEefCRS0yiKj/cYIZyW -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:17 2025 by rpki-client