This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft File: ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft (raw, json) Hash identifier: DwUarIxEe58wAvS1+vkx+WGwlW6r3MsUXMCF9XjZP7Q= Subject key identifier: 78:66:CF:7B:79:C7:B8:8B:0E:7B:F2:E9:BE:2B:C0:2D:DA:43:22:DC Authority key identifier: 65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 Certificate issuer: /CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Certificate serial: 0C40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft Manifest number: 0C33 Signing time: Mon 22 Dec 2025 18:18:03 +0000 Manifest this update: Mon 22 Dec 2025 18:18:02 +0000 Manifest next update: Mon 29 Dec 2025 18:18:02 +0000 Files and hashes: 1: ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl (hash: swJ33z+kSXOCcH4r6S4KVdktg4U10qNskqjvGs1tUfc=) 2: 9D8E0AF4E18C11ECB1697F55C4F9AE02.roa (hash: AhG5EQmnKsHYz3IRggOMcJqSh+00kQLALDjFL//vrE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3136 (0xc40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3869, serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Validity Not Before: Dec 22 18:18:02 2025 GMT Not After : Dec 29 18:18:02 2025 GMT Subject: CN=69498b5b-2ec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8e:98:5f:94:57:6c:97:58:a3:47:89:5f:ae: 6c:c2:09:01:d5:af:ee:92:0a:50:a2:04:5e:79:ca: d8:2a:c8:54:97:1f:5a:ae:1a:31:70:76:7b:ca:84: b1:94:41:46:41:2a:38:4a:9a:f8:f1:d1:39:9b:1d: ff:04:92:81:23:20:5f:63:6f:f3:71:16:7a:47:c3: 81:be:30:13:f1:25:73:04:ef:cc:e3:ed:2d:4a:48: 77:be:3a:14:e9:92:22:6f:e5:62:c7:57:f7:b0:07: 4b:76:3c:a9:1c:e2:bf:a7:ff:1b:07:cc:8c:d4:e3: bc:a7:2e:45:15:c3:ec:c6:77:c8:07:3c:0b:15:2f: df:1a:ca:74:09:9b:20:eb:b1:a6:99:bf:5f:1d:b2: 2b:00:53:a7:b9:85:db:a6:5d:20:f3:8d:c0:2c:49: 11:9c:90:53:10:4a:6b:d1:75:9e:0b:63:a0:3b:f5: e2:9d:df:a7:47:1c:6a:e5:41:d5:3f:97:13:f1:e7: 38:07:73:88:5d:c0:27:4b:d2:7c:0a:33:a7:95:1d: 82:30:59:82:3c:48:c2:b1:82:7a:c7:87:84:33:10: 17:09:cb:ef:3c:cc:6e:bf:6a:2a:a6:6b:8a:5e:ae: de:3f:dc:03:c3:5a:76:17:d5:ca:55:23:fe:ec:45: ed:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:66:CF:7B:79:C7:B8:8B:0E:7B:F2:E9:BE:2B:C0:2D:DA:43:22:DC X509v3 Authority Key Identifier: keyid:65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:99:47:2a:c3:ce:94:6c:9a:f3:42:b3:7f:e7:47:f0:f2:0d: 82:49:26:95:fd:d2:1a:66:a8:4a:22:02:8c:02:b8:08:e3:3e: 06:53:4c:22:51:ed:14:0a:33:24:f6:18:ec:c2:59:8d:fd:41: 8b:a4:28:6e:97:b7:0b:ce:cb:e3:08:e7:df:f6:93:72:2d:1e: 2b:63:54:a1:9a:4f:06:da:fb:46:e4:55:4d:60:6f:c1:1e:e3: c8:4a:a4:4d:d4:e9:0d:ec:ac:7d:27:14:28:5f:a2:a9:3a:0a: 8a:23:81:59:88:8a:7f:24:2b:b3:4e:9a:21:d8:cf:30:9c:a6: 88:87:67:95:c8:13:5a:04:50:c0:5e:84:1c:bb:6d:7d:53:02: d4:32:a7:4a:f0:c1:49:30:e8:9c:cc:26:bd:6f:42:b0:9f:1d: f8:9b:be:7f:af:9b:72:ba:46:a6:09:fb:39:31:aa:50:eb:a1: 12:45:b6:5a:75:56:64:52:a6:6b:39:4d:2b:e2:d5:5d:73:30: 3c:10:57:d0:9a:e9:e1:7d:58:97:e1:fe:2e:2a:b9:69:5e:7d: b8:a6:b3:f1:40:fa:be:ab:4d:8c:6d:78:a9:e9:8c:41:7d:58: 4f:94:08:2b:da:ae:a1:b1:1a:14:41:41:68:2b:04:c8:89:9a: bf:f7:95:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4NjkxMTAvBgNVBAUTKDY1MDU5N0MzN0M2RDRENDc2RjQ5OTU0NDBCMzYwNEE2 NzFCQkZEQjAwHhcNMjUxMjIyMTgxODAyWhcNMjUxMjI5MTgxODAyWjAYMRYwFAYD VQQDDA02OTQ5OGI1Yi0yZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy46YX5RXbJdYo0eJX65swgkB1a/ukgpQogReecrYKshUlx9arhoxcHZ7yoSx lEFGQSo4Spr48dE5mx3/BJKBIyBfY2/zcRZ6R8OBvjAT8SVzBO/M4+0tSkh3vjoU 6ZIib+Vix1f3sAdLdjypHOK/p/8bB8yM1OO8py5FFcPsxnfIBzwLFS/fGsp0CZsg 67Gmmb9fHbIrAFOnuYXbpl0g843ALEkRnJBTEEpr0XWeC2OgO/Xind+nRxxq5UHV P5cT8ec4B3OIXcAnS9J8CjOnlR2CMFmCPEjCsYJ6x4eEMxAXCcvvPMxuv2oqpmuK Xq7eP9wDw1p2F9XKVSP+7EXtiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhmz3t5 x7iLDnvy6b4rwC3aQyLcMB8GA1UdIwQYMBaAFGUFl8N8bU1Hb0mVRAs2BKZxu/2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzg2OS83NURBNDQ3QzFG NEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRVZHZTWlZFQ3pZRXBuRzdf YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRV1h3M3h0VFVkdlNaVkVDellFcG5HN19iQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mzg2OS83NURBNDQ3QzFGNEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRV ZHZTWlZFQ3pZRXBuRzdfYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANmUcqw86UbJrzQrN/50fw8g2CSSaV/dIaZqhKIgKMArgI4z4GU0wi Ue0UCjMk9hjswlmN/UGLpChul7cLzsvjCOff9pNyLR4rY1Shmk8G2vtG5FVNYG/B HuPISqRN1OkN7Kx9JxQoX6KpOgqKI4FZiIp/JCuzTpoh2M8wnKaIh2eVyBNaBFDA XoQcu219UwLUMqdK8MFJMOiczCa9b0Kwnx34m75/r5tyukamCfs5MapQ66ESRbZa dVZkUqZrOU0r4tVdczA8EFfQmunhfViX4f4uKrlpXn24prPxQPq+q02MbXip6YxB fVhPlAgr2q6hsRoUQUFoKwTIiZq/95Wp -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:38 2025 by rpki-client