This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: R8RBy5oUngHCKuIw8M/GcBYyhTrbl73v/j5H3lU/FtQ= Subject key identifier: 54:A2:1C:35:67:83:07:5D:58:D2:08:3A:09:E7:A0:36:85:95:C0:6F Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 0163 Signing time: Tue 02 Dec 2025 14:48:59 +0000 Manifest this update: Tue 02 Dec 2025 14:48:58 +0000 Manifest next update: Tue 09 Dec 2025 14:48:58 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: Z0ENd5U9UggEq3ecxpD2mWpRPnVFVxIjVsgGkSuOR3s=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 14:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Dec 2 14:48:58 2025 GMT Not After : Dec 9 14:48:58 2025 GMT Subject: CN=692efc5b-9128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2a:8f:19:1f:09:bb:a5:0d:af:d0:3e:0a:70: 1c:0a:4c:b9:8d:2f:71:da:c0:c2:c0:c8:2e:2b:02: 60:8d:51:ec:35:a8:1e:89:0b:20:e6:16:c1:3b:5f: f5:60:13:f9:42:e0:84:21:46:27:df:f8:44:2e:3b: 3d:bb:f9:7c:26:3f:dc:b5:b2:90:be:97:d7:23:2e: f7:c2:7d:9c:e3:f8:d9:0c:2f:fa:c8:ef:5a:8b:32: 8b:0b:fa:ca:ab:19:eb:91:d6:cd:28:8f:ba:f0:db: 15:fb:c4:ca:af:bc:ac:a1:d1:ff:4c:ad:98:e7:13: ea:dd:d3:56:11:91:85:40:09:05:d0:52:9b:2a:6b: 7f:b3:d1:ad:51:9a:d5:f3:3a:ad:31:77:27:3d:42: f8:d8:9f:d6:49:e9:f6:df:60:fa:cc:2d:f2:a0:05: a9:9b:c4:c0:d4:81:9d:5e:75:0e:0c:93:85:5b:3d: a9:77:21:da:b0:8d:0e:ee:b1:20:c4:ee:11:7e:81: 5a:12:91:05:cc:ab:bd:6f:73:5b:d1:3a:fc:4b:a2: 2c:54:88:8d:1a:9b:83:1b:6e:23:21:76:d8:24:d6: bd:92:2c:91:83:4e:39:2a:bb:12:64:1a:ea:b1:4a: 4c:f0:66:d7:c9:13:9d:0d:ac:87:2a:e9:7b:43:73: 6c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A2:1C:35:67:83:07:5D:58:D2:08:3A:09:E7:A0:36:85:95:C0:6F X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:26:e3:59:99:07:0b:ac:62:35:55:34:c0:3d:a5:4c:57:cb: 03:b7:82:33:07:7a:83:cb:f4:ae:92:24:b4:1e:33:6d:c3:2f: da:84:ae:bd:a3:55:f0:33:6a:57:8a:61:4a:fb:18:ed:8c:49: 9b:9a:77:8f:64:79:bb:70:51:64:c3:1b:07:01:14:cf:68:27: ed:ac:5b:2c:9c:20:4f:ca:b6:da:92:8a:22:3c:6c:e5:94:42: f4:8b:0f:01:d4:2e:0d:5c:55:cb:4c:42:bb:89:09:af:37:05: 3f:a0:01:39:7e:c8:6b:c3:92:40:d8:65:41:48:17:f3:74:46: 0a:ea:f2:4f:39:bf:14:b5:68:80:8a:8f:fc:83:70:f6:ba:c3: bc:f4:b4:d0:fc:57:92:01:1e:43:67:16:2c:80:dd:a1:f7:2d: cf:6b:ea:ac:41:f1:3c:72:21:be:8f:e0:08:e8:ad:ab:12:1e: de:c2:0c:3b:dc:6b:06:98:79:59:44:ee:63:8f:6f:39:41:00: 07:82:61:42:e8:e0:98:c7:e3:e0:45:ff:1f:83:8c:ce:0a:72: d7:1d:d5:f9:80:f5:cf:8b:c8:a7:c5:14:9d:74:ea:ee:d9:3f: b2:51:ee:d7:df:88:63:10:e7:0d:c5:e7:3c:79:27:20:f0:8f: c5:82:46:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUxMjAyMTQ0ODU4WhcNMjUxMjA5MTQ0ODU4WjAYMRYwFAYD VQQDEw02OTJlZmM1Yi05MTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iqPGR8Ju6UNr9A+CnAcCky5jS9x2sDCwMguKwJgjVHsNageiQsg5hbBO1/1 YBP5QuCEIUYn3/hELjs9u/l8Jj/ctbKQvpfXIy73wn2c4/jZDC/6yO9aizKLC/rK qxnrkdbNKI+68NsV+8TKr7ysodH/TK2Y5xPq3dNWEZGFQAkF0FKbKmt/s9GtUZrV 8zqtMXcnPUL42J/WSen232D6zC3yoAWpm8TA1IGdXnUODJOFWz2pdyHasI0O7rEg xO4RfoFaEpEFzKu9b3Nb0Tr8S6IsVIiNGpuDG24jIXbYJNa9kiyRg045KrsSZBrq sUpM8GbXyROdDayHKul7Q3NslQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSiHDVn gwddWNIIOgnnoDaFlcBvMB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCJuNZmQcLrGI1VTTAPaVMV8sDt4IzB3qDy/SukiS0HjNtwy/ahK69 o1XwM2pXimFK+xjtjEmbmnePZHm7cFFkwxsHARTPaCftrFssnCBPyrbakooiPGzl lEL0iw8B1C4NXFXLTEK7iQmvNwU/oAE5fshrw5JA2GVBSBfzdEYK6vJPOb8UtWiA io/8g3D2usO89LTQ/FeSAR5DZxYsgN2h9y3Pa+qsQfE8ciG+j+AI6K2rEh7ewgw7 3GsGmHlZRO5jj285QQAHgmFC6OCYx+PgRf8fg4zOCnLXHdX5gPXPi8inxRSddOru 2T+yUe7X34hjEOcNxec8eScg8I/FgkZF -----END CERTIFICATE-----Generated at Wed Dec 3 15:30:15 2025 by rpki-client