This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: MccLfsa4tNH19C//cP5OZB8d72a8kAEoG1L+vlI1id8= Subject key identifier: 4F:6D:49:6E:A1:CA:B2:18:0B:B8:E6:23:A4:D9:F3:95:1C:37:34:78 Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1A9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1A81 Signing time: Sat 06 Dec 2025 15:59:11 +0000 Manifest this update: Sat 06 Dec 2025 15:59:11 +0000 Manifest next update: Sat 13 Dec 2025 15:59:11 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: mVv/IRS8Zq7KlAOSTKVu7KjGliG1y1oxizI17jaD/B0=) 2: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: Bg5JnhOTYWXrnwhhpqWfW4Q3wmcNB2++JHlbLdOmesM=) 3: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: TbtbpAfuNvbCVYz9nj+zPZ5QGVGG8zIP6ItMH+HbWz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6815 (0x1a9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Dec 6 15:59:11 2025 GMT Not After : Dec 13 15:59:11 2025 GMT Subject: CN=693452cf-e1c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:00:e2:b0:47:db:d8:ce:9f:82:c3:3f:1d:7e: 12:3d:56:06:a9:0f:5c:21:0c:35:09:9d:9c:5f:cd: 12:e0:f5:09:9e:0a:90:37:09:ed:d0:d5:2c:4c:f2: 77:0b:2b:64:bf:9c:8b:78:07:2c:81:49:2f:38:e0: b3:7e:55:b2:13:36:40:8a:ab:9c:1f:c7:c0:19:90: 3a:d1:e7:1b:18:69:0b:84:dd:70:8f:d0:b7:4d:75: 75:81:13:20:06:8d:c7:77:27:18:f3:6f:e6:e4:69: 88:46:52:a1:ac:71:5c:fe:4d:bb:56:b7:fd:2e:54: 6d:21:17:05:be:a4:4e:17:9f:1a:7a:bb:81:a9:0c: 9d:82:76:53:a7:8a:70:84:bd:3d:e7:cc:a3:8c:f4: 35:b9:22:34:bc:05:09:22:10:5f:fb:10:cc:07:9d: 3e:65:73:d6:e3:e6:ac:12:cf:18:f4:86:8b:f8:35: 07:1f:0e:84:a0:40:23:64:6f:08:8e:b6:f1:e8:46: 68:1c:a6:7b:00:0a:f6:2d:7b:b2:2a:3d:ff:c5:4e: 9b:21:55:c9:02:dc:cc:f2:1f:5a:c5:12:79:e8:7e: d8:27:ff:16:36:e6:a5:c5:a0:ad:19:1c:db:10:f1: d3:c5:01:c2:c8:8b:ec:3a:f5:48:39:f1:41:e4:9a: 84:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6D:49:6E:A1:CA:B2:18:0B:B8:E6:23:A4:D9:F3:95:1C:37:34:78 X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:27:d4:da:33:07:31:de:c5:b2:3d:33:5f:ca:30:eb:02:a4: 29:13:76:df:f1:bd:a9:45:b3:84:b1:50:3d:e3:8d:23:00:02: 98:e0:fe:79:ab:43:b4:7a:a5:62:b3:70:e4:82:f4:06:16:de: 51:5f:59:ab:cb:18:4d:be:0c:5e:b7:95:81:d8:ab:45:08:0c: 13:6b:08:5c:fb:bd:07:f7:91:ad:3f:8c:8a:51:21:13:8b:1d: 65:c1:41:97:10:a7:47:a1:3b:b8:ea:83:6f:19:bf:b1:77:58: ca:0b:5c:d7:4c:41:4d:cd:d4:2b:59:1f:8d:cd:3e:6c:9f:72: 4f:7f:cb:02:e4:84:64:e6:5b:ad:58:99:78:9c:ee:89:c7:c7: 86:a0:30:4a:8e:ba:fa:64:03:0b:e9:59:74:1d:34:03:a5:ce: b1:a5:b7:d0:07:64:d7:75:4d:60:8d:14:c2:b6:41:0b:f5:63: 8d:67:b8:3d:f3:de:aa:06:8c:21:1c:6f:ce:0c:15:d6:87:c2: 65:c3:83:93:4e:1e:9c:d5:54:48:53:f0:72:e0:9e:5f:be:86: df:f9:02:91:f0:b2:23:7a:db:10:c7:50:82:8f:64:32:96:1f: fe:33:f4:e2:6b:de:84:5f:d4:c9:2c:7e:00:34:07:b4:43:1e: 4a:85:3a:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjUxMjA2MTU1OTExWhcNMjUxMjEzMTU1OTExWjAYMRYwFAYD VQQDEw02OTM0NTJjZi1lMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wDisEfb2M6fgsM/HX4SPVYGqQ9cIQw1CZ2cX80S4PUJngqQNwnt0NUsTPJ3 Cytkv5yLeAcsgUkvOOCzflWyEzZAiqucH8fAGZA60ecbGGkLhN1wj9C3TXV1gRMg Bo3HdycY82/m5GmIRlKhrHFc/k27Vrf9LlRtIRcFvqROF58aeruBqQydgnZTp4pw hL0958yjjPQ1uSI0vAUJIhBf+xDMB50+ZXPW4+asEs8Y9IaL+DUHHw6EoEAjZG8I jrbx6EZoHKZ7AAr2LXuyKj3/xU6bIVXJAtzM8h9axRJ56H7YJ/8WNualxaCtGRzb EPHTxQHCyIvsOvVIOfFB5JqEoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9tSW6h yrIYC7jmI6TZ85UcNzR4MB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6J9TaMwcx3sWyPTNfyjDrAqQpE3bf8b2pRbOEsVA9440jAAKY4P55 q0O0eqVis3DkgvQGFt5RX1mryxhNvgxet5WB2KtFCAwTawhc+70H95GtP4yKUSET ix1lwUGXEKdHoTu46oNvGb+xd1jKC1zXTEFNzdQrWR+NzT5sn3JPf8sC5IRk5lut WJl4nO6Jx8eGoDBKjrr6ZAML6Vl0HTQDpc6xpbfQB2TXdU1gjRTCtkEL9WONZ7g9 896qBowhHG/ODBXWh8Jlw4OTTh6c1VRIU/By4J5fvobf+QKR8LIjetsQx1CCj2Qy lh/+M/Tia96EX9TJLH4ANAe0Qx5KhTrL -----END CERTIFICATE-----Generated at Sun Dec 7 03:11:42 2025 by rpki-client