This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft File: ZPivgeq5CJliFNQ59xFwDp9ItMs.mft (raw, json) Hash identifier: qHuBbxht2r9mtyhDHjNVDqsHRXI+ysHyQmmdeCxa8Zo= Subject key identifier: BB:A4:5C:BD:90:8D:AB:51:EB:C9:57:C6:A4:D0:8F:61:B5:86:77:88 Authority key identifier: 64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB Certificate issuer: /CN=A91D5230/serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft Manifest number: 0870 Signing time: Mon 22 Dec 2025 20:02:59 +0000 Manifest this update: Mon 22 Dec 2025 20:02:58 +0000 Manifest next update: Mon 29 Dec 2025 20:02:58 +0000 Files and hashes: 1: ZPivgeq5CJliFNQ59xFwDp9ItMs.crl (hash: 7hQYTQ8OyzKkfJRBASXqC9xl9A9u5YEbjiO/6EGwVIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5230, serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Validity Not Before: Dec 22 20:02:58 2025 GMT Not After : Dec 29 20:02:58 2025 GMT Subject: CN=6949a3f3-a38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fe:8d:99:59:8a:04:82:31:72:82:f3:27:08: 54:43:48:28:03:89:69:79:75:cc:cc:28:94:0e:7d: 70:91:c7:f4:20:72:b7:4f:61:6d:db:bc:c9:87:cd: 91:7b:98:61:94:ee:2f:14:6e:13:48:0a:68:1e:6d: 3b:d5:6a:85:fb:c3:8b:e4:45:d8:cf:a1:db:d3:de: 09:87:f4:74:b2:37:c6:bd:1d:00:64:ac:b4:c5:c1: 4a:b6:7f:e2:18:3f:ba:a4:5e:69:91:7d:8b:d2:61: d8:63:a6:0a:4a:cb:f7:97:71:71:9e:a8:24:58:bf: 3b:42:dc:f2:ea:ad:28:ed:41:06:be:30:b0:a7:18: 4c:ee:ea:e0:7c:1c:51:27:7a:9a:6c:06:01:76:ab: e1:6c:3b:2a:2a:8c:17:45:c0:0c:18:b5:4c:ca:b4: af:ca:d3:3d:d2:51:44:64:ba:2c:2d:37:bf:b5:fb: 06:c3:23:b5:3b:7d:fa:86:b7:11:dd:6e:97:cd:1f: 04:41:6c:b1:ad:e2:ba:f2:07:8b:19:61:d5:cc:d6: e2:0c:0d:08:f4:bc:c7:7a:e3:a0:1b:86:46:e1:2d: b6:fa:38:63:35:4e:13:e0:4c:b1:bf:74:a6:89:0b: d4:1c:9b:b3:07:38:f6:47:2e:74:4f:ca:5a:34:6d: ae:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A4:5C:BD:90:8D:AB:51:EB:C9:57:C6:A4:D0:8F:61:B5:86:77:88 X509v3 Authority Key Identifier: keyid:64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:74:9d:32:4b:95:41:31:85:6f:3b:90:81:88:e6:74:9a:f4: ce:fb:f8:ca:3e:10:0d:23:15:ec:b9:97:e0:fe:9e:45:93:76: 64:d9:97:af:20:51:96:d1:17:55:29:50:4f:01:63:84:7e:e2: ad:c1:84:c3:56:aa:65:54:be:eb:3c:46:c6:f9:c5:c9:e5:14: c3:f8:ae:86:0b:5b:39:5d:ed:88:ce:f5:0d:40:5b:d8:62:79: ac:12:e4:aa:52:c7:9d:09:ad:06:0a:b2:13:33:27:2e:33:43: f0:f5:ab:d8:0c:e9:20:6a:6c:9f:f6:ab:4e:68:95:63:a4:1d: 21:d8:e5:fa:dd:f4:24:d0:27:9b:dc:f7:5c:cd:8a:9f:4b:ac: 98:bc:2d:8a:2f:67:b0:4b:00:d9:f9:2c:97:fb:d2:f2:00:ec: 8d:86:4f:88:0a:0e:5a:59:ae:33:2e:d6:28:e1:bf:9d:a6:6f: ba:53:e4:4a:16:45:15:c5:3b:8e:cd:6a:7e:2f:32:34:c4:2b: b1:3f:c1:53:f2:e1:ea:62:41:ef:c0:d1:b5:8e:aa:78:e4:98: 47:61:e4:07:7c:0a:f0:6c:60:9f:04:85:83:d9:57:10:03:bd: b7:37:59:c0:4d:95:ec:2c:be:1a:44:8d:15:be:49:f1:e7:c0: bc:7b:59:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyMzAxMTAvBgNVBAUTKDY0RjhBRjgxRUFCOTA4OTk2MjE0RDQzOUY3MTE3MDBF OUY0OEI0Q0IwHhcNMjUxMjIyMjAwMjU4WhcNMjUxMjI5MjAwMjU4WjAYMRYwFAYD VQQDDA02OTQ5YTNmMy1hMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0f6NmVmKBIIxcoLzJwhUQ0goA4lpeXXMzCiUDn1wkcf0IHK3T2Ft27zJh82R e5hhlO4vFG4TSApoHm071WqF+8OL5EXYz6Hb094Jh/R0sjfGvR0AZKy0xcFKtn/i GD+6pF5pkX2L0mHYY6YKSsv3l3FxnqgkWL87Qtzy6q0o7UEGvjCwpxhM7urgfBxR J3qabAYBdqvhbDsqKowXRcAMGLVMyrSvytM90lFEZLosLTe/tfsGwyO1O336hrcR 3W6XzR8EQWyxreK68geLGWHVzNbiDA0I9LzHeuOgG4ZG4S22+jhjNU4T4Eyxv3Sm iQvUHJuzBzj2Ry50T8paNG2unwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLukXL2Q jatR68lXxqTQj2G1hneIMB8GA1UdIwQYMBaAFGT4r4HquQiZYhTUOfcRcA6fSLTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTIzMC9DNTAwNzREQUU4 NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNKbGlGTlE1OXhGd0RwOUl0 TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQaXZnZXE1Q0psaUZOUTU5eEZ3RHA5SXRNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTIzMC9DNTAwNzREQUU4NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNK bGlGTlE1OXhGd0RwOUl0TXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcdJ0yS5VBMYVvO5CBiOZ0mvTO+/jKPhANIxXsuZfg/p5Fk3Zk2Zev IFGW0RdVKVBPAWOEfuKtwYTDVqplVL7rPEbG+cXJ5RTD+K6GC1s5Xe2IzvUNQFvY YnmsEuSqUsedCa0GCrITMycuM0Pw9avYDOkgamyf9qtOaJVjpB0h2OX63fQk0Ceb 3PdczYqfS6yYvC2KL2ewSwDZ+SyX+9LyAOyNhk+ICg5aWa4zLtYo4b+dpm+6U+RK FkUVxTuOzWp+LzI0xCuxP8FT8uHqYkHvwNG1jqp45JhHYeQHfArwbGCfBIWD2VcQ A723N1nATZXsLL4aRI0Vvknx58C8e1nP -----END CERTIFICATE-----Generated at Tue Dec 23 09:40:11 2025 by rpki-client