This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft File: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft (raw, json) Hash identifier: YaPupTtOh1vjUp9xmSkvPHAhX33Nt2MjJ81Apk8W2xE= Subject key identifier: 78:25:D6:10:CB:B0:D2:84:22:A8:11:D8:34:AA:F3:CF:CD:C0:87:0D Authority key identifier: 67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 Certificate issuer: /CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Certificate serial: 080C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft Manifest number: 0803 Signing time: Tue 02 Dec 2025 20:19:42 +0000 Manifest this update: Tue 02 Dec 2025 20:19:42 +0000 Manifest next update: Tue 09 Dec 2025 20:19:41 +0000 Files and hashes: 1: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl (hash: gCsgOdDA+7rfF+7z9RYyfV+WCbIo8K/xypItFjIDjX8=) 2: 28D471BA06B611EBBBFD6B2CC4F9AE02.roa (hash: qTxqjLafp1eHZVEFc07aPaguHdK/MmmTaVfaOIj+sXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 20:19:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Validity Not Before: Dec 2 20:19:42 2025 GMT Not After : Dec 9 20:19:41 2025 GMT Subject: CN=692f49de-2d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:29:23:cb:82:9f:ea:8a:82:12:66:57:f6:d7: 50:e8:4c:be:4a:43:d6:22:ee:d5:eb:a6:7a:0c:74: e9:8b:72:56:12:08:ea:85:c2:d6:69:7e:5c:ca:28: 13:9f:d2:1e:81:30:91:00:27:c4:87:27:76:54:98: 82:f6:b3:66:42:a7:9b:7b:34:6b:43:44:3a:2e:10: f4:a5:c4:26:05:eb:41:1c:64:2e:5e:be:c4:ae:f5: 7f:2d:d5:44:a9:48:48:06:c9:fe:ac:82:a9:f4:fa: 23:47:ae:f9:d0:44:7a:37:ac:8e:c1:6a:50:82:51: e4:6a:61:39:ba:aa:68:3d:eb:d1:33:7c:92:3a:e8: 02:f2:6a:8f:4e:55:72:fb:e6:a2:39:39:98:73:75: a5:c2:d8:d5:09:a5:18:48:94:94:71:91:b5:c5:83: 2a:15:ef:4e:61:4a:16:6e:84:a8:eb:6c:4e:e9:b1: 29:92:2a:11:49:42:d6:18:01:cf:af:79:ff:ef:ba: f2:91:1c:2e:31:37:cf:6e:b1:76:6e:2e:a4:19:b5: 8c:c2:aa:58:82:48:b2:30:39:1c:42:13:4b:de:a8: 3c:7b:93:f3:a3:6f:ef:c9:2c:2a:df:4a:7d:f1:e6: 4b:3f:45:01:2e:bb:47:91:35:8e:e9:08:f0:01:0a: c6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:25:D6:10:CB:B0:D2:84:22:A8:11:D8:34:AA:F3:CF:CD:C0:87:0D X509v3 Authority Key Identifier: keyid:67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:70:61:96:16:e2:8e:1a:51:97:21:66:e9:9b:5e:05:07:81: 77:eb:2a:3a:50:86:46:cc:a8:09:d6:7a:54:78:ed:de:40:fe: 9f:6a:f1:60:59:c1:06:6b:7f:41:ea:45:a9:36:d9:21:7b:d5: 31:28:d4:55:f4:89:bc:60:c9:93:6b:0d:6a:00:dc:7a:57:03: ce:60:e1:06:6d:cb:29:24:45:59:32:f3:3a:02:48:a0:4c:d3: 2a:28:61:1e:ea:b2:af:ce:f7:74:23:d9:80:0e:97:37:2a:b1: c1:d6:a4:9d:84:93:94:64:fd:a0:fa:ec:81:94:b5:de:35:1d: c0:ee:99:3d:f3:0c:52:6f:8f:8c:d1:20:d1:af:be:ac:51:d5: 59:20:ac:bf:c4:cf:27:09:53:07:5e:50:c5:03:d0:70:38:15: 6d:15:22:9b:82:37:c5:cb:14:0d:05:93:fe:c1:b1:80:93:14: a6:ce:fb:70:f4:1e:44:8f:34:4f:46:fe:89:88:a2:e7:b9:de: 1a:b4:92:c5:3d:b0:04:1b:90:2f:b4:77:8d:fb:c6:d1:43:40: af:fd:c3:98:fa:d2:4c:af:cf:75:ba:18:7f:ef:5e:0c:aa:4c: 8c:4f:25:55:7a:23:d2:c4:9e:14:72:04:cf:a5:a0:cd:72:6d: a9:6c:22:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKDY3RjNCOUZBQUExMEQyMENCMDE3RjA3RkNDOUExNTRE ODhCNjYzQTAwHhcNMjUxMjAyMjAxOTQyWhcNMjUxMjA5MjAxOTQxWjAYMRYwFAYD VQQDEw02OTJmNDlkZS0yZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Skjy4Kf6oqCEmZX9tdQ6Ey+SkPWIu7V66Z6DHTpi3JWEgjqhcLWaX5cyigT n9IegTCRACfEhyd2VJiC9rNmQqebezRrQ0Q6LhD0pcQmBetBHGQuXr7ErvV/LdVE qUhIBsn+rIKp9PojR6750ER6N6yOwWpQglHkamE5uqpoPevRM3ySOugC8mqPTlVy ++aiOTmYc3WlwtjVCaUYSJSUcZG1xYMqFe9OYUoWboSo62xO6bEpkioRSULWGAHP r3n/77rykRwuMTfPbrF2bi6kGbWMwqpYgkiyMDkcQhNL3qg8e5Pzo2/vySwq30p9 8eZLP0UBLrtHkTWO6QjwAQrG5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgl1hDL sNKEIqgR2DSq88/NwIcNMB8GA1UdIwQYMBaAFGfzufqqENIMsBfwf8yaFU2ItmOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS80RTg1MzFDQTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBneXdGX0JfekpvVlRZaTJZ NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pfTzUtcW9RMGd5d0ZfQl96Sm9WVFlpMlk2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS80RTg1MzFDQTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBn eXdGX0JfekpvVlRZaTJZNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/cGGWFuKOGlGXIWbpm14FB4F36yo6UIZGzKgJ1npUeO3eQP6favFg WcEGa39B6kWpNtkhe9UxKNRV9Im8YMmTaw1qANx6VwPOYOEGbcspJEVZMvM6Akig TNMqKGEe6rKvzvd0I9mADpc3KrHB1qSdhJOUZP2g+uyBlLXeNR3A7pk98wxSb4+M 0SDRr76sUdVZIKy/xM8nCVMHXlDFA9BwOBVtFSKbgjfFyxQNBZP+wbGAkxSmzvtw 9B5EjzRPRv6JiKLnud4atJLFPbAEG5AvtHeN+8bRQ0Cv/cOY+tJMr891uhh/714M qkyMTyVVeiPSxJ4UcgTPpaDNcm2pbCIq -----END CERTIFICATE-----Generated at Wed Dec 3 18:56:06 2025 by rpki-client