This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft File: Zd_y7j-bsuskVR4dGPHWPewKbhc.mft (raw, json) Hash identifier: ZwWPsV5yiX9/8Wg4P33s/ob3PO87/Wveg+YGUg4PybY= Subject key identifier: 5A:A3:F8:74:D0:44:38:7D:20:5A:22:B9:DF:89:32:A0:8C:A5:1D:C2 Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 08C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft Manifest number: 08B7 Signing time: Sat 06 Dec 2025 19:39:09 +0000 Manifest this update: Sat 06 Dec 2025 19:39:09 +0000 Manifest next update: Sat 13 Dec 2025 19:39:09 +0000 Files and hashes: 1: Zd_y7j-bsuskVR4dGPHWPewKbhc.crl (hash: /fXjzBiGC6znfCdBw0ok3SGmypV6VaujwnDSsYJQIBw=) 2: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (hash: Kko5Py9oYVoGdTuR3TmCVY6w0QuvDF7yamqA7Lq7XfE=) 3: A7034AFA7F8411EC9036F64CC4F9AE02.roa (hash: gb3eIqGKtDZZMjsIarWLCbAcIGW3eUHFzm27i/K2y8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Dec 6 19:39:09 2025 GMT Not After : Dec 13 19:39:09 2025 GMT Subject: CN=6934865d-02d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:31:8b:4b:bc:c1:cf:b5:4a:68:ba:04:ac:68: b2:e7:ab:c1:83:72:ef:a0:52:2e:bc:07:09:db:62: a0:ca:ef:7d:b7:cc:14:0d:22:a8:f7:1e:a3:f3:f7: 32:4f:7f:c7:4a:0c:8e:6c:59:c9:92:5d:ad:ae:a2: d9:3f:b4:4d:3b:e6:f5:3e:43:f0:0d:30:91:44:3b: 32:3d:7f:52:c8:0f:73:09:93:e4:2b:7d:3b:7a:5c: ca:e7:da:a5:43:2b:0c:24:2f:40:95:ca:72:42:96: a1:30:c3:d8:02:29:87:96:17:e3:61:6f:cf:e2:19: 9c:45:b8:be:2f:ae:ea:16:b5:70:b2:90:a3:f8:45: 86:73:cc:d8:ab:30:02:01:60:9c:5b:a5:4e:13:c4: 17:9a:04:95:c8:32:0d:56:57:75:89:d6:ab:a0:45: 60:01:21:f3:3c:29:1d:a1:4f:62:6f:f0:ac:64:96: 30:00:b2:d9:b1:f9:ec:bd:0f:0b:5f:a9:df:65:3b: 17:61:63:ec:05:86:c3:6e:81:5c:d9:2b:80:d2:60: ca:75:25:ad:45:ea:50:ae:5a:84:33:98:34:8c:a6: 19:63:62:95:5a:fa:83:ec:40:51:d5:b7:f9:67:49: 34:02:22:ff:fe:6d:da:31:6a:eb:91:35:9c:5c:bf: 6d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A3:F8:74:D0:44:38:7D:20:5A:22:B9:DF:89:32:A0:8C:A5:1D:C2 X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:3a:bd:fc:8d:f4:da:f4:3c:98:90:29:bf:6d:20:1d:f3:ec: 6a:e4:0a:59:60:b6:36:dc:c0:ed:82:4b:d3:69:02:49:54:30: db:dd:87:23:15:cf:6f:d5:6f:88:5b:6b:b0:85:23:a7:6c:d0: 81:8b:df:6b:1e:8c:fd:96:c2:64:6a:4d:a4:23:4d:fe:56:83: 8a:ff:5b:29:e9:8a:d7:3e:4f:ef:1e:59:59:78:30:29:98:55: 20:25:25:c4:e0:dd:61:4a:18:c7:e4:14:dd:ad:15:bc:9d:8c: 97:80:fb:99:5d:63:bf:20:c5:fc:47:da:d1:6f:52:af:69:cf: 70:45:9b:a4:b7:a1:77:77:73:07:08:33:8c:00:05:f3:f6:9d: ea:ab:6f:de:23:09:35:eb:a8:34:12:91:b4:54:27:27:7a:5a: e5:f9:dd:50:9b:43:96:9e:1a:9f:37:fc:33:ea:76:3b:4c:4a: ff:04:a6:88:98:34:4b:c6:1c:44:f6:c4:97:57:3e:21:d9:7d: fe:29:fe:e6:07:3d:1a:41:1d:bb:13:ac:69:33:ca:90:7b:07: f8:34:fd:ed:8f:53:d9:86:60:8f:a4:4e:fc:ed:04:13:70:ec: a8:fc:7f:e1:81:fd:79:3c:15:34:e4:75:bc:3c:57:ef:84:8d: 6d:d0:d8:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUxMjA2MTkzOTA5WhcNMjUxMjEzMTkzOTA5WjAYMRYwFAYD VQQDEw02OTM0ODY1ZC0wMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDGLS7zBz7VKaLoErGiy56vBg3LvoFIuvAcJ22Kgyu99t8wUDSKo9x6j8/cy T3/HSgyObFnJkl2trqLZP7RNO+b1PkPwDTCRRDsyPX9SyA9zCZPkK307elzK59ql QysMJC9AlcpyQpahMMPYAimHlhfjYW/P4hmcRbi+L67qFrVwspCj+EWGc8zYqzAC AWCcW6VOE8QXmgSVyDINVld1idaroEVgASHzPCkdoU9ib/CsZJYwALLZsfnsvQ8L X6nfZTsXYWPsBYbDboFc2SuA0mDKdSWtRepQrlqEM5g0jKYZY2KVWvqD7EBR1bf5 Z0k0AiL//m3aMWrrkTWcXL9tMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqj+HTQ RDh9IFoiud+JMqCMpR3CMB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENCNi9FODgzREZENkNDM0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1 c2tWUjRkR1BIV1Bld0tiaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvOr38jfTa9DyYkCm/bSAd8+xq5ApZYLY23MDtgkvTaQJJVDDb3Ycj Fc9v1W+IW2uwhSOnbNCBi99rHoz9lsJkak2kI03+VoOK/1sp6YrXPk/vHllZeDAp mFUgJSXE4N1hShjH5BTdrRW8nYyXgPuZXWO/IMX8R9rRb1Kvac9wRZukt6F3d3MH CDOMAAXz9p3qq2/eIwk166g0EpG0VCcnelrl+d1Qm0OWnhqfN/wz6nY7TEr/BKaI mDRLxhxE9sSXVz4h2X3+Kf7mBz0aQR27E6xpM8qQewf4NP3tj1PZhmCPpE787QQT cOyo/H/hgf15PBU05HW8PFfvhI1t0NjN -----END CERTIFICATE-----Generated at Sun Dec 7 16:39:02 2025 by rpki-client