This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: Zoo4scSn025qtQaKvyRM7268QHcKmCNzPfsZiZrmZhs= Subject key identifier: 2D:4E:B2:09:4B:FF:E0:38:69:9A:5F:1D:E8:EB:8A:78:4E:75:45:8C Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 01E2 Signing time: Tue 23 Dec 2025 01:43:42 +0000 Manifest this update: Tue 23 Dec 2025 01:43:42 +0000 Manifest next update: Tue 30 Dec 2025 01:43:42 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: ChEJ/miJ8wh3K5x/FTtd/PawywI/awyw4TFpib9PPTQ=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: jcXeOsnPkng7woBhogkpn0QTLMQkcLmpzuHfKAJv494=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: CgPVH7RpJ6BSzRb9lg98xN/+D/HPQDxzXfJap9UMvCY=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: y6SX+gLu9IWiM41aB5HobwSNF3AwnjrukL12CRvUhjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Dec 23 01:43:42 2025 GMT Not After : Dec 30 01:43:42 2025 GMT Subject: CN=6949f3ce-83c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cc:0a:a8:78:a8:5f:b3:e7:13:41:0c:60:e0: 80:75:1d:04:87:a8:2b:d8:c9:8a:8b:1d:2e:8a:d2: 3c:e4:f0:e6:71:3e:32:12:1e:f9:24:48:7a:02:ca: 1b:5d:a4:1a:f7:9d:ae:d6:81:cf:62:0a:af:e7:67: 2f:e4:fe:e0:48:95:e5:a9:64:07:be:af:95:58:d3: e9:36:b2:cc:eb:bf:a8:65:ba:7a:ed:99:ab:a9:f3: 2e:0d:59:fc:c7:7a:fa:2d:9a:52:92:78:28:dc:e7: 7e:62:58:91:9d:98:b2:e9:b1:e2:21:01:c1:09:f9: 3a:39:8a:59:a0:82:60:77:17:cb:27:e0:e2:c3:02: 59:93:8a:fd:32:64:44:8c:a8:43:21:ab:92:3a:e5: ff:62:08:69:c8:41:36:81:87:2d:48:ed:5b:49:bb: 08:23:39:12:e6:14:30:1e:c0:b1:29:ed:22:ef:39: 7f:9c:fd:a2:9a:f9:77:49:a5:14:ae:67:f1:f7:b2: 9e:0a:a3:21:ee:b0:93:ce:c3:cd:93:e2:66:d3:d0: 72:e3:2b:90:76:4c:c7:5d:1c:9a:70:7c:c5:44:37: bd:73:de:91:de:8e:9f:d6:56:5e:ba:02:69:14:0d: 72:cd:70:9c:26:1c:b4:2f:a8:88:09:25:a1:28:69: 63:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4E:B2:09:4B:FF:E0:38:69:9A:5F:1D:E8:EB:8A:78:4E:75:45:8C X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:56:da:2d:8d:95:05:1d:e9:cc:24:ab:91:eb:f3:ff:f7:96: a0:4c:b7:fe:ca:6c:66:0d:f0:e2:68:8a:38:41:3b:ae:9e:e4: 68:0b:bf:e8:22:ff:d0:36:40:b2:3b:d3:0a:34:8a:9c:c2:b4: 8f:d5:f6:59:36:f2:a5:35:84:8a:32:f7:d2:45:d9:1f:50:b6: 3c:3c:00:03:1e:1e:df:e9:c2:9b:2e:05:dd:39:52:e2:bb:ea: 2b:29:cb:4d:38:de:45:b7:ac:55:bd:f8:c0:3c:9a:54:56:9f: 1c:40:f7:63:e5:39:c4:c7:bc:71:8f:c3:c5:c9:8c:76:05:6a: 43:91:3e:52:15:a3:9c:ff:e1:e4:63:53:fb:43:70:1f:81:dc: 33:37:f1:3b:64:7b:9d:c9:68:de:65:48:78:17:37:00:1c:2b: 17:fe:52:f5:33:db:02:fc:0a:44:e4:a4:7d:85:5b:c1:0f:5d: f6:e6:c9:41:18:95:63:30:36:07:96:22:8b:54:f7:7f:33:5f: af:11:dd:1d:7b:08:57:f6:b8:50:1c:d0:dd:6b:ae:46:38:0a: 27:43:fe:5e:65:80:73:9e:d3:f1:4b:50:53:3a:e6:96:21:b2: 8f:d5:f0:11:b7:5d:56:ca:9e:05:5d:c7:60:91:14:20:81:c9: 35:d9:51:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUxMjIzMDE0MzQyWhcNMjUxMjMwMDE0MzQyWjAYMRYwFAYD VQQDDA02OTQ5ZjNjZS04M2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cwKqHioX7PnE0EMYOCAdR0Eh6gr2MmKix0uitI85PDmcT4yEh75JEh6Asob XaQa952u1oHPYgqv52cv5P7gSJXlqWQHvq+VWNPpNrLM67+oZbp67ZmrqfMuDVn8 x3r6LZpSkngo3Od+YliRnZiy6bHiIQHBCfk6OYpZoIJgdxfLJ+DiwwJZk4r9MmRE jKhDIauSOuX/YghpyEE2gYctSO1bSbsIIzkS5hQwHsCxKe0i7zl/nP2imvl3SaUU rmfx97KeCqMh7rCTzsPNk+Jm09By4yuQdkzHXRyacHzFRDe9c96R3o6f1lZeugJp FA1yzXCcJhy0L6iICSWhKGljxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1OsglL /+A4aZpfHejrinhOdUWMMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7VtotjZUFHenMJKuR6/P/95agTLf+ymxmDfDiaIo4QTuunuRoC7/o Iv/QNkCyO9MKNIqcwrSP1fZZNvKlNYSKMvfSRdkfULY8PAADHh7f6cKbLgXdOVLi u+orKctNON5Ft6xVvfjAPJpUVp8cQPdj5TnEx7xxj8PFyYx2BWpDkT5SFaOc/+Hk Y1P7Q3AfgdwzN/E7ZHudyWjeZUh4FzcAHCsX/lL1M9sC/ApE5KR9hVvBD1325slB GJVjMDYHliKLVPd/M1+vEd0dewhX9rhQHNDda65GOAonQ/5eZYBzntPxS1BTOuaW IbKP1fARt11Wyp4FXcdgkRQggck12VGR -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:41 2025 by rpki-client