This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft File: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft (raw, json) Hash identifier: FSCzFm1UoBZKnGszRfG09LsvpXeyesLfvLHm70dmrxA= Subject key identifier: 6F:7B:E2:3E:4C:85:37:33:C6:F4:09:01:75:26:5A:C0:6C:8C:08:33 Authority key identifier: 64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 Certificate issuer: /CN=A91F09FE/serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft Manifest number: D3 Signing time: Sun 21 Dec 2025 04:48:17 +0000 Manifest this update: Sun 21 Dec 2025 04:48:17 +0000 Manifest next update: Sun 28 Dec 2025 04:48:17 +0000 Files and hashes: 1: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl (hash: OnmkXl16K2TRXx7pIr0ENeEFvvyuMfhAS0PwffpTa4M=) 2: 841585749B1211EFBFBF913CC4F9AE02.roa (hash: 0M5YhxGhV5QHRGKOQlvw9XsWvMIjTk3A7Z1MV3xW494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F09FE, serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Validity Not Before: Dec 21 04:48:17 2025 GMT Not After : Dec 28 04:48:17 2025 GMT Subject: CN=69477c11-9d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:21:e1:79:53:de:6a:d5:05:5f:7c:9b:b1:a8: 77:e8:77:21:cf:e6:6a:ea:62:f0:cb:95:77:cc:52: ab:3f:7e:ff:c2:05:41:62:4e:1c:4c:c1:28:26:a2: 0c:4e:be:a6:00:fa:c8:16:87:59:8c:40:67:a3:0d: 99:1c:96:56:92:8f:81:11:47:78:54:57:b8:9b:26: 5e:79:11:0a:7f:8b:7f:b3:4a:6d:26:00:13:e0:08: 99:3e:87:02:6c:ae:a0:0d:34:ba:21:09:11:db:10: 19:5f:06:17:9d:d6:4b:52:47:da:14:6d:a4:43:65: fc:b1:79:c1:cf:69:6d:c3:ee:76:84:0a:93:a0:63: ef:fb:e1:3a:85:20:ab:0e:83:22:35:ce:17:cb:0b: fb:27:1f:f2:57:9c:71:86:a4:a0:26:7d:66:3c:e1: bb:e8:96:1f:14:b5:d7:3e:44:49:69:07:dc:de:9b: 57:76:5a:16:66:42:2f:ff:66:92:84:2c:f3:79:e9: f3:73:8d:80:c8:e5:4c:13:4b:2d:d0:50:29:41:47: 9c:2a:54:1d:6b:d3:5a:17:a1:61:5a:27:38:7e:80: 58:51:02:fe:3d:68:b5:12:9f:e2:59:0a:4f:78:01: 9e:52:f9:a8:e8:7a:96:21:00:5a:fc:88:71:ef:2a: 4f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7B:E2:3E:4C:85:37:33:C6:F4:09:01:75:26:5A:C0:6C:8C:08:33 X509v3 Authority Key Identifier: keyid:64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:78:e3:0a:4e:0e:fa:17:62:76:20:28:b5:9e:85:d7:01:0a: 67:cf:6e:34:d6:b4:17:a6:16:54:66:54:18:a5:9d:7e:29:29: 0f:20:3e:20:3c:23:1f:9a:8f:e5:68:04:2c:66:8f:cb:a7:04: 44:89:78:2c:ac:34:9a:e7:fb:03:09:03:2a:a7:99:c8:7c:6b: 69:67:a0:4f:32:cd:f6:03:e2:76:26:b2:b6:c3:f5:74:3c:e7: c5:82:11:ba:55:90:71:13:28:81:73:d6:45:32:ec:71:6e:2b: 1e:ef:cb:b1:56:21:49:42:fe:ff:13:10:7b:5b:39:6f:f5:52: 80:df:65:20:38:2c:28:d4:98:95:ca:cb:16:ac:18:e4:02:d4: cc:0d:eb:38:68:5e:82:a3:e7:ad:01:08:03:ea:54:8a:1d:c3: ac:e1:29:83:d7:bc:ab:a7:e8:90:f6:fd:27:6a:0d:48:d0:85: b7:64:5f:fd:8c:3d:cd:7d:12:38:ac:93:b6:8c:9e:41:4d:be: 7c:90:2b:19:bf:eb:ec:50:ae:1b:5c:cd:04:01:86:3b:64:8f: 9d:e9:03:0a:52:55:f7:fd:8f:e9:1b:ff:7f:9f:45:d7:29:cc: a3:e4:93:21:54:9d:71:10:5b:65:ee:81:44:52:fa:f8:8b:c7: 04:fc:ae:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA5RkUxMTAvBgNVBAUTKDY0Q0NDMTY2QzU4QzM4RkU4Q0MxOTc2RjVDRjA3QzFE RDA2RjY4MTQwHhcNMjUxMjIxMDQ0ODE3WhcNMjUxMjI4MDQ0ODE3WjAYMRYwFAYD VQQDDA02OTQ3N2MxMS05ZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiHheVPeatUFX3ybsah36Hchz+Zq6mLwy5V3zFKrP37/wgVBYk4cTMEoJqIM Tr6mAPrIFodZjEBnow2ZHJZWko+BEUd4VFe4myZeeREKf4t/s0ptJgAT4AiZPocC bK6gDTS6IQkR2xAZXwYXndZLUkfaFG2kQ2X8sXnBz2ltw+52hAqToGPv++E6hSCr DoMiNc4Xywv7Jx/yV5xxhqSgJn1mPOG76JYfFLXXPkRJaQfc3ptXdloWZkIv/2aS hCzzeenzc42AyOVME0st0FApQUecKlQda9NaF6FhWic4foBYUQL+PWi1Ep/iWQpP eAGeUvmo6HqWIQBa/Ihx7ypPFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG974j5M hTczxvQJAXUmWsBsjAgzMB8GA1UdIwQYMBaAFGTMwWbFjDj+jMGXb1zwfB3Qb2gU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDlGRS8zODAzQUExQzlC MTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9QNk13WmR2WFBCOEhkQnZh QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNekJac1dNT1A2TXdaZHZYUEI4SGRCdmFCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDlGRS8zODAzQUExQzlCMTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9Q Nk13WmR2WFBCOEhkQnZhQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCneOMKTg76F2J2ICi1noXXAQpnz2401rQXphZUZlQYpZ1+KSkPID4g PCMfmo/laAQsZo/LpwREiXgsrDSa5/sDCQMqp5nIfGtpZ6BPMs32A+J2JrK2w/V0 POfFghG6VZBxEyiBc9ZFMuxxbise78uxViFJQv7/ExB7Wzlv9VKA32UgOCwo1JiV yssWrBjkAtTMDes4aF6Co+etAQgD6lSKHcOs4SmD17yrp+iQ9v0nag1I0IW3ZF/9 jD3NfRI4rJO2jJ5BTb58kCsZv+vsUK4bXM0EAYY7ZI+d6QMKUlX3/Y/pG/9/n0XX Kcyj5JMhVJ1xEFtl7oFEUvr4i8cE/K66 -----END CERTIFICATE-----Generated at Tue Dec 23 03:18:15 2025 by rpki-client