This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: CYc0dPhF2qYVV+Q7GkaZRjylgYcChD8i+SPbibkoo5A= Subject key identifier: F4:B0:C5:E5:86:22:4E:90:49:F4:B8:2A:74:51:CE:6E:BE:AD:6A:40 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 11B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 1195 Signing time: Mon 22 Dec 2025 16:54:23 +0000 Manifest this update: Mon 22 Dec 2025 16:54:22 +0000 Manifest next update: Mon 29 Dec 2025 16:54:22 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: 5ZMg5Hlc1jYRQsZZF2fli7o3vhCaVx1x4lvZ3UI/1pk=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: 0aF9iAN+3RVH4J1O6kdqQLay7pM2xBWN/Y0/JqEVjB4=) 3: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: X6YwhVSJsRk4vRctAp4yh1iloPqdQuAk/cq6rLQ/5Io=) 4: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: I1Ooxb/QxZtnwvTSGkb227BhEGDqKjHAGb9PCGADRjg=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: aQ6IFtryhMAcftZ8/U9VLVpz3iJ+2Www/ebnR7Mk7tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4536 (0x11b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Dec 22 16:54:22 2025 GMT Not After : Dec 29 16:54:22 2025 GMT Subject: CN=694977be-92f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d8:fa:c5:1f:67:8e:17:55:1d:aa:76:1a:48: b3:8e:89:05:f0:df:cd:8c:4f:52:57:e2:01:74:45: de:76:6c:3e:d7:40:6d:6e:70:56:69:39:4f:f4:2e: 54:52:6a:88:e6:3c:0c:b3:e5:1f:d9:98:f7:ef:2c: 98:80:d1:ce:75:94:da:38:d0:70:1c:0c:6f:7d:de: 36:ef:ad:d5:9a:03:f0:74:b0:e7:2e:66:5e:df:98: 14:69:08:c5:92:ca:2d:59:98:01:88:86:e6:9f:1f: db:e3:90:bc:7e:76:3b:3a:08:1d:f3:22:e6:80:b7: 7d:5e:ed:11:ea:e0:eb:b9:53:a1:02:91:fa:76:19: 28:f4:8c:2f:cb:d3:2c:cb:23:ce:c9:7f:35:a4:79: e8:12:89:7c:dc:d9:b1:e0:33:a7:91:55:d2:a8:e9: 54:01:db:8d:99:51:7f:b0:a9:86:fc:10:5b:82:6c: 89:b5:3c:6c:4d:d2:46:0d:ee:84:30:72:25:4c:64: 05:f3:ff:43:68:35:1e:aa:f6:b8:fa:12:42:d2:fb: a3:9e:6d:fc:fe:49:3b:72:8f:92:bc:01:68:05:9a: d5:f7:88:3c:c0:1b:a3:da:ed:e4:37:6b:55:9b:d7: 68:74:0c:fe:45:bd:2c:30:f5:f4:b6:c5:a9:a7:96: 20:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B0:C5:E5:86:22:4E:90:49:F4:B8:2A:74:51:CE:6E:BE:AD:6A:40 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:58:63:98:08:8d:b5:b1:07:f3:f5:ef:5e:61:c3:6c:2c:a4: 9a:71:c9:34:09:5c:d5:94:89:5d:73:44:bf:5b:21:70:dc:af: b7:56:91:8a:38:57:0e:88:bb:fd:40:80:d4:6d:c7:00:ed:4b: 0a:99:21:b0:21:d1:b5:3c:aa:41:92:fa:0f:1a:34:45:32:46: f8:1d:ba:04:7f:42:88:17:f9:92:68:8a:4f:30:3b:2d:8e:59: 52:15:87:97:37:23:ec:fe:89:84:0c:f5:b6:a6:4c:d1:e3:6f: 97:4f:53:a7:f3:3c:eb:1a:08:49:ca:25:cc:1b:98:87:5b:c5: c6:11:9f:da:ae:b1:b0:e6:6c:08:c0:e6:d8:d0:80:53:27:f0: 2a:81:91:a1:d4:7b:95:52:8e:aa:63:73:b3:04:05:bd:29:db: c3:e7:67:dd:a9:10:60:d5:13:c8:ac:be:83:9d:f4:5e:7a:64: 05:be:7d:85:4c:aa:ac:25:fc:34:98:a6:fc:03:10:15:aa:06: 09:8a:4b:02:dd:4f:ce:53:b2:2f:5b:99:43:46:1a:a7:9e:78: 9f:9d:02:a5:2c:e9:f4:8b:20:82:ee:da:08:91:0a:85:c8:af: 98:50:89:7f:a7:36:a3:83:d9:7d:72:15:7d:91:71:7c:16:5b: 9e:d0:5b:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUxMjIyMTY1NDIyWhcNMjUxMjI5MTY1NDIyWjAYMRYwFAYD VQQDDA02OTQ5NzdiZS05MmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNj6xR9njhdVHap2GkizjokF8N/NjE9SV+IBdEXedmw+10BtbnBWaTlP9C5U UmqI5jwMs+Uf2Zj37yyYgNHOdZTaONBwHAxvfd42763VmgPwdLDnLmZe35gUaQjF ksotWZgBiIbmnx/b45C8fnY7Oggd8yLmgLd9Xu0R6uDruVOhApH6dhko9Iwvy9Ms yyPOyX81pHnoEol83Nmx4DOnkVXSqOlUAduNmVF/sKmG/BBbgmyJtTxsTdJGDe6E MHIlTGQF8/9DaDUeqva4+hJC0vujnm38/kk7co+SvAFoBZrV94g8wBuj2u3kN2tV m9dodAz+Rb0sMPX0tsWpp5YgAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSwxeWG Ik6QSfS4KnRRzm6+rWpAMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVWGOYCI21sQfz9e9eYcNsLKSacck0CVzVlIldc0S/WyFw3K+3VpGK OFcOiLv9QIDUbccA7UsKmSGwIdG1PKpBkvoPGjRFMkb4HboEf0KIF/mSaIpPMDst jllSFYeXNyPs/omEDPW2pkzR42+XT1On8zzrGghJyiXMG5iHW8XGEZ/arrGw5mwI wObY0IBTJ/AqgZGh1HuVUo6qY3OzBAW9KdvD52fdqRBg1RPIrL6DnfReemQFvn2F TKqsJfw0mKb8AxAVqgYJiksC3U/OU7IvW5lDRhqnnnifnQKlLOn0iyCC7toIkQqF yK+YUIl/pzajg9l9chV9kXF8Flue0Fv8 -----END CERTIFICATE-----Generated at Tue Dec 23 20:03:58 2025 by rpki-client