This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft File: zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft (raw, json) Hash identifier: iwWvnKqaWXnVPiDJf/IUD3nBjWYHImEFUNb5HNtpwEg= Subject key identifier: 43:B3:17:F5:FD:F7:C3:BB:60:90:EE:42:9B:F5:97:DD:71:12:69:CC Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Certificate serial: 1785 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft Manifest number: 177B Signing time: Mon 22 Dec 2025 16:20:45 +0000 Manifest this update: Mon 22 Dec 2025 16:20:45 +0000 Manifest next update: Mon 29 Dec 2025 16:20:45 +0000 Files and hashes: 1: zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl (hash: pe3z4HgGLUdoqnNoV2xzzUYoGIDQqMRY/OLzkGENVaQ=) 2: 4A81F344C34111EB855D7C84C4F9AE02.roa (hash: uASyVgC1Cwioz2zhPx4P08otp7ZGZ17OkqWd5dxa/vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6021 (0x1785) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA729, serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Validity Not Before: Dec 22 16:20:45 2025 GMT Not After : Dec 29 16:20:45 2025 GMT Subject: CN=69496fdd-e5ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:24:53:42:dd:4a:ab:fc:4c:da:39:62:8b:90: e3:89:80:3f:14:7c:03:21:ed:d1:a1:62:98:0f:06: af:12:a6:4d:e3:0a:43:b5:08:ba:37:a2:b3:d8:04: a7:05:c2:60:bf:3d:e6:18:5e:50:18:7d:0e:80:17: 90:7f:7e:48:bf:5c:af:76:72:97:54:79:00:e6:e5: 6b:4f:96:75:23:38:5e:f6:da:2e:51:70:e9:fc:7a: 7d:16:fa:43:35:0e:6b:3a:8d:74:2a:4f:ed:30:cf: 3d:e2:34:ae:97:d9:43:10:52:34:55:2c:1e:d8:f7: 93:cb:fb:b0:f2:83:bf:d3:8e:b3:30:0b:7d:30:62: e7:19:e5:68:2f:fc:5f:c0:2e:52:1a:9c:94:65:60: 82:9b:3e:4c:f6:d1:80:43:ff:b4:9f:c5:43:ac:e5: 2d:ef:aa:1b:16:08:be:a8:10:46:1e:f8:cb:db:ff: d5:38:0b:9c:68:6d:44:dc:f4:01:72:7e:f2:ea:b9: e6:d0:a5:be:6b:0b:4c:b8:47:73:15:de:bd:71:0d: 37:49:a1:11:9c:fb:c6:c0:32:a3:77:2f:3c:7a:d4: c4:57:e2:f9:0d:fe:44:da:5c:a6:d6:41:ed:88:ec: 71:b1:5a:21:77:3a:c3:10:e4:bf:16:88:30:26:4b: bb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B3:17:F5:FD:F7:C3:BB:60:90:EE:42:9B:F5:97:DD:71:12:69:CC X509v3 Authority Key Identifier: keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:16:d0:f6:d6:c2:9e:e5:0c:53:7e:e1:b0:cd:5f:d7:9c:8c: 1b:83:eb:e5:1d:62:f8:0c:db:af:49:c0:b7:98:84:20:f5:13: 2b:68:8e:18:0f:f5:79:ee:62:54:29:62:63:6d:8b:20:b8:9e: ef:3b:bf:55:3f:7c:4e:cc:6b:6d:60:61:b3:cb:d8:43:73:d9: 01:cc:ee:5f:97:b0:5f:25:7a:94:5e:59:95:df:18:e3:d7:28: 1c:fd:6d:f8:ce:17:f5:fc:9e:88:3e:15:f0:2f:8c:38:9c:0f: ab:60:5c:84:9d:ef:73:ec:59:29:c8:d6:8c:54:7b:bd:96:4b: 0b:84:83:42:50:9d:11:40:ff:46:e9:bc:07:53:30:3c:53:36: f9:dc:3b:4d:93:3e:8f:34:9e:4f:2e:cd:b9:24:13:f4:19:6f: 2a:7e:a2:3d:5a:49:9c:e1:06:da:fa:9f:b5:eb:42:4c:52:e0: 3b:f2:04:d5:64:70:79:a6:f9:62:c6:0e:22:d5:dd:34:3d:d4: 98:3a:2f:85:e9:08:b2:9e:26:10:94:32:59:c6:0c:da:df:16: 8c:7e:89:a7:bf:97:f4:42:51:5c:e0:69:63:d9:b2:a6:78:49: 77:76:d1:7b:d5:7f:e9:b0:7c:c0:00:82:e1:55:9c:73:59:8b: 14:b6:c6:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD RTYyQ0E3NTgwHhcNMjUxMjIyMTYyMDQ1WhcNMjUxMjI5MTYyMDQ1WjAYMRYwFAYD VQQDDA02OTQ5NmZkZC1lNWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCRTQt1Kq/xM2jlii5DjiYA/FHwDIe3RoWKYDwavEqZN4wpDtQi6N6Kz2ASn BcJgvz3mGF5QGH0OgBeQf35Iv1yvdnKXVHkA5uVrT5Z1Izhe9touUXDp/Hp9FvpD NQ5rOo10Kk/tMM894jSul9lDEFI0VSwe2PeTy/uw8oO/046zMAt9MGLnGeVoL/xf wC5SGpyUZWCCmz5M9tGAQ/+0n8VDrOUt76obFgi+qBBGHvjL2//VOAucaG1E3PQB cn7y6rnm0KW+awtMuEdzFd69cQ03SaERnPvGwDKjdy88etTEV+L5Df5E2lym1kHt iOxxsVohdzrDEOS/FogwJku7uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOzF/X9 98O7YJDuQpv1l91xEmnMMB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1 RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTcyOS8yOEI5RDAxQ0U1RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhl V0hzQlhoQkU4SmpPWXNwMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArFtD21sKe5QxTfuGwzV/XnIwbg+vlHWL4DNuvScC3mIQg9RMraI4Y D/V57mJUKWJjbYsguJ7vO79VP3xOzGttYGGzy9hDc9kBzO5fl7BfJXqUXlmV3xjj 1ygc/W34zhf1/J6IPhXwL4w4nA+rYFyEne9z7FkpyNaMVHu9lksLhINCUJ0RQP9G 6bwHUzA8Uzb53DtNkz6PNJ5PLs25JBP0GW8qfqI9Wkmc4Qba+p+160JMUuA78gTV ZHB5pvlixg4i1d00PdSYOi+F6QiyniYQlDJZxgza3xaMfomnv5f0QlFc4Glj2bKm eEl3dtF71X/psHzAAILhVZxzWYsUtsY0 -----END CERTIFICATE-----Generated at Wed Dec 24 16:00:35 2025 by rpki-client