This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft File: zFfgNkMaXqPBcqpyg0Aa88StXFk.mft (raw, json) Hash identifier: XgDoLAVNlUQSjN1rwAKEBktv1MIzGTBECPT5IYAsFm0= Subject key identifier: 8E:71:05:A8:86:58:74:B3:66:D7:8F:D4:82:A1:AD:D8:A8:37:D9:46 Authority key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 Certificate issuer: /CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Certificate serial: 096C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft Manifest number: 095A Signing time: Mon 22 Dec 2025 19:33:28 +0000 Manifest this update: Mon 22 Dec 2025 19:33:28 +0000 Manifest next update: Mon 29 Dec 2025 19:33:28 +0000 Files and hashes: 1: zFfgNkMaXqPBcqpyg0Aa88StXFk.crl (hash: 4rzohuCPr30ruPWxlxi0gFbchCVT5+SmVfObF3gvxZQ=) 2: DA0B639E89E711F08DD17A55C4F9AE02.roa (hash: 92JEuDCm1e9WQ8I7GIzUujJiphmCChYv7JlAxtt8zqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:33:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2412 (0x96c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDC78, serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Validity Not Before: Dec 22 19:33:28 2025 GMT Not After : Dec 29 19:33:28 2025 GMT Subject: CN=69499d08-d3df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:6b:a7:da:98:58:4f:99:b5:59:bd:a8:6b: 3f:6b:32:e4:b2:2e:da:4c:2b:74:a3:50:6b:c8:34: d8:eb:4e:4c:9a:36:af:40:cc:29:e9:a4:54:26:f1: 17:d7:00:b7:08:39:0f:50:a8:9a:fc:ed:54:e9:04: 10:9e:62:9a:07:8b:50:68:34:0a:fa:5f:6b:95:10: 2b:21:bc:4e:ed:22:bc:2e:b2:32:35:1d:e1:9d:e9: 26:a8:24:51:41:5a:23:ce:f8:b8:a6:64:27:69:73: 02:03:7f:94:db:9c:7d:28:05:66:09:25:50:fc:a7: ac:2d:13:cc:fb:dd:6a:db:1e:f1:ac:28:1b:08:db: 8b:a8:04:e8:7c:50:d3:77:c6:a3:3b:fe:d0:3f:35: 66:36:24:b2:27:23:98:6c:8a:8b:dc:71:f0:b6:cb: 2d:ad:bf:42:33:c0:b8:73:76:3e:8b:a1:49:7f:ab: 25:2a:fc:ce:61:eb:0a:3c:5d:24:a0:d4:bd:52:b0: 9f:85:45:a9:d1:57:39:dd:05:ae:52:19:ac:ca:04: d1:78:0f:5a:08:38:f4:57:ad:59:96:b6:05:bf:26: 01:70:4c:bd:37:11:bd:35:2b:c2:8d:4d:ea:5e:ce: ff:34:48:de:be:17:32:e0:61:63:b5:7f:c9:c0:25: 32:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:71:05:A8:86:58:74:B3:66:D7:8F:D4:82:A1:AD:D8:A8:37:D9:46 X509v3 Authority Key Identifier: keyid:CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d7:31:7b:fa:98:1d:e1:70:06:b6:e6:03:60:98:89:dc:87: 45:41:30:70:c9:b0:cd:d1:eb:b1:de:88:a9:c3:d8:57:1c:64: 1d:f8:b2:b6:ab:03:47:f9:2a:55:19:07:ca:bf:a9:9e:12:5b: f0:90:20:17:b2:d4:80:2a:20:f1:cb:a6:1d:63:7b:10:03:70: ad:bf:e3:00:c0:55:eb:e5:6f:68:81:57:9e:cd:bb:38:a5:05: 1c:dd:2c:e2:49:07:b3:43:5b:e4:d8:05:9b:fe:08:01:d8:13: 82:8c:e8:4d:55:19:d4:30:de:95:59:71:97:73:c4:70:cf:dc: 1c:02:c4:16:7f:d0:56:1a:b0:43:93:c7:e3:e8:99:42:1b:39: 8c:fc:92:04:34:b5:05:c9:72:8b:dc:1f:20:f5:cb:08:8b:68: 3d:c0:28:88:6d:47:2f:93:c7:c0:46:06:4c:6f:11:0d:db:2b: b3:09:c1:01:3e:b2:1b:66:92:c8:23:48:48:eb:6e:cf:de:ae: 4b:70:a2:09:f4:b0:67:fb:03:bf:13:a6:dd:aa:39:16:65:ab: ef:84:5a:3e:6c:61:ba:93:66:60:d4:1d:8e:26:d2:8e:02:b8: 85:a6:b9:54:a1:85:78:2f:b6:c5:b9:5c:c7:4d:04:11:bb:a6: 6c:49:34:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDNzgxMTAvBgNVBAUTKENDNTdFMDM2NDMxQTVFQTNDMTcyQUE3MjgzNDAxQUYz QzRBRDVDNTkwHhcNMjUxMjIyMTkzMzI4WhcNMjUxMjI5MTkzMzI4WjAYMRYwFAYD VQQDDA02OTQ5OWQwOC1kM2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2hrp9qYWE+ZtVm9qGs/azLksi7aTCt0o1BryDTY605MmjavQMwp6aRUJvEX 1wC3CDkPUKia/O1U6QQQnmKaB4tQaDQK+l9rlRArIbxO7SK8LrIyNR3hnekmqCRR QVojzvi4pmQnaXMCA3+U25x9KAVmCSVQ/KesLRPM+91q2x7xrCgbCNuLqATofFDT d8ajO/7QPzVmNiSyJyOYbIqL3HHwtsstrb9CM8C4c3Y+i6FJf6slKvzOYesKPF0k oNS9UrCfhUWp0Vc53QWuUhmsygTReA9aCDj0V61ZlrYFvyYBcEy9NxG9NSvCjU3q Xs7/NEjevhcy4GFjtX/JwCUyiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5xBaiG WHSzZteP1IKhrdioN9lGMB8GA1UdIwQYMBaAFMxX4DZDGl6jwXKqcoNAGvPErVxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREM3OC8xNTQ3NDAwOEFF QUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhxUEJjcXB5ZzBBYTg4U3RY RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGZmdOa01hWHFQQmNxcHlnMEFhODhTdFhGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REM3OC8xNTQ3NDAwOEFFQUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhx UEJjcXB5ZzBBYTg4U3RYRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw1zF7+pgd4XAGtuYDYJiJ3IdFQTBwybDN0eux3oipw9hXHGQd+LK2 qwNH+SpVGQfKv6meElvwkCAXstSAKiDxy6YdY3sQA3Ctv+MAwFXr5W9ogVeezbs4 pQUc3SziSQezQ1vk2AWb/ggB2BOCjOhNVRnUMN6VWXGXc8Rwz9wcAsQWf9BWGrBD k8fj6JlCGzmM/JIENLUFyXKL3B8g9csIi2g9wCiIbUcvk8fARgZMbxEN2yuzCcEB PrIbZpLII0hI627P3q5LcKIJ9LBn+wO/E6bdqjkWZavvhFo+bGG6k2Zg1B2OJtKO AriFprlUoYV4L7bFuVzHTQQRu6ZsSTSo -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:15 2025 by rpki-client