This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: UglPB3+uee/RJs58C4EQlBHUv3wvJ3/uZ9KIC9u2SuI= Subject key identifier: 66:65:7F:12:C1:C9:CF:E6:B4:1A:20:2F:8E:1F:E5:29:25:C9:97:0F Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A91 Signing time: Sat 06 Dec 2025 18:49:06 +0000 Manifest this update: Sat 06 Dec 2025 18:49:05 +0000 Manifest next update: Sat 13 Dec 2025 18:49:05 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: z7ap2g5D0r6Qz8lVjD5UREsC8IqHr5NAJE+CQT57+Sw=) 2: 4A644958BA0311F084B11F0DC4F9AE02.roa (hash: Clegtkn9PCF2aAQpIGyhbE89o6/DeR6UqKiXB0Quw9Q=) 3: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:49:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2717 (0xa9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Dec 6 18:49:05 2025 GMT Not After : Dec 13 18:49:05 2025 GMT Subject: CN=69347aa1-7d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:34:42:04:92:ce:62:21:76:e2:27:42:5c:9d: 9e:a3:de:f6:ff:ab:4a:d8:c0:97:57:fe:6f:c9:47: 78:61:1a:f7:38:a6:52:e9:f6:d0:5c:af:b4:6e:e8: b8:d5:2d:45:b0:75:1c:2b:21:af:ae:03:31:37:a7: 3c:cf:9e:d4:69:40:8f:e0:49:2f:27:18:cb:c9:44: 92:32:ab:55:90:c2:61:df:38:8d:34:b6:bf:6f:e4: 3c:f9:f6:86:f0:6a:50:f9:4e:cc:f1:ae:83:f2:c4: 90:59:7e:7f:11:65:03:3b:7b:50:94:67:86:aa:cb: dc:23:cb:c2:ae:7b:00:7e:df:f0:a9:ab:8a:d4:f1: 6c:d9:f6:75:1d:f6:54:58:39:2d:0f:be:89:aa:9e: fd:3f:50:82:7f:2e:d4:c4:45:de:9f:c9:4d:99:b3: a1:9f:01:85:81:a0:fa:c3:4d:f1:08:98:93:f6:71: a3:01:62:20:f0:d4:a5:de:90:ac:49:b7:09:99:e7: f5:30:d0:c4:9c:20:a5:fd:ec:d7:48:7b:0d:3c:89: 99:12:48:4c:ce:91:55:23:c2:e9:38:fb:7a:e0:ca: d3:bf:3a:c8:3d:09:3f:2a:39:66:4f:43:95:5e:73: 10:bb:84:35:f9:45:74:74:54:61:18:15:11:26:8a: c9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:65:7F:12:C1:C9:CF:E6:B4:1A:20:2F:8E:1F:E5:29:25:C9:97:0F X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:92:77:ce:51:79:fa:18:f8:b5:31:9d:72:75:fd:b0:be:bb: 80:74:62:93:de:c2:71:9a:44:2f:3b:27:88:1c:e6:fc:24:2c: 41:90:78:1d:40:00:89:c4:ea:9b:91:53:db:de:b5:78:72:d8: 68:db:83:d2:35:b3:b8:32:d5:78:ac:31:70:03:36:d5:eb:9c: 01:79:c2:6f:7e:f3:3e:a2:2f:26:44:9e:6a:55:02:8e:52:8b: b5:88:ba:0b:de:d5:0e:db:e9:f4:b9:10:60:a3:9d:98:72:e8: 3a:68:ce:21:ba:1f:8b:5b:07:1b:e0:60:37:b6:6b:ad:be:44: 99:d2:f6:43:8d:54:5a:f9:70:a1:af:dc:9b:00:e0:68:ea:aa: 8a:14:cf:13:a8:18:97:ad:69:8f:03:12:42:bf:9d:41:7a:fa: f8:9a:c4:eb:7e:ea:61:26:da:1d:0e:21:a2:87:af:61:eb:67: 7e:81:54:5b:e4:28:4c:2c:e1:86:cc:97:98:e4:40:7f:64:ab: 74:da:27:9e:4e:ea:e3:57:63:4f:59:7c:10:b4:2b:e1:f7:25: 7d:ee:f1:b5:97:a1:bd:b3:cd:fe:d5:dd:84:49:57:9d:98:79: 47:df:46:ff:10:ce:2c:44:6a:8f:bf:a9:c1:dc:fb:28:58:5a: e1:2a:25:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUxMjA2MTg0OTA1WhcNMjUxMjEzMTg0OTA1WjAYMRYwFAYD VQQDEw02OTM0N2FhMS03ZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDRCBJLOYiF24idCXJ2eo972/6tK2MCXV/5vyUd4YRr3OKZS6fbQXK+0bui4 1S1FsHUcKyGvrgMxN6c8z57UaUCP4EkvJxjLyUSSMqtVkMJh3ziNNLa/b+Q8+faG 8GpQ+U7M8a6D8sSQWX5/EWUDO3tQlGeGqsvcI8vCrnsAft/wqauK1PFs2fZ1HfZU WDktD76Jqp79P1CCfy7UxEXen8lNmbOhnwGFgaD6w03xCJiT9nGjAWIg8NSl3pCs SbcJmef1MNDEnCCl/ezXSHsNPImZEkhMzpFVI8LpOPt64MrTvzrIPQk/KjlmT0OV XnMQu4Q1+UV0dFRhGBURJorJjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZlfxLB yc/mtBogL44f5SklyZcPMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuknfOUXn6GPi1MZ1ydf2wvruAdGKT3sJxmkQvOyeIHOb8JCxBkHgd QACJxOqbkVPb3rV4ctho24PSNbO4MtV4rDFwAzbV65wBecJvfvM+oi8mRJ5qVQKO Uou1iLoL3tUO2+n0uRBgo52Ycug6aM4huh+LWwcb4GA3tmutvkSZ0vZDjVRa+XCh r9ybAOBo6qqKFM8TqBiXrWmPAxJCv51Bevr4msTrfuphJtodDiGih69h62d+gVRb 5ChMLOGGzJeY5EB/ZKt02ieeTurjV2NPWXwQtCvh9yV97vG1l6G9s83+1d2ESVed mHlH30b/EM4sRGqPv6nB3PsoWFrhKiXs -----END CERTIFICATE-----Generated at Sat Dec 6 23:23:45 2025 by rpki-client