This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: ZNjk2TbFj5Nf5fqAKm7DQqUxT1K6SLmuKCUnfPJmB+4= Subject key identifier: CF:55:A8:1D:A1:96:D5:46:26:25:4B:05:B6:44:36:21:AE:6D:9D:4D Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: 01A7 Signing time: Fri 05 Dec 2025 01:33:29 +0000 Manifest this update: Fri 05 Dec 2025 01:33:28 +0000 Manifest next update: Fri 12 Dec 2025 01:33:28 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: 56R/9zuHI1VXpWZ0kzkUYfrha2BWbDfzxIvdjy5Zra8=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Dec 5 01:33:28 2025 GMT Not After : Dec 12 01:33:28 2025 GMT Subject: CN=69323669-a327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:49:d8:77:37:5c:3d:a0:98:d0:36:21:8c:7b: b1:f5:77:0d:2e:96:e8:35:1c:5e:37:dc:74:a9:80: e0:fd:15:4a:62:df:7a:d7:32:55:f8:59:00:73:82: 38:26:1a:fd:75:ad:00:c7:6d:d7:a0:8a:2b:ef:d4: d2:6e:91:c9:2f:d7:15:72:7a:dc:96:f6:d6:0d:30: 30:88:d6:55:e9:7a:a5:44:01:35:e3:df:32:27:0c: d1:f0:69:95:b6:fd:56:8c:cb:4d:30:8c:9d:bc:81: 7d:fd:c6:90:36:11:4b:93:93:9a:ab:5e:ed:9e:33: 77:e1:dd:27:0d:5d:7c:98:71:92:9f:8a:37:a8:60: 45:fa:a2:12:b7:34:88:63:2b:9e:6b:f3:94:ab:61: ea:7c:4c:2e:19:74:b9:a6:36:28:a5:3d:60:b5:9f: 5f:79:6d:8a:b3:c1:96:98:0c:44:bf:c6:b2:8b:5b: 00:51:98:4a:bb:d4:88:e7:bc:d1:ca:30:61:f7:57: 83:8f:ba:bd:3a:7e:e7:45:4e:bd:00:bb:b9:23:20: 00:df:94:4f:a3:45:d8:87:9f:4e:4c:cc:d3:30:00: 18:5f:f5:70:ea:59:3e:b2:b8:33:f3:68:b9:45:ce: b1:f6:29:c4:a3:30:47:d5:39:58:08:fe:95:67:2f: e4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:55:A8:1D:A1:96:D5:46:26:25:4B:05:B6:44:36:21:AE:6D:9D:4D X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:4e:9d:30:3e:93:24:65:76:6f:cf:1b:81:c7:86:ed:7f:bc: ac:92:e4:23:44:7f:fb:6f:9c:3c:7b:5b:ed:98:ef:f2:10:1c: cd:e8:e7:24:39:ec:9e:ac:96:7d:1c:bf:9a:ce:56:db:4f:83: 9a:fc:d7:ec:d8:54:a1:d0:2f:d7:2d:32:d3:d7:75:69:45:b6: 12:65:cd:2e:28:1c:b1:a7:3e:e8:f9:43:33:e2:67:b1:a3:06: 38:f8:30:d0:ff:cc:fb:dd:1f:34:3d:52:3e:c6:c4:76:11:ef: 7f:e5:f8:6c:3d:05:a2:82:97:f3:b3:e3:7e:95:f8:6c:dc:85: 27:51:fc:e4:ca:58:9a:23:2b:f4:7c:c4:2f:71:1a:d8:a5:a8: e9:39:f0:38:09:18:0c:f7:1e:dc:2b:ea:81:ed:09:38:c1:cb: f5:ca:9c:00:d4:23:63:7e:ca:7b:2e:ae:58:a1:b9:9a:f1:41: 05:f5:98:92:ff:ee:cd:11:6a:ab:c0:00:10:ec:1c:c7:7c:ca: f1:22:f2:06:c2:b7:f4:a7:2c:48:5d:b2:04:84:2c:d0:62:0c: 9a:bd:f9:60:56:da:6f:99:09:66:81:f6:d0:62:e2:12:e7:c6: b9:b4:ad:44:bf:6e:15:2b:8c:67:92:14:97:52:24:b9:49:6d: 1d:66:32:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjUxMjA1MDEzMzI4WhcNMjUxMjEyMDEzMzI4WjAYMRYwFAYD VQQDEw02OTMyMzY2OS1hMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UnYdzdcPaCY0DYhjHux9XcNLpboNRxeN9x0qYDg/RVKYt961zJV+FkAc4I4 Jhr9da0Ax23XoIor79TSbpHJL9cVcnrclvbWDTAwiNZV6XqlRAE1498yJwzR8GmV tv1WjMtNMIydvIF9/caQNhFLk5Oaq17tnjN34d0nDV18mHGSn4o3qGBF+qIStzSI Yyuea/OUq2HqfEwuGXS5pjYopT1gtZ9feW2Ks8GWmAxEv8ayi1sAUZhKu9SI57zR yjBh91eDj7q9On7nRU69ALu5IyAA35RPo0XYh59OTMzTMAAYX/Vw6lk+srgz82i5 Rc6x9inEozBH1TlYCP6VZy/kZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9VqB2h ltVGJiVLBbZENiGubZ1NMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2Tp0wPpMkZXZvzxuBx4btf7yskuQjRH/7b5w8e1vtmO/yEBzN6Ock OeyerJZ9HL+azlbbT4Oa/Nfs2FSh0C/XLTLT13VpRbYSZc0uKByxpz7o+UMz4mex owY4+DDQ/8z73R80PVI+xsR2Ee9/5fhsPQWigpfzs+N+lfhs3IUnUfzkyliaIyv0 fMQvcRrYpajpOfA4CRgM9x7cK+qB7Qk4wcv1ypwA1CNjfsp7Lq5Yobma8UEF9ZiS /+7NEWqrwAAQ7BzHfMrxIvIGwrf0pyxIXbIEhCzQYgyavflgVtpvmQlmgfbQYuIS 58a5tK1Ev24VK4xnkhSXUiS5SW0dZjL8 -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:08 2025 by rpki-client