This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft (raw, json) Hash identifier: zKSwmgNU28zMJlkDzumL8SAmpTZfAvWE8jBRNMX5MWg= Subject key identifier: 0F:8D:EB:86:BB:8C:EB:47:F6:43:07:59:B1:47:7F:18:0B:E8:B4:E9 Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft Manifest number: F7 Signing time: Fri 05 Dec 2025 03:27:37 +0000 Manifest this update: Fri 05 Dec 2025 03:27:37 +0000 Manifest next update: Fri 12 Dec 2025 03:27:37 +0000 Files and hashes: 1: ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl (hash: 27Ral4ua1y6v0U5wxZN2W3TpgPcV7wXX9GmVPsMdE9s=) 2: 747C668ECCD911EF9B52C877C4F9AE02.roa (hash: m3GeVlgQwLSASq7XBSa8f1Uvp0nte9cJZ6MnwsMfEFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Dec 5 03:27:37 2025 GMT Not After : Dec 12 03:27:37 2025 GMT Subject: CN=69325129-57d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:34:b7:d0:76:09:1a:04:75:e4:14:81:eb:8d: 00:92:cb:54:5a:92:aa:85:01:da:87:c8:47:30:2e: da:be:ea:7e:47:df:8b:bf:a0:68:a7:5d:7b:e3:12: 07:67:04:e9:58:86:f3:79:f8:a7:db:26:11:f8:da: ce:1d:4a:1d:7c:84:39:5e:0e:8a:0e:f3:7c:d8:4c: d8:b5:20:bc:18:59:2f:5a:e4:73:53:62:78:59:ce: 62:3a:b3:59:0d:58:40:38:ec:ca:9f:34:ce:0d:b3: 88:c6:cf:f2:56:2f:a2:85:b5:08:c5:f7:45:30:f4: 6d:f4:2e:24:81:74:8f:0f:a8:b8:a9:e8:74:4e:d7: a4:30:41:bb:a2:29:a1:1a:f1:e0:a8:89:03:32:93: ce:d5:b5:96:30:2a:39:e1:83:2a:2e:2e:ef:57:c1: b4:73:77:16:69:c9:84:36:0c:aa:0b:40:03:a1:04: f1:97:50:1b:8c:51:14:ba:cf:51:0f:3f:50:98:92: 78:0c:09:e5:a9:12:26:69:c4:99:6e:85:1c:29:43: f3:4b:96:9f:60:8a:62:d6:6b:cd:c3:d3:d6:00:f0: e2:77:1d:e4:ec:4a:bf:98:8e:a8:34:41:37:8c:ca: 9b:fe:f8:5f:fa:d2:e6:ed:c8:f8:90:8d:3e:b0:59: 37:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8D:EB:86:BB:8C:EB:47:F6:43:07:59:B1:47:7F:18:0B:E8:B4:E9 X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c6:c7:0b:0c:49:91:dc:d2:26:ae:fa:c2:f1:1e:28:a8:93: f8:b9:73:7a:28:da:2f:8a:f4:80:94:59:7e:30:f9:d1:5e:4f: dc:1d:ea:46:87:ff:f6:e0:ee:9b:5d:3c:3a:28:0f:07:46:55: ff:a7:bf:ed:62:99:ea:c3:d1:5e:50:d8:41:43:47:5a:bf:fa: c2:07:97:b7:83:b6:ab:61:26:9b:59:fe:17:ae:a4:b9:96:bb: eb:4b:d5:93:9f:84:40:17:65:7d:30:84:ae:e8:74:5a:d5:1c: c4:c8:0f:c4:b1:e0:01:c4:da:91:06:d4:85:f0:f5:fb:06:b2: 8b:d6:b8:05:b2:05:1f:32:a1:cb:c0:73:14:42:34:63:ff:a6: 72:e6:0d:ce:c4:02:77:ea:d6:e9:1f:99:d6:a2:28:6c:72:19: 0c:87:6a:ce:a0:f1:a7:91:d3:e4:a4:1e:f7:51:c0:cf:81:d4: c9:ea:9b:37:65:ec:8a:6f:05:ef:27:65:9f:8a:ac:a2:81:ce: 4f:56:30:74:00:5b:fa:cf:98:a7:b7:05:d2:f9:d8:36:5c:79: f3:eb:66:b0:06:9f:a2:3b:e5:96:56:f4:20:64:7b:cd:1c:96: c9:1d:6c:0a:a6:e1:11:61:7e:c3:66:cb:8b:e9:37:72:05:6d: 00:8b:2a:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUxMjA1MDMyNzM3WhcNMjUxMjEyMDMyNzM3WjAYMRYwFAYD VQQDEw02OTMyNTEyOS01N2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTS30HYJGgR15BSB640AkstUWpKqhQHah8hHMC7avup+R9+Lv6Bop1174xIH ZwTpWIbzefin2yYR+NrOHUodfIQ5Xg6KDvN82EzYtSC8GFkvWuRzU2J4Wc5iOrNZ DVhAOOzKnzTODbOIxs/yVi+ihbUIxfdFMPRt9C4kgXSPD6i4qeh0TtekMEG7oimh GvHgqIkDMpPO1bWWMCo54YMqLi7vV8G0c3cWacmENgyqC0ADoQTxl1AbjFEUus9R Dz9QmJJ4DAnlqRImacSZboUcKUPzS5afYIpi1mvNw9PWAPDidx3k7Eq/mI6oNEE3 jMqb/vhf+tLm7cj4kI0+sFk3PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+N64a7 jOtH9kMHWbFHfxgL6LTpMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVR b1l6cERZcXQyZTNuMWJOVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6xscLDEmR3NImrvrC8R4oqJP4uXN6KNovivSAlFl+MPnRXk/cHepG h//24O6bXTw6KA8HRlX/p7/tYpnqw9FeUNhBQ0dav/rCB5e3g7arYSabWf4XrqS5 lrvrS9WTn4RAF2V9MISu6HRa1RzEyA/EseABxNqRBtSF8PX7BrKL1rgFsgUfMqHL wHMUQjRj/6Zy5g3OxAJ36tbpH5nWoihschkMh2rOoPGnkdPkpB73UcDPgdTJ6ps3 ZeyKbwXvJ2Wfiqyigc5PVjB0AFv6z5intwXS+dg2XHnz62awBp+iO+WWVvQgZHvN HJbJHWwKpuERYX7DZsuL6TdyBW0Aiypi -----END CERTIFICATE-----Generated at Sat Dec 6 18:55:13 2025 by rpki-client