This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft File: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft (raw, json) Hash identifier: 7qunrzWQLhsrDc858RW9d/zU7TC8iCV0e/kj7o8ZO5c= Subject key identifier: 11:EA:E9:D9:4A:86:89:27:1A:83:54:A0:42:E3:37:FC:D1:33:4B:E8 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 04F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft Manifest number: 04E8 Signing time: Sat 06 Dec 2025 22:30:00 +0000 Manifest this update: Sat 06 Dec 2025 22:29:59 +0000 Manifest next update: Sat 13 Dec 2025 22:29:59 +0000 Files and hashes: 1: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl (hash: pI2zClkOIUn8MSl4ihL02YtayncWAkzDyrTNfwnoCwk=) 2: AA5485827F3611ECBED94963C4F9AE02.roa (hash: L7q5MhSYBL7XAFYcbCU7483l92C9DWVyV5PtuFnvCCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1269 (0x4f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26, serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: Dec 6 22:29:59 2025 GMT Not After : Dec 13 22:29:59 2025 GMT Subject: CN=6934ae67-640e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3a:1f:53:11:f0:e7:cb:1d:cb:ec:f9:7b:d5: 9f:eb:b6:ec:a8:6b:65:ca:97:a9:a4:03:c4:f8:82: 3c:a2:d9:ae:94:b7:ea:cb:e6:7e:43:49:b4:cd:f6: f4:e2:3a:9e:60:75:ec:85:72:c9:33:fd:01:86:84: c6:bd:6f:9c:ca:74:4a:b8:2d:67:cd:56:73:30:b5: 24:82:b8:7f:03:b1:d7:21:57:b2:ef:16:9a:fc:82: aa:52:41:3e:ae:f5:a8:5f:4b:4a:2a:bb:ab:2d:3a: 60:e8:67:a4:43:1b:5e:02:ca:93:de:95:6c:62:c5: 56:35:37:1f:a1:70:4d:4a:68:f6:c9:b7:c0:5a:af: a5:da:4b:72:5c:a7:08:48:f0:56:ee:68:8d:a9:73: b5:0b:ea:2d:64:c6:50:11:d7:eb:a0:32:0b:12:01: d1:8c:fd:63:f2:1a:17:b6:55:57:c9:15:d2:70:0a: 93:6c:cf:2c:6d:98:df:28:66:0b:16:11:87:9f:bd: 84:25:da:cd:06:ad:4f:d7:01:7b:33:e6:7c:4c:08: dd:f9:a7:6c:c1:fb:7c:63:d1:54:27:37:cf:6b:90: b1:d1:67:78:7a:90:24:45:71:83:e1:51:d7:8d:13: cf:f4:3b:aa:dd:09:25:63:69:35:50:d7:1d:94:45: 32:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:EA:E9:D9:4A:86:89:27:1A:83:54:A0:42:E3:37:FC:D1:33:4B:E8 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:88:e4:ef:2c:b2:2e:7f:8f:b2:5e:39:04:37:a4:62:59:03: 69:22:ae:84:32:f2:8e:eb:53:ec:47:32:ff:be:75:ca:ca:f2: 62:65:88:12:55:c7:9d:08:35:6a:ad:1a:4c:06:fd:e6:a3:53: 8f:5a:85:41:b4:4c:6a:0c:da:a1:43:80:9f:10:e6:72:35:ae: bc:43:29:c0:5c:93:9f:5d:22:93:5c:19:f6:34:1d:91:4e:7f: 7f:01:3e:68:35:73:29:0b:16:da:1a:c2:09:66:44:54:ba:72: d4:48:92:28:25:d5:01:96:6e:29:11:c4:3d:e7:74:69:ff:b0: 61:19:c7:24:ba:a0:d7:88:d6:d0:c1:f0:75:b8:9f:a2:e6:81: 41:7b:5d:31:a3:05:0d:5b:ec:18:10:d8:e2:18:8a:2b:43:f8: 9f:0c:41:45:12:1a:ed:f6:11:f3:b7:e5:7a:da:7c:7e:bb:7e: 60:a3:2c:a5:ef:64:20:7c:f6:04:f2:eb:fb:ce:50:82:cb:7e: dd:fc:61:72:6c:50:51:8b:07:76:8e:61:b1:6f:bb:a5:13:8a: e4:2e:55:49:7f:36:17:ca:38:9d:00:ee:68:0e:2a:de:e8:67: d1:01:1b:ca:6c:60:5c:2f:1a:29:1f:e7:8a:df:ef:84:ba:b2: aa:6d:da:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjUxMjA2MjIyOTU5WhcNMjUxMjEzMjIyOTU5WjAYMRYwFAYD VQQDEw02OTM0YWU2Ny02NDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTofUxHw58sdy+z5e9Wf67bsqGtlypeppAPE+II8otmulLfqy+Z+Q0m0zfb0 4jqeYHXshXLJM/0BhoTGvW+cynRKuC1nzVZzMLUkgrh/A7HXIVey7xaa/IKqUkE+ rvWoX0tKKrurLTpg6GekQxteAsqT3pVsYsVWNTcfoXBNSmj2ybfAWq+l2ktyXKcI SPBW7miNqXO1C+otZMZQEdfroDILEgHRjP1j8hoXtlVXyRXScAqTbM8sbZjfKGYL FhGHn72EJdrNBq1P1wF7M+Z8TAjd+adswft8Y9FUJzfPa5Cx0Wd4epAkRXGD4VHX jRPP9Duq3QklY2k1UNcdlEUy3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHq6dlK hoknGoNUoELjN/zRM0voMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEQyNi9DMDBEOTcyNjQxM0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9q T1phWmNfYXB2UWZhLWVOeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5iOTvLLIuf4+yXjkEN6RiWQNpIq6EMvKO61PsRzL/vnXKyvJiZYgS VcedCDVqrRpMBv3mo1OPWoVBtExqDNqhQ4CfEOZyNa68QynAXJOfXSKTXBn2NB2R Tn9/AT5oNXMpCxbaGsIJZkRUunLUSJIoJdUBlm4pEcQ953Rp/7BhGcckuqDXiNbQ wfB1uJ+i5oFBe10xowUNW+wYENjiGIorQ/ifDEFFEhrt9hHzt+V62nx+u35goyyl 72QgfPYE8uv7zlCCy37d/GFybFBRiwd2jmGxb7ulE4rkLlVJfzYXyjidAO5oDire 6GfRARvKbGBcLxopH+eK3++EurKqbdoA -----END CERTIFICATE-----Generated at Sun Dec 7 02:42:19 2025 by rpki-client