This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: GujNryrOydXyoS8LVaHNNpTgwE17ltt3XQlWGbhrhyk= Subject key identifier: F2:9A:E6:B0:7C:04:72:38:7D:D8:49:F2:60:13:79:7C:A1:02:FE:E4 Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0B15 Signing time: Sat 06 Dec 2025 18:34:56 +0000 Manifest this update: Sat 06 Dec 2025 18:34:56 +0000 Manifest next update: Sat 13 Dec 2025 18:34:55 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: KfN8A5W1vXhox20lGKVRdE3FHHHARj3EkLTglKZw8R0=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: lj/CFwKu+N9KL+BN8rOtiVH/zU3sp7+mG9hyAnPkezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Dec 6 18:34:56 2025 GMT Not After : Dec 13 18:34:55 2025 GMT Subject: CN=69347750-4185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:7e:55:a1:84:7f:63:09:78:a2:85:05:9c: 21:14:f4:4b:77:4c:11:51:27:c2:b7:99:08:e9:3f: 7a:da:f5:76:69:00:6f:fd:e5:85:95:0c:2a:cf:7e: 35:dc:d1:a9:9b:d8:c8:4a:40:af:63:2e:51:3a:b9: 42:f6:6e:c1:bd:c5:27:d4:e1:46:26:fc:80:f3:8e: 2b:b3:80:11:de:40:61:66:3f:b6:6d:98:f2:30:de: 47:3b:ea:d4:c0:d8:dd:f2:e9:e0:13:e4:a5:ee:04: d4:2a:75:c6:da:cf:97:9b:12:c5:57:1a:a5:9b:cf: 82:1f:7b:d7:9f:6c:ef:f1:8c:a3:94:22:4c:bc:1a: 25:97:75:12:14:7e:99:df:96:ae:cb:35:5a:55:4a: 88:f3:df:28:49:86:a9:33:33:bd:c9:2c:ce:5e:fa: 2a:b9:35:2a:5a:a8:72:3d:6a:65:06:1a:ce:0f:21: d4:fc:8b:df:66:cb:26:e9:9e:ff:84:e2:a5:4a:27: 4a:01:61:3a:9a:ad:da:52:87:9a:e9:af:4b:d0:dc: da:6a:d5:42:99:e7:a9:ae:e0:9c:8e:c8:9d:ba:97: e1:59:cc:a7:12:9d:27:17:60:ca:b5:0c:84:cb:16: 37:bd:4b:88:9b:19:fd:16:b6:ea:4e:be:e2:c0:9d: 3a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:9A:E6:B0:7C:04:72:38:7D:D8:49:F2:60:13:79:7C:A1:02:FE:E4 X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:ba:37:3d:a8:90:3e:ea:1b:71:31:81:c3:5d:52:19:48:31: a5:e9:d7:c7:3d:6e:d5:3e:85:1f:6c:b9:76:8d:9e:72:30:23: a1:4e:24:a0:f6:e4:2c:1a:96:67:7a:7f:f3:c0:cd:39:78:3c: da:5f:15:63:26:81:82:7e:66:bb:56:44:cd:f5:5a:c6:a0:99: 92:d2:de:28:b8:14:bb:01:80:63:83:0b:13:e3:5e:d1:4e:bf: ea:7e:84:c5:ac:df:17:27:3d:58:1c:c3:c9:60:78:68:aa:5f: de:2b:ae:73:1e:04:c4:8f:73:db:bd:84:42:df:b8:6e:be:bf: 92:de:28:08:1e:e6:d5:ff:a4:42:fa:c6:1e:1b:e6:f2:61:c5: bb:52:64:4e:6f:6f:91:32:ae:b8:a3:d5:09:63:eb:80:9e:1c: 14:83:4e:07:ae:4c:46:fd:91:3d:6a:12:83:42:9b:b6:35:83: a2:90:cf:3e:80:bd:a4:e9:5c:0f:5b:5e:3a:f1:9c:36:04:72: 44:29:97:46:76:d0:3a:1e:4d:4c:80:ff:c9:0a:0a:d0:38:84: 6e:41:ce:62:90:94:5c:53:a4:fa:bc:d7:eb:30:03:13:74:26: a8:d4:88:25:d2:b0:3e:2f:0b:94:a8:4d:cf:83:e0:6c:84:e8: 75:95:3f:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjUxMjA2MTgzNDU2WhcNMjUxMjEzMTgzNDU1WjAYMRYwFAYD VQQDEw02OTM0Nzc1MC00MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYx+VaGEf2MJeKKFBZwhFPRLd0wRUSfCt5kI6T962vV2aQBv/eWFlQwqz341 3NGpm9jISkCvYy5ROrlC9m7BvcUn1OFGJvyA844rs4AR3kBhZj+2bZjyMN5HO+rU wNjd8ungE+Sl7gTUKnXG2s+XmxLFVxqlm8+CH3vXn2zv8YyjlCJMvBoll3USFH6Z 35auyzVaVUqI898oSYapMzO9ySzOXvoquTUqWqhyPWplBhrODyHU/IvfZssm6Z7/ hOKlSidKAWE6mq3aUoea6a9L0NzaatVCmeepruCcjsidupfhWcynEp0nF2DKtQyE yxY3vUuImxn9FrbqTr7iwJ06zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKa5rB8 BHI4fdhJ8mATeXyhAv7kMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiujc9qJA+6htxMYHDXVIZSDGl6dfHPW7VPoUfbLl2jZ5yMCOhTiSg 9uQsGpZnen/zwM05eDzaXxVjJoGCfma7VkTN9VrGoJmS0t4ouBS7AYBjgwsT417R Tr/qfoTFrN8XJz1YHMPJYHhoql/eK65zHgTEj3PbvYRC37huvr+S3igIHubV/6RC +sYeG+byYcW7UmROb2+RMq64o9UJY+uAnhwUg04HrkxG/ZE9ahKDQpu2NYOikM8+ gL2k6VwPW1468Zw2BHJEKZdGdtA6Hk1MgP/JCgrQOIRuQc5ikJRcU6T6vNfrMAMT dCao1Igl0rA+LwuUqE3Pg+BshOh1lT8H -----END CERTIFICATE-----Generated at Sun Dec 7 04:42:51 2025 by rpki-client