This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: aJnxled8XtRFPqoPgezJdCVek58PIXI6TV0C8/HkE9Y= Subject key identifier: 26:AD:18:B3:7B:99:C8:32:0F:0D:B4:F7:33:7D:0C:A5:7C:CD:41:A1 Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 57 Signing time: Fri 05 Dec 2025 05:02:52 +0000 Manifest this update: Fri 05 Dec 2025 05:02:51 +0000 Manifest next update: Fri 12 Dec 2025 05:02:51 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: XLnC8I4jepro2KCOhJEr4mU2CWZo4aNMpWfEyYMRDZw=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: V/fASBu8lY37YHb4lDAmyOYyJCBMY5CbifIBgISs7Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Dec 5 05:02:51 2025 GMT Not After : Dec 12 05:02:51 2025 GMT Subject: CN=6932677b-a36b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b6:18:2d:9e:d7:47:51:3d:ac:a3:57:3e:75: 9f:ba:1c:55:2d:91:b4:26:a3:58:95:3a:e4:5f:db: 84:fb:ca:b0:62:3f:32:5f:11:f9:a7:c8:ea:ce:9c: 07:85:f8:f9:20:73:d8:f6:d9:69:30:48:62:17:20: 5b:eb:bd:5d:e1:65:52:6d:df:24:dd:ff:7d:12:6c: 23:f3:c5:c5:a9:6c:96:98:cf:76:8f:2f:6c:c1:ad: 3d:a2:a8:14:b9:d5:c6:d3:dd:4b:75:ea:9a:0a:ea: 1d:cb:e9:9b:21:16:fb:e3:ab:c8:94:4c:89:0f:13: 46:eb:86:ed:d3:dc:ef:da:4c:9c:14:bb:20:ec:75: 6f:56:7e:97:f6:48:67:59:ed:05:7f:5a:09:51:98: 7f:27:dc:55:df:da:c9:84:c9:eb:01:21:5c:da:40: 2e:5f:30:71:f5:2e:04:e2:ce:93:86:51:d5:13:e1: 17:89:ca:a2:bc:5f:1c:d4:1d:3d:11:b9:5a:c4:68: 44:38:b1:df:24:b9:9e:b9:c0:e3:12:48:6b:f0:12: 3c:b3:11:0e:9d:eb:bc:2f:9c:8b:96:46:0c:a2:15: 14:7e:47:c4:3e:b0:74:01:ab:bf:70:6d:0d:9a:5d: cd:f3:7d:34:49:eb:b0:26:af:1f:ed:7b:1c:25:14: af:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:AD:18:B3:7B:99:C8:32:0F:0D:B4:F7:33:7D:0C:A5:7C:CD:41:A1 X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:52:bd:a0:45:8a:d5:0e:63:c4:52:c5:15:f8:23:44:d4:56: da:0e:1c:d9:75:39:f3:e3:de:43:e4:00:4e:90:ca:f7:c3:c4: 60:c5:3e:ca:bb:88:94:de:12:72:5d:71:59:34:c6:7a:eb:96: f1:f7:26:7e:27:5b:2c:c3:d9:d4:83:92:a4:32:e5:c3:39:eb: 96:ee:79:0e:1c:10:8c:bb:5a:63:88:92:b5:30:cd:b6:25:20: 1e:ac:8f:cb:ea:02:da:96:68:82:04:d7:77:c0:dc:b4:9c:f3: 5e:8a:e9:c2:dc:23:76:ae:fe:21:99:0a:23:02:2e:b0:55:73: 61:bd:88:30:df:52:15:0c:a0:fd:00:01:89:79:01:52:cc:90: 1f:4e:04:dd:9c:74:14:f3:92:37:a5:75:50:b0:9f:d7:29:c9: a3:a8:00:cf:b2:69:37:2b:64:69:58:19:db:3e:9a:e3:5d:07: 82:2b:04:52:1d:1c:e6:b5:d1:d0:a8:84:e7:8d:f0:e3:a7:c7: ae:26:97:de:42:59:d6:45:5a:0c:86:c7:15:29:c0:1f:50:26: 9b:9d:bb:b2:d1:95:aa:3a:e7:13:a5:87:d3:35:1b:8b:89:76: 14:95:4c:3e:c9:99:71:3f:8b:75:64:65:bb:51:b3:4d:78:88: 75:fe:77:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoQ0M0NEI2N0JEMThGNDVGNkUxMzdBREU0NzMxMzM1QTU1 MUE2NjEyNzAeFw0yNTEyMDUwNTAyNTFaFw0yNTEyMTIwNTAyNTFaMBgxFjAUBgNV BAMTDTY5MzI2NzdiLWEzNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfthgtntdHUT2so1c+dZ+6HFUtkbQmo1iVOuRf24T7yrBiPzJfEfmnyOrOnAeF +Pkgc9j22WkwSGIXIFvrvV3hZVJt3yTd/30SbCPzxcWpbJaYz3aPL2zBrT2iqBS5 1cbT3Ut16poK6h3L6ZshFvvjq8iUTIkPE0brhu3T3O/aTJwUuyDsdW9Wfpf2SGdZ 7QV/WglRmH8n3FXf2smEyesBIVzaQC5fMHH1LgTizpOGUdUT4ReJyqK8XxzUHT0R uVrEaEQ4sd8kuZ65wOMSSGvwEjyzEQ6d67wvnIuWRgyiFRR+R8Q+sHQBq79wbQ2a Xc3zfTRJ67Amrx/texwlFK/1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJq0Ys3uZ yDIPDbT3M30MpXzNQaEwHwYDVR0jBBgwFoAUzES2e9GPRfbhN63kcxM1pVGmYScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0U3NUI4NzhDNENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekVTMmU5R1BSZmJoTjYza2N4TTFwVkdtWVNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MjNBL0U3NUI4NzhDNENERDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZi aE42M2tjeE0xcFZHbVlTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABVSvaBFitUOY8RSxRX4I0TUVtoOHNl1OfPj3kPkAE6QyvfDxGDFPsq7 iJTeEnJdcVk0xnrrlvH3Jn4nWyzD2dSDkqQy5cM565bueQ4cEIy7WmOIkrUwzbYl IB6sj8vqAtqWaIIE13fA3LSc816K6cLcI3au/iGZCiMCLrBVc2G9iDDfUhUMoP0A AYl5AVLMkB9OBN2cdBTzkjeldVCwn9cpyaOoAM+yaTcrZGlYGds+muNdB4IrBFId HOa10dCohOeN8OOnx64ml95CWdZFWgyGxxUpwB9QJpudu7LRlao65xOlh9M1G4uJ dhSVTD7JmXE/i3VkZbtRs014iHX+d+Q= -----END CERTIFICATE-----Generated at Sat Dec 6 11:22:52 2025 by rpki-client