This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: CFBw/clczPCcApD9XefPM75TK2jeaZImzJA6o+dGHUk= Subject key identifier: 58:79:D0:95:42:91:3E:EA:05:D7:59:C0:58:BF:70:1D:0B:D6:25:83 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 06B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 06AF Signing time: Thu 04 Dec 2025 21:05:22 +0000 Manifest this update: Thu 04 Dec 2025 21:05:21 +0000 Manifest next update: Thu 11 Dec 2025 21:05:21 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: +P+U7QQEHux69QW5a3NCbQnA9icTnYi7XBV+RhVF1XI=) 2: 54CB555C57A311F09664E82DC4F9AE02.roa (hash: +36ZiREOaXQ0L85WY9dsXKbxSFUahU97iWT+nNCGEQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Dec 4 21:05:21 2025 GMT Not After : Dec 11 21:05:21 2025 GMT Subject: CN=6931f791-c723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3e:cb:11:1b:2b:29:8e:0a:a7:c7:ea:0c:7e: b7:43:b9:02:61:94:86:70:8b:f5:22:a4:26:a4:cb: 83:bd:5b:9a:05:d5:97:3b:bb:dc:dd:00:88:b1:75: 4a:29:ca:d6:5b:98:43:ad:a5:22:c1:90:2f:47:07: 97:2c:77:28:d5:ee:fc:86:9c:57:b4:a9:f5:01:e8: 83:c6:2c:70:bc:d8:15:8f:82:4c:b7:4b:60:d3:3e: f1:9f:75:86:c2:f6:c6:42:a4:82:63:00:bf:22:a2: 51:2b:02:9d:36:58:c6:b0:a0:6f:21:ea:02:cf:63: 3b:9e:85:43:11:00:ae:d3:6c:48:64:6a:95:70:ed: 8f:ca:e4:eb:a8:38:b2:08:1c:1b:7a:19:05:c9:93: 66:58:e5:89:9e:8b:8c:c6:32:b8:0c:23:d9:3e:bb: 28:1b:97:18:7a:33:dd:93:77:2e:4c:b8:79:32:6b: 1d:a2:41:71:c5:3f:b7:ab:65:e6:e5:0e:25:0a:b8: 66:14:1f:1f:65:8a:55:93:90:0f:6e:a6:a6:1e:e2: 55:9e:72:78:99:87:e3:01:b4:98:5f:4d:f1:37:6a: a7:65:f6:85:38:7a:f4:11:57:58:c5:a4:28:4c:89: 4a:c9:e9:7f:8d:90:d1:bc:82:29:fa:43:95:c5:b9: 3e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:79:D0:95:42:91:3E:EA:05:D7:59:C0:58:BF:70:1D:0B:D6:25:83 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:93:3a:3b:c2:a2:f5:42:50:0b:50:c1:69:41:48:1f:51:26: 64:73:a0:a6:c3:9f:0a:8f:36:da:55:4a:f8:9f:2b:5e:7d:5e: 44:11:f0:b7:a3:30:93:32:3b:84:c8:63:f8:90:6c:c5:7d:e6: ea:69:51:20:33:d4:cf:c9:cc:30:5a:42:e4:95:b7:03:74:bd: 2d:36:39:75:85:c3:09:ff:fa:38:e8:fe:14:8e:0e:bc:c0:fa: 51:45:b0:9b:13:ed:b1:85:35:7b:66:b7:34:28:62:25:09:e9: 5a:6c:f7:41:af:9c:b7:de:de:61:5b:6f:da:fd:02:d7:53:88: 1e:25:b6:d8:ef:ed:9d:42:14:3f:3b:f5:83:1c:1a:2c:dd:46: d5:a2:e3:df:76:ad:78:d9:66:0e:93:91:33:49:63:82:42:44: 8f:e5:5e:96:cb:bb:37:80:b6:b1:2c:3e:63:cc:3b:f1:0f:e0: 7b:27:74:a4:51:e5:aa:6a:a8:3e:f4:d3:06:76:41:30:6e:3b: 50:e0:28:0b:ac:5d:62:ec:0b:6f:40:5d:91:c1:e6:2a:e9:0e: 59:d1:2c:47:41:ee:6e:e3:6e:1c:8c:51:17:12:c7:d9:b5:35: f4:9b:fd:b4:bb:54:29:b6:08:16:5b:4f:d8:70:0b:1a:43:6f: 21:b8:0b:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUxMjA0MjEwNTIxWhcNMjUxMjExMjEwNTIxWjAYMRYwFAYD VQQDEw02OTMxZjc5MS1jNzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4D7LERsrKY4Kp8fqDH63Q7kCYZSGcIv1IqQmpMuDvVuaBdWXO7vc3QCIsXVK KcrWW5hDraUiwZAvRweXLHco1e78hpxXtKn1AeiDxixwvNgVj4JMt0tg0z7xn3WG wvbGQqSCYwC/IqJRKwKdNljGsKBvIeoCz2M7noVDEQCu02xIZGqVcO2PyuTrqDiy CBwbehkFyZNmWOWJnouMxjK4DCPZPrsoG5cYejPdk3cuTLh5MmsdokFxxT+3q2Xm 5Q4lCrhmFB8fZYpVk5APbqamHuJVnnJ4mYfjAbSYX03xN2qnZfaFOHr0EVdYxaQo TIlKyel/jZDRvIIp+kOVxbk+UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFh50JVC kT7qBddZwFi/cB0L1iWDMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXkzo7wqL1QlALUMFpQUgfUSZkc6Cmw58KjzbaVUr4nytefV5EEfC3 ozCTMjuEyGP4kGzFfebqaVEgM9TPycwwWkLklbcDdL0tNjl1hcMJ//o46P4Ujg68 wPpRRbCbE+2xhTV7Zrc0KGIlCelabPdBr5y33t5hW2/a/QLXU4geJbbY7+2dQhQ/ O/WDHBos3UbVouPfdq142WYOk5EzSWOCQkSP5V6Wy7s3gLaxLD5jzDvxD+B7J3Sk UeWqaqg+9NMGdkEwbjtQ4CgLrF1i7AtvQF2RweYq6Q5Z0SxHQe5u424cjFEXEsfZ tTX0m/20u1QptggWW0/YcAsaQ28huAvj -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:55 2025 by rpki-client