This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: scF6xRIuYniXe7+dh6yD95cIGlwr8CrYZSxWbtIZ2Go= Subject key identifier: 19:0B:4E:6D:52:66:94:F7:E1:53:66:CD:33:69:53:AE:A4:D9:8A:3E Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 06AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 06AF Signing time: Sat 06 Dec 2025 14:35:59 +0000 Manifest this update: Sat 06 Dec 2025 14:35:58 +0000 Manifest next update: Sat 13 Dec 2025 14:35:58 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: C0498QBsRZzcyhcD7BooZhBOZetwLfewM8/RvjMK4zA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: Dec 6 14:35:58 2025 GMT Not After : Dec 13 14:35:58 2025 GMT Subject: CN=69343f4e-999b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d2:6d:c5:c2:22:d7:cb:fa:a6:ad:6a:3d:cf: 2e:d1:4b:31:13:ca:f2:68:1b:6d:38:21:04:60:1a: 9f:87:3d:8b:72:93:cb:f0:cc:4b:8e:74:97:c1:7a: 09:1b:fe:23:44:e8:8d:95:e5:b9:14:09:0a:09:75: bd:3d:6d:5f:ee:a9:e5:63:5f:0c:2f:87:7d:28:9e: 0b:b2:9c:85:64:c8:70:30:43:0e:c7:e3:08:e7:70: f2:4e:2a:af:67:62:bd:cc:36:f0:6d:56:4f:5d:78: 39:10:4d:ce:64:0f:4d:c4:50:b1:7e:36:68:39:5e: 06:4b:0b:d2:a2:e2:93:33:23:1b:66:b0:da:12:77: 78:99:34:84:d5:6e:d7:ba:35:11:d4:48:7e:e0:0c: 10:8a:80:ab:ff:7f:9f:3a:21:10:16:87:70:70:54: 44:42:a1:d4:1c:d2:d4:b5:d3:5c:25:fe:24:ae:80: e9:dd:d2:08:30:a8:b8:d2:86:b2:a3:a4:3b:80:c9: 1d:e1:c9:74:ef:94:0a:55:a3:48:7a:08:9e:83:f8: 30:88:c2:03:08:34:6b:81:d3:01:a1:69:19:14:72: cb:c1:a5:e4:ca:25:f2:b9:16:b8:bf:c3:68:aa:f0: d2:f3:9d:e8:e0:bf:a8:a4:4c:22:07:cd:45:af:98: a9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:0B:4E:6D:52:66:94:F7:E1:53:66:CD:33:69:53:AE:A4:D9:8A:3E X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d2:9a:56:2c:b1:f9:e0:2b:52:44:9d:69:c0:5f:ed:3f:34: 1b:8d:03:09:53:0e:4c:94:4a:10:09:9e:72:69:32:a3:dc:62: 10:10:ca:2b:fd:4d:fc:e3:82:e7:b6:1a:3a:d5:1e:ba:1c:04: da:50:cf:47:d0:8c:e0:77:55:34:78:b9:5c:28:cb:27:38:ea: 6e:19:28:8a:62:ba:92:28:46:e6:35:30:56:29:60:17:d5:bf: ba:2a:ec:e4:98:7f:a3:62:5f:ab:88:be:e6:0d:ec:f0:32:6e: 23:02:9c:2a:bf:e9:ff:39:b8:1f:0d:7e:c2:8c:4c:11:bf:e7: 53:5f:26:a5:0e:b9:19:fd:be:e6:9c:fd:e5:94:04:dc:a8:37: 27:0b:1d:31:f9:6c:db:78:67:09:74:af:bb:e1:7b:e3:2c:59: ee:46:61:22:51:1b:64:9d:b9:e1:f2:7e:5a:b0:3b:d4:07:d3: 60:b6:22:a8:3e:e2:ed:87:c2:28:f6:70:30:dd:3b:46:39:15: 0c:1e:ce:8c:40:4b:d2:f0:b2:8c:c8:a4:78:e9:cd:76:12:0e: 7c:07:ff:11:eb:cf:45:b7:e1:e9:ee:aa:85:6d:02:40:8c:b2: 38:ba:e0:1b:a7:a5:f0:cc:b8:c8:fc:3e:4e:be:6e:16:af:bb: cb:2c:6d:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUxMjA2MTQzNTU4WhcNMjUxMjEzMTQzNTU4WjAYMRYwFAYD VQQDEw02OTM0M2Y0ZS05OTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9JtxcIi18v6pq1qPc8u0UsxE8ryaBttOCEEYBqfhz2LcpPL8MxLjnSXwXoJ G/4jROiNleW5FAkKCXW9PW1f7qnlY18ML4d9KJ4LspyFZMhwMEMOx+MI53DyTiqv Z2K9zDbwbVZPXXg5EE3OZA9NxFCxfjZoOV4GSwvSouKTMyMbZrDaEnd4mTSE1W7X ujUR1Eh+4AwQioCr/3+fOiEQFodwcFREQqHUHNLUtdNcJf4kroDp3dIIMKi40oay o6Q7gMkd4cl075QKVaNIegieg/gwiMIDCDRrgdMBoWkZFHLLwaXkyiXyuRa4v8No qvDS853o4L+opEwiB81Fr5ipZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkLTm1S ZpT34VNmzTNpU66k2Yo+MB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC0ppWLLH54CtSRJ1pwF/tPzQbjQMJUw5MlEoQCZ5yaTKj3GIQEMor /U3844Lntho61R66HATaUM9H0Izgd1U0eLlcKMsnOOpuGSiKYrqSKEbmNTBWKWAX 1b+6KuzkmH+jYl+riL7mDezwMm4jApwqv+n/ObgfDX7CjEwRv+dTXyalDrkZ/b7m nP3llATcqDcnCx0x+WzbeGcJdK+74XvjLFnuRmEiURtknbnh8n5asDvUB9NgtiKo PuLth8Io9nAw3TtGORUMHs6MQEvS8LKMyKR46c12Eg58B/8R689Ft+Hp7qqFbQJA jLI4uuAbp6XwzLjI/D5Ovm4Wr7vLLG3h -----END CERTIFICATE-----Generated at Sun Dec 7 07:04:05 2025 by rpki-client