This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft File: zoytNWIakBLECzY3U3ykDj0H6M8.mft (raw, json) Hash identifier: OA7nSgsG4YAS3ldBrfnpnHDKSLhE71ID7KjY5LdjIW0= Subject key identifier: DD:10:F5:0F:80:01:FD:D9:9D:16:7E:BF:7D:94:36:2B:B0:F8:63:C6 Authority key identifier: CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF Certificate issuer: /CN=A91B9F08/serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Certificate serial: 0EB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft Manifest number: 0EA0 Signing time: Sat 06 Dec 2025 17:08:38 +0000 Manifest this update: Sat 06 Dec 2025 17:08:38 +0000 Manifest next update: Sat 13 Dec 2025 17:08:38 +0000 Files and hashes: 1: zoytNWIakBLECzY3U3ykDj0H6M8.crl (hash: g8qAHKKjjOTg3CP96M6oile+pJRcGjlv4/U0NlutInc=) 2: 8ADFF772924011ED867BE311C4F9AE02.roa (hash: am9c/5/9WUqfqDVJJkqHl1fMAMJ9WE34zLQ5kEncnkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3760 (0xeb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9F08, serialNumber=CE8CAD35621A9012C40B3637537CA40E3D07E8CF Validity Not Before: Dec 6 17:08:38 2025 GMT Not After : Dec 13 17:08:38 2025 GMT Subject: CN=69346316-e7ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3b:65:84:10:a3:58:76:20:ef:74:60:c9:71: 66:18:73:ba:af:17:1c:1c:60:2b:4a:6f:4f:ff:7d: 75:4c:f5:03:61:d2:d3:83:7c:c4:6d:11:85:b4:f5: 3b:09:27:f0:6c:98:62:bc:35:c3:7e:80:e7:d7:58: f4:6a:57:f2:41:43:90:99:83:b2:66:1a:9a:6a:2f: 9f:5d:b3:fd:38:04:47:e7:09:9a:df:0e:d3:2d:f8: 19:9e:4e:8f:f1:e4:eb:ae:4d:fb:fd:2c:bf:56:28: 28:c5:4f:bb:ad:c7:0a:f1:5e:cd:a8:b5:32:98:f1: a6:86:c9:a5:b2:b7:d5:cf:6c:b9:c7:de:7a:04:ff: 18:43:d0:15:f5:e8:6a:4a:c9:9d:1a:d5:d0:b9:f2: e3:40:cd:ef:cd:97:87:18:76:58:3a:c8:3a:61:fc: f7:d2:6e:01:6c:81:19:e0:8f:9a:57:62:f4:0d:97: 53:c0:98:9b:14:a6:29:4c:c1:ee:0f:c5:3a:26:fc: 2c:50:a9:10:19:08:e4:d5:8e:18:e8:58:a9:c2:1c: df:c8:9b:c5:e8:31:96:ab:c3:4c:43:9c:3d:eb:4c: ec:84:bf:04:10:cd:d7:96:f6:4c:39:2e:f5:9a:9b: 76:e2:9b:c6:15:ee:d2:3e:7f:29:ba:4a:5d:67:16: 47:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:10:F5:0F:80:01:FD:D9:9D:16:7E:BF:7D:94:36:2B:B0:F8:63:C6 X509v3 Authority Key Identifier: keyid:CE:8C:AD:35:62:1A:90:12:C4:0B:36:37:53:7C:A4:0E:3D:07:E8:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zoytNWIakBLECzY3U3ykDj0H6M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9F08/3090D914A14C11E98475A82DC4F9AE02/zoytNWIakBLECzY3U3ykDj0H6M8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:9a:59:3a:0f:f2:f0:c3:9a:76:fb:a8:b6:68:42:1f:fa:4a: bc:2c:36:53:e5:be:95:03:04:ad:7c:ea:9a:78:b7:fe:f7:98: 48:1c:0c:1d:ba:2c:fc:92:f4:67:ff:c1:f6:b6:09:50:62:15: e6:b8:69:43:8e:31:98:2b:fa:3d:8f:7f:b8:d6:60:78:f7:2b: ef:e1:81:1e:fd:13:58:bb:d8:21:ca:b4:0e:b6:72:f0:6d:05: b6:01:e3:da:f8:bf:69:75:e2:00:c5:79:93:c5:7c:5f:e8:95: 03:84:c4:2d:c9:43:69:67:27:33:18:59:95:1a:6b:3b:c5:fa: 00:e7:8c:d2:60:66:49:02:26:74:07:bf:0e:ae:cc:67:f8:da: 12:8d:28:95:87:87:45:92:de:12:de:69:3d:41:fa:ab:9a:47: 8e:64:81:10:a7:ef:85:43:0a:98:35:f6:b1:8a:5f:b6:e0:b7: b6:73:67:77:e0:c4:ea:a9:7a:fa:10:04:78:da:b6:04:b8:75: 08:06:ee:87:93:24:cb:99:9a:c0:ff:10:1d:eb:b1:0a:a3:f7: 43:63:ca:1a:d8:48:81:52:02:7c:4e:84:38:ff:91:28:36:19: cb:64:04:16:1a:e5:e3:64:ae:d4:b6:3b:e8:26:17:5e:39:bd: 49:c8:84:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGMDgxMTAvBgNVBAUTKENFOENBRDM1NjIxQTkwMTJDNDBCMzYzNzUzN0NBNDBF M0QwN0U4Q0YwHhcNMjUxMjA2MTcwODM4WhcNMjUxMjEzMTcwODM4WjAYMRYwFAYD VQQDEw02OTM0NjMxNi1lN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApztlhBCjWHYg73RgyXFmGHO6rxccHGArSm9P/311TPUDYdLTg3zEbRGFtPU7 CSfwbJhivDXDfoDn11j0alfyQUOQmYOyZhqaai+fXbP9OARH5wma3w7TLfgZnk6P 8eTrrk37/Sy/VigoxU+7rccK8V7NqLUymPGmhsmlsrfVz2y5x956BP8YQ9AV9ehq SsmdGtXQufLjQM3vzZeHGHZYOsg6Yfz30m4BbIEZ4I+aV2L0DZdTwJibFKYpTMHu D8U6JvwsUKkQGQjk1Y4Y6FipwhzfyJvF6DGWq8NMQ5w960zshL8EEM3XlvZMOS71 mpt24pvGFe7SPn8pukpdZxZHGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0Q9Q+A Af3ZnRZ+v32UNiuw+GPGMB8GA1UdIwQYMBaAFM6MrTViGpASxAs2N1N8pA49B+jP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUYwOC8zMDkwRDkxNEEx NEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtCTEVDelkzVTN5a0RqMEg2 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pveXROV0lha0JMRUN6WTNVM3lrRGowSDZNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUYwOC8zMDkwRDkxNEExNEMxMUU5ODQ3NUE4MkRDNEY5QUUwMi96b3l0TldJYWtC TEVDelkzVTN5a0RqMEg2TTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAamlk6D/Lww5p2+6i2aEIf+kq8LDZT5b6VAwStfOqaeLf+95hIHAwd uiz8kvRn/8H2tglQYhXmuGlDjjGYK/o9j3+41mB49yvv4YEe/RNYu9ghyrQOtnLw bQW2AePa+L9pdeIAxXmTxXxf6JUDhMQtyUNpZyczGFmVGms7xfoA54zSYGZJAiZ0 B78Orsxn+NoSjSiVh4dFkt4S3mk9QfqrmkeOZIEQp++FQwqYNfaxil+24Le2c2d3 4MTqqXr6EAR42rYEuHUIBu6HkyTLmZrA/xAd67EKo/dDY8oa2EiBUgJ8ToQ4/5Eo NhnLZAQWGuXjZK7UtjvoJhdeOb1JyIQ8 -----END CERTIFICATE-----Generated at Sat Dec 6 19:54:52 2025 by rpki-client