This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft File: Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft (raw, json) Hash identifier: /l8l9wYFm3iMOFux4Thj0Pi852jOBVIYsGVCNY64pN8= Subject key identifier: 5C:AC:10:97:A0:A0:37:32:AA:CA:96:22:18:C6:72:4F:05:5A:B5:FF Authority key identifier: 67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA Certificate issuer: /CN=A91BEC31/serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft Manifest number: 9D Signing time: Fri 05 Dec 2025 04:20:20 +0000 Manifest this update: Fri 05 Dec 2025 04:20:19 +0000 Manifest next update: Fri 12 Dec 2025 04:20:19 +0000 Files and hashes: 1: Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl (hash: Qcib1Qh+AH0+NvC9wTC4dPinCGXFibVN4s6mVS68AIg=) 2: F8B0BFEEE4A411EF8C2D0460C4F9AE02.roa (hash: HEKgeQjMhMYDkC2JrcKXdt5Voc5+W7Do5jSGbSkekDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEC31, serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Validity Not Before: Dec 5 04:20:19 2025 GMT Not After : Dec 12 04:20:19 2025 GMT Subject: CN=69325d84-b8c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:87:cf:df:bd:11:41:26:a9:57:1a:98:04:4a: d0:66:87:1e:3e:f5:86:d1:83:56:b7:b1:0b:62:b8: b5:fa:ef:3f:bb:5f:a1:ef:a0:e5:4b:b3:f5:90:69: 36:bc:93:f4:bb:76:67:f6:50:5e:bc:d4:f7:83:ae: e5:9c:6e:58:47:13:da:88:e8:03:56:8f:7a:6c:65: f6:cc:eb:85:61:7d:b0:bf:45:8b:c5:4b:1b:cd:9c: 8c:6d:53:a3:8f:27:dc:57:db:fa:dd:4f:cf:88:a6: 42:49:fb:a6:f5:b2:f8:27:19:9b:fe:66:bd:e3:7a: d5:f2:5a:7e:b8:61:6b:b6:f7:10:5b:95:0b:2d:88: ae:08:7f:83:67:75:3c:fb:d2:7d:16:61:25:91:62: c0:ea:3b:f5:f9:6e:fa:07:6b:69:dc:5f:7e:6e:cd: c8:75:3e:61:89:65:86:fa:d9:ed:f3:e0:ef:fd:97: 07:d2:34:75:af:ed:9b:e0:a6:1a:1a:ed:b8:60:e4: 54:04:b1:37:3d:bb:8f:32:bf:eb:31:49:5b:8e:b6: 64:f2:16:80:71:25:7c:c3:1f:4c:bf:15:bb:5f:4f: 49:35:2c:08:15:b7:41:cf:d6:54:95:3a:99:38:d2: 15:fc:79:2a:f0:a2:88:b9:d5:ae:57:e2:1a:0b:80: 75:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AC:10:97:A0:A0:37:32:AA:CA:96:22:18:C6:72:4F:05:5A:B5:FF X509v3 Authority Key Identifier: keyid:67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:75:f8:a3:e0:28:c0:60:a9:97:f4:a0:d6:a6:06:27:88:52: 5c:74:42:04:69:20:35:aa:9f:b5:0e:70:41:25:79:14:a9:d7: ea:3d:a3:a0:f1:71:9d:db:01:7f:58:b2:ed:56:57:df:26:9e: e1:1e:a0:8b:f0:92:80:39:61:70:e0:1b:5f:9d:3e:a6:d2:7c: 99:1e:49:57:9c:3f:2f:60:a0:62:98:62:c5:ef:eb:c9:b1:b8: 9d:1d:ad:92:d6:38:39:63:cc:84:2c:2f:ad:4a:57:86:9d:f4: 61:a2:d2:62:90:e3:2e:05:a0:50:72:92:e4:7f:1a:5f:c7:85: 25:cb:32:f5:b3:99:6e:73:1e:f8:16:5b:81:c6:12:66:14:8b: 22:d1:7d:8a:22:ed:20:29:45:2c:4d:1d:93:92:9b:8c:2a:16: 81:64:0f:e6:8c:9a:8e:e9:dd:4a:6b:73:53:20:c9:d3:5f:cd: 32:95:a8:ec:85:64:21:eb:f9:c6:09:7c:82:d3:51:d5:9f:10: 81:fc:6f:93:2b:2c:15:5c:80:a2:40:ea:3f:98:45:59:d7:24: d8:9a:f0:cc:e5:f5:0e:f6:0c:e4:df:bb:43:9f:0c:de:4a:15: 3e:fd:ab:da:02:5f:ce:4e:e8:ad:5d:1e:06:2b:2a:9b:3d:1a: c3:60:82:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVDMzExMTAvBgNVBAUTKDY3RDc5QzNCMTExNkQzNkZCOUUxNzFENjY1OEY4RjQz QjUzQzcyRkEwHhcNMjUxMjA1MDQyMDE5WhcNMjUxMjEyMDQyMDE5WjAYMRYwFAYD VQQDEw02OTMyNWQ4NC1iOGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54fP370RQSapVxqYBErQZocePvWG0YNWt7ELYri1+u8/u1+h76DlS7P1kGk2 vJP0u3Zn9lBevNT3g67lnG5YRxPaiOgDVo96bGX2zOuFYX2wv0WLxUsbzZyMbVOj jyfcV9v63U/PiKZCSfum9bL4Jxmb/ma943rV8lp+uGFrtvcQW5ULLYiuCH+DZ3U8 +9J9FmElkWLA6jv1+W76B2tp3F9+bs3IdT5hiWWG+tnt8+Dv/ZcH0jR1r+2b4KYa Gu24YORUBLE3PbuPMr/rMUlbjrZk8haAcSV8wx9MvxW7X09JNSwIFbdBz9ZUlTqZ ONIV/Hkq8KKIudWuV+IaC4B1TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFysEJeg oDcyqsqWIhjGck8FWrX/MB8GA1UdIwQYMBaAFGfXnDsRFtNvueFx1mWPj0O1PHL6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUMzMS8zQ0Y1MzYyMkU0 QTQxMUVGQjI3NkYyNURDNEY5QUUwMi9aOWVjT3hFVzAyLTU0WEhXWlktUFE3VThj dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o5ZWNPeEVXMDItNTRYSFdaWS1QUTdVOGN2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUMzMS8zQ0Y1MzYyMkU0QTQxMUVGQjI3NkYyNURDNEY5QUUwMi9aOWVjT3hFVzAy LTU0WEhXWlktUFE3VThjdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFdfij4CjAYKmX9KDWpgYniFJcdEIEaSA1qp+1DnBBJXkUqdfqPaOg 8XGd2wF/WLLtVlffJp7hHqCL8JKAOWFw4BtfnT6m0nyZHklXnD8vYKBimGLF7+vJ sbidHa2S1jg5Y8yELC+tSleGnfRhotJikOMuBaBQcpLkfxpfx4UlyzL1s5lucx74 FluBxhJmFIsi0X2KIu0gKUUsTR2TkpuMKhaBZA/mjJqO6d1Ka3NTIMnTX80ylajs hWQh6/nGCXyC01HVnxCB/G+TKywVXICiQOo/mEVZ1yTYmvDM5fUO9gzk37tDnwze ShU+/avaAl/OTuitXR4GKyqbPRrDYILc -----END CERTIFICATE-----Generated at Sat Dec 6 12:20:35 2025 by rpki-client