This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft File: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft (raw, json) Hash identifier: dUjGn2kJ32lCFnSxLzCoYrdxv3XHtgFV4+vQfDuUlKM= Subject key identifier: C2:FF:A6:FD:64:1A:11:3A:D7:74:A5:B9:A7:46:76:20:C0:3E:DF:92 Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft Manifest number: 8D Signing time: Fri 05 Dec 2025 04:33:11 +0000 Manifest this update: Fri 05 Dec 2025 04:33:11 +0000 Manifest next update: Fri 12 Dec 2025 04:33:11 +0000 Files and hashes: 1: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl (hash: Xy4EOuhNXGqqO/fsPQEInmt7MI6Ou6Vqr8o2Sho03Jw=) 2: 992A7358004211F0AC90656CC4F9AE02.roa (hash: 6uK19EDHQqPyaVVXXtHQJXfGGnOJLngyIEFvwQHYfKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Validity Not Before: Dec 5 04:33:11 2025 GMT Not After : Dec 12 04:33:11 2025 GMT Subject: CN=69326087-fa45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d2:df:ec:2b:6b:f0:7f:68:20:4a:3c:02:96: 62:d9:49:94:86:e7:06:e1:ee:56:e4:1e:03:38:e6: c0:20:ef:bb:98:f4:d7:99:b0:e0:ad:4d:b5:32:4e: 1f:c8:a5:2d:dc:14:27:ae:a1:3e:53:b3:e9:a9:d3: 7f:b8:5c:3e:47:72:26:a0:b6:eb:e6:a1:08:9a:f5: 45:1e:e5:01:4d:ec:1c:6d:35:8c:d2:d2:bc:3f:8e: 41:9b:53:55:2f:2c:e5:82:65:24:ba:7d:d1:b5:d6: 70:3b:0c:ca:6d:b5:09:f9:9f:28:f9:6f:7a:3d:29: 42:66:60:23:a5:d6:aa:61:db:7c:e5:ae:49:38:f8: bb:41:42:c8:94:37:8f:3f:4a:e0:ff:26:17:84:1a: 7b:2b:cb:42:4b:2f:76:51:82:1e:f1:11:fc:4a:06: 93:5c:19:81:1e:6f:df:6f:81:e8:c1:26:5e:81:e5: a6:e7:9d:36:a4:4e:ad:8a:9d:f2:0a:85:b2:7a:d7: 39:6f:b8:91:db:03:f5:0e:41:3e:9d:ed:89:03:b0: d8:a6:1e:92:66:cf:65:92:a6:83:3c:b8:02:99:74: 75:9a:36:77:dc:f4:7f:5e:e3:aa:6a:b3:79:69:b3: 7e:df:14:5f:d6:a3:2c:60:9c:0c:ea:60:b1:3f:02: 55:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FF:A6:FD:64:1A:11:3A:D7:74:A5:B9:A7:46:76:20:C0:3E:DF:92 X509v3 Authority Key Identifier: keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:61:a5:1d:b6:ea:32:f3:30:d0:68:fa:46:0d:47:79:f9:f5: aa:66:71:2f:e2:4b:45:f3:d4:f7:61:e7:44:86:04:79:c2:fc: ad:e3:65:22:8e:8b:b3:8a:28:0a:ad:a6:ac:dd:df:cc:1c:d4: a5:40:66:f5:da:7c:e3:a1:36:9f:f2:ce:3f:80:14:f9:bb:cc: 29:0b:29:a9:3e:c9:00:ff:0d:7d:e7:79:26:c4:e9:bf:b5:3a: 04:5c:f9:ec:75:3d:e8:3a:fd:4b:ad:eb:20:39:10:db:0d:4c: 3b:97:e9:7d:ff:0d:ac:ab:c8:6c:84:a3:dd:12:b2:e5:97:a1: 95:74:6f:30:fc:91:59:f8:8e:61:08:b0:54:71:96:54:a9:50: d7:e6:30:06:b8:a9:99:db:a1:65:77:e1:e5:72:e8:41:f7:85: 64:bf:77:a5:31:94:38:db:87:2c:42:8b:42:d2:97:fd:8e:67: cb:7f:cf:64:18:0d:76:d1:25:c2:f5:c4:b4:3e:85:e1:b1:1f: a2:29:9c:5c:10:28:4f:ec:c9:84:58:2d:b6:31:51:a3:c9:51: 77:58:c1:69:a6:5e:cb:1c:ed:92:3a:60:e6:74:2f:bc:5b:38: 08:ce:72:b6:85:61:6a:fe:5d:75:16:6d:d6:e5:59:d2:ff:27: ca:c9:8c:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDY2NEU1OUEwMDBCOTFFNzJGODAzRTZEODY4NDExNTRD ODA1NkI4OEEwHhcNMjUxMjA1MDQzMzExWhcNMjUxMjEyMDQzMzExWjAYMRYwFAYD VQQDEw02OTMyNjA4Ny1mYTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtLf7Ctr8H9oIEo8ApZi2UmUhucG4e5W5B4DOObAIO+7mPTXmbDgrU21Mk4f yKUt3BQnrqE+U7PpqdN/uFw+R3ImoLbr5qEImvVFHuUBTewcbTWM0tK8P45Bm1NV LyzlgmUkun3RtdZwOwzKbbUJ+Z8o+W96PSlCZmAjpdaqYdt85a5JOPi7QULIlDeP P0rg/yYXhBp7K8tCSy92UYIe8RH8SgaTXBmBHm/fb4HowSZegeWm5502pE6tip3y CoWyetc5b7iR2wP1DkE+ne2JA7DYph6SZs9lkqaDPLgCmXR1mjZ33PR/XuOqarN5 abN+3xRf1qMsYJwM6mCxPwJVSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFML/pv1k GhE613SluadGdiDAPt+SMB8GA1UdIwQYMBaAFGZOWaAAuR5y+APm2GhBFUyAVriK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9FQ0IwMEI0MjAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9aazVab0FDNUhuTDRBLWJZYUVFVlRJQld1 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1prNVpvQUM1SG5MNEEtYllhRUVWVElCV3VJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9FQ0IwMEI0MjAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9aazVab0FDNUhu TDRBLWJZYUVFVlRJQld1SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTYaUdtuoy8zDQaPpGDUd5+fWqZnEv4ktF89T3YedEhgR5wvyt42Ui jouziigKraas3d/MHNSlQGb12nzjoTaf8s4/gBT5u8wpCympPskA/w1953kmxOm/ tToEXPnsdT3oOv1LresgORDbDUw7l+l9/w2sq8hshKPdErLll6GVdG8w/JFZ+I5h CLBUcZZUqVDX5jAGuKmZ26Fld+HlcuhB94Vkv3elMZQ424csQotC0pf9jmfLf89k GA120SXC9cS0PoXhsR+iKZxcEChP7MmEWC22MVGjyVF3WMFppl7LHO2SOmDmdC+8 WzgIznK2hWFq/l11Fm3W5VnS/yfKyYxp -----END CERTIFICATE-----Generated at Sat Dec 6 16:10:46 2025 by rpki-client