This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft File: zIQ-FAouPvvguUneDtgDg5BgVB0.mft (raw, json) Hash identifier: oryP0vaQlGLUgzKWli56sjRLcdwxcAnOOi71kCePYK0= Subject key identifier: 08:A0:9C:23:52:C5:AE:2A:C6:39:8A:CA:2C:BA:6D:3F:0C:7A:7F:C5 Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 310E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft Manifest number: 30F5 Signing time: Sat 06 Dec 2025 15:15:01 +0000 Manifest this update: Sat 06 Dec 2025 15:15:00 +0000 Manifest next update: Sat 13 Dec 2025 15:15:00 +0000 Files and hashes: 1: zIQ-FAouPvvguUneDtgDg5BgVB0.crl (hash: fYD77bL2tucdkIFoxr4fpxMBHSlpL2FwCZmxEelC4sg=) 2: C3F53A0654F011E7BE4A6431C4F9AE02.roa (hash: 54WI7bxOwof+H1Cz8+uPiLZ+tzpprbk2GuCnR0w5MUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12558 (0x310e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37, serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: Dec 6 15:15:00 2025 GMT Not After : Dec 13 15:15:00 2025 GMT Subject: CN=69344875-0f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:85:cb:78:73:d1:51:eb:cd:65:b1:b7:82: 13:89:3e:66:87:14:62:65:62:77:7f:a7:86:a0:7a: 56:90:f3:e7:11:4a:87:cc:52:66:5d:84:c2:5d:e8: da:04:63:fc:44:9b:c0:1d:35:d7:82:78:2b:2f:39: e7:0c:62:5c:bb:d2:7f:01:9e:0c:29:a7:fd:70:dd: 06:81:b0:7a:43:48:55:20:b6:d6:12:41:38:db:2f: a9:52:db:c9:99:2b:62:7c:e3:c0:43:3d:f4:62:a4: 65:b5:5e:f5:fd:7e:8e:0d:1d:0e:a7:72:cd:a2:76: a7:12:f3:53:3d:3e:a2:9f:e0:30:08:0f:4c:db:8c: ed:ab:22:15:c1:04:61:db:c1:d5:6d:a0:88:82:23: e6:d1:0b:e1:84:a3:8e:df:82:f3:d0:a7:5b:5a:3b: 2e:2c:db:11:07:77:37:a9:25:b8:48:7f:8b:1f:af: d4:60:76:92:0e:8b:9f:38:f6:1f:03:77:9c:67:a9: 1e:09:f9:61:e1:bf:79:a7:4b:5a:82:2f:d5:ff:17: a4:f9:4c:ef:bf:40:30:5c:c6:31:99:6f:2a:4c:01: eb:9f:75:b5:27:e4:d4:18:43:24:39:4d:0a:ce:be: 2f:0d:d4:6c:c7:ed:70:75:cb:e1:7d:a0:65:1c:98: f8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A0:9C:23:52:C5:AE:2A:C6:39:8A:CA:2C:BA:6D:3F:0C:7A:7F:C5 X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e2:15:63:52:0e:5f:81:09:d8:b4:6b:9c:c1:42:e6:be:09: e5:83:25:65:20:f8:ce:3d:24:d3:6e:bf:bf:aa:c3:9e:78:29: d5:22:6b:a7:6b:f4:43:58:62:b0:9f:77:7f:ce:ab:a3:80:be: b5:e7:7e:0e:3e:51:55:7e:d5:e9:74:de:b5:d7:22:1d:22:ea: 52:cc:ef:f0:3e:03:e0:56:a7:08:85:d1:84:22:3c:38:01:d8: 1b:eb:56:ef:fc:b1:98:01:9f:7c:aa:0b:f3:bd:3e:77:e8:fb: 9d:d0:52:e4:9d:80:65:d9:6d:e8:c4:ff:a5:66:3f:4a:8a:56: ed:d4:67:92:5e:9e:63:f5:23:02:1f:a9:14:be:03:88:c4:2d: 9b:05:d2:ae:6b:25:40:c3:51:23:b4:34:be:8b:d5:ee:1c:56: 4a:5e:86:d2:d1:e6:35:35:b9:bd:b9:cb:9b:07:1a:14:59:29: 22:8a:f6:57:25:e9:5b:d8:31:fc:cd:f6:a0:39:05:98:8b:da: a3:df:4b:3d:07:2b:20:e6:01:d7:d9:93:08:5a:e7:da:0a:0c: 72:5c:6a:57:fe:98:ab:be:d0:36:a5:21:49:a0:56:df:6b:b6: 20:ab:62:97:6f:86:81:08:fb:3d:71:6a:fb:7a:5a:92:50:8e: f0:9d:43:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjUxMjA2MTUxNTAwWhcNMjUxMjEzMTUxNTAwWjAYMRYwFAYD VQQDEw02OTM0NDg3NS0wZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU2Fy3hz0VHrzWWxt4ITiT5mhxRiZWJ3f6eGoHpWkPPnEUqHzFJmXYTCXeja BGP8RJvAHTXXgngrLznnDGJcu9J/AZ4MKaf9cN0GgbB6Q0hVILbWEkE42y+pUtvJ mStifOPAQz30YqRltV71/X6ODR0Op3LNonanEvNTPT6in+AwCA9M24ztqyIVwQRh 28HVbaCIgiPm0QvhhKOO34Lz0KdbWjsuLNsRB3c3qSW4SH+LH6/UYHaSDoufOPYf A3ecZ6keCflh4b95p0tagi/V/xek+Uzvv0AwXMYxmW8qTAHrn3W1J+TUGEMkOU0K zr4vDdRsx+1wdcvhfaBlHJj4rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAignCNS xa4qxjmKyiy6bT8Men/FMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUEzNy82ODY4RTAyOEU3RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2 dmd1VW5lRHRnRGc1QmdWQjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL4hVjUg5fgQnYtGucwULmvgnlgyVlIPjOPSTTbr+/qsOeeCnVImun a/RDWGKwn3d/zqujgL61534OPlFVftXpdN611yIdIupSzO/wPgPgVqcIhdGEIjw4 Adgb61bv/LGYAZ98qgvzvT536Pud0FLknYBl2W3oxP+lZj9Kilbt1GeSXp5j9SMC H6kUvgOIxC2bBdKuayVAw1EjtDS+i9XuHFZKXobS0eY1Nbm9ucubBxoUWSkiivZX Jelb2DH8zfagOQWYi9qj30s9Bysg5gHX2ZMIWufaCgxyXGpX/pirvtA2pSFJoFbf a7Ygq2KXb4aBCPs9cWr7elqSUI7wnUPY -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:52 2025 by rpki-client