This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: yhFSuweFgqspiKzlzo+B0tAVy60/56oi5ewqqIIyL9s= Subject key identifier: 7B:93:63:64:9A:C2:74:0F:6E:53:3A:A4:2B:FF:05:20:AD:CB:1A:23 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 72 Signing time: Fri 05 Dec 2025 04:45:28 +0000 Manifest this update: Fri 05 Dec 2025 04:45:27 +0000 Manifest next update: Fri 12 Dec 2025 04:45:27 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: 8bh0O5h8pNaxL9UpLgbZaqZdkj4ERZ0w9O5sTXWKutY=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Dec 5 04:45:27 2025 GMT Not After : Dec 12 04:45:27 2025 GMT Subject: CN=69326368-9435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:45:99:27:da:63:a0:5a:be:55:b7:66:64:db: ea:80:c9:da:3a:d5:72:66:1f:bc:fe:d3:5f:77:aa: 48:1b:29:b1:09:b7:0e:0f:4e:2c:3c:34:c2:41:5a: 2f:14:8b:b4:2c:ba:0a:6a:49:5f:fa:7c:cf:63:f5: 52:dd:38:8d:c3:b6:9c:ae:2a:fe:5d:2d:19:95:38: c3:82:19:56:0a:86:69:91:70:3f:e4:6e:0b:f6:5a: 35:cb:ba:25:2f:95:dd:13:61:20:ec:02:e3:f0:1c: 38:9a:e3:3b:4b:63:b5:07:2a:90:f5:0c:f6:c5:a9: 79:b1:b0:51:8c:11:65:70:01:a1:97:b0:b0:e9:34: cb:3c:68:a7:b7:21:5e:ac:0e:21:30:07:6d:db:f4: aa:63:11:d3:25:74:16:51:e1:e0:e5:e4:13:f9:12: d9:2f:db:81:67:29:64:b8:1d:93:ee:c6:b1:75:72: e4:11:b5:e7:3a:01:51:e6:a3:f0:c0:1f:f3:51:35: 72:92:26:28:76:36:61:89:5c:8c:1e:61:68:bd:08: ce:0a:97:60:18:f0:df:29:ba:01:8c:5c:6d:12:9e: d7:03:1d:ee:7a:55:97:fb:75:e9:b0:50:82:9e:ba: dd:55:ec:87:a2:04:fe:bf:b6:f5:77:52:39:40:9c: 71:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:93:63:64:9A:C2:74:0F:6E:53:3A:A4:2B:FF:05:20:AD:CB:1A:23 X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:28:8a:9f:f4:18:33:a8:3c:ac:56:b5:85:04:6f:92:6f:dc: c7:a9:33:3a:70:05:05:38:6a:62:54:14:db:b8:30:5b:e3:13: 4d:f6:a9:c9:c2:da:ba:56:e2:4c:4b:68:9d:af:d5:01:d9:0d: ee:91:e0:75:0c:b5:29:74:a6:90:c8:82:4b:d5:9d:5a:4b:f5: 09:81:1a:21:f0:73:92:75:ad:7e:00:ce:d5:62:fc:61:27:8a: d4:7c:98:4c:da:b4:41:ce:59:b4:21:19:8f:65:d3:b7:1c:42: e2:f7:d6:2b:1a:a2:aa:f2:9d:3f:ec:f4:a6:ff:0c:18:2e:6c: bf:1a:94:8d:e3:34:5d:2f:57:99:9d:6e:ce:23:f3:3d:b2:18: 50:7f:b5:f9:2f:7d:a1:c5:78:7d:0a:d8:cc:63:9a:f0:3f:de: d1:74:03:51:8e:cc:40:de:af:b6:e8:ce:67:6f:d2:f0:40:ad: f5:45:fb:7f:dc:77:31:a1:2c:a2:3e:4c:41:bb:99:68:21:a4: a8:e7:a2:cf:62:d6:0e:84:70:24:b8:13:4b:95:de:87:4f:6f: 46:60:af:ba:d8:ff:f4:40:c4:5e:3f:22:33:af:bb:6a:56:0b: 32:a9:ac:f0:01:f8:22:45:46:33:79:c0:2e:ea:68:4b:86:24: 80:fa:8d:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTEyMDUwNDQ1MjdaFw0yNTEyMTIwNDQ1MjdaMBgxFjAUBgNV BAMTDTY5MzI2MzY4LTk0MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIRZkn2mOgWr5Vt2Zk2+qAydo61XJmH7z+0193qkgbKbEJtw4PTiw8NMJBWi8U i7QsugpqSV/6fM9j9VLdOI3DtpyuKv5dLRmVOMOCGVYKhmmRcD/kbgv2WjXLuiUv ld0TYSDsAuPwHDia4ztLY7UHKpD1DPbFqXmxsFGMEWVwAaGXsLDpNMs8aKe3IV6s DiEwB23b9KpjEdMldBZR4eDl5BP5Etkv24FnKWS4HZPuxrF1cuQRtec6AVHmo/DA H/NRNXKSJih2NmGJXIweYWi9CM4Kl2AY8N8pugGMXG0SntcDHe56VZf7demwUIKe ut1V7IeiBP6/tvV3UjlAnHE1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe5NjZJrC dA9uUzqkK/8FIK3LGiMwHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJUoip/0GDOoPKxWtYUEb5Jv3MepMzpwBQU4amJUFNu4MFvjE032qcnC 2rpW4kxLaJ2v1QHZDe6R4HUMtSl0ppDIgkvVnVpL9QmBGiHwc5J1rX4AztVi/GEn itR8mEzatEHOWbQhGY9l07ccQuL31isaoqrynT/s9Kb/DBgubL8alI3jNF0vV5md bs4j8z2yGFB/tfkvfaHFeH0K2MxjmvA/3tF0A1GOzEDer7bozmdv0vBArfVF+3/c dzGhLKI+TEG7mWghpKjnos9i1g6EcCS4E0uV3odPb0Zgr7rY//RAxF4/IjOvu2pW CzKprPAB+CJFRjN5wC7qaEuGJID6jTY= -----END CERTIFICATE-----Generated at Sat Dec 6 14:21:27 2025 by rpki-client