This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: 9OoVHzUHOWmtosqn06cS1BXWwzi+9AGKj2PpJSblQEw= Subject key identifier: 83:32:C0:D8:8F:DD:AD:0E:F2:7B:FD:26:82:9B:7D:AD:14:89:BF:52 Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 1394 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1B0C Signing time: Sat 06 Dec 2025 16:31:16 +0000 Manifest this update: Sat 06 Dec 2025 16:31:16 +0000 Manifest next update: Sat 13 Dec 2025 16:31:16 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: DYes1VIMsN9zFrUxRFqgwRiuxfUAdvMkDXMwWeTtuV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5012 (0x1394) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Dec 6 16:31:16 2025 GMT Not After : Dec 13 16:31:16 2025 GMT Subject: CN=69345a54-7e72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:17:f8:9d:c6:6b:cc:da:5d:c3:56:f2:2c:76: c4:d2:77:c1:d7:d6:bb:63:a1:25:08:6a:80:2c:03: 56:e3:82:b2:76:0b:b8:70:27:b0:fb:da:57:e3:e4: 55:bd:6a:86:72:0e:88:4c:9f:87:7b:b0:c0:fb:0f: 5d:b1:90:82:52:11:ba:4b:8e:3c:2d:bd:fe:0b:8c: 1a:72:95:e3:dd:2e:08:e3:ec:5a:a5:c1:6a:44:e5: 73:da:cf:22:ed:de:e6:05:52:2d:d3:a0:1a:16:d2: 0e:45:08:55:fc:00:4a:45:0c:54:40:10:c4:a8:10: 3a:56:5d:07:01:a7:e2:50:f7:89:d5:d1:b0:1f:0d: d4:71:f2:f3:00:39:9e:77:8b:7b:33:c2:2d:34:4e: 8c:d2:14:08:d8:ea:ae:d5:8d:c2:c1:c7:04:2e:ed: 61:36:1e:29:30:64:65:61:e8:7f:35:b5:db:a5:ac: 5b:56:bd:c1:bf:73:0b:8f:6b:80:7c:bf:27:ea:7f: 3d:72:af:b1:a6:62:5c:4c:07:3a:0e:75:05:c5:85: 85:b0:9c:0c:b4:28:b0:8a:9d:ef:7b:93:93:5f:0f: ad:41:8d:8f:12:f1:6f:89:68:35:3a:47:87:fc:57: bc:9d:58:f2:e5:50:70:44:46:88:c6:f1:1d:68:69: 23:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:32:C0:D8:8F:DD:AD:0E:F2:7B:FD:26:82:9B:7D:AD:14:89:BF:52 X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:1c:fd:fd:ff:91:9b:39:9c:b0:1c:1a:2f:da:5d:44:85:ed: ad:2a:5a:35:a8:f4:cf:b0:1c:fe:5f:78:f9:a4:a4:dc:1c:94: b9:9e:1c:5f:76:a7:f9:fd:56:f7:0a:f6:7b:69:fb:0c:df:70: 2d:c0:a4:8d:93:80:84:9b:1a:6a:64:d3:9d:cd:7e:34:ff:48: 00:d6:30:2c:1b:8f:71:13:9b:9e:a0:b4:b7:b3:c8:13:e2:6c: 38:4f:dd:e2:90:9f:09:7e:54:cd:43:e1:c0:60:4c:12:72:76: 97:45:74:d6:4e:9d:37:85:ad:6f:2b:ad:12:c2:c9:ec:65:23: b8:fa:72:c1:83:ae:2d:85:ca:13:80:6c:e0:1d:db:e4:34:72: ad:40:24:c2:f1:87:b2:49:e6:db:ed:9a:34:8b:68:c7:5d:d5: 8b:a4:d6:9c:4d:a8:07:91:57:3e:73:cd:e1:42:bd:dd:69:02: ea:b1:e5:23:95:c2:1a:2b:bc:01:64:6d:cf:ff:0f:ae:16:89: 6b:53:eb:50:c9:c7:39:1f:45:6c:68:ce:6d:03:1e:99:b8:45: 09:78:b1:d4:10:76:58:9d:e2:ba:0e:97:9f:9d:14:97:79:b8: da:87:3e:32:97:0e:00:ef:69:3c:68:19:c5:e2:ce:72:ed:5e: ed:3a:0b:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjUxMjA2MTYzMTE2WhcNMjUxMjEzMTYzMTE2WjAYMRYwFAYD VQQDEw02OTM0NWE1NC03ZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBf4ncZrzNpdw1byLHbE0nfB19a7Y6ElCGqALANW44Kydgu4cCew+9pX4+RV vWqGcg6ITJ+He7DA+w9dsZCCUhG6S448Lb3+C4wacpXj3S4I4+xapcFqROVz2s8i 7d7mBVIt06AaFtIORQhV/ABKRQxUQBDEqBA6Vl0HAafiUPeJ1dGwHw3UcfLzADme d4t7M8ItNE6M0hQI2Oqu1Y3CwccELu1hNh4pMGRlYeh/NbXbpaxbVr3Bv3MLj2uA fL8n6n89cq+xpmJcTAc6DnUFxYWFsJwMtCiwip3ve5OTXw+tQY2PEvFviWg1OkeH /Fe8nVjy5VBwREaIxvEdaGkjSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMywNiP 3a0O8nv9JoKbfa0Uib9SMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiHP39/5GbOZywHBov2l1Ehe2tKlo1qPTPsBz+X3j5pKTcHJS5nhxf dqf5/Vb3CvZ7afsM33AtwKSNk4CEmxpqZNOdzX40/0gA1jAsG49xE5ueoLS3s8gT 4mw4T93ikJ8JflTNQ+HAYEwScnaXRXTWTp03ha1vK60SwsnsZSO4+nLBg64thcoT gGzgHdvkNHKtQCTC8YeySebb7Zo0i2jHXdWLpNacTagHkVc+c83hQr3daQLqseUj lcIaK7wBZG3P/w+uFolrU+tQycc5H0VsaM5tAx6ZuEUJeLHUEHZYneK6DpefnRSX ebjahz4ylw4A72k8aBnF4s5y7V7tOgt6 -----END CERTIFICATE-----Generated at Sat Dec 6 17:46:39 2025 by rpki-client