This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: irJsOtFRT3w6uK//J9NhnoYQmEOzFvJ3yiYyqNGa3go= Subject key identifier: A7:1E:AE:74:CE:7E:8F:11:F7:19:A9:24:84:FF:40:6B:E2:EE:DF:BD Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 0165 Signing time: Sat 06 Dec 2025 14:46:48 +0000 Manifest this update: Sat 06 Dec 2025 14:46:47 +0000 Manifest next update: Sat 13 Dec 2025 14:46:47 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: xsw1C4QVoI+QfnuV7fvUy41/S7cfYb7ECAD5jc+L0eI=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Dec 6 14:46:47 2025 GMT Not After : Dec 13 14:46:47 2025 GMT Subject: CN=693441d7-396c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e9:c2:92:ba:c6:fb:29:25:0c:28:1d:b7:8d: d5:3a:d2:f6:f0:34:82:a8:74:1a:7a:b7:43:bd:42: fe:ac:5f:54:d4:93:aa:8b:c5:e6:f7:31:be:85:d4: 72:b6:fd:e2:de:d0:1b:e2:e3:68:f8:cb:4a:6f:17: fe:f6:08:10:bb:dc:94:b1:3d:f7:ad:ea:65:7a:f1: 4b:ce:b6:bc:51:7c:f9:20:21:85:3f:db:01:e1:da: 71:d2:54:07:82:53:e5:b4:cb:83:ce:03:b6:a1:f0: a4:9d:c1:4b:ed:85:5b:10:3e:00:db:d4:60:a5:d0: 2c:5c:0a:30:b1:a6:f9:23:bb:41:8d:b0:7f:2c:d5: 84:9f:02:03:88:aa:50:6c:c2:93:29:74:72:38:f9: e3:87:85:16:0c:3c:ac:cc:61:ed:57:e1:00:bd:b6: 6b:9d:63:82:6c:69:fa:a6:cd:fe:6c:44:c5:ab:36: 66:81:98:f1:fd:4e:26:46:48:e2:95:03:25:8d:c6: 1b:b5:58:00:4d:50:9e:08:3e:03:a2:f4:33:a6:ec: ce:01:49:03:10:70:7d:f4:f6:f4:9b:24:c1:f7:ff: 25:5e:c7:0c:0a:bb:89:15:55:54:17:5a:13:13:1c: ae:2d:bc:5b:e7:9c:aa:c4:78:c3:d5:8f:59:aa:ed: 98:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:1E:AE:74:CE:7E:8F:11:F7:19:A9:24:84:FF:40:6B:E2:EE:DF:BD X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:91:a8:e4:74:bb:32:9f:fe:f3:5a:34:d8:3f:b1:da:3f:7e: 43:15:33:31:ab:06:e1:e7:49:49:10:c4:3f:44:9f:84:b4:80: be:74:88:88:36:f8:e9:2e:ce:d5:85:5f:8d:1b:bc:7b:99:f4: 5e:d7:b9:1c:65:e6:2b:a5:35:6c:b9:26:21:6b:40:65:89:b6: f8:87:70:e8:53:92:d1:2c:51:d2:3d:c1:54:5e:c4:d6:86:c2: 57:64:6c:54:67:aa:40:c0:8b:8f:ed:53:04:aa:63:b2:b2:0e: 9f:23:d2:41:1c:90:97:93:28:0a:2d:f7:db:e7:85:48:44:0d: e7:62:ba:f1:f9:17:b9:81:86:1e:6f:77:54:b4:11:cc:f4:b7: 60:b5:79:7a:8f:a6:5f:07:9a:37:73:2c:0e:5b:10:67:3d:cc: 23:03:66:b9:df:d3:31:0e:0d:b8:09:06:f1:10:ce:66:fa:57: 99:cd:3a:0f:4e:4e:ec:a9:3b:a2:08:57:4d:d3:ce:5f:71:f5: 13:df:a9:82:63:df:02:8b:07:d7:d3:97:f9:7c:8b:21:ce:21: ea:2f:1f:3f:60:34:6b:7c:ab:7a:c0:cf:20:ce:9e:5a:fa:aa: 19:2e:bf:20:35:b4:68:f7:ed:3f:9c:4d:aa:f4:90:40:bb:41: ae:fc:ed:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUxMjA2MTQ0NjQ3WhcNMjUxMjEzMTQ0NjQ3WjAYMRYwFAYD VQQDEw02OTM0NDFkNy0zOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuenCkrrG+yklDCgdt43VOtL28DSCqHQaerdDvUL+rF9U1JOqi8Xm9zG+hdRy tv3i3tAb4uNo+MtKbxf+9ggQu9yUsT33replevFLzra8UXz5ICGFP9sB4dpx0lQH glPltMuDzgO2ofCkncFL7YVbED4A29RgpdAsXAowsab5I7tBjbB/LNWEnwIDiKpQ bMKTKXRyOPnjh4UWDDyszGHtV+EAvbZrnWOCbGn6ps3+bETFqzZmgZjx/U4mRkji lQMljcYbtVgATVCeCD4DovQzpuzOAUkDEHB99Pb0myTB9/8lXscMCruJFVVUF1oT ExyuLbxb55yqxHjD1Y9Zqu2YBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcernTO fo8R9xmpJIT/QGvi7t+9MB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqkajkdLsyn/7zWjTYP7HaP35DFTMxqwbh50lJEMQ/RJ+EtIC+dIiI NvjpLs7VhV+NG7x7mfRe17kcZeYrpTVsuSYha0Blibb4h3DoU5LRLFHSPcFUXsTW hsJXZGxUZ6pAwIuP7VMEqmOysg6fI9JBHJCXkygKLffb54VIRA3nYrrx+Re5gYYe b3dUtBHM9LdgtXl6j6ZfB5o3cywOWxBnPcwjA2a539MxDg24CQbxEM5m+leZzToP Tk7sqTuiCFdN085fcfUT36mCY98CiwfX05f5fIshziHqLx8/YDRrfKt6wM8gzp5a +qoZLr8gNbRo9+0/nE2q9JBAu0Gu/O0e -----END CERTIFICATE-----Generated at Sun Dec 7 09:43:41 2025 by rpki-client