This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft File: cZYTj9n8jHj-hDolPLBICtzFfw0.mft (raw, json) Hash identifier: I7EcvlVNq2JJqh4slCWYYFI9Ne7T0h2xeAShC8Zee8k= Subject key identifier: 36:05:72:30:45:9A:C7:B4:58:77:F9:8F:AF:7C:68:8D:AA:1E:FB:E2 Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 082D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft Manifest number: 0821 Signing time: Thu 04 Dec 2025 19:57:09 +0000 Manifest this update: Thu 04 Dec 2025 19:57:09 +0000 Manifest next update: Thu 11 Dec 2025 19:57:09 +0000 Files and hashes: 1: cZYTj9n8jHj-hDolPLBICtzFfw0.crl (hash: m0Px5khjtQZfj8svnsMLI4BnJG/BefCWhJfmE1ttOcA=) 2: 986F0854F7C611EA8B23C30CC4F9AE02.roa (hash: nZkvb14BrukF0xrl+mqOEwQXndGaGVD7etvG6n2ebqo=) 3: 9920D2E6F7C611EA8B23C30CC4F9AE02.roa (hash: aPoLWPstwsO+freisIa5/qBSIqgnIR7f63xsHuA2Fdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2093 (0x82d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590, serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Dec 4 19:57:09 2025 GMT Not After : Dec 11 19:57:09 2025 GMT Subject: CN=6931e795-d19c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:9b:43:c6:fa:d5:09:c8:39:b3:da:36:32: 54:58:2d:9c:86:52:52:25:16:d4:38:00:41:5d:c8: d0:4d:eb:03:ab:04:ac:2a:fe:9a:b5:ce:8c:c4:dc: 3c:5f:8c:5c:18:72:15:38:8a:1b:78:d2:27:cf:72: 2f:98:09:92:0c:af:cf:73:39:fa:38:75:f2:4b:7f: 99:e3:b4:89:72:7e:60:ed:31:de:31:c6:19:cc:32: 27:23:71:b2:ce:41:73:1b:c5:86:57:48:67:f7:05: 01:b5:48:09:a5:49:76:8d:86:1b:d3:f1:08:c2:ab: 60:99:89:35:f5:56:0d:fe:12:8b:1c:f1:60:14:cd: 66:4b:b8:3d:ca:af:f0:7b:d1:aa:9d:b7:99:ff:d6: 16:de:f6:31:8e:e6:e6:c3:ca:63:76:bc:ab:41:f9: ee:25:66:86:fd:c0:eb:02:6b:15:f6:10:6c:12:b0: 0b:d2:b7:1f:7b:d5:41:68:c0:46:6d:3f:66:09:18: 85:c3:a8:1b:4b:ba:7c:73:ad:8d:73:8a:be:53:32: dc:9a:3d:e6:24:f8:82:80:1c:cd:40:e1:b2:d6:26: a5:59:cd:0d:2d:7b:e6:e6:90:0b:a3:eb:7a:93:6c: 38:e3:8e:b8:59:0a:23:7b:0a:82:03:b1:b0:d1:32: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:05:72:30:45:9A:C7:B4:58:77:F9:8F:AF:7C:68:8D:AA:1E:FB:E2 X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:83:dc:ae:a7:a9:22:e3:d9:66:fb:ae:11:e8:ef:34:93:30: 92:5c:9a:7b:72:9a:9d:64:99:dd:a2:cd:37:53:94:23:09:10: 35:75:d3:07:0a:78:75:4a:9d:69:31:2e:8b:6c:7d:53:00:19: 56:9b:7d:61:b8:30:88:a6:9b:6a:2b:1c:f1:61:b2:f9:95:a4: b5:1b:c4:7c:71:7e:16:6c:23:46:55:cb:26:3a:d1:2a:ea:aa: db:6a:c6:90:77:3b:79:1d:65:9e:f2:3e:6d:cb:ec:c5:c1:38: 5e:db:b2:cf:48:05:24:96:95:ae:08:81:21:6b:f3:f7:3f:d0: f1:55:02:2a:6d:23:f6:ed:cb:d0:b2:a7:d4:09:46:ec:98:9c: ac:70:7f:17:2a:7e:82:aa:aa:8c:71:bf:b2:b4:a0:fa:d8:0d: 7b:91:e5:e8:fd:94:2a:31:13:2c:4f:83:6a:ea:ad:a5:1d:5d: 97:a0:b6:e7:3f:16:f1:d5:ec:c2:ec:6f:76:fe:bd:81:b8:3f: 5b:96:09:73:92:ca:fc:d2:6d:77:25:3d:44:4c:6d:1a:ae:9f: 42:53:4f:69:4b:bd:fa:c1:c5:db:9a:e7:ee:c0:c8:7d:37:65: 9c:6c:4c:cc:7a:09:71:54:9e:e9:8f:8a:e2:42:dc:fc:33:6c: 83:85:15:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjUxMjA0MTk1NzA5WhcNMjUxMjExMTk1NzA5WjAYMRYwFAYD VQQDEw02OTMxZTc5NS1kMTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweebQ8b61QnIObPaNjJUWC2chlJSJRbUOABBXcjQTesDqwSsKv6atc6MxNw8 X4xcGHIVOIobeNInz3IvmAmSDK/Pczn6OHXyS3+Z47SJcn5g7THeMcYZzDInI3Gy zkFzG8WGV0hn9wUBtUgJpUl2jYYb0/EIwqtgmYk19VYN/hKLHPFgFM1mS7g9yq/w e9GqnbeZ/9YW3vYxjubmw8pjdryrQfnuJWaG/cDrAmsV9hBsErAL0rcfe9VBaMBG bT9mCRiFw6gbS7p8c62Nc4q+UzLcmj3mJPiCgBzNQOGy1ialWc0NLXvm5pALo+t6 k2w44464WQojewqCA7Gw0TJJ5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYFcjBF mse0WHf5j698aI2qHvviMB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTU5MC9BODk1MjQ5RUY3QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpI ai1oRG9sUExCSUN0ekZmdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByg9yup6ki49lm+64R6O80kzCSXJp7cpqdZJndos03U5QjCRA1ddMH Cnh1Sp1pMS6LbH1TABlWm31huDCIpptqKxzxYbL5laS1G8R8cX4WbCNGVcsmOtEq 6qrbasaQdzt5HWWe8j5ty+zFwThe27LPSAUklpWuCIEha/P3P9DxVQIqbSP27cvQ sqfUCUbsmJyscH8XKn6CqqqMcb+ytKD62A17keXo/ZQqMRMsT4Nq6q2lHV2XoLbn Pxbx1ezC7G92/r2BuD9blglzksr80m13JT1ETG0arp9CU09pS736wcXbmufuwMh9 N2WcbEzMeglxVJ7pj4riQtz8M2yDhRV6 -----END CERTIFICATE-----Generated at Sat Dec 6 16:44:01 2025 by rpki-client