This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: gctRHRZcTIvoWgDLhxjCHLesWLfkFd4mvrRT890jD3I= Subject key identifier: 51:1D:14:2C:6F:B1:F1:1D:72:9F:02:08:EB:F1:61:53:07:A4:E3:A5 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 0224 Signing time: Sun 07 Dec 2025 00:38:46 +0000 Manifest this update: Sun 07 Dec 2025 00:38:45 +0000 Manifest next update: Sun 14 Dec 2025 00:38:45 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: 7lOo5E7gyhDIu7OjCTV3MhpuEivek4MknuBGOmBaAZo=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Dec 7 00:38:45 2025 GMT Not After : Dec 14 00:38:45 2025 GMT Subject: CN=6934cc96-b6bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:95:7a:3c:de:b6:4f:57:34:7a:31:4a:b6:57: f4:0a:c2:a1:26:58:c3:27:24:a6:0a:5e:80:dd:dc: 82:9e:41:9e:09:83:4f:d4:ec:08:19:e1:2a:01:b3: fc:c0:3e:58:82:d4:b6:09:b9:88:53:a2:68:5c:20: 1e:83:43:06:9f:c3:2f:86:fb:cb:c6:91:b3:c1:bb: a0:93:9e:c5:18:46:28:61:7e:3c:ac:6f:fc:14:01: 07:46:fa:d6:d6:66:a2:c4:b3:36:45:5d:fc:37:78: b5:0d:5c:b9:67:3e:f6:d4:29:bf:5c:7e:60:71:8c: fd:92:99:c0:80:13:3b:4f:f1:0a:d7:d7:c1:65:c4: 41:a8:11:ba:1d:9a:00:00:2e:15:8f:94:72:7f:ff: 85:f9:c8:7f:5c:03:89:09:b0:75:4a:a4:a5:f5:55: 26:54:29:f1:28:fe:0b:e8:05:4e:78:6d:30:54:07: d5:d9:55:f3:b0:0c:c5:a8:eb:d4:f9:6b:8d:04:cc: 31:9c:c3:90:27:54:a0:3f:2e:ae:fc:c3:ef:8e:d0: 0d:53:2c:90:34:0f:30:63:1c:52:fc:e9:67:bd:97: d2:ac:4c:6f:2b:9b:4d:53:0f:3a:71:cb:25:1b:c8: 88:d6:e1:5d:61:bb:e2:d8:42:bf:8d:a8:ad:4e:69: d4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1D:14:2C:6F:B1:F1:1D:72:9F:02:08:EB:F1:61:53:07:A4:E3:A5 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:f9:b5:98:49:06:24:76:0f:b8:1e:bc:00:ac:a4:e9:46:53: f3:8e:fb:27:bc:d2:41:0d:4d:08:3d:26:90:f2:2a:25:8c:d3: b8:ba:fe:45:3f:1d:26:0f:85:0b:94:ac:79:b9:06:86:02:c6: d5:f5:35:3b:1f:93:29:17:50:bb:0e:3f:06:ab:85:33:58:a2: fc:7f:92:27:2f:f1:e7:24:5c:f6:af:96:75:99:97:7b:1a:1e: f9:ff:c7:05:7f:f4:c3:42:a7:6c:0a:62:be:51:37:da:77:29: 6d:f8:30:34:12:37:51:2e:ec:49:3f:f9:07:30:7a:96:26:7f: ca:15:37:30:42:66:38:3d:35:f7:05:88:a3:fb:5c:6e:5f:a1: ab:98:48:30:96:d1:d6:57:f1:c6:db:bd:fe:ef:7f:0f:da:74: cb:5e:ab:03:ad:a0:f9:6b:dd:e9:de:83:9c:52:44:50:b8:93: 0e:6a:94:4b:5d:65:4c:f7:69:3d:69:3a:cf:94:ae:02:5b:b4: fb:74:ec:bf:6f:50:a1:d9:f9:7b:b7:43:65:1e:d2:c3:d5:03: 7b:48:8c:99:af:1e:e1:31:fd:8b:95:6b:28:7b:2c:98:c0:24: 9f:9d:59:e8:ae:d3:c5:71:69:46:f2:53:51:e3:cf:31:20:69: 0c:6b:7a:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUxMjA3MDAzODQ1WhcNMjUxMjE0MDAzODQ1WjAYMRYwFAYD VQQDEw02OTM0Y2M5Ni1iNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZV6PN62T1c0ejFKtlf0CsKhJljDJySmCl6A3dyCnkGeCYNP1OwIGeEqAbP8 wD5YgtS2CbmIU6JoXCAeg0MGn8MvhvvLxpGzwbugk57FGEYoYX48rG/8FAEHRvrW 1maixLM2RV38N3i1DVy5Zz721Cm/XH5gcYz9kpnAgBM7T/EK19fBZcRBqBG6HZoA AC4Vj5Ryf/+F+ch/XAOJCbB1SqSl9VUmVCnxKP4L6AVOeG0wVAfV2VXzsAzFqOvU +WuNBMwxnMOQJ1SgPy6u/MPvjtANUyyQNA8wYxxS/OlnvZfSrExvK5tNUw86ccsl G8iI1uFdYbvi2EK/jaitTmnUvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEdFCxv sfEdcp8CCOvxYVMHpOOlMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY+bWYSQYkdg+4HrwArKTpRlPzjvsnvNJBDU0IPSaQ8ioljNO4uv5F Px0mD4ULlKx5uQaGAsbV9TU7H5MpF1C7Dj8Gq4UzWKL8f5InL/HnJFz2r5Z1mZd7 Gh75/8cFf/TDQqdsCmK+UTfadylt+DA0EjdRLuxJP/kHMHqWJn/KFTcwQmY4PTX3 BYij+1xuX6GrmEgwltHWV/HG273+738P2nTLXqsDraD5a93p3oOcUkRQuJMOapRL XWVM92k9aTrPlK4CW7T7dOy/b1Ch2fl7t0NlHtLD1QN7SIyZrx7hMf2LlWsoeyyY wCSfnVnortPFcWlG8lNR488xIGkMa3rM -----END CERTIFICATE-----Generated at Sun Dec 7 06:06:39 2025 by rpki-client