This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft File: cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft (raw, json) Hash identifier: QcmgGufm001C87XFs88tLnU4fiu9NVihMZaMnMny1ew= Subject key identifier: 84:B1:37:6F:3B:74:B8:A9:A5:DF:D0:E8:F0:74:DA:4C:75:0F:82:20 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 0583 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft Manifest number: 055D Signing time: Sat 06 Dec 2025 22:16:58 +0000 Manifest this update: Sat 06 Dec 2025 22:16:57 +0000 Manifest next update: Sat 13 Dec 2025 22:16:57 +0000 Files and hashes: 1: cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl (hash: Y2XD1PMzSoRDurq7jDSLfZRcxYYWwQw276x7zX/WlpU=) 2: 281169C4A73611F0A0612258C4F9AE02.roa (hash: JxAee0u2+/ORag8Ub3d+619mOFxoeciDSE1YdK1uC+k=) 3: 4C192D62C11B11F08A8BE37EC4F9AE02.roa (hash: VcrFbszBPTWb6EDU9hxzqcd25LDmkbU1UbvR+0FzSOE=) 4: F93DE378B66911F09D7E8031C4F9AE02.roa (hash: JOJ1e7tHKR5cV+eVWRHszWJd1lpFfnDGTNadMINwq4M=) 5: 345F56F87FE311EF80C0F71FC4F9AE02.roa (hash: GPBxxSS7tjXB56EHA0eFK8gRXpMRgACbmw5NUyFguDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1411 (0x583) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Dec 6 22:16:57 2025 GMT Not After : Dec 13 22:16:57 2025 GMT Subject: CN=6934ab5a-acb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:82:4a:1f:d4:71:fa:04:6b:a7:0e:fb:61:a1: fb:92:f1:52:ec:94:7b:49:88:6f:e3:1c:e6:19:1e: fa:99:bb:82:df:30:b6:72:ce:05:e8:a7:29:9a:9f: 14:08:1c:c6:0b:7a:6b:91:26:6d:c5:15:ec:fb:62: 4f:8b:74:00:ae:94:c2:35:a8:df:fd:43:7b:50:b9: 20:b6:74:a6:25:15:60:bc:93:39:8b:27:70:34:a8: 04:eb:0d:cd:b5:94:a8:b7:81:cf:56:6b:59:2d:7a: d1:24:ae:c0:3a:41:4a:ac:7c:cb:2c:b1:cb:5c:92: c8:aa:f8:e7:47:7a:d9:a6:e7:90:90:67:24:ed:fc: 0b:03:50:ee:37:57:52:01:32:a1:a8:8d:8f:1e:50: f1:ef:f3:35:2a:92:5a:42:41:3c:4d:86:0c:3e:97: 66:2d:10:5f:76:fb:1a:05:e7:56:14:22:31:57:ea: 0c:03:ef:ad:32:e2:44:95:4e:85:85:35:20:67:89: 26:99:d1:06:f3:fc:13:db:a5:8d:63:59:b5:85:07: b4:1f:f3:36:c6:90:e1:a4:e1:71:71:d1:1f:ba:36: 0b:33:7b:ec:ec:d0:35:4f:04:0e:8d:bc:e7:be:42: cb:1c:e6:43:f9:1a:32:d0:b6:25:ea:fe:82:41:bc: f5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B1:37:6F:3B:74:B8:A9:A5:DF:D0:E8:F0:74:DA:4C:75:0F:82:20 X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:bb:24:48:c3:b9:f5:7b:19:9b:c4:3e:a7:9d:2f:a4:c6:dc: 7e:d6:6f:db:81:17:be:74:11:ee:fd:a8:32:d9:73:a5:12:e3: 7f:9c:83:f8:26:cb:f5:b0:bc:c3:21:04:20:f2:ba:1c:be:f8: 4b:7a:44:f4:6f:6f:74:4a:57:dd:cc:70:d9:f1:46:71:85:d1: 53:99:f5:c3:8f:18:d7:f5:73:55:8e:ac:44:34:87:e2:21:4e: 8c:a5:df:36:73:4c:c7:7b:c3:d3:f1:16:ad:b3:75:c6:27:67: 44:17:9d:86:8f:a6:20:7d:1e:45:9e:c6:f5:89:55:3f:1a:75: 97:d1:99:45:68:f8:34:7c:79:b6:d8:d0:23:e5:ee:b5:78:1b: f2:d7:33:29:77:61:c4:4e:db:39:56:c9:e0:80:6a:3f:90:27: a5:33:31:1a:99:70:a3:73:f6:eb:b4:c0:b6:e0:08:b5:6a:1d: a8:b6:bd:5c:31:9c:f2:0c:c4:2d:dd:b6:2f:ec:d2:79:2f:46: 15:03:ba:24:e8:ee:40:16:ed:40:d0:ff:bb:6e:60:b2:2d:02: 61:9c:c8:b2:c9:09:bd:98:45:88:a6:28:06:9b:34:0f:f6:81: 12:c6:52:c3:4e:9c:dc:34:86:58:3d:26:ee:1c:f7:40:ae:6b: e7:f9:61:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjUxMjA2MjIxNjU3WhcNMjUxMjEzMjIxNjU3WjAYMRYwFAYD VQQDEw02OTM0YWI1YS1hY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYJKH9Rx+gRrpw77YaH7kvFS7JR7SYhv4xzmGR76mbuC3zC2cs4F6Kcpmp8U CBzGC3prkSZtxRXs+2JPi3QArpTCNajf/UN7ULkgtnSmJRVgvJM5iydwNKgE6w3N tZSot4HPVmtZLXrRJK7AOkFKrHzLLLHLXJLIqvjnR3rZpueQkGck7fwLA1DuN1dS ATKhqI2PHlDx7/M1KpJaQkE8TYYMPpdmLRBfdvsaBedWFCIxV+oMA++tMuJElU6F hTUgZ4kmmdEG8/wT26WNY1m1hQe0H/M2xpDhpOFxcdEfujYLM3vs7NA1TwQOjbzn vkLLHOZD+Roy0LYl6v6CQbz18wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISxN287 dLippd/Q6PB02kx1D4IgMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Ny9GNjgzQ0VGMjIxRUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3 cVpNX0tVUGNKcE9mb0dDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjuyRIw7n1exmbxD6nnS+kxtx+1m/bgRe+dBHu/agy2XOlEuN/nIP4 Jsv1sLzDIQQg8rocvvhLekT0b290SlfdzHDZ8UZxhdFTmfXDjxjX9XNVjqxENIfi IU6Mpd82c0zHe8PT8Rats3XGJ2dEF52Gj6YgfR5Fnsb1iVU/GnWX0ZlFaPg0fHm2 2NAj5e61eBvy1zMpd2HETts5VsnggGo/kCelMzEamXCjc/brtMC24Ai1ah2otr1c MZzyDMQt3bYv7NJ5L0YVA7ok6O5AFu1A0P+7bmCyLQJhnMiyyQm9mEWIpigGmzQP 9oESxlLDTpzcNIZYPSbuHPdArmvn+WHa -----END CERTIFICATE-----Generated at Sun Dec 7 01:35:14 2025 by rpki-client