This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: 4GqsXEyc72juDbE/ugpoYiArF1GovixFGCcTQvg7iCM= Subject key identifier: AA:9E:D7:BA:71:A1:54:41:35:FF:67:D1:CD:EC:85:E2:D5:96:21:48 Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 08CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 08C3 Signing time: Sat 06 Dec 2025 19:37:23 +0000 Manifest this update: Sat 06 Dec 2025 19:37:22 +0000 Manifest next update: Sat 13 Dec 2025 19:37:22 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: 9wUjWcJe/LtXJixvuVs6keqzEvKBEXrEGJNgpg3GTk0=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: G2foGf7uCgcEw+7JgUphjmWyB8lqa7VFa71ApGd5KNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2254 (0x8ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Dec 6 19:37:22 2025 GMT Not After : Dec 13 19:37:22 2025 GMT Subject: CN=693485f3-942a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1b:f2:c3:33:6e:fb:3d:27:41:01:80:eb:2d: f9:e0:55:6d:14:98:1c:a0:17:19:c4:44:6f:a8:10: b1:78:55:64:c1:f7:f1:d9:0e:8e:4b:d8:a5:74:d7: 40:16:b0:3a:c2:af:f4:8d:47:0a:1b:58:9b:eb:f5: 0a:2f:15:21:18:a7:32:94:f4:76:16:82:2b:79:ab: 4d:46:94:3c:a1:6e:8e:c8:f7:ae:cb:d5:25:4b:22: 66:43:70:01:f5:6d:bd:3a:87:2a:01:26:1c:76:11: 98:aa:85:13:00:db:f4:51:46:ee:1b:27:f7:b2:f6: 54:84:fe:d0:80:c2:c9:61:d2:10:fa:b4:d5:60:10: 2f:38:28:eb:e5:bf:86:41:b2:4d:0d:b3:8d:84:e0: 20:5b:e7:8a:9c:9b:e8:ba:39:65:d7:ec:c1:d0:c4: 26:af:46:11:1b:3d:99:18:fb:4b:2f:37:e1:e9:52: 2f:b5:44:5a:4d:59:b2:da:2c:43:fb:fb:57:38:a8: f8:69:45:ad:65:9c:f0:81:be:44:86:74:10:dc:f2: 3e:9d:5d:4b:de:34:28:10:00:82:9e:67:20:5f:4b: f1:a8:69:7c:28:31:b9:a9:9e:c8:9a:59:39:46:85: 99:67:ca:19:5c:2a:02:0d:c6:25:d7:c2:9a:17:fd: a6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9E:D7:BA:71:A1:54:41:35:FF:67:D1:CD:EC:85:E2:D5:96:21:48 X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:21:64:c1:82:b9:c3:6d:a0:a7:2f:16:0f:bc:b8:5b:a7:f1: b2:53:9f:27:61:d5:63:91:c7:e9:13:52:b9:75:ec:b7:67:16: 32:9c:4d:7f:b6:63:a3:e3:78:a4:55:60:22:f9:74:f8:62:26: 32:29:91:33:bb:0c:a2:fe:2e:8e:ea:e1:7e:a0:73:cb:89:08: f8:6e:4d:70:22:6b:73:4f:fd:f4:e3:e7:35:1b:fa:39:cb:1d: b9:4f:52:15:41:d9:cd:19:86:d3:a3:0e:16:52:19:d8:f7:03: 43:c7:56:35:19:3a:dc:54:99:f8:96:33:d9:1d:d6:52:c5:44: ba:84:99:45:8e:ba:73:6a:00:33:a7:6b:d4:19:72:b8:f0:d9: 2e:25:b2:d9:ad:fc:8b:e1:8a:15:42:fb:38:ea:36:5a:ed:24: 53:dd:92:dd:5c:93:d8:c8:4e:c9:cf:96:c5:f7:fc:88:23:99: 4f:ef:2c:e6:d9:73:10:09:04:30:68:5a:57:0a:f3:d6:dc:31: 96:5f:99:02:c6:d4:41:6b:0e:db:0e:83:2d:6e:ff:59:35:2b: 12:73:6d:94:57:ed:18:87:53:aa:2c:10:a7:41:91:5d:58:24: 09:3d:32:ca:65:90:b7:b8:1e:57:c5:da:0d:98:68:55:3c:ad: b6:6f:dc:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjUxMjA2MTkzNzIyWhcNMjUxMjEzMTkzNzIyWjAYMRYwFAYD VQQDEw02OTM0ODVmMy05NDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBvywzNu+z0nQQGA6y354FVtFJgcoBcZxERvqBCxeFVkwffx2Q6OS9ildNdA FrA6wq/0jUcKG1ib6/UKLxUhGKcylPR2FoIreatNRpQ8oW6OyPeuy9UlSyJmQ3AB 9W29OocqASYcdhGYqoUTANv0UUbuGyf3svZUhP7QgMLJYdIQ+rTVYBAvOCjr5b+G QbJNDbONhOAgW+eKnJvoujll1+zB0MQmr0YRGz2ZGPtLLzfh6VIvtURaTVmy2ixD +/tXOKj4aUWtZZzwgb5EhnQQ3PI+nV1L3jQoEACCnmcgX0vxqGl8KDG5qZ7Imlk5 RoWZZ8oZXCoCDcYl18KaF/2mmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqe17px oVRBNf9n0c3sheLVliFIMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7IWTBgrnDbaCnLxYPvLhbp/GyU58nYdVjkcfpE1K5dey3ZxYynE1/ tmOj43ikVWAi+XT4YiYyKZEzuwyi/i6O6uF+oHPLiQj4bk1wImtzT/304+c1G/o5 yx25T1IVQdnNGYbTow4WUhnY9wNDx1Y1GTrcVJn4ljPZHdZSxUS6hJlFjrpzagAz p2vUGXK48NkuJbLZrfyL4YoVQvs46jZa7SRT3ZLdXJPYyE7Jz5bF9/yII5lP7yzm 2XMQCQQwaFpXCvPW3DGWX5kCxtRBaw7bDoMtbv9ZNSsSc22UV+0Yh1OqLBCnQZFd WCQJPTLKZZC3uB5XxdoNmGhVPK22b9xN -----END CERTIFICATE-----Generated at Sun Dec 7 05:20:04 2025 by rpki-client