This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: ldPpE3zLEktjdOkHl49ygtsWCUeruViSGNAgYWz8AmM= Subject key identifier: 28:A0:10:66:F2:B7:EB:22:E2:BC:C3:20:58:36:E4:4A:49:22:97:3D Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A0C6 Signing time: Sat 06 Dec 2025 14:28:00 +0000 Manifest this update: Sat 06 Dec 2025 14:28:00 +0000 Manifest next update: Sat 13 Dec 2025 14:28:00 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: UaJgmgVcL1gSeHJdAuky4oYAvNFNiRVQ1vj7ZR1ROa0=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6978 (0x1b42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Dec 6 14:28:00 2025 GMT Not After : Dec 13 14:28:00 2025 GMT Subject: CN=69343d70-2e63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:38:69:00:b1:04:52:43:12:a1:a5:ad:31:7e: ad:0b:ea:45:51:aa:db:67:ff:f5:8b:2b:e5:0c:ab: 22:c6:8c:56:5b:44:46:c2:f1:69:83:26:e8:46:da: e4:e6:95:5e:6a:32:98:0a:0b:25:22:8f:86:09:e0: fa:e4:e1:71:bc:b4:60:45:f6:64:8d:98:ab:84:33: 52:b8:3b:46:ef:03:67:e1:21:6b:f8:fe:d7:60:c3: 72:a4:e2:7a:ea:56:86:cb:7e:80:3c:a8:c2:fe:b0: 3c:22:bd:ba:b1:e0:3c:08:2d:0c:61:5f:e3:db:9e: 0e:12:14:b8:8c:41:1e:8c:f4:9e:c5:5d:65:eb:47: 9a:ca:7b:06:fd:d2:2d:4a:bb:e7:1d:bf:e4:39:18: 33:15:7d:6f:da:a0:37:f1:74:51:b8:45:33:09:70: 22:c0:0c:ab:61:9a:ca:34:c8:bd:a9:0f:c3:4a:9a: 40:a1:93:5c:73:88:b2:0a:bf:fc:bf:a4:d1:c7:40: c5:f5:29:7c:c7:34:d6:c2:b6:e6:d3:f0:7e:51:c2: 29:d9:f8:95:33:60:ae:04:a1:69:58:f9:1c:f7:1f: 3b:33:95:db:5b:29:7e:ea:28:ff:23:77:b0:ba:38: 2d:2b:e1:2d:95:1c:a2:5d:ed:23:90:c1:1c:16:8e: f8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A0:10:66:F2:B7:EB:22:E2:BC:C3:20:58:36:E4:4A:49:22:97:3D X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ec:b1:b8:21:cb:19:d2:ad:c7:99:27:81:98:42:05:c6:2f: 5f:d1:0b:b2:36:a0:91:7a:01:3b:b8:8a:5b:86:87:4e:19:28: 95:ce:fa:76:a2:d7:bb:75:22:c6:6e:85:44:e3:5f:9d:11:14: 17:e4:7f:2b:f3:0e:d4:fa:25:e0:58:5e:ba:fd:33:91:91:ec: 73:5c:eb:1b:fd:03:61:ff:f5:5a:f4:82:dc:75:f6:1a:05:2e: fa:7a:9c:bf:9e:8e:ae:ee:fe:27:e8:33:89:98:2d:8b:56:97: 95:bf:44:04:f0:b9:db:73:88:c3:a7:95:d7:67:52:c4:42:1e: c7:bf:f4:9f:c3:4f:c9:0c:b7:09:ed:72:14:a4:0f:d2:2f:ba: 17:c6:60:bf:21:85:31:62:36:49:0f:f3:5d:2c:ef:8b:90:11: e8:7a:a5:e1:b4:0a:76:4b:6a:43:59:7b:d3:cf:19:df:61:44: 0f:6d:57:f8:a0:0a:ea:42:27:e4:5f:6b:f7:8f:3d:e4:fd:ea: 69:e0:3c:a0:35:58:79:8c:92:c4:d6:6a:8b:7b:6f:a5:91:c8: 99:ed:7c:de:2e:53:48:af:fa:b1:54:81:d2:8f:fb:6a:a5:ea: 99:d0:fc:72:f2:c5:9c:7d:48:0d:ea:ab:9a:3d:28:55:48:18: 6c:a8:2e:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUxMjA2MTQyODAwWhcNMjUxMjEzMTQyODAwWjAYMRYwFAYD VQQDEw02OTM0M2Q3MC0yZTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8zhpALEEUkMSoaWtMX6tC+pFUarbZ//1iyvlDKsixoxWW0RGwvFpgyboRtrk 5pVeajKYCgslIo+GCeD65OFxvLRgRfZkjZirhDNSuDtG7wNn4SFr+P7XYMNypOJ6 6laGy36APKjC/rA8Ir26seA8CC0MYV/j254OEhS4jEEejPSexV1l60eaynsG/dIt SrvnHb/kORgzFX1v2qA38XRRuEUzCXAiwAyrYZrKNMi9qQ/DSppAoZNcc4iyCr/8 v6TRx0DF9Sl8xzTWwrbm0/B+UcIp2fiVM2CuBKFpWPkc9x87M5XbWyl+6ij/I3ew ujgtK+EtlRyiXe0jkMEcFo74jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCigEGby t+si4rzDIFg25EpJIpc9MB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh7LG4IcsZ0q3HmSeBmEIFxi9f0QuyNqCRegE7uIpbhodOGSiVzvp2 ote7dSLGboVE41+dERQX5H8r8w7U+iXgWF66/TORkexzXOsb/QNh//Va9ILcdfYa BS76epy/no6u7v4n6DOJmC2LVpeVv0QE8Lnbc4jDp5XXZ1LEQh7Hv/Sfw0/JDLcJ 7XIUpA/SL7oXxmC/IYUxYjZJD/NdLO+LkBHoeqXhtAp2S2pDWXvTzxnfYUQPbVf4 oArqQifkX2v3jz3k/epp4DygNVh5jJLE1mqLe2+lkciZ7XzeLlNIr/qxVIHSj/tq peqZ0Pxy8sWcfUgN6quaPShVSBhsqC4X -----END CERTIFICATE-----Generated at Sat Dec 6 18:32:17 2025 by rpki-client