This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: UTeZ22LHzXUPAzISVI1ZzcTUAQl3iT4ZX7y0dWEsLxg= Subject key identifier: 03:21:A2:6A:42:8D:41:12:B1:01:C7:C1:B3:17:4F:C4:19:AF:C3:BC Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 086B Signing time: Thu 04 Dec 2025 19:44:31 +0000 Manifest this update: Thu 04 Dec 2025 19:44:31 +0000 Manifest next update: Thu 11 Dec 2025 19:44:31 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: FVOkDmKTZxP44g8SFJn9jEWlf6DUMc+NHGEw0bAX01A=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Dec 4 19:44:31 2025 GMT Not After : Dec 11 19:44:31 2025 GMT Subject: CN=6931e49f-cdcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:cb:aa:28:ce:87:06:b3:d3:c3:f9:14:ed:ac: 1e:c9:03:4f:44:5b:f6:a4:5f:a1:ed:ec:dc:37:a1: 73:c7:0d:2b:de:75:a7:4d:a9:67:9e:4f:b3:18:5e: c2:df:62:7e:d6:7a:04:bc:da:a6:0b:fc:b1:9b:ca: 25:03:e3:7c:2d:39:cd:ff:5b:0d:e1:84:fa:d1:a3: 60:9d:a3:3f:06:e0:2c:66:17:e6:38:27:10:65:bb: ae:a7:00:a7:07:a8:dd:a4:5d:e6:e6:11:f7:c9:08: 21:4e:10:aa:87:a1:5e:1c:0d:e8:fa:3c:20:d7:c8: 91:5a:f2:7c:ed:c5:e6:e3:da:28:32:16:39:76:87: 65:4a:f0:3a:a0:af:09:df:80:2b:9c:17:21:79:fd: 2c:fa:9f:41:89:c7:00:58:8e:65:16:b5:77:76:91: 59:a1:37:27:e8:f6:02:e2:e2:88:d3:30:a0:0c:67: 4c:ec:41:4e:b8:86:ff:98:22:78:6d:da:fc:ed:36: eb:51:18:9e:16:c6:54:c4:60:66:9a:54:a1:7e:74: 8b:40:1d:db:db:86:ab:9d:79:33:57:12:69:03:4e: 5e:e7:5d:b3:38:cd:12:b4:85:78:2d:2e:28:15:8f: dc:c7:df:f7:8d:42:3b:03:cc:24:a9:88:66:8e:2d: e7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:21:A2:6A:42:8D:41:12:B1:01:C7:C1:B3:17:4F:C4:19:AF:C3:BC X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:1d:80:9e:7d:4a:81:05:21:28:5a:b0:36:e4:5a:5e:89:36: e5:c3:4a:33:8a:61:96:8e:56:84:9e:6a:71:0a:7c:e4:a5:80: 27:09:8e:c5:41:db:59:bc:a8:73:83:f1:2b:a5:88:70:fc:66: 18:bd:fd:8f:63:06:3e:14:4d:0f:b0:bb:a3:6f:5f:e4:ed:98: 02:b9:67:37:2a:12:f0:05:f8:1e:6b:d2:b1:7e:f2:39:de:07: 44:11:c1:95:54:b3:e4:0b:c9:11:36:48:ee:b6:48:dc:98:37: 55:95:d7:ee:7c:89:8b:8a:16:02:52:0f:f7:a4:c4:9d:d0:93: a4:f4:c6:7f:34:d2:a4:f8:a7:0a:ca:5b:82:8a:9e:7c:1a:0f: d1:eb:13:ca:9a:0c:81:7c:c6:b1:df:82:50:ce:5b:08:c5:ea: 1a:67:a0:ad:d6:4a:37:8a:f1:97:4b:c0:04:41:4e:19:1e:a9: ed:4a:4b:ce:7f:2a:12:17:31:cc:0d:02:5e:91:34:cf:89:bd: e7:df:e0:12:65:5e:c6:62:11:3d:d0:86:5c:ec:af:fd:7b:b2: 30:5f:63:8e:49:7d:0e:ff:d2:e0:8c:6d:c1:33:17:96:d1:73: 64:d9:22:f1:51:22:5f:74:c4:91:9a:b4:ca:6c:6a:72:01:7e: 79:26:c5:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjUxMjA0MTk0NDMxWhcNMjUxMjExMTk0NDMxWjAYMRYwFAYD VQQDEw02OTMxZTQ5Zi1jZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6suqKM6HBrPTw/kU7aweyQNPRFv2pF+h7ezcN6Fzxw0r3nWnTalnnk+zGF7C 32J+1noEvNqmC/yxm8olA+N8LTnN/1sN4YT60aNgnaM/BuAsZhfmOCcQZbuupwCn B6jdpF3m5hH3yQghThCqh6FeHA3o+jwg18iRWvJ87cXm49ooMhY5dodlSvA6oK8J 34ArnBchef0s+p9BiccAWI5lFrV3dpFZoTcn6PYC4uKI0zCgDGdM7EFOuIb/mCJ4 bdr87TbrURieFsZUxGBmmlShfnSLQB3b24arnXkzVxJpA05e512zOM0StIV4LS4o FY/cx9/3jUI7A8wkqYhmji3n+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMhompC jUESsQHHwbMXT8QZr8O8MB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMHYCefUqBBSEoWrA25FpeiTblw0ozimGWjlaEnmpxCnzkpYAnCY7F QdtZvKhzg/ErpYhw/GYYvf2PYwY+FE0PsLujb1/k7ZgCuWc3KhLwBfgea9KxfvI5 3gdEEcGVVLPkC8kRNkjutkjcmDdVldfufImLihYCUg/3pMSd0JOk9MZ/NNKk+KcK yluCip58Gg/R6xPKmgyBfMax34JQzlsIxeoaZ6Ct1ko3ivGXS8AEQU4ZHqntSkvO fyoSFzHMDQJekTTPib3n3+ASZV7GYhE90IZc7K/9e7IwX2OOSX0O/9LgjG3BMxeW 0XNk2SLxUSJfdMSRmrTKbGpyAX55JsXC -----END CERTIFICATE-----Generated at Sat Dec 6 20:08:54 2025 by rpki-client