This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: aZKqBuzrLdfycFxysOfXTCf0GFM9QYCRN+ZmnwpAs9E= Subject key identifier: 57:CA:D8:D1:2B:00:BF:FF:13:E3:51:74:5E:42:2A:E3:ED:7C:0D:17 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 094F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 093E Signing time: Sat 06 Dec 2025 19:23:14 +0000 Manifest this update: Sat 06 Dec 2025 19:23:13 +0000 Manifest next update: Sat 13 Dec 2025 19:23:13 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: +ujaXugbIoikJQGooAUaTDd5Qh3RzU6cWKQujw3Xer8=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: 7Rz4+k6mAxaMGjURB8/55D4QBQngSJ+avXX3hTaAO80=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: gtW0T63Z+cyhIr7vbr9l7KyLrM/pqhz2h7OhpzuAs3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2383 (0x94f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: Dec 6 19:23:13 2025 GMT Not After : Dec 13 19:23:13 2025 GMT Subject: CN=693482a1-04f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2c:27:1d:ba:88:e8:37:e5:8d:be:af:0a:15: 57:1d:a1:6d:07:65:3d:14:20:ce:38:e4:70:fc:5a: cc:69:d9:e2:f1:40:26:c0:c1:70:33:dd:b9:48:cb: 3e:e2:bb:3c:10:46:28:08:e7:00:de:52:8d:7e:42: 8a:f4:d4:01:e4:75:de:56:3c:cb:b0:73:88:ec:02: 5c:bf:de:7c:08:b1:58:c7:5d:be:3b:e4:16:1f:e0: 8c:ce:25:98:bf:2c:e8:2f:14:62:bc:50:4b:0a:40: b2:6a:b6:5c:4e:38:44:b8:e0:a1:b6:14:95:40:c0: 14:c3:26:65:03:25:08:09:bb:f6:2d:19:35:dd:80: b9:35:ec:4d:43:04:e3:ec:4c:bb:23:98:5c:50:71: 41:3b:5b:7c:86:6e:67:77:a6:f7:8e:43:33:89:c5: 19:24:ec:a7:7b:dd:88:f6:95:e2:38:8d:08:ed:de: 04:6b:8c:df:72:92:8c:15:48:6e:04:d8:cd:71:f7: 7c:8d:20:dc:dc:04:4b:36:d6:bd:8f:ee:14:b3:ae: 8d:c4:7e:40:dd:fb:56:ec:ec:e9:ff:2d:ae:cc:c5: 7a:d9:71:99:aa:cc:e3:17:ac:10:29:7f:b4:bd:1c: 81:c7:cc:e1:b5:e0:dc:ce:49:bd:53:e8:f2:f5:ac: f0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CA:D8:D1:2B:00:BF:FF:13:E3:51:74:5E:42:2A:E3:ED:7C:0D:17 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ff:50:d1:51:f6:59:36:f2:d5:9d:64:37:d2:f4:a1:3c:1b: 0f:85:0f:8e:38:0b:b7:b3:ec:de:12:8a:fc:7c:22:78:3d:45: 0b:82:37:53:8b:d6:22:ce:39:e3:6f:8b:63:25:ef:87:45:dd: 86:07:eb:db:f5:8b:9f:bf:b9:f0:ff:a2:01:c8:94:ca:62:2c: 51:fe:0f:ed:bf:9c:7f:68:6b:84:c0:02:06:38:40:8d:ab:2e: 8e:b3:b3:57:68:3c:35:97:79:98:2e:36:6e:85:b9:f1:14:9a: 64:c9:f9:ad:23:4a:4b:5d:46:e4:6b:bc:6b:1f:d2:d7:2b:e9: 82:ae:1d:6d:43:c6:eb:7c:c4:be:c2:ad:d5:be:83:af:66:4f: 81:f9:be:71:24:d0:17:71:0b:ae:07:ee:1a:ff:a6:09:83:b4: 2e:fd:26:af:ce:38:4c:cf:58:8b:00:b2:13:08:57:e7:48:b4: e1:13:0f:c1:64:f9:07:f8:65:0f:6d:3b:d0:4b:ff:90:c7:09: 50:d9:eb:12:06:9b:95:13:f9:fe:77:df:e1:7c:9b:0a:87:5f: 77:ac:84:1b:7c:de:bd:47:aa:03:48:ea:d7:1a:0e:3f:1a:4e: 39:02:c1:80:87:8c:49:0c:aa:ed:af:49:7a:c2:9b:3c:e6:3d: 41:63:d7:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjUxMjA2MTkyMzEzWhcNMjUxMjEzMTkyMzEzWjAYMRYwFAYD VQQDEw02OTM0ODJhMS0wNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ywnHbqI6Dfljb6vChVXHaFtB2U9FCDOOORw/FrMadni8UAmwMFwM925SMs+ 4rs8EEYoCOcA3lKNfkKK9NQB5HXeVjzLsHOI7AJcv958CLFYx12+O+QWH+CMziWY vyzoLxRivFBLCkCyarZcTjhEuOChthSVQMAUwyZlAyUICbv2LRk13YC5NexNQwTj 7Ey7I5hcUHFBO1t8hm5nd6b3jkMzicUZJOyne92I9pXiOI0I7d4Ea4zfcpKMFUhu BNjNcfd8jSDc3ARLNta9j+4Us66NxH5A3ftW7Ozp/y2uzMV62XGZqszjF6wQKX+0 vRyBx8zhteDczkm9U+jy9azw5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfK2NEr AL//E+NRdF5CKuPtfA0XMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk/1DRUfZZNvLVnWQ30vShPBsPhQ+OOAu3s+zeEor8fCJ4PUULgjdT i9Yizjnjb4tjJe+HRd2GB+vb9Yufv7nw/6IByJTKYixR/g/tv5x/aGuEwAIGOECN qy6Os7NXaDw1l3mYLjZuhbnxFJpkyfmtI0pLXUbka7xrH9LXK+mCrh1tQ8brfMS+ wq3VvoOvZk+B+b5xJNAXcQuuB+4a/6YJg7Qu/SavzjhMz1iLALITCFfnSLThEw/B ZPkH+GUPbTvQS/+QxwlQ2esSBpuVE/n+d9/hfJsKh193rIQbfN69R6oDSOrXGg4/ Gk45AsGAh4xJDKrtr0l6wps85j1BY9cz -----END CERTIFICATE-----Generated at Sun Dec 7 00:51:52 2025 by rpki-client