This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: CqbBub8VNeitm7eEWniB1K8mls/IMMMhLwDNU3gW4V8= Subject key identifier: D4:FB:9D:9D:5F:C0:13:1B:81:7A:84:60:87:DA:C6:73:81:EA:4B:6E Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 01DA Signing time: Sun 07 Dec 2025 01:16:10 +0000 Manifest this update: Sun 07 Dec 2025 01:16:10 +0000 Manifest next update: Sun 14 Dec 2025 01:16:10 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: I/D/UKT93z1Mf1fp6jZcZi/wvKfObjazeOs/lxdJSGE=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: jcXeOsnPkng7woBhogkpn0QTLMQkcLmpzuHfKAJv494=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: CgPVH7RpJ6BSzRb9lg98xN/+D/HPQDxzXfJap9UMvCY=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: y6SX+gLu9IWiM41aB5HobwSNF3AwnjrukL12CRvUhjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Dec 7 01:16:10 2025 GMT Not After : Dec 14 01:16:10 2025 GMT Subject: CN=6934d55a-665c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2f:a9:27:e3:e4:97:f9:12:52:0c:ae:16:c2: e4:a3:21:d7:7e:ae:c8:6c:26:2a:64:81:7b:ed:3c: 9b:dd:4a:d8:c6:ca:ad:3b:52:ac:a6:06:f6:dc:02: 7e:ff:02:ff:14:5f:fb:32:50:8b:53:4d:b7:ef:b4: a2:71:08:62:37:d7:0e:d7:a8:2f:27:bd:0b:e7:7a: df:f6:93:ea:99:6a:67:61:d7:87:f8:e3:55:81:e1: dd:d0:59:38:65:60:f1:68:09:04:04:c9:fc:38:bc: b9:cb:c6:eb:42:38:7f:d6:5d:f3:9d:05:54:94:94: e3:f5:cf:11:a5:1f:64:1b:f3:98:a9:8d:a6:cc:4d: 25:b4:09:25:d4:f3:d9:18:53:ab:43:71:23:e3:a7: e1:d4:0f:b4:a1:22:41:1d:94:37:c7:34:ad:56:71: 39:eb:75:ff:76:45:85:a5:9f:b7:a3:4b:c7:d5:07: 3f:b6:1d:a9:30:ac:7f:15:6c:d0:40:ae:3c:3f:d7: e6:8f:c6:f0:2e:e7:42:67:fb:c1:23:ca:b4:f5:dd: 38:ce:09:c7:e1:38:d2:84:d6:fb:14:0d:1a:b4:2d: 18:29:a2:83:ac:59:2a:75:00:8a:03:8a:0c:7a:ca: 98:e8:2a:c4:d6:c6:71:7d:56:cb:c5:84:59:bc:23: d4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FB:9D:9D:5F:C0:13:1B:81:7A:84:60:87:DA:C6:73:81:EA:4B:6E X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:35:26:27:23:9d:6d:6c:2f:70:6b:30:ae:41:5a:7b:12:31: 14:66:65:2f:fe:10:35:13:6e:6d:2f:2f:fc:79:1c:78:a7:2f: 65:19:f3:59:14:db:49:41:c9:10:0d:9a:7c:ed:cf:5e:10:16: 6a:d7:c2:1a:ed:1b:f0:f8:ab:8d:14:31:51:a7:43:b4:11:ee: 6f:35:3f:e8:e1:0b:79:ab:db:40:6c:31:1a:72:2e:5f:db:a1: 24:94:68:4f:f5:1a:4e:a4:67:55:c2:5a:67:20:d6:6d:e4:b8: ce:37:2e:d7:f2:c1:c2:63:cb:5d:70:56:2b:08:b8:68:a9:42: e1:15:22:91:83:9a:00:de:77:d6:c9:6e:2d:2b:c6:3d:41:af: d8:9d:23:a3:4d:3e:89:97:18:cd:d1:e6:2d:00:71:ea:29:5b: 9d:ba:03:59:6d:50:c0:85:a1:13:b3:30:96:87:22:cd:33:98: 80:d6:9d:fb:b4:50:8a:6d:2e:37:8a:d5:ac:1c:a6:4f:ee:a3: e0:ed:6e:e1:13:10:34:d9:54:d9:2b:4e:95:8b:85:a9:c3:c6: 45:ea:55:42:1e:89:e5:b4:44:3d:77:fe:6a:da:2f:97:02:3c: ed:bb:01:fa:41:7a:e4:4d:29:ec:2f:d2:58:3a:15:ec:64:fb: 8c:c8:67:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUxMjA3MDExNjEwWhcNMjUxMjE0MDExNjEwWjAYMRYwFAYD VQQDEw02OTM0ZDU1YS02NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApy+pJ+Pkl/kSUgyuFsLkoyHXfq7IbCYqZIF77Tyb3UrYxsqtO1Kspgb23AJ+ /wL/FF/7MlCLU02377SicQhiN9cO16gvJ70L53rf9pPqmWpnYdeH+ONVgeHd0Fk4 ZWDxaAkEBMn8OLy5y8brQjh/1l3znQVUlJTj9c8RpR9kG/OYqY2mzE0ltAkl1PPZ GFOrQ3Ej46fh1A+0oSJBHZQ3xzStVnE563X/dkWFpZ+3o0vH1Qc/th2pMKx/FWzQ QK48P9fmj8bwLudCZ/vBI8q09d04zgnH4TjShNb7FA0atC0YKaKDrFkqdQCKA4oM esqY6CrE1sZxfVbLxYRZvCPU0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNT7nZ1f wBMbgXqEYIfaxnOB6ktuMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAONSYnI51tbC9wazCuQVp7EjEUZmUv/hA1E25tLy/8eRx4py9lGfNZ FNtJQckQDZp87c9eEBZq18Ia7Rvw+KuNFDFRp0O0Ee5vNT/o4Qt5q9tAbDEaci5f 26EklGhP9RpOpGdVwlpnINZt5LjONy7X8sHCY8tdcFYrCLhoqULhFSKRg5oA3nfW yW4tK8Y9Qa/YnSOjTT6JlxjN0eYtAHHqKVudugNZbVDAhaETszCWhyLNM5iA1p37 tFCKbS43itWsHKZP7qPg7W7hExA02VTZK06Vi4Wpw8ZF6lVCHonltEQ9d/5q2i+X AjztuwH6QXrkTSnsL9JYOhXsZPuMyGfW -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:12 2025 by rpki-client