This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: 7GlkyDCYfcWBywa+zXpc1z65nYXkzZzQaZEBYobB8u8= Subject key identifier: 86:39:E6:C3:A4:C2:D4:82:AE:66:7E:A1:29:EC:C0:1D:7A:44:89:65 Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: BA Signing time: Fri 05 Dec 2025 04:01:43 +0000 Manifest this update: Fri 05 Dec 2025 04:01:43 +0000 Manifest next update: Fri 12 Dec 2025 04:01:43 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: 3K9K6RIXUbIpSkFhF9/0I+4noKqNbMmeqJ77ZSy8yHE=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: nae7I/KEW+0m3zT4me5Qc5I3irrgd5B22dbuBfqdUCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61, serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: Dec 5 04:01:43 2025 GMT Not After : Dec 12 04:01:43 2025 GMT Subject: CN=69325927-2806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d3:64:75:ec:5c:9b:77:a4:e2:ca:1d:08:bc: 5a:5c:7f:87:96:f0:8e:b3:8b:0f:9c:a9:47:fe:9c: 56:19:1a:92:db:ca:0f:0b:3b:b7:53:af:5a:82:12: 27:f4:91:28:29:13:dd:5e:34:50:3e:33:a3:b7:85: 27:ce:4d:4b:92:d7:bb:4e:e1:a4:c8:5c:46:51:41: b8:f5:b5:a7:a4:fd:ed:fc:93:81:33:84:da:eb:41: dd:e8:33:47:0a:0d:cd:c4:df:e4:45:1d:0d:4e:97: 02:86:a1:66:d6:9c:a3:55:9a:b3:21:0c:f8:f9:66: ae:72:d5:c7:26:0b:a7:4c:28:22:43:32:00:22:d9: 48:8d:8b:45:a4:3c:e6:5d:93:cb:2f:48:5c:a2:1f: 44:03:4a:96:02:c9:73:eb:a1:dd:a9:7a:aa:f2:8d: de:97:1f:35:0c:a7:4d:e5:57:85:cc:1f:df:a3:3b: 1e:f4:e8:b3:10:e5:a9:33:f2:c3:a7:38:af:86:51: cf:80:87:68:98:90:51:a8:9b:31:b4:91:a1:78:50: 9a:4a:64:e2:62:6e:1b:45:56:8e:83:a3:39:5a:91: 26:3b:34:64:0e:44:25:42:95:f1:ce:2a:b4:d5:3e: dd:1f:5d:6d:aa:37:de:41:d7:6b:61:b6:e7:11:33: ad:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:39:E6:C3:A4:C2:D4:82:AE:66:7E:A1:29:EC:C0:1D:7A:44:89:65 X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7e:59:37:f7:e5:93:c5:05:ba:79:0a:52:b5:59:46:d9:00: e6:0c:96:cd:84:b1:8c:4b:7e:b4:e0:ea:d7:01:1b:ee:d0:cf: 23:5f:34:7a:0b:5d:63:71:1e:8c:a1:9d:be:a7:22:47:fc:90: 84:fc:3f:f9:4e:e4:47:13:b0:ca:e5:9a:6d:1a:7e:b2:b3:59: bb:50:76:e6:36:54:80:27:a5:48:be:c2:7a:35:aa:8c:26:a8: 3e:af:2c:74:95:a2:43:32:7c:6e:45:06:66:24:d9:02:8d:47: bc:c7:42:28:7b:8a:8c:f8:31:56:01:9c:89:67:73:90:c9:c0: 87:78:36:9e:cb:e3:54:d6:3e:d5:fa:3c:1e:43:8f:4d:2d:4c: f3:2f:b7:c7:80:e4:95:e6:36:05:ca:f6:eb:ab:ec:39:35:c6: ea:95:53:0f:e6:c1:e9:19:ac:53:47:93:f0:da:a0:15:e0:a1: bf:fa:f2:8c:31:21:2a:96:8f:93:04:50:95:2c:5a:0e:b9:2c: 29:71:cd:44:00:1c:f7:a6:8b:33:8e:11:fb:a2:d2:db:e3:a7: f9:03:a2:db:1e:f4:b6:e7:a9:4c:9e:e9:f7:9a:25:d0:ec:2c: 49:91:08:3d:34:b0:4c:61:f5:f1:ea:d9:b2:23:95:fd:bd:19: 9f:7a:9c:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNjExMTAvBgNVBAUTKDY0RDJCM0Q2NUE1QzZDQ0U0RDA4RDc4RkZFREIyODU2 QjY0MUQ2QTMwHhcNMjUxMjA1MDQwMTQzWhcNMjUxMjEyMDQwMTQzWjAYMRYwFAYD VQQDEw02OTMyNTkyNy0yODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttNkdexcm3ek4sodCLxaXH+HlvCOs4sPnKlH/pxWGRqS28oPCzu3U69aghIn 9JEoKRPdXjRQPjOjt4Unzk1Lkte7TuGkyFxGUUG49bWnpP3t/JOBM4Ta60Hd6DNH Cg3NxN/kRR0NTpcChqFm1pyjVZqzIQz4+WauctXHJgunTCgiQzIAItlIjYtFpDzm XZPLL0hcoh9EA0qWAslz66HdqXqq8o3elx81DKdN5VeFzB/fozse9OizEOWpM/LD pzivhlHPgIdomJBRqJsxtJGheFCaSmTiYm4bRVaOg6M5WpEmOzRkDkQlQpXxziq0 1T7dH11tqjfeQddrYbbnETOtyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIY55sOk wtSCrmZ+oSnswB16RIllMB8GA1UdIwQYMBaAFGTSs9ZaXGzOTQjXj/7bKFa2Qdaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM2MS80NDZCRDdBMkI2 QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JNNU5DTmVQX3Rzb1ZyWkIx cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkM2MS80NDZCRDdBMkI2QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JN NU5DTmVQX3Rzb1ZyWkIxcU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3flk39+WTxQW6eQpStVlG2QDmDJbNhLGMS3604OrXARvu0M8jXzR6 C11jcR6MoZ2+pyJH/JCE/D/5TuRHE7DK5ZptGn6ys1m7UHbmNlSAJ6VIvsJ6NaqM Jqg+ryx0laJDMnxuRQZmJNkCjUe8x0Ioe4qM+DFWAZyJZ3OQycCHeDaey+NU1j7V +jweQ49NLUzzL7fHgOSV5jYFyvbrq+w5NcbqlVMP5sHpGaxTR5Pw2qAV4KG/+vKM MSEqlo+TBFCVLFoOuSwpcc1EABz3poszjhH7otLb46f5A6LbHvS256lMnun3miXQ 7CxJkQg9NLBMYfXx6tmyI5X9vRmfepxa -----END CERTIFICATE-----Generated at Sat Dec 6 22:43:29 2025 by rpki-client