This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: 22Zb0Yrmg2/LGEx0ZphWw1xyZ7mWNzXGLz/3uxnYbpk= Subject key identifier: C4:90:8B:C1:C5:14:12:66:DC:BC:7A:41:04:13:A3:CA:3D:07:08:08 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CE3 Signing time: Thu 04 Dec 2025 17:38:06 +0000 Manifest this update: Thu 04 Dec 2025 17:38:06 +0000 Manifest next update: Thu 11 Dec 2025 17:38:06 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: +qOlc4bEkyMvisF49q+AApTsDXjgIl6Tsuc2JnFi6oQ=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Dec 4 17:38:06 2025 GMT Not After : Dec 11 17:38:06 2025 GMT Subject: CN=6931c6fe-33ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:08:1b:a4:f7:9c:cc:96:ef:f9:e4:76:e0:44: cb:74:16:d9:a6:dc:ae:66:1e:bb:33:05:d1:92:53: eb:2d:e1:49:97:37:4d:ed:c1:b3:4b:99:9c:f0:ab: ed:e7:bf:e3:02:c3:6f:75:66:f8:22:6a:cf:e1:6c: 8b:36:09:60:1d:46:21:93:d6:67:ce:6b:26:b6:cf: 92:17:ac:1f:d9:49:a3:73:db:53:64:c3:6e:84:b2: 66:d5:df:75:4c:54:b6:2e:23:13:24:3f:46:94:cf: 26:0f:59:31:70:7f:f8:c1:66:91:7f:31:36:f6:9a: 84:24:46:c9:ee:11:b3:d1:0b:94:4d:e6:34:de:d6: c8:0d:44:fb:76:cd:73:a8:46:cd:58:6d:0c:9b:5b: aa:0a:28:72:a9:f3:1a:96:58:98:41:e5:46:da:07: c6:2c:d5:37:3e:f3:d5:1a:7f:32:07:09:1f:ed:41: b2:d7:ac:f1:20:df:96:eb:2a:ee:d6:a8:25:8c:9a: da:33:bc:25:4b:7c:13:51:8b:86:db:fa:4f:59:36: ce:a1:05:87:b5:d4:f9:76:c3:ca:0b:dc:a5:05:8a: 6b:c1:c4:2d:ae:56:cb:d3:6c:5c:6e:0c:a2:a1:5d: f3:f8:77:0f:26:4d:dc:60:a1:6e:80:0f:09:10:1f: 90:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:90:8B:C1:C5:14:12:66:DC:BC:7A:41:04:13:A3:CA:3D:07:08:08 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:33:d6:87:48:c8:38:f8:c4:0a:ef:35:6d:f8:09:15:73:c8: c0:6c:ad:c9:52:d4:ef:24:53:c7:9d:8b:b5:de:f5:d7:86:7b: 5a:9f:1d:9b:e9:85:36:eb:c1:63:7a:a6:25:cd:9b:96:c2:2c: fd:e8:78:d6:c3:4c:ee:d1:03:92:6e:da:63:e2:b7:e7:7a:36: 2b:55:53:36:db:d2:92:34:d4:77:93:18:93:98:c9:de:51:42: 27:46:5b:2d:bf:be:43:c0:16:87:86:85:bd:06:5b:ba:eb:82: b1:b9:7b:a4:f2:47:34:d9:6f:98:5c:9a:7c:26:b7:e0:f6:db: f0:d9:9c:9c:30:08:29:60:f8:24:7a:e9:27:69:cf:6c:57:19: ba:33:d3:8d:2b:8f:cc:11:5e:57:e9:04:6f:38:58:66:d0:7f: f6:3a:5c:5b:53:ba:99:55:de:eb:b6:7e:49:2f:9c:bf:17:1a: 98:d8:f5:17:fe:79:fd:ad:3f:d4:2a:02:78:a0:47:39:03:fc: c1:c1:41:28:40:11:d8:f8:f6:78:d0:29:2f:98:47:5b:d6:5b: 89:ed:25:dc:fc:25:e8:cc:3c:d9:bc:b3:e0:89:c8:44:57:73: f6:96:6a:9a:6c:e3:a3:e8:2d:89:7e:00:d3:81:88:52:97:f4: 96:a5:bf:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUxMjA0MTczODA2WhcNMjUxMjExMTczODA2WjAYMRYwFAYD VQQDEw02OTMxYzZmZS0zM2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ggbpPeczJbv+eR24ETLdBbZptyuZh67MwXRklPrLeFJlzdN7cGzS5mc8Kvt 57/jAsNvdWb4ImrP4WyLNglgHUYhk9Znzmsmts+SF6wf2Umjc9tTZMNuhLJm1d91 TFS2LiMTJD9GlM8mD1kxcH/4wWaRfzE29pqEJEbJ7hGz0QuUTeY03tbIDUT7ds1z qEbNWG0Mm1uqCihyqfMalliYQeVG2gfGLNU3PvPVGn8yBwkf7UGy16zxIN+W6yru 1qgljJraM7wlS3wTUYuG2/pPWTbOoQWHtdT5dsPKC9ylBYprwcQtrlbL02xcbgyi oV3z+HcPJk3cYKFugA8JEB+QoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSQi8HF FBJm3Lx6QQQTo8o9BwgIMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRM9aHSMg4+MQK7zVt+AkVc8jAbK3JUtTvJFPHnYu13vXXhntanx2b 6YU268FjeqYlzZuWwiz96HjWw0zu0QOSbtpj4rfnejYrVVM229KSNNR3kxiTmMne UUInRlstv75DwBaHhoW9Blu664KxuXuk8kc02W+YXJp8Jrfg9tvw2ZycMAgpYPgk euknac9sVxm6M9ONK4/MEV5X6QRvOFhm0H/2OlxbU7qZVd7rtn5JL5y/FxqY2PUX /nn9rT/UKgJ4oEc5A/zBwUEoQBHY+PZ40CkvmEdb1luJ7SXc/CXozDzZvLPgichE V3P2lmqabOOj6C2JfgDTgYhSl/SWpb9n -----END CERTIFICATE-----Generated at Sat Dec 6 11:22:45 2025 by rpki-client