This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: mL6LjoTP3Q9IC9zrukjwJ6lMGY+6IFlT0n0ikSmfz5c= Subject key identifier: 07:BD:B1:B6:DA:73:CA:AD:19:1F:52:80:D5:7F:E0:EA:09:B9:CE:25 Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 0403 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 03FF Signing time: Thu 04 Dec 2025 22:54:32 +0000 Manifest this update: Thu 04 Dec 2025 22:54:31 +0000 Manifest next update: Thu 11 Dec 2025 22:54:31 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: AG9WWAWYLNZ1afrow1oL6Y53SpU3MQlbvSWgblLzgIk=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Dec 4 22:54:31 2025 GMT Not After : Dec 11 22:54:31 2025 GMT Subject: CN=69321128-33a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d0:47:61:70:40:a7:f7:03:b9:43:5d:31:4e: 3e:24:95:0c:b4:b6:04:9a:fa:fd:e0:88:15:8a:78: ca:e5:d2:14:7f:0c:b5:96:c5:33:fe:af:d8:bd:5e: fb:99:2d:d6:23:51:45:54:33:b3:04:ab:8e:ec:44: b0:51:b6:08:a8:ae:6c:a1:f7:a6:10:2c:38:b8:f5: cc:7c:3a:1e:e5:34:9b:28:04:79:f5:22:c1:b5:12: f5:78:2c:ec:f6:45:9c:37:4c:a3:c5:c9:b3:ae:96: 25:5d:9d:0c:95:e1:0b:c6:1c:9c:de:c5:f2:0c:4e: 5e:29:71:7a:ce:b1:d3:79:b8:20:fa:f0:ca:b3:ee: fd:d8:a0:18:64:c8:af:f2:ae:00:48:4d:af:52:d6: 07:3d:15:f7:41:45:2f:dc:3b:e8:6f:45:72:4c:f2: b3:4f:23:38:ba:32:96:70:08:e8:99:c7:de:a4:80: ef:85:44:0f:d4:a6:d5:0e:85:9a:65:51:5b:a6:02: ea:cc:0a:bc:67:fd:35:07:81:97:f1:c8:7c:ce:01: 58:6f:b7:24:d3:87:f2:80:3d:fe:6c:7d:f1:02:50: b4:08:55:9b:df:79:47:92:b7:ca:21:e3:52:fe:de: 0a:2a:dd:8f:7e:39:bc:91:2c:90:07:37:c9:4a:39: a1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BD:B1:B6:DA:73:CA:AD:19:1F:52:80:D5:7F:E0:EA:09:B9:CE:25 X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:bf:1a:45:94:97:91:9d:82:17:91:c6:5d:b5:40:5c:6b:94: 2b:c1:81:43:1a:6d:db:4c:de:35:f5:77:5d:df:fa:2d:44:f6: 7e:47:0f:d5:54:bf:ad:59:f4:0e:59:68:ad:d2:a2:e4:1a:a1: d8:db:dd:10:67:5a:b7:46:c1:23:3d:35:80:75:cc:8d:46:00: 82:66:42:3f:3a:c9:49:09:8c:c6:16:4d:25:5b:77:69:c3:f6: 2f:cf:e6:5b:54:46:a3:a9:e9:8d:54:65:89:ac:ec:bd:1f:76: f6:0e:10:8d:6f:51:c3:84:fc:9c:13:26:11:c7:f4:13:56:9d: 35:d0:94:f6:87:99:33:c1:a4:36:69:97:b0:00:37:dc:01:1c: a3:65:26:1f:4a:3c:dd:34:9b:94:d6:8f:8c:0c:0b:a6:25:b3: fc:57:54:f6:65:ee:f8:ac:a5:e1:41:bb:ad:dd:ee:79:0d:77: 14:a5:64:91:45:26:b9:c3:0b:7e:57:4b:a4:5e:48:23:2b:9d: 60:60:cc:b7:aa:44:4e:2b:9d:0c:59:34:8a:db:ab:a0:d5:4a: 0a:d6:25:1f:11:8b:9a:c7:bf:b0:1f:cd:78:cb:03:8f:f9:92: 7f:fe:0e:52:5b:a7:f4:d6:34:03:db:b4:0c:46:7b:ef:af:6b: 70:4b:99:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUxMjA0MjI1NDMxWhcNMjUxMjExMjI1NDMxWjAYMRYwFAYD VQQDEw02OTMyMTEyOC0zM2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdBHYXBAp/cDuUNdMU4+JJUMtLYEmvr94IgVinjK5dIUfwy1lsUz/q/YvV77 mS3WI1FFVDOzBKuO7ESwUbYIqK5sofemECw4uPXMfDoe5TSbKAR59SLBtRL1eCzs 9kWcN0yjxcmzrpYlXZ0MleELxhyc3sXyDE5eKXF6zrHTebgg+vDKs+792KAYZMiv 8q4ASE2vUtYHPRX3QUUv3Dvob0VyTPKzTyM4ujKWcAjomcfepIDvhUQP1KbVDoWa ZVFbpgLqzAq8Z/01B4GX8ch8zgFYb7ck04fygD3+bH3xAlC0CFWb33lHkrfKIeNS /t4KKt2Pfjm8kSyQBzfJSjmhKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAe9sbba c8qtGR9SgNV/4OoJuc4lMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfvxpFlJeRnYIXkcZdtUBca5QrwYFDGm3bTN419Xdd3/otRPZ+Rw/V VL+tWfQOWWit0qLkGqHY290QZ1q3RsEjPTWAdcyNRgCCZkI/OslJCYzGFk0lW3dp w/Yvz+ZbVEajqemNVGWJrOy9H3b2DhCNb1HDhPycEyYRx/QTVp010JT2h5kzwaQ2 aZewADfcARyjZSYfSjzdNJuU1o+MDAumJbP8V1T2Ze74rKXhQbut3e55DXcUpWSR RSa5wwt+V0ukXkgjK51gYMy3qkROK50MWTSK26ug1UoK1iUfEYuax7+wH814ywOP +ZJ//g5SW6f01jQD27QMRnvvr2twS5m8 -----END CERTIFICATE-----Generated at Sat Dec 6 22:43:24 2025 by rpki-client