This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft File: 09zhcUP5z134AE-MZZf7LIzMcEY.mft (raw, json) Hash identifier: OioeDed01mGvkcjynW40/CfOBTcpKq+re5mIPqEe6HY= Subject key identifier: 91:E4:72:19:16:07:56:E6:96:3E:C1:D2:AE:51:55:41:92:86:E0:07 Authority key identifier: D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 Certificate issuer: /CN=A91F7D74/serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft Manifest number: F0 Signing time: Fri 05 Dec 2025 03:23:43 +0000 Manifest this update: Fri 05 Dec 2025 03:23:42 +0000 Manifest next update: Fri 12 Dec 2025 03:23:42 +0000 Files and hashes: 1: 09zhcUP5z134AE-MZZf7LIzMcEY.crl (hash: FZJT84K2jo2aJcXY7AmAUA59npJuXv2y0fhdPDrBrPk=) 2: 6A3FA88A693C11EF8B032237C4F9AE02.roa (hash: xlsUk+nBjbtHnwZ4MERgcwqdT/rxsOcTBiheef/VMVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7D74, serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Validity Not Before: Dec 5 03:23:42 2025 GMT Not After : Dec 12 03:23:42 2025 GMT Subject: CN=6932503e-f96f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:36:51:db:47:ea:1e:d3:2d:f6:6f:29:0e: 38:8f:69:2e:61:8b:7d:09:fe:68:b7:3e:9b:56:e5: 9e:1b:2a:4f:e1:73:55:14:74:84:df:d5:a8:e2:41: c0:49:76:b1:bf:0d:c2:6a:74:85:bd:9b:7d:98:cc: ef:21:18:12:d9:b6:01:dc:42:5b:34:4f:d3:0c:60: b4:48:8a:74:f1:90:e4:89:a3:b3:dc:8d:bb:66:2a: 89:13:02:23:18:11:b8:41:1f:c7:c9:9f:a9:80:8e: 66:c5:58:17:fa:dd:e3:34:e5:9b:82:65:db:d9:24: 1f:0c:14:dc:6b:bc:0a:d3:be:40:cf:dc:f2:af:6c: bd:df:d4:59:39:b3:ce:f0:e3:dd:94:2f:06:f9:fb: fc:28:a0:09:ed:5a:f7:aa:55:68:2f:97:67:cb:ec: 5f:dc:7d:36:e3:ad:62:08:a1:0f:3f:cd:38:70:0a: 4f:97:c0:44:97:f4:98:cb:bc:97:fb:53:27:19:b1: 2c:63:29:97:17:b2:e5:7e:6b:cf:85:bc:51:76:6f: d1:d7:a1:f0:1d:0a:78:44:35:16:38:d4:4b:8e:be: e6:46:8f:9e:45:12:51:84:0f:ed:ff:68:df:4f:54: c6:0b:87:74:2c:44:44:2b:4a:3a:81:b1:d6:2d:f4: 7a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E4:72:19:16:07:56:E6:96:3E:C1:D2:AE:51:55:41:92:86:E0:07 X509v3 Authority Key Identifier: keyid:D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:69:a9:48:23:43:f5:8d:bf:eb:cd:d7:56:90:a7:4f:c3:35: 27:08:9f:5e:a5:6e:55:54:3d:d1:6c:bb:7d:af:59:94:1d:5f: f9:8c:dc:b1:f3:11:6b:e8:40:df:29:98:de:65:36:8d:b2:dc: 4e:3c:fb:ce:62:aa:da:3e:e3:a3:b6:47:b6:27:76:d8:c1:75: 39:95:31:c9:5e:44:5e:8f:75:5b:af:92:40:75:c0:51:7c:4a: d1:1e:58:34:d1:20:ba:42:dc:ec:5e:7b:0c:24:b9:ef:72:b1: 9a:0b:c8:75:c6:83:12:a4:9d:09:58:a5:d0:af:d3:00:e1:3a: 6c:01:b7:b0:8b:ec:ed:f8:f8:79:fd:f6:1b:50:5b:ff:cf:26: b6:2b:50:d0:6a:f9:cb:89:77:d6:56:87:f2:68:12:b0:b8:fc: 7c:7a:f7:6b:5a:9d:8c:30:31:10:36:9c:2b:9f:7b:97:84:67: 95:ce:e5:37:79:d2:56:89:75:8f:e9:f4:71:7a:46:56:69:ed: 81:b1:e8:a2:0c:bd:27:27:50:18:51:63:bb:1e:98:5f:61:65: 59:58:77:7e:e2:2d:7b:53:92:5b:2c:7a:2e:32:7e:b3:cc:00: f6:27:d9:3b:6c:be:68:96:8c:73:a9:21:13:4a:4e:87:12:59: 72:af:31:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdENzQxMTAvBgNVBAUTKEQzRENFMTcxNDNGOUNGNURGODAwNEY4QzY1OTdGQjJD OENDQzcwNDYwHhcNMjUxMjA1MDMyMzQyWhcNMjUxMjEyMDMyMzQyWjAYMRYwFAYD VQQDEw02OTMyNTAzZS1mOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvII2UdtH6h7TLfZvKQ44j2kuYYt9Cf5otz6bVuWeGypP4XNVFHSE39Wo4kHA SXaxvw3CanSFvZt9mMzvIRgS2bYB3EJbNE/TDGC0SIp08ZDkiaOz3I27ZiqJEwIj GBG4QR/HyZ+pgI5mxVgX+t3jNOWbgmXb2SQfDBTca7wK075Az9zyr2y939RZObPO 8OPdlC8G+fv8KKAJ7Vr3qlVoL5dny+xf3H02461iCKEPP804cApPl8BEl/SYy7yX +1MnGbEsYymXF7LlfmvPhbxRdm/R16HwHQp4RDUWONRLjr7mRo+eRRJRhA/t/2jf T1TGC4d0LEREK0o6gbHWLfR6CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHkchkW B1bmlj7B0q5RVUGShuAHMB8GA1UdIwQYMBaAFNPc4XFD+c9d+ABPjGWX+yyMzHBG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0Q3NC8zNzhEOUEwQTY5 MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXoxMzRBRS1NWlpmN0xJek1j RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5emhjVVA1ejEzNEFFLU1aWmY3TEl6TWNFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0Q3NC8zNzhEOUEwQTY5MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXox MzRBRS1NWlpmN0xJek1jRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcaalII0P1jb/rzddWkKdPwzUnCJ9epW5VVD3RbLt9r1mUHV/5jNyx 8xFr6EDfKZjeZTaNstxOPPvOYqraPuOjtke2J3bYwXU5lTHJXkRej3Vbr5JAdcBR fErRHlg00SC6QtzsXnsMJLnvcrGaC8h1xoMSpJ0JWKXQr9MA4TpsAbewi+zt+Ph5 /fYbUFv/zya2K1DQavnLiXfWVofyaBKwuPx8evdrWp2MMDEQNpwrn3uXhGeVzuU3 edJWiXWP6fRxekZWae2BseiiDL0nJ1AYUWO7HphfYWVZWHd+4i17U5JbLHouMn6z zAD2J9k7bL5oloxzqSETSk6HEllyrzGc -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:40 2025 by rpki-client