This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft File: z3rG54U-SVgocAZDAHZYRlfgyVA.mft (raw, json) Hash identifier: R8s8oDMzmhxHxtmbohKJ8xHvNSOylbu+abZh36wpcoo= Subject key identifier: 2F:07:DC:4A:82:AF:90:1A:99:79:28:9B:1E:1B:AC:83:1F:CE:C6:4D Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 2505 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft Manifest number: 24EB Signing time: Sat 06 Dec 2025 15:31:28 +0000 Manifest this update: Sat 06 Dec 2025 15:31:27 +0000 Manifest next update: Sat 13 Dec 2025 15:31:27 +0000 Files and hashes: 1: z3rG54U-SVgocAZDAHZYRlfgyVA.crl (hash: PoPsjzD3fnngCcQ70QbOucMunbvVhI/s7mXv02U+91U=) 2: 93957C3A25B211ECB5356475C4F9AE02.roa (hash: BdOiTbzqh5XSdUEde1pJSh9jcSbYou4UnLUcs5Z11Mw=) 3: 54040CE414F111F08814732CC4F9AE02.roa (hash: uhWwpX7EH4SHxyPNQgHJ8g+4j0iOnCO5ph2jjf0SUwo=) 4: 81C0C29CB0F311E5AB30F151C4F9AE02.roa (hash: OW7j0FFz0XfQbm3/I5GoSRUOzPWQeOb92johNE2e0dM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9477 (0x2505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: Dec 6 15:31:27 2025 GMT Not After : Dec 13 15:31:27 2025 GMT Subject: CN=69344c4f-de8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:c9:54:fa:91:6a:10:87:a2:96:e4:2b:b3: 93:8c:d5:a3:82:e7:9f:b4:10:bb:da:a3:a5:84:23: bc:e9:6d:ba:92:91:8f:8f:f1:00:a3:1d:c9:b7:41: 40:8f:52:a4:c9:dd:a1:35:b9:1c:65:98:04:e8:bb: 5c:35:ed:7d:2b:cf:f7:30:e9:d9:3f:0d:21:21:4f: 12:18:36:1f:c6:17:f3:f2:1d:85:3a:72:d1:97:5f: f0:14:13:f9:e5:44:32:fd:33:31:39:ac:37:b6:c5: 31:ef:24:89:f1:c7:01:00:ee:d2:5f:fc:a6:5c:49: 84:7c:33:a0:4e:88:9a:a3:c7:a3:e9:4b:d8:f4:ec: 01:36:e7:6e:1d:1a:3c:25:1e:e8:73:c9:f6:24:cf: a3:91:ff:17:eb:fc:d0:24:09:ec:43:86:a5:ad:3d: b6:b0:f5:3d:00:62:28:30:00:fa:a6:b3:2e:ee:17: 32:e7:b6:af:92:e0:da:ca:64:b6:b7:6a:42:0d:b9: af:90:38:88:af:af:e8:83:7e:36:34:d2:54:6b:02: bd:a7:33:30:ee:bb:d7:44:da:49:01:a4:a4:56:d8: 8d:f9:f8:31:7f:c5:9b:9c:4a:6c:a9:6e:04:9f:b6: 54:05:3f:92:fb:c2:f4:3d:d0:7b:55:22:cd:ab:6f: 37:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:07:DC:4A:82:AF:90:1A:99:79:28:9B:1E:1B:AC:83:1F:CE:C6:4D X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:89:f1:39:55:41:c8:f1:08:1c:7c:95:16:ae:18:96:e6:c1: 07:23:4f:4c:47:76:32:45:3c:94:ed:1a:9e:5b:7a:9e:9c:40: 7f:20:b8:59:48:90:0a:d0:5b:cb:03:88:be:91:51:0f:9c:6a: 20:07:7a:f7:7f:12:31:94:4b:d6:9f:15:df:a2:49:c6:35:34: e9:72:0d:4c:39:3c:ac:57:34:60:06:ac:b0:00:8d:50:2e:4a: e0:1d:d9:97:a2:12:46:06:e6:76:7a:68:49:f8:a2:eb:56:ab: 21:4f:f4:ef:c6:bf:d4:4d:7e:f7:cb:76:b2:8f:2c:91:22:21: 2f:de:eb:a2:cc:3b:d2:88:f3:83:e3:3b:4f:b1:bd:6a:37:f7: 4a:2f:cb:e9:a3:66:e9:13:0d:ad:09:a0:d9:3f:82:11:00:af: 3d:e0:10:9a:73:c6:af:9a:2f:d0:55:be:82:06:f6:2d:e8:a5: 79:d6:f5:80:e5:73:04:de:9d:1a:25:58:30:db:10:c8:b5:b4: 7e:69:1d:da:92:67:c5:1a:2e:85:29:73:9b:f9:8f:04:a8:5f: 19:3e:42:fd:7b:c5:24:52:85:8b:ad:c9:a9:6c:7f:65:30:ea: 16:5b:45:2a:b5:08:23:c8:c0:fd:5b:f3:7d:05:e3:bf:b8:19: 7a:26:4d:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjUxMjA2MTUzMTI3WhcNMjUxMjEzMTUzMTI3WjAYMRYwFAYD VQQDEw02OTM0NGM0Zi1kZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdnJVPqRahCHopbkK7OTjNWjgueftBC72qOlhCO86W26kpGPj/EAox3Jt0FA j1Kkyd2hNbkcZZgE6LtcNe19K8/3MOnZPw0hIU8SGDYfxhfz8h2FOnLRl1/wFBP5 5UQy/TMxOaw3tsUx7ySJ8ccBAO7SX/ymXEmEfDOgToiao8ej6UvY9OwBNuduHRo8 JR7oc8n2JM+jkf8X6/zQJAnsQ4alrT22sPU9AGIoMAD6prMu7hcy57avkuDaymS2 t2pCDbmvkDiIr6/og342NNJUawK9pzMw7rvXRNpJAaSkVtiN+fgxf8WbnEpsqW4E n7ZUBT+S+8L0PdB7VSLNq283UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8H3EqC r5AamXkomx4brIMfzsZNMB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTE2QS8xRDdBRDBCQTQ1OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNW Z29jQVpEQUhaWVJsZmd5VkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgifE5VUHI8QgcfJUWrhiW5sEHI09MR3YyRTyU7RqeW3qenEB/ILhZ SJAK0FvLA4i+kVEPnGogB3r3fxIxlEvWnxXfoknGNTTpcg1MOTysVzRgBqywAI1Q LkrgHdmXohJGBuZ2emhJ+KLrVqshT/Tvxr/UTX73y3ayjyyRIiEv3uuizDvSiPOD 4ztPsb1qN/dKL8vpo2bpEw2tCaDZP4IRAK894BCac8avmi/QVb6CBvYt6KV51vWA 5XME3p0aJVgw2xDItbR+aR3akmfFGi6FKXOb+Y8EqF8ZPkL9e8UkUoWLrcmpbH9l MOoWW0UqtQgjyMD9W/N9BeO/uBl6Jk1m -----END CERTIFICATE-----Generated at Sat Dec 6 18:53:43 2025 by rpki-client