This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft File: z3rG54U-SVgocAZDAHZYRlfgyVA.mft (raw, json) Hash identifier: oxNX+lKzpHs47F2wA7DSw3fqAcHuh0s+wRR/+4vqkds= Subject key identifier: 9E:FB:9A:B2:A6:81:18:AF:6D:F4:AE:F0:99:EB:07:02:07:B5:B2:5D Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 250C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft Manifest number: 24F2 Signing time: Sat 20 Dec 2025 15:37:34 +0000 Manifest this update: Sat 20 Dec 2025 15:37:33 +0000 Manifest next update: Sat 27 Dec 2025 15:37:33 +0000 Files and hashes: 1: z3rG54U-SVgocAZDAHZYRlfgyVA.crl (hash: g3vl35BMlbm7JdzOxbGfrnZp4c68/TtqgEqYrkIZ/Nw=) 2: 93957C3A25B211ECB5356475C4F9AE02.roa (hash: BdOiTbzqh5XSdUEde1pJSh9jcSbYou4UnLUcs5Z11Mw=) 3: 54040CE414F111F08814732CC4F9AE02.roa (hash: uhWwpX7EH4SHxyPNQgHJ8g+4j0iOnCO5ph2jjf0SUwo=) 4: 81C0C29CB0F311E5AB30F151C4F9AE02.roa (hash: OW7j0FFz0XfQbm3/I5GoSRUOzPWQeOb92johNE2e0dM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9484 (0x250c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: Dec 20 15:37:33 2025 GMT Not After : Dec 27 15:37:33 2025 GMT Subject: CN=6946c2be-69be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3b:1f:a8:71:a5:ff:cb:54:67:0c:58:27:13: b7:65:2e:45:72:14:35:66:7a:5c:ab:8d:aa:4f:02: 6b:1d:23:32:61:fe:42:45:fd:19:6a:51:40:da:2c: 38:57:59:f5:94:69:0c:62:c1:59:6a:6d:11:47:3d: 7e:e9:5a:90:2a:28:95:b0:c3:a1:6d:5c:8b:9a:fc: 9c:31:bb:fb:6c:57:83:d0:cc:5b:45:f3:b6:b4:cd: ed:c4:77:6e:4f:cd:b9:de:86:62:67:89:61:30:47: 1f:0e:48:3e:ed:39:0b:d5:45:45:5d:db:ed:36:9d: a1:7c:50:8b:7e:33:b4:75:5c:4b:7d:1b:50:0d:96: fb:41:3f:3f:14:12:20:cf:d3:a5:5e:40:26:2e:3f: 46:fd:f6:c7:a1:82:11:9d:66:69:6a:f0:23:4c:c2: a8:50:a0:8d:0c:f8:67:0e:fd:ef:09:88:9c:40:ff: cd:55:27:a3:2f:18:28:2c:5a:3a:62:89:22:ef:71: 5e:60:a4:fc:a1:85:e8:89:8b:cf:22:c4:cf:9b:c9: f9:46:f9:7d:d8:16:06:5b:f6:0a:e9:4f:c0:79:29: 32:45:92:fb:05:db:b0:b1:e0:cd:99:67:e5:9d:16: 02:a8:89:86:b8:ab:fc:d4:eb:41:09:72:7e:da:c6: 56:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:FB:9A:B2:A6:81:18:AF:6D:F4:AE:F0:99:EB:07:02:07:B5:B2:5D X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:9f:79:38:34:4a:0a:cf:66:b6:c6:d3:f8:fa:3b:7a:72:ff: 6e:64:0f:ca:76:8a:9d:3e:50:83:d4:c4:ee:35:a0:25:a1:58: af:8d:5b:3f:69:8e:6a:1b:44:99:65:50:0c:5a:47:b3:ab:35: a7:b0:13:c4:b1:f2:08:1e:c3:c6:c1:59:c3:ec:df:e9:ba:32: b1:56:07:14:ae:82:0f:e7:88:39:32:08:c6:6a:7a:16:91:5d: 8a:db:73:5d:40:a2:7a:06:82:40:61:3d:7b:36:4e:94:ae:ef: 46:5c:57:72:b4:dc:0d:41:38:f7:bd:37:19:44:77:fb:bc:1c: a2:4c:31:be:a0:ed:6f:70:5d:2f:d1:69:ca:55:09:b8:be:ac: 9e:8a:51:21:31:8b:75:58:23:3b:f5:0d:34:c2:6b:8e:e6:5f: 67:05:ab:91:da:6d:c8:eb:08:d8:d0:dc:61:10:19:f7:3e:5e: e4:7c:41:77:b8:f8:48:e4:33:49:a5:45:d5:c1:c0:97:a2:ea: e3:87:6e:de:fb:cf:a2:de:07:a8:ac:84:11:c4:2e:ad:e5:fe: 48:4b:d3:69:12:ed:de:0e:46:c2:e2:f3:66:32:fa:45:a0:27: 3c:92:db:21:a8:ee:32:7d:f6:bb:f8:35:b1:aa:e9:d5:a8:9c: 3d:fe:3e:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjUxMjIwMTUzNzMzWhcNMjUxMjI3MTUzNzMzWjAYMRYwFAYD VQQDDA02OTQ2YzJiZS02OWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjsfqHGl/8tUZwxYJxO3ZS5FchQ1Znpcq42qTwJrHSMyYf5CRf0ZalFA2iw4 V1n1lGkMYsFZam0RRz1+6VqQKiiVsMOhbVyLmvycMbv7bFeD0MxbRfO2tM3txHdu T8253oZiZ4lhMEcfDkg+7TkL1UVFXdvtNp2hfFCLfjO0dVxLfRtQDZb7QT8/FBIg z9OlXkAmLj9G/fbHoYIRnWZpavAjTMKoUKCNDPhnDv3vCYicQP/NVSejLxgoLFo6 Yoki73FeYKT8oYXoiYvPIsTPm8n5Rvl92BYGW/YK6U/AeSkyRZL7BduwseDNmWfl nRYCqImGuKv81OtBCXJ+2sZW0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ77mrKm gRivbfSu8JnrBwIHtbJdMB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTE2QS8xRDdBRDBCQTQ1OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNW Z29jQVpEQUhaWVJsZmd5VkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDn3k4NEoKz2a2xtP4+jt6cv9uZA/KdoqdPlCD1MTuNaAloVivjVs/ aY5qG0SZZVAMWkezqzWnsBPEsfIIHsPGwVnD7N/pujKxVgcUroIP54g5MgjGanoW kV2K23NdQKJ6BoJAYT17Nk6Uru9GXFdytNwNQTj3vTcZRHf7vByiTDG+oO1vcF0v 0WnKVQm4vqyeilEhMYt1WCM79Q00wmuO5l9nBauR2m3I6wjY0NxhEBn3Pl7kfEF3 uPhI5DNJpUXVwcCXourjh27e+8+i3georIQRxC6t5f5IS9NpEu3eDkbC4vNmMvpF oCc8ktshqO4yffa7+DWxqunVqJw9/j7e -----END CERTIFICATE-----Generated at Mon Dec 22 04:44:55 2025 by rpki-client