This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft File: 5zsrW0iY5HX_6GmyTTSFzsh90Us.mft (raw, json) Hash identifier: i/DRijO/Wl8MaNDYddqFZb2eX2N3smrxbVYka/RSkQA= Subject key identifier: 36:65:1E:CA:44:51:26:EF:56:5E:4E:D1:FD:66:6E:02:B5:DA:D4:51 Authority key identifier: E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B Certificate issuer: /CN=A9181C93/serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft Manifest number: 01A2 Signing time: Tue 23 Dec 2025 02:19:54 +0000 Manifest this update: Tue 23 Dec 2025 02:19:53 +0000 Manifest next update: Tue 30 Dec 2025 02:19:53 +0000 Files and hashes: 1: 5zsrW0iY5HX_6GmyTTSFzsh90Us.crl (hash: tB5j7H9CAAOBFORcpQqDacC67CQwT6RIbBB+dMll2W4=) 2: A2ED9CA2619D11EE8699DD20C4F9AE02.roa (hash: WdXsExRUw+f/GUR+R+z7/tv+R2Ge9Z2Or4/eLH99sPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.crl rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181C93, serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B Validity Not Before: Dec 23 02:19:53 2025 GMT Not After : Dec 30 02:19:53 2025 GMT Subject: CN=6949fc4a-ed45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cf:5d:d4:d3:4b:b8:b8:fa:de:ba:d2:7c:0c: 03:6e:33:f8:73:07:a4:d9:12:f1:61:96:4c:85:fb: 20:b2:9c:bf:83:83:da:53:9c:30:99:e8:77:8c:57: ba:e6:c6:da:91:04:b7:1c:7b:9e:94:c3:26:fd:a3: a9:93:e9:f3:7d:34:0c:d5:4a:08:f5:61:e8:11:2c: 0f:3b:1d:2c:93:4c:00:f9:7a:f4:ae:3c:2a:3a:06: 65:5c:6d:27:45:f5:0d:a4:ab:3d:15:d8:8c:ca:3b: 0c:71:61:62:7d:21:0e:c4:8a:27:98:cb:07:97:c8: 90:83:b6:2a:43:69:2e:3b:7f:40:4d:d9:08:eb:ed: 1e:45:0e:5e:58:bc:d8:1b:b2:26:9f:55:c7:5d:c9: 9d:28:7d:b9:4e:f6:08:11:41:c5:38:ce:da:85:7e: 33:6b:3e:86:ba:29:c8:a2:1a:b6:78:43:fa:8c:74: 16:5c:3e:d0:20:e4:ce:06:c7:7e:4b:7b:c2:03:be: 47:08:e0:bd:d9:d8:c6:02:c6:31:87:25:7f:84:f9: 25:b2:ec:e7:51:2f:8b:72:50:ae:e4:d8:0e:e0:ad: 3b:a6:3a:16:94:ed:eb:3f:c9:9a:85:99:b7:3e:61: 91:bf:ee:c7:6d:85:c6:2d:38:e2:be:06:83:6e:58: 0c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:65:1E:CA:44:51:26:EF:56:5E:4E:D1:FD:66:6E:02:B5:DA:D4:51 X509v3 Authority Key Identifier: keyid:E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e6:b4:8d:6a:f4:b9:3b:09:50:e4:be:e5:a7:d8:72:42:64: 58:86:43:11:2b:d0:3b:0c:47:9a:f8:17:ac:bf:02:4a:9c:a3: 63:fe:5e:40:5e:d6:4e:aa:a9:14:f4:b0:e7:ab:b9:d8:e2:57: 95:fb:0b:95:66:55:4f:3f:c7:11:fa:eb:71:98:28:13:64:bd: 0a:d5:63:c5:cc:ec:f3:ef:91:26:5e:f5:b6:33:8a:55:70:a6: 0d:a2:3b:31:95:dc:d3:0e:7a:5d:bc:b0:0c:89:f6:fc:e2:b5: 8b:64:b0:d7:91:1d:76:cc:65:f7:5f:30:37:ba:33:2c:a0:4a: 71:cb:5c:81:47:43:fd:1f:83:f9:18:55:1f:99:03:c3:02:40: a9:51:5d:0a:f4:20:7c:e5:dc:d6:d9:4c:fe:70:41:ae:3c:73: eb:52:1f:73:62:de:cf:be:12:2c:70:b9:f4:ff:76:3b:25:0c: 93:34:61:b2:60:2e:ed:eb:15:8b:64:a0:c2:e7:98:6d:04:fd: dd:67:f9:e9:1b:76:5b:4c:b7:22:9a:e9:62:e3:ae:94:33:c6: a0:5c:2d:d4:c6:4b:d6:11:49:b0:76:6c:b3:a1:56:bd:f7:6d: cc:9a:31:b1:92:ea:16:1e:71:77:b2:7d:56:37:10:9c:d9:3c: 43:87:ac:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDOTMxMTAvBgNVBAUTKEU3M0IyQjVCNDg5OEU0NzVGRkU4NjlCMjREMzQ4NUNF Qzg3REQxNEIwHhcNMjUxMjIzMDIxOTUzWhcNMjUxMjMwMDIxOTUzWjAYMRYwFAYD VQQDDA02OTQ5ZmM0YS1lZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts9d1NNLuLj63rrSfAwDbjP4cwek2RLxYZZMhfsgspy/g4PaU5wwmeh3jFe6 5sbakQS3HHuelMMm/aOpk+nzfTQM1UoI9WHoESwPOx0sk0wA+Xr0rjwqOgZlXG0n RfUNpKs9FdiMyjsMcWFifSEOxIonmMsHl8iQg7YqQ2kuO39ATdkI6+0eRQ5eWLzY G7Imn1XHXcmdKH25TvYIEUHFOM7ahX4zaz6GuinIohq2eEP6jHQWXD7QIOTOBsd+ S3vCA75HCOC92djGAsYxhyV/hPklsuznUS+LclCu5NgO4K07pjoWlO3rP8mahZm3 PmGRv+7HbYXGLTjivgaDblgMZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZlHspE USbvVl5O0f1mbgK12tRRMB8GA1UdIwQYMBaAFOc7K1tImOR1/+hpsk00hc7IfdFL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUM5My82RDBGNjQwRTYx OTcxMUVFQTYyQTM2NzZDNEY5QUUwMi81enNyVzBpWTVIWF82R215VFRTRnpzaDkw VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV6c3JXMGlZNUhYXzZHbXlUVFNGenNoOTBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUM5My82RDBGNjQwRTYxOTcxMUVFQTYyQTM2NzZDNEY5QUUwMi81enNyVzBpWTVI WF82R215VFRTRnpzaDkwVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW5rSNavS5OwlQ5L7lp9hyQmRYhkMRK9A7DEea+BesvwJKnKNj/l5A XtZOqqkU9LDnq7nY4leV+wuVZlVPP8cR+utxmCgTZL0K1WPFzOzz75EmXvW2M4pV cKYNojsxldzTDnpdvLAMifb84rWLZLDXkR12zGX3XzA3ujMsoEpxy1yBR0P9H4P5 GFUfmQPDAkCpUV0K9CB85dzW2Uz+cEGuPHPrUh9zYt7PvhIscLn0/3Y7JQyTNGGy YC7t6xWLZKDC55htBP3dZ/npG3ZbTLcimuli466UM8agXC3UxkvWEUmwdmyzoVa9 923MmjGxkuoWHnF3sn1WNxCc2TxDh6y3 -----END CERTIFICATE-----Generated at Wed Dec 24 21:35:38 2025 by rpki-client