This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft File: CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft (raw, json) Hash identifier: PV4ppSkgOPoVJiTsRaYAJBRakLJRQ1dvQvqq3gYD1ig= Subject key identifier: 82:63:97:62:CF:D6:CD:C4:7E:B5:84:5D:62:C6:7E:F0:0F:83:EC:B1 Authority key identifier: 09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC Certificate issuer: /CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Certificate serial: 1DF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft Manifest number: 1DDE Signing time: Wed 31 Dec 2025 15:56:50 +0000 Manifest this update: Wed 31 Dec 2025 15:56:50 +0000 Manifest next update: Wed 07 Jan 2026 15:56:50 +0000 Files and hashes: 1: CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl (hash: cuSwj5V+M3QDh6GaGo1AakwrylhL6q8/OJPj7hZ4uBA=) 2: 945DB376E34711EE87868164C4F9AE02.roa (hash: jKYWlk4C7kYul3yO/WtiSzFFPrzY/sFxwRTKtBHcm64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 15:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7671 (0x1df7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Validity Not Before: Dec 31 15:56:50 2025 GMT Not After : Jan 7 15:56:50 2026 GMT Subject: CN=695547c2-be1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c5:f7:3f:5d:64:4c:c2:47:bc:01:60:7a:60: 2e:22:a5:59:42:13:7a:bf:d2:e3:4d:19:b7:cf:27: dd:d1:dd:eb:6b:ee:64:f2:e1:e9:9f:e4:2c:c2:00: f6:5e:cb:28:4d:11:bd:65:5e:db:44:1c:ee:d6:b6: dc:4e:8d:6e:8a:41:9f:01:3a:4d:2a:38:4a:9a:91: e3:06:e3:22:37:8a:74:a5:95:22:dd:fc:d6:62:d0: d5:9b:22:40:eb:71:0e:a5:60:65:cd:7d:f1:7e:c8: e6:e0:02:7b:9a:1a:be:c0:42:b6:04:51:bd:7d:43: 6d:99:ed:a5:82:04:ef:9d:fc:8b:4d:2c:e7:81:34: d4:a2:d3:d9:3a:65:c4:e8:e7:17:02:ed:cc:c1:2e: fd:09:d5:55:45:fb:6a:ce:95:6f:ff:b0:bb:69:b6: 34:c9:d6:9b:eb:64:7d:0e:a8:40:cb:c5:68:d8:16: d1:38:97:4a:e9:f3:34:64:21:55:29:41:05:6e:04: 84:0e:4d:97:62:68:43:c4:ee:ff:fa:c3:64:8f:33: a0:e8:2b:c3:bd:a2:37:09:dc:ea:5b:a7:a8:ef:82: 2e:a6:68:af:a6:1f:4b:f9:6c:66:40:89:79:58:cb: 4c:dc:2f:97:38:dc:09:54:fe:96:30:17:23:60:38: c0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:63:97:62:CF:D6:CD:C4:7E:B5:84:5D:62:C6:7E:F0:0F:83:EC:B1 X509v3 Authority Key Identifier: keyid:09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:f3:68:6a:7d:2a:0b:e1:a7:2a:94:6d:3a:a2:e7:fd:05:70: 0c:9c:89:4c:94:cf:d6:f0:d7:46:a4:57:93:77:df:4e:c0:b2: b3:02:aa:09:39:6e:a1:69:76:92:2b:12:a5:4b:f6:b5:75:4f: 98:d0:72:56:4b:1c:c1:13:67:77:de:89:08:5d:28:da:2c:9e: 0d:fe:a8:98:a6:a4:51:e9:05:aa:1b:1c:41:9e:4f:09:8e:9c: 32:03:89:f7:3b:99:96:cb:1a:20:c2:06:b0:8d:2e:36:ae:0d: 8e:ff:dc:7b:30:85:38:84:1e:69:3a:0c:8e:2b:c3:dc:a9:f8: 22:5a:1e:ca:56:ea:a7:17:cb:75:ed:2c:c2:16:a5:f9:5e:50: 29:51:e8:c9:a7:53:6a:6d:86:13:84:63:f1:a9:e9:da:ca:c4: eb:fa:0e:09:af:dc:12:c4:9b:85:c8:dc:cb:39:f0:91:21:77: d6:09:79:45:1e:0c:75:34:ca:05:cd:f8:4e:f6:08:44:2b:cb: 9a:dc:2f:bb:a7:25:88:68:47:34:44:d2:5b:fb:f5:2d:2c:24: 28:84:3b:71:db:e6:e8:0e:8e:1e:1a:59:7a:13:b8:c9:aa:88: 9f:b7:ee:d1:bd:42:36:ea:63:f1:e3:f9:29:d4:a5:bc:1f:11: 23:c0:6a:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDA5OTcxNEE3MEU2RjQwMTI4OTEwODIwOUQ2QTdGNDg1 OUY5ODAwQ0MwHhcNMjUxMjMxMTU1NjUwWhcNMjYwMTA3MTU1NjUwWjAYMRYwFAYD VQQDDA02OTU1NDdjMi1iZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08X3P11kTMJHvAFgemAuIqVZQhN6v9LjTRm3zyfd0d3ra+5k8uHpn+QswgD2 XssoTRG9ZV7bRBzu1rbcTo1uikGfATpNKjhKmpHjBuMiN4p0pZUi3fzWYtDVmyJA 63EOpWBlzX3xfsjm4AJ7mhq+wEK2BFG9fUNtme2lggTvnfyLTSzngTTUotPZOmXE 6OcXAu3MwS79CdVVRftqzpVv/7C7abY0ydab62R9DqhAy8Vo2BbROJdK6fM0ZCFV KUEFbgSEDk2XYmhDxO7/+sNkjzOg6CvDvaI3CdzqW6eo74Iupmivph9L+WxmQIl5 WMtM3C+XONwJVP6WMBcjYDjAjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJjl2LP 1s3EfrWEXWLGfvAPg+yxMB8GA1UdIwQYMBaAFAmXFKcOb0ASiRCCCdan9IWfmADM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC9DNjgwOTE5NkFD OTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFCS0pFSUlKMXFmMGhaLVlB TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaY1VwdzV2UUJLSkVJSUoxcWYwaFotWUFNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTA5OC9DNjgwOTE5NkFDOTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFC S0pFSUlKMXFmMGhaLVlBTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe82hqfSoL4acqlG06ouf9BXAMnIlMlM/W8NdGpFeTd99OwLKzAqoJ OW6haXaSKxKlS/a1dU+Y0HJWSxzBE2d33okIXSjaLJ4N/qiYpqRR6QWqGxxBnk8J jpwyA4n3O5mWyxogwgawjS42rg2O/9x7MIU4hB5pOgyOK8PcqfgiWh7KVuqnF8t1 7SzCFqX5XlApUejJp1NqbYYThGPxqenaysTr+g4Jr9wSxJuFyNzLOfCRIXfWCXlF Hgx1NMoFzfhO9ghEK8ua3C+7pyWIaEc0RNJb+/UtLCQohDtx2+boDo4eGll6E7jJ qoift+7RvUI26mPx4/kp1KW8HxEjwGpU -----END CERTIFICATE-----Generated at Fri Jan 2 13:07:37 2026 by rpki-client