This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: Rll6JkHcmw3Te1MNEhIsBWBVOIjqrzk1T0kVLggpK9s= Subject key identifier: AB:D8:6E:A2:82:5D:6F:49:65:DE:C7:16:31:6B:4A:FA:C7:A3:BA:E6 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 36E8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 36E6 Signing time: Sun 28 Dec 2025 14:31:49 +0000 Manifest this update: Sun 28 Dec 2025 14:31:49 +0000 Manifest next update: Sun 04 Jan 2026 14:31:49 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: BtmNY4AkYXUFmm1QWKrqW73bLUP5ee260GjH8AzOG9E=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: N2bskfxMFTrCp2qSWTYeMDSrONrPAtxZB594KPwftq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 14:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14056 (0x36e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Dec 28 14:31:49 2025 GMT Not After : Jan 4 14:31:49 2026 GMT Subject: CN=69513f55-96f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4a:0a:95:89:60:eb:b7:5c:3f:81:20:97:a1: d3:e6:83:85:c6:c0:21:b8:db:9b:66:4e:ea:cf:8c: a1:e1:d6:37:3d:55:7a:b2:42:27:03:27:3a:c2:d0: e9:fe:c3:dc:78:ce:3d:8c:21:dd:fc:75:50:1f:e6: df:53:a0:a2:bb:ea:df:df:d7:fc:43:92:e1:fc:b1: 27:13:9c:fb:91:57:ed:47:3e:b5:dd:05:92:ca:03: f4:f0:f0:60:a6:8c:a7:e9:4a:94:8e:36:26:67:77: 3a:10:4d:ba:ab:20:2f:60:1f:94:55:71:ef:6c:a8: d5:20:6c:9d:18:5d:4d:22:65:04:d4:e8:89:01:a4: 94:c5:90:5c:59:b9:80:10:62:b0:6c:64:99:7d:04: 4e:bd:62:d3:fa:7a:1d:38:db:33:ae:48:8e:c7:bd: 8a:80:3e:28:5b:88:c0:57:6b:76:0d:4d:2b:1d:e1: fd:6a:b2:3a:6a:19:10:19:1b:d5:6a:b6:34:f8:81: 87:34:93:4f:6e:97:62:43:30:c0:90:42:e2:b1:f2: 07:c7:0e:19:0a:d0:ca:91:82:01:33:86:69:af:b6: 35:b6:7c:e1:25:b9:ac:99:75:7b:79:1c:83:73:98: 1a:93:24:66:65:d9:a2:e5:83:9e:65:aa:5d:ae:a1: 27:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D8:6E:A2:82:5D:6F:49:65:DE:C7:16:31:6B:4A:FA:C7:A3:BA:E6 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:86:48:85:04:3f:b4:9f:03:db:f4:aa:31:36:a3:41:c5:c8: 54:aa:2b:db:72:56:c1:40:c2:d7:b7:65:3e:84:ec:96:eb:63: ec:25:e2:0b:5e:c5:aa:b9:c0:9c:79:7a:08:c6:4e:dc:73:e1: f9:bf:db:ad:cd:b1:06:75:32:d3:a5:22:ed:af:d3:c7:c9:a1: c9:06:b2:33:c2:93:80:cf:86:bf:e0:94:1d:4c:c2:3e:a4:c8: c9:41:4c:c2:55:c2:de:d4:3f:e5:1a:b1:74:99:65:1f:b0:2c: 97:86:4e:e6:5f:9f:be:81:12:5b:cd:89:a8:51:5d:2d:ac:c4: fd:e0:8f:b0:76:55:7d:e0:2e:9b:1b:62:e6:8a:0b:98:2e:55: 3d:f7:6b:fb:81:94:49:e3:c7:21:09:93:c3:1c:e3:32:2f:df: 7c:e6:d2:fb:3f:fc:eb:13:7c:f8:fb:26:6d:22:b5:55:13:28: 0b:7d:18:84:82:44:60:c1:87:f5:e8:7d:cf:fb:98:e3:d3:71: c7:21:b9:9f:31:0e:9a:fa:33:82:61:12:1e:54:74:22:9c:43: 03:80:50:7f:10:2d:7d:95:24:1a:6f:0a:a8:ad:0d:4e:85:9a: a0:fe:b3:48:93:0b:65:21:55:3a:bf:d2:a1:82:06:8e:8a:ee: a5:dc:2a:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUxMjI4MTQzMTQ5WhcNMjYwMTA0MTQzMTQ5WjAYMRYwFAYD VQQDDA02OTUxM2Y1NS05NmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3EoKlYlg67dcP4Egl6HT5oOFxsAhuNubZk7qz4yh4dY3PVV6skInAyc6wtDp /sPceM49jCHd/HVQH+bfU6Ciu+rf39f8Q5Lh/LEnE5z7kVftRz613QWSygP08PBg poyn6UqUjjYmZ3c6EE26qyAvYB+UVXHvbKjVIGydGF1NImUE1OiJAaSUxZBcWbmA EGKwbGSZfQROvWLT+nodONszrkiOx72KgD4oW4jAV2t2DU0rHeH9arI6ahkQGRvV arY0+IGHNJNPbpdiQzDAkELisfIHxw4ZCtDKkYIBM4Zpr7Y1tnzhJbmsmXV7eRyD c5gakyRmZdmi5YOeZapdrqEnWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvYbqKC XW9JZd7HFjFrSvrHo7rmMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAphkiFBD+0nwPb9KoxNqNBxchUqivbclbBQMLXt2U+hOyW62PsJeIL XsWqucCceXoIxk7cc+H5v9utzbEGdTLTpSLtr9PHyaHJBrIzwpOAz4a/4JQdTMI+ pMjJQUzCVcLe1D/lGrF0mWUfsCyXhk7mX5++gRJbzYmoUV0trMT94I+wdlV94C6b G2LmiguYLlU992v7gZRJ48chCZPDHOMyL9985tL7P/zrE3z4+yZtIrVVEygLfRiE gkRgwYf16H3P+5jj03HHIbmfMQ6a+jOCYRIeVHQinEMDgFB/EC19lSQabwqorQ1O hZqg/rNIkwtlIVU6v9KhggaOiu6l3CpX -----END CERTIFICATE-----Generated at Mon Dec 29 00:47:48 2025 by rpki-client