This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: qAMDqsnZcvDOsHZ05rkcfkXZ9JrGwxJwIq9BTgE18Ag= Subject key identifier: C2:1A:06:93:1D:44:51:C2:F5:92:04:35:41:83:CD:62:CB:65:AB:F7 Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 06BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 06B8 Signing time: Sun 28 Dec 2025 21:31:07 +0000 Manifest this update: Sun 28 Dec 2025 21:31:06 +0000 Manifest next update: Sun 04 Jan 2026 21:31:06 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: WuJK+kjhI+85CFa6D2gOFThaMznWrGvQo8ThboWHPVY=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: /i9RofZ06AYBMENjcaJpNwKG22jU3wGWaEpuwf3htx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317, serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Dec 28 21:31:06 2025 GMT Not After : Jan 4 21:31:06 2026 GMT Subject: CN=6951a19a-406c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:85:fb:c1:56:33:35:83:9e:8c:35:ae:34:55: a4:93:7e:22:ac:d5:97:88:00:28:b8:a4:91:0a:45: ff:d4:0c:26:d0:a5:37:50:7c:f2:fa:92:01:f2:57: f6:5b:78:2e:35:9a:3b:f7:35:53:ff:41:4b:dc:44: 28:54:33:ce:97:9b:9c:45:68:98:b7:d3:8c:92:86: 78:af:ae:00:be:e6:9e:23:da:43:46:36:87:e8:30: d5:d0:5f:0b:b0:4f:2c:ad:65:af:45:aa:ef:19:ea: 7b:9a:d5:e8:dc:26:b2:04:6b:a8:02:a8:d3:40:86: 90:6d:b8:23:18:8e:e4:67:38:c5:c2:fe:6f:c3:35: 4a:4e:f0:0d:e4:6e:8f:17:8d:08:7e:80:af:db:68: 9b:1e:ce:bc:6e:d4:58:f9:a4:e4:78:2c:03:bd:58: f6:7f:9b:bd:36:ae:59:46:30:cc:62:75:4e:fd:4d: 66:0a:91:b7:5f:39:c1:f6:cb:c2:32:61:f8:37:a9: 26:8a:3d:ef:a8:b7:c7:ad:90:0c:5b:a9:91:b7:3b: 68:04:ca:20:50:de:01:de:68:e9:b8:c7:1f:d6:07: ff:09:78:70:86:7b:c9:fe:11:a3:b6:3a:d1:30:0b: d7:49:b7:4a:9c:c5:d9:0b:87:cb:5d:64:7a:24:21: 22:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1A:06:93:1D:44:51:C2:F5:92:04:35:41:83:CD:62:CB:65:AB:F7 X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:c6:35:23:e0:b0:bb:d1:15:c4:69:63:63:43:bc:a7:24:e0: 4b:f4:ab:f3:e4:3c:1b:e7:55:30:99:3f:c4:e6:34:cd:da:b9: 46:ad:5d:ad:6d:27:89:00:f3:b8:24:a8:1d:73:34:23:e6:a0: ff:54:d3:0c:86:7a:69:d1:a8:ae:27:28:1d:a4:d6:2e:ac:85: 38:5f:8a:a0:48:c6:4b:95:45:59:37:53:b7:d7:10:f0:98:73: 35:48:81:c2:d0:95:4d:55:5b:49:c8:41:86:bd:62:02:d9:9c: c0:26:27:2f:ad:7c:ba:1d:80:8a:47:fa:c6:35:ce:3c:2d:f5: 4e:f3:2a:a5:fa:52:27:7f:9d:5f:72:a5:58:52:bb:24:06:b6: 06:3c:bf:64:60:51:3e:6c:f4:15:70:ef:e8:3a:0a:e0:43:18: b4:d8:4b:7d:a2:17:13:a8:82:ee:40:f8:64:09:50:cf:7c:9d: 08:a6:9b:f1:20:ae:85:d3:9a:1e:4c:92:c2:09:ba:a4:1d:f3: e3:e2:0f:c7:9c:cb:08:5b:5b:95:e4:d2:5d:52:d3:94:5b:b9: c3:29:4a:10:7b:7f:f0:4e:96:8b:19:e4:e3:92:91:41:5f:25: a1:b9:18:74:76:49:22:24:e8:f0:2d:ef:f8:4f:ff:d6:e8:06: 2d:78:77:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjUxMjI4MjEzMTA2WhcNMjYwMTA0MjEzMTA2WjAYMRYwFAYD VQQDDA02OTUxYTE5YS00MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIX7wVYzNYOejDWuNFWkk34irNWXiAAouKSRCkX/1Awm0KU3UHzy+pIB8lf2 W3guNZo79zVT/0FL3EQoVDPOl5ucRWiYt9OMkoZ4r64AvuaeI9pDRjaH6DDV0F8L sE8srWWvRarvGep7mtXo3CayBGuoAqjTQIaQbbgjGI7kZzjFwv5vwzVKTvAN5G6P F40IfoCv22ibHs68btRY+aTkeCwDvVj2f5u9Nq5ZRjDMYnVO/U1mCpG3XznB9svC MmH4N6kmij3vqLfHrZAMW6mRtztoBMogUN4B3mjpuMcf1gf/CXhwhnvJ/hGjtjrR MAvXSbdKnMXZC4fLXWR6JCEiqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIaBpMd RFHC9ZIENUGDzWLLZav3MB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGxjUj4LC70RXEaWNjQ7ynJOBL9Kvz5Dwb51UwmT/E5jTN2rlGrV2t bSeJAPO4JKgdczQj5qD/VNMMhnpp0aiuJygdpNYurIU4X4qgSMZLlUVZN1O31xDw mHM1SIHC0JVNVVtJyEGGvWIC2ZzAJicvrXy6HYCKR/rGNc48LfVO8yql+lInf51f cqVYUrskBrYGPL9kYFE+bPQVcO/oOgrgQxi02Et9ohcTqILuQPhkCVDPfJ0Ippvx IK6F05oeTJLCCbqkHfPj4g/HnMsIW1uV5NJdUtOUW7nDKUoQe3/wTpaLGeTjkpFB XyWhuRh0dkkiJOjwLe/4T//W6AYteHc0 -----END CERTIFICATE-----Generated at Mon Dec 29 15:01:44 2025 by rpki-client