This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft File: 5hI_ServZkwi-UzV67rqztOHoW8.mft (raw, json) Hash identifier: 31ku2mor+XbutPibLFFnAfym2T340pQ5UZ8BKk9lskU= Subject key identifier: 44:E7:08:2C:0B:1F:3E:5D:E8:1C:9E:24:FF:2B:04:04:15:6A:E7:0F Authority key identifier: E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F Certificate issuer: /CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft Manifest number: 0664 Signing time: Wed 24 Dec 2025 21:51:12 +0000 Manifest this update: Wed 24 Dec 2025 21:51:12 +0000 Manifest next update: Wed 31 Dec 2025 21:51:12 +0000 Files and hashes: 1: 5hI_ServZkwi-UzV67rqztOHoW8.crl (hash: z7jQRNlnHRQ21M4duyoKaK6fKUmfBtyeSkbKN8pOeGM=) 2: 1D0BA0FC57EB11F096357F7CC4F9AE02.roa (hash: Njg0pVJ4I7URnxza7bv42AK9X5Mt3J26B9EOz9eASoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B861D, serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Validity Not Before: Dec 24 21:51:12 2025 GMT Not After : Dec 31 21:51:12 2025 GMT Subject: CN=694c6050-e8ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5d:aa:8e:8b:43:ec:75:18:46:df:73:45:06: 4f:f2:45:d7:7c:19:27:f2:5e:57:aa:07:65:9f:41: 59:b1:0c:03:2f:b4:70:f4:eb:0f:c7:1e:cf:30:5d: b4:6c:5d:b9:89:43:67:b3:1b:8f:ba:a6:03:43:57: eb:95:69:4b:07:30:03:84:24:bc:ea:16:d3:88:2f: 00:c5:1a:f3:15:a3:42:9b:7a:d7:1e:a6:11:24:74: 88:cf:89:42:5c:1f:c8:d9:6f:3f:d4:41:02:2f:a9: be:62:a0:6e:c7:74:94:72:89:29:00:0a:5e:b0:2a: 73:15:e9:4d:3a:ae:c9:e4:56:b6:88:31:1c:aa:fd: 5d:ab:d4:32:82:de:c4:ab:02:b4:89:92:ac:2b:87: 66:aa:6b:8f:a6:40:e5:86:02:5f:ad:90:bc:12:89: e9:8d:8f:52:46:aa:6b:d2:d5:4e:4e:74:d6:b1:16: 1e:13:15:d2:dd:90:c3:1b:3d:ca:d2:cd:28:9a:9b: 4a:b6:e5:eb:f6:5a:ba:1b:6e:ee:99:01:30:35:e4: ab:a1:0b:3a:dc:89:92:4d:50:df:3c:cc:2b:d9:8d: 62:ae:0c:f3:bd:5d:53:04:d6:85:7f:e0:3a:4a:0b: e7:8d:e0:af:a9:b1:2b:ba:3e:93:48:13:f2:31:8e: 8a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E7:08:2C:0B:1F:3E:5D:E8:1C:9E:24:FF:2B:04:04:15:6A:E7:0F X509v3 Authority Key Identifier: keyid:E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:83:60:04:8d:73:c5:75:31:6d:32:f5:f0:71:1c:d4:97:c0: 43:11:1f:91:34:6d:d2:05:80:b2:4d:05:76:41:a0:3b:96:dd: 8e:e0:6f:94:e2:f8:f7:69:a3:f8:f2:61:53:3a:ee:1d:b5:bf: 7b:ab:40:ff:96:9f:b6:a0:3b:3f:98:aa:67:08:65:bb:a1:fb: b9:a4:74:30:e5:cd:7a:b8:e6:b3:3b:db:aa:43:6a:24:2e:40: 22:5f:3f:4d:89:38:54:37:7f:18:6d:63:1a:ae:c0:28:9e:0b: 08:c2:0b:ce:3a:55:0a:fd:c6:f9:2d:2e:75:af:8f:4c:cf:0d: cd:95:f2:b0:aa:cd:ab:79:b7:e2:11:c6:cb:49:16:8e:f2:72: b0:0d:0b:b6:8d:d9:ff:03:90:41:c2:f4:14:58:3b:fd:e6:4c: 1c:32:8f:c2:a6:24:67:b1:9c:d7:0c:ad:12:2c:88:dc:09:5e: 5d:33:1c:5d:e6:3e:ed:e8:bf:74:fd:05:d2:9b:87:ff:3b:f1: 2d:2c:a8:82:69:3a:d3:a9:eb:f8:3d:99:12:92:7a:c1:95:8a: 54:14:69:a5:2d:89:44:d2:ea:54:65:d6:83:e1:71:c5:58:b8: 7e:2a:8a:63:36:4c:1c:e1:58:97:14:22:71:36:3d:eb:3c:b6: 9d:3f:23:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg2MUQxMTAvBgNVBAUTKEU2MTIzRjQ5RUFFRjY2NEMyMkY5NENENUVCQkFFQUNF RDM4N0ExNkYwHhcNMjUxMjI0MjE1MTEyWhcNMjUxMjMxMjE1MTEyWjAYMRYwFAYD VQQDDA02OTRjNjA1MC1lOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl2qjotD7HUYRt9zRQZP8kXXfBkn8l5Xqgdln0FZsQwDL7Rw9OsPxx7PMF20 bF25iUNnsxuPuqYDQ1frlWlLBzADhCS86hbTiC8AxRrzFaNCm3rXHqYRJHSIz4lC XB/I2W8/1EECL6m+YqBux3SUcokpAApesCpzFelNOq7J5Fa2iDEcqv1dq9Qygt7E qwK0iZKsK4dmqmuPpkDlhgJfrZC8EonpjY9SRqpr0tVOTnTWsRYeExXS3ZDDGz3K 0s0omptKtuXr9lq6G27umQEwNeSroQs63ImSTVDfPMwr2Y1irgzzvV1TBNaFf+A6 SgvnjeCvqbEruj6TSBPyMY6KcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETnCCwL Hz5d6ByeJP8rBAQVaucPMB8GA1UdIwQYMBaAFOYSP0nq72ZMIvlM1eu66s7Th6Fv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODYxRC9EMjk5N0Y2MEFC RTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlprd2ktVXpWNjdycXp0T0hv VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVoSV9TZXJ2Wmt3aS1VelY2N3JxenRPSG9XOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODYxRC9EMjk5N0Y2MEFCRTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlpr d2ktVXpWNjdycXp0T0hvVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSg2AEjXPFdTFtMvXwcRzUl8BDER+RNG3SBYCyTQV2QaA7lt2O4G+U 4vj3aaP48mFTOu4dtb97q0D/lp+2oDs/mKpnCGW7ofu5pHQw5c16uOazO9uqQ2ok LkAiXz9NiThUN38YbWMarsAongsIwgvOOlUK/cb5LS51r49Mzw3NlfKwqs2rebfi EcbLSRaO8nKwDQu2jdn/A5BBwvQUWDv95kwcMo/CpiRnsZzXDK0SLIjcCV5dMxxd 5j7t6L90/QXSm4f/O/EtLKiCaTrTqev4PZkSknrBlYpUFGmlLYlE0upUZdaD4XHF WLh+KopjNkwc4ViXFCJxNj3rPLadPyPz -----END CERTIFICATE-----Generated at Thu Dec 25 03:39:58 2025 by rpki-client