This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft File: 5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft (raw, json) Hash identifier: dIJkYKepvcuEjPpFlvPfZTcMXhC+b8sHMDn8cp1/Mf8= Subject key identifier: 4A:C1:9E:AF:BF:89:DF:87:0C:E3:7B:FA:2B:D3:C1:3C:D6:56:29:78 Authority key identifier: E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C Certificate issuer: /CN=A91C3ABA/serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Certificate serial: 0513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft Manifest number: 050E Signing time: Wed 31 Dec 2025 23:07:52 +0000 Manifest this update: Wed 31 Dec 2025 23:07:51 +0000 Manifest next update: Wed 07 Jan 2026 23:07:51 +0000 Files and hashes: 1: 5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl (hash: d/lsMVoSFJcLm9UPZ6YKeBd/LQkmSQUd5omVMhbJC5w=) 2: 4B9F1AA6354F11EC8531C34DC4F9AE02.roa (hash: +rLDpG6E4AF0Dcxf7o8iMswR6KeKAMAGKwbYTVWTRnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 23:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ABA, serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Validity Not Before: Dec 31 23:07:51 2025 GMT Not After : Jan 7 23:07:51 2026 GMT Subject: CN=6955acc7-41db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4c:d2:9f:52:4d:9a:76:c9:b4:2e:86:a1:cf: 0f:5f:86:1c:a1:5c:fd:7e:54:82:24:d0:e7:7e:5b: 03:1d:ec:c6:2f:ab:77:10:76:39:89:6d:13:69:92: a6:8f:eb:b3:59:fa:9b:d8:58:58:27:18:c0:b0:35: 5a:57:1b:9e:78:73:60:e3:d3:86:fc:be:e0:37:18: 0e:95:b6:c7:cc:96:f1:a1:30:7c:d5:05:53:25:c0: ae:d7:95:4e:4c:80:1e:92:6a:a0:e2:a1:03:91:5f: 1b:6c:27:5b:f7:fa:29:75:8d:76:13:67:e5:ca:0b: 3d:f0:f6:89:12:12:87:1f:98:4e:fe:ef:56:d2:8b: 0f:c0:61:ee:0c:e4:9d:13:92:4f:21:36:5f:b1:f8: 59:f1:d0:78:f6:b0:e0:06:20:90:45:b6:78:5f:3d: 4e:bc:da:d5:7e:51:bc:24:a1:42:e5:c2:82:5c:bd: 5b:6f:82:17:53:a8:04:17:47:1d:48:2a:79:5c:69: f9:4a:73:68:d3:b2:f7:b9:76:12:c3:3f:b3:ef:09: 35:c3:4f:02:b2:8f:ab:f5:65:69:53:99:96:59:97: 58:37:34:cf:b7:e1:35:02:86:94:f0:2b:27:b2:01: ba:93:70:2d:28:86:ac:17:b3:5d:2b:91:68:2f:a1: fa:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C1:9E:AF:BF:89:DF:87:0C:E3:7B:FA:2B:D3:C1:3C:D6:56:29:78 X509v3 Authority Key Identifier: keyid:E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d4:9f:e5:ff:e7:1b:fb:5c:f1:a3:35:1d:72:cc:0d:98:42: 98:fa:71:7c:cf:b2:f2:e7:e3:f9:bb:e6:c8:c9:7a:1b:98:dd: cb:3e:f8:05:26:e8:58:3b:ea:f4:d0:fb:5c:c6:c8:f2:22:47: 6e:70:91:09:a9:10:6c:19:9b:bb:e8:31:ae:a3:84:f3:2d:d1: 4d:ef:af:72:b6:01:f5:17:e8:32:16:65:a1:7c:15:d6:2e:f0: b3:d8:33:6a:15:17:06:a5:d7:47:28:fc:84:49:2c:84:4b:0b: 94:4b:f1:20:b9:4c:39:bc:85:0e:61:46:b1:03:a7:29:be:c3: 5d:69:da:36:7d:a0:4c:78:2c:f8:f9:11:ff:d1:38:c0:44:d3: 7c:55:47:6b:bc:f9:89:bf:ca:df:b5:24:a9:90:e2:41:07:f5: 03:3d:9d:3e:eb:34:bc:3f:32:1a:1a:70:19:3b:76:67:78:51: 40:66:76:6d:c6:ca:00:15:7d:23:19:44:65:0b:e7:a8:1e:7e: 19:eb:e2:87:79:68:aa:8c:27:ee:de:bc:19:81:06:1a:05:3a: ff:fd:2a:c7:d4:13:76:6c:8e:7f:18:4c:d9:6c:3d:95:45:8a: ac:6a:59:8a:85:6c:c2:0c:00:c4:23:26:78:e2:8a:21:08:7b: d4:be:dd:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBQkExMTAvBgNVBAUTKEU1OTkzMTU1QzQ0NDNBMkU1NkMwREUyMzMzQTQ0QjU2 Q0FENDkxOUMwHhcNMjUxMjMxMjMwNzUxWhcNMjYwMTA3MjMwNzUxWjAYMRYwFAYD VQQDDA02OTU1YWNjNy00MWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkzSn1JNmnbJtC6Goc8PX4YcoVz9flSCJNDnflsDHezGL6t3EHY5iW0TaZKm j+uzWfqb2FhYJxjAsDVaVxueeHNg49OG/L7gNxgOlbbHzJbxoTB81QVTJcCu15VO TIAekmqg4qEDkV8bbCdb9/opdY12E2flygs98PaJEhKHH5hO/u9W0osPwGHuDOSd E5JPITZfsfhZ8dB49rDgBiCQRbZ4Xz1OvNrVflG8JKFC5cKCXL1bb4IXU6gEF0cd SCp5XGn5SnNo07L3uXYSwz+z7wk1w08Cso+r9WVpU5mWWZdYNzTPt+E1AoaU8Csn sgG6k3AtKIasF7NdK5FoL6H6rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErBnq+/ id+HDON7+ivTwTzWVil4MB8GA1UdIwQYMBaAFOWZMVXERDouVsDeIzOkS1bK1JGc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0FCQS85ODVGMDkyMjM1 NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9pNVd3TjRqTTZSTFZzclVr WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVaa3hWY1JFT2k1V3dONGpNNlJMVnNyVWtady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0FCQS85ODVGMDkyMjM1NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9p NVd3TjRqTTZSTFZzclVrWncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP1J/l/+cb+1zxozUdcswNmEKY+nF8z7Ly5+P5u+bIyXobmN3LPvgF JuhYO+r00PtcxsjyIkducJEJqRBsGZu76DGuo4TzLdFN769ytgH1F+gyFmWhfBXW LvCz2DNqFRcGpddHKPyESSyESwuUS/EguUw5vIUOYUaxA6cpvsNdado2faBMeCz4 +RH/0TjARNN8VUdrvPmJv8rftSSpkOJBB/UDPZ0+6zS8PzIaGnAZO3ZneFFAZnZt xsoAFX0jGURlC+eoHn4Z6+KHeWiqjCfu3rwZgQYaBTr//SrH1BN2bI5/GEzZbD2V RYqsalmKhWzCDADEIyZ44oohCHvUvt3B -----END CERTIFICATE-----Generated at Thu Jan 1 12:30:42 2026 by rpki-client