This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json) Hash identifier: 9uH0VpSzUgWU87zIJbJj8QPH+oBJYfZ92nfObxl/HZo= Subject key identifier: 3F:04:06:54:EC:85:E7:63:2A:A5:17:A1:35:B6:65:28:91:BA:52:29 Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft Manifest number: 54 Signing time: Tue 23 Dec 2025 06:05:47 +0000 Manifest this update: Tue 23 Dec 2025 06:05:46 +0000 Manifest next update: Tue 30 Dec 2025 06:05:46 +0000 Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: /VGCfDikVpT2dZxquG+Hr6vyylJ0Q6U7PVPNfaWq7nU=) 2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 9UZrURL/5cYm+3q79UbhWbJw8l3P1ZGycupb15ORpsw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: Dec 23 06:05:46 2025 GMT Not After : Dec 30 06:05:46 2025 GMT Subject: CN=694a313a-fb99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8d:5a:6a:56:16:45:a8:66:61:13:08:42:fa: bf:75:64:dc:35:b3:ed:79:06:17:33:69:b8:14:6e: 99:5f:af:d2:26:5a:81:3f:66:b8:66:c6:e0:55:b3: 20:c1:1e:c9:ad:02:c2:c4:4a:a9:e7:98:2b:02:9f: f2:80:14:a5:b9:7e:68:5e:25:53:5e:55:5a:bb:d0: f9:c5:8e:01:69:39:af:e9:85:24:3e:29:97:20:83: d8:88:2f:dc:6a:18:4a:98:a8:25:37:9a:34:b0:ba: c7:56:f5:e0:bb:41:52:7b:10:ee:2e:b1:c6:af:72: c6:5d:dc:9e:54:40:22:7e:07:55:a1:7a:44:df:6b: 7a:4c:1e:f3:58:e6:7d:98:ba:05:18:94:83:9c:c9: a7:77:b6:0f:2c:2f:ff:66:df:ee:25:1c:dd:f7:33: fd:cf:53:5d:da:bb:87:54:0e:65:27:58:d7:35:f4: 6c:2e:95:9f:13:8c:d1:32:12:f2:eb:72:43:78:6a: 2b:db:5e:e5:75:43:3f:1f:ff:d7:53:c4:d7:40:f9: d0:f0:8f:6a:a1:b6:0e:1d:ca:f4:e6:06:20:94:7b: e6:00:15:39:3e:c6:79:b8:be:51:05:c2:ee:0e:09: bf:3c:71:e2:68:fd:a1:c8:44:bc:0e:08:fe:84:6b: e9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:04:06:54:EC:85:E7:63:2A:A5:17:A1:35:B6:65:28:91:BA:52:29 X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e1:c7:80:35:0c:4d:74:84:83:68:e9:2b:f0:88:1f:9b:f4: fe:ee:2d:33:3d:43:62:13:67:7b:b0:71:a3:28:3f:a3:08:48: 35:bd:37:a2:5f:2b:ee:cc:52:3b:d3:8e:dd:b4:a8:8c:85:86: 98:a8:e3:1c:af:10:7e:76:bb:0a:a1:29:bc:f0:79:27:e9:4b: 4e:a2:2c:58:06:02:cf:62:70:ab:9a:8b:6e:77:15:ef:6e:2a: d7:ea:26:4f:b9:59:b1:9d:f8:02:b1:af:84:ea:93:bd:cf:35: be:a8:27:cd:c0:a3:de:23:ec:11:26:0c:87:5c:7d:a7:03:c1: 51:4c:18:8c:22:d7:0f:87:1e:cd:f0:89:58:75:27:f1:6a:c9: 43:50:c1:9d:08:43:fc:c8:33:e4:b7:88:59:a9:ff:7e:64:48: 34:c1:48:49:67:d5:2f:93:40:f9:ad:0c:70:67:e2:d3:b9:30: 0b:8e:b5:8c:53:d6:ca:1b:bc:f2:a8:c9:f8:7c:c6:1f:3e:6c: 11:96:8b:c0:99:bd:31:e1:1a:6e:7e:a7:8b:9b:ee:13:e2:9f: 00:c5:75:21:c3:6a:ca:2b:72:d9:0c:02:b0:17:b7:8e:8b:58: 97:93:87:70:3b:79:95:ff:c0:a2:63:e7:ce:4a:63:da:30:c7: f1:3e:54:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTFERTExMC8GA1UEBRMoNjQ3RTVDQURDQjFGQkY3RUJCODk5QTcyMTlDM0EwRjAz RDNGN0IwRDAeFw0yNTEyMjMwNjA1NDZaFw0yNTEyMzAwNjA1NDZaMBgxFjAUBgNV BAMMDTY5NGEzMTNhLWZiOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDajVpqVhZFqGZhEwhC+r91ZNw1s+15BhczabgUbplfr9ImWoE/ZrhmxuBVsyDB HsmtAsLESqnnmCsCn/KAFKW5fmheJVNeVVq70PnFjgFpOa/phSQ+KZcgg9iIL9xq GEqYqCU3mjSwusdW9eC7QVJ7EO4uscavcsZd3J5UQCJ+B1WhekTfa3pMHvNY5n2Y ugUYlIOcyad3tg8sL/9m3+4lHN33M/3PU13au4dUDmUnWNc19GwulZ8TjNEyEvLr ckN4aivbXuV1Qz8f/9dTxNdA+dDwj2qhtg4dyvTmBiCUe+YAFTk+xnm4vlEFwu4O Cb88ceJo/aHIRLwOCP6Ea+k5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPwQGVOyF 52MqpRehNbZlKJG6UikwHwYDVR0jBBgwFoAUZH5crcsfv367iZpyGcOg8D0/ew0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MURFLzkwNEY4NzBBNjBC NDExRjA4RUQ3QUU2M0M0RjlBRTAyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkg1Y3Jjc2Z2MzY3aVpweUdjT2c4RDBfZXcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 MURFLzkwNEY4NzBBNjBCNDExRjA4RUQ3QUU2M0M0RjlBRTAyL1pINWNyY3NmdjM2 N2lacHlHY09nOEQwX2V3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIjhx4A1DE10hINo6SvwiB+b9P7uLTM9Q2ITZ3uwcaMoP6MISDW9N6Jf K+7MUjvTjt20qIyFhpio4xyvEH52uwqhKbzweSfpS06iLFgGAs9icKuai253Fe9u KtfqJk+5WbGd+AKxr4Tqk73PNb6oJ83Ao94j7BEmDIdcfacDwVFMGIwi1w+HHs3w iVh1J/FqyUNQwZ0IQ/zIM+S3iFmp/35kSDTBSEln1S+TQPmtDHBn4tO5MAuOtYxT 1sobvPKoyfh8xh8+bBGWi8CZvTHhGm5+p4ub7hPinwDFdSHDasorctkMArAXt46L WJeTh3A7eZX/wKJj585KY9owx/E+VBY= -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:19 2025 by rpki-client