This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: 93jNZUQoDXUo4x9q4xLhNfJT3oJTJDADi05m+lW4MYU= Subject key identifier: 1E:A2:22:99:87:4A:7B:98:A4:BF:F5:C0:BF:37:86:90:DF:24:39:D8 Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 06BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 06B5 Signing time: Mon 22 Dec 2025 21:29:45 +0000 Manifest this update: Mon 22 Dec 2025 21:29:45 +0000 Manifest next update: Mon 29 Dec 2025 21:29:45 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: mib2EXAzLta8coiQiPh9iPMSzjEh1clUwdjCTaYY28g=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: /i9RofZ06AYBMENjcaJpNwKG22jU3wGWaEpuwf3htx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:29:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317, serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Dec 22 21:29:45 2025 GMT Not After : Dec 29 21:29:45 2025 GMT Subject: CN=6949b849-4c40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:ee:70:89:22:cd:8e:e6:6e:5e:c0:e4:48: 9a:81:64:69:4f:fe:c4:b3:7d:63:20:86:51:69:d7: fe:16:12:3b:da:b1:79:92:8b:5b:24:14:6d:18:76: 47:54:95:50:52:98:ae:a5:2b:97:66:8a:5e:89:c2: 3f:6b:c5:b2:f6:0b:59:88:22:ed:d6:c8:ff:35:ef: b9:3e:61:f6:96:81:4b:b2:3a:ff:02:a5:05:15:fd: 30:92:a4:71:63:6b:99:c2:64:01:29:e5:53:10:f6: 57:1b:5c:41:18:d1:1a:e9:6a:25:1b:79:59:4b:6a: 6d:96:ca:56:75:47:7c:ff:4b:00:36:63:92:1d:5a: 25:a8:5b:18:da:56:4c:9c:e9:c8:34:42:5e:28:4d: 64:ec:ac:2a:cb:2c:54:a8:43:32:31:f0:1e:d1:f6: 8f:92:51:f4:ac:b8:79:bd:bd:f5:6b:ee:61:06:3a: bb:3c:2b:e6:e0:a6:fd:e8:ce:c2:b4:05:2b:3b:8f: 53:d2:c1:fa:bb:54:9c:d1:4d:4b:8c:ba:4c:1c:b6: 4f:9b:bd:b2:79:07:5b:1c:f9:b1:ac:8b:e4:26:6f: 6a:22:bc:bf:a0:8e:8c:fb:8e:9d:70:2e:60:c8:fb: c5:43:a4:ab:2e:1e:25:c4:ff:b5:35:38:b5:09:cf: a0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A2:22:99:87:4A:7B:98:A4:BF:F5:C0:BF:37:86:90:DF:24:39:D8 X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:31:64:83:73:b4:a2:5b:d1:ee:ab:0b:f8:7e:73:9c:12:ac: f8:d1:19:e0:98:c3:02:9f:57:1f:bc:86:e7:2b:67:7e:be:ba: d8:e6:c6:71:9a:56:20:78:93:25:ce:40:cf:c6:96:09:bc:94: c8:78:5f:5e:94:88:d0:7c:dc:75:f0:16:c2:8d:27:b6:fb:d9: 28:9d:0e:07:ce:b8:b6:9e:a8:a6:86:a6:21:76:55:e1:88:ea: c3:a1:96:08:28:a6:d4:39:b6:07:56:23:f1:ca:90:a1:7e:2b: 94:fb:d5:71:27:e1:65:00:64:14:90:bd:32:6c:6d:26:f0:2d: bb:60:7e:8a:60:d4:3d:e2:29:e4:45:fd:9c:11:88:5a:6a:6d: ea:e6:cd:0f:d7:49:05:9e:6d:fc:3d:80:d9:03:1e:79:dc:72: cc:5f:cc:cd:8f:c5:1a:ee:2d:85:be:a3:28:a7:e3:4c:38:7d: 33:44:c4:1e:67:d9:e2:4e:2c:5f:23:1f:92:88:5e:bf:5c:a3: 0d:19:d5:bf:b9:b1:cb:58:39:11:19:44:9f:1a:a6:17:7e:c2: 6c:e8:47:eb:8d:dd:51:27:c0:21:cc:e0:aa:1d:b9:aa:7a:bf: 18:80:e3:30:d5:69:19:37:3f:b2:fa:b0:96:be:9b:50:a8:ca: 1a:8b:3e:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjUxMjIyMjEyOTQ1WhcNMjUxMjI5MjEyOTQ1WjAYMRYwFAYD VQQDDA02OTQ5Yjg0OS00YzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5/ucIkizY7mbl7A5EiagWRpT/7Es31jIIZRadf+FhI72rF5kotbJBRtGHZH VJVQUpiupSuXZopeicI/a8Wy9gtZiCLt1sj/Ne+5PmH2loFLsjr/AqUFFf0wkqRx Y2uZwmQBKeVTEPZXG1xBGNEa6WolG3lZS2ptlspWdUd8/0sANmOSHVolqFsY2lZM nOnINEJeKE1k7KwqyyxUqEMyMfAe0faPklH0rLh5vb31a+5hBjq7PCvm4Kb96M7C tAUrO49T0sH6u1Sc0U1LjLpMHLZPm72yeQdbHPmxrIvkJm9qIry/oI6M+46dcC5g yPvFQ6SrLh4lxP+1NTi1Cc+gZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6iIpmH SnuYpL/1wL83hpDfJDnYMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByMWSDc7SiW9Huqwv4fnOcEqz40RngmMMCn1cfvIbnK2d+vrrY5sZx mlYgeJMlzkDPxpYJvJTIeF9elIjQfNx18BbCjSe2+9konQ4Hzri2nqimhqYhdlXh iOrDoZYIKKbUObYHViPxypChfiuU+9VxJ+FlAGQUkL0ybG0m8C27YH6KYNQ94ink Rf2cEYhaam3q5s0P10kFnm38PYDZAx553HLMX8zNj8Ua7i2FvqMop+NMOH0zRMQe Z9niTixfIx+SiF6/XKMNGdW/ubHLWDkRGUSfGqYXfsJs6Efrjd1RJ8AhzOCqHbmq er8YgOMw1WkZNz+y+rCWvptQqMoaiz5r -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:34 2025 by rpki-client