This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json) Hash identifier: mp2Xulpp3dLNVRUIZJfYm9wBvBzEjR0qDw0DoWUzVA0= Subject key identifier: 0F:1C:E6:85:A8:EF:4C:99:F1:12:DC:4F:B4:93:70:1C:09:9E:35:C2 Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft Manifest number: 4C Signing time: Sun 07 Dec 2025 05:21:30 +0000 Manifest this update: Sun 07 Dec 2025 05:21:29 +0000 Manifest next update: Sun 14 Dec 2025 05:21:29 +0000 Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: 7QDOQSOak69XlUFGaYs4tVvffA0q0Da6kgkuY8DnAjo=) 2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 9UZrURL/5cYm+3q79UbhWbJw8l3P1ZGycupb15ORpsw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: Dec 7 05:21:29 2025 GMT Not After : Dec 14 05:21:29 2025 GMT Subject: CN=69350eda-d0d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:77:dc:76:73:d9:02:94:ca:ba:a2:23:7a:b5: 75:af:61:45:49:29:11:89:29:11:fc:7e:fe:85:d6: b1:9f:1d:66:ee:6a:b5:c4:9b:d6:7e:ec:38:45:62: cb:9a:94:da:0d:ae:37:86:3c:2c:7c:80:b4:05:06: 14:58:84:30:98:a2:5a:8b:a1:65:4e:79:0f:1b:8e: b4:8b:ee:77:0b:a1:16:4c:b7:6c:f3:88:20:2a:fe: 20:a7:68:e0:a1:f9:b4:ee:f4:45:62:36:29:8b:3d: 8c:61:a4:dd:57:79:32:73:31:40:3b:a6:98:00:05: b4:5c:65:9b:be:3d:0b:b5:90:c0:2c:8d:a3:5c:62: 12:b1:8c:bb:cb:19:47:05:f5:4a:95:5a:6c:71:00: 39:1e:0a:6f:ea:b2:ce:64:58:77:02:48:68:7a:7e: 02:8d:71:3c:fc:7a:3a:9b:e7:78:9e:4a:5c:14:84: 6f:8f:3d:ea:0a:a2:fb:20:b4:89:a8:86:02:92:4d: 31:64:a9:5e:27:0c:1f:a8:04:19:6a:af:61:6e:ff: 51:bb:46:36:0b:03:d6:38:33:76:e0:32:b9:22:ee: db:0c:5f:d9:83:9d:83:35:9d:14:3d:3e:05:a8:65: 8b:f7:12:39:1a:8a:02:fc:68:02:8d:78:12:67:11: 94:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1C:E6:85:A8:EF:4C:99:F1:12:DC:4F:B4:93:70:1C:09:9E:35:C2 X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:fb:d2:50:1e:ec:d9:63:16:26:7e:9d:91:f3:db:9f:17:0d: c5:35:c6:e4:bc:eb:47:21:26:6d:b1:97:74:71:59:70:8e:58: 12:d8:17:f6:de:3d:86:9e:d8:c9:b4:26:da:82:96:ef:36:d0: 1c:79:9c:c0:84:69:d3:fe:7b:d5:3f:fc:be:5d:a5:1a:86:b9: df:47:71:51:32:e0:22:40:e4:7c:94:ec:fe:b2:33:34:c6:e4: 73:1c:01:dc:fc:9a:46:b5:f6:51:0e:d1:d0:a1:0b:16:9d:2e: b3:e0:4c:5e:3f:55:ab:51:d7:57:83:65:4c:9b:8b:d5:45:4d: 28:a1:a0:11:f0:b2:e1:da:08:5f:e6:1e:44:1f:5b:8b:8a:08: 7c:a0:ce:d1:ab:57:85:bb:73:65:67:08:cc:1e:17:ca:8c:5a: f5:4c:71:6e:29:bc:e6:c0:8e:22:fe:04:89:ff:a3:62:55:06: 88:fe:84:4e:92:2f:97:ce:96:f7:8a:79:90:23:a4:eb:dc:3f: a2:7b:a8:09:9e:f4:b9:68:29:e4:c9:4e:e8:96:00:3d:0c:db: f7:fd:4b:44:90:30:c6:a6:ed:e2:29:08:ba:4c:7e:03:48:33: d2:44:0c:cf:6d:84:c9:95:19:04:61:2e:b5:67:e0:e2:88:5e: 7f:3b:d2:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTFERTExMC8GA1UEBRMoNjQ3RTVDQURDQjFGQkY3RUJCODk5QTcyMTlDM0EwRjAz RDNGN0IwRDAeFw0yNTEyMDcwNTIxMjlaFw0yNTEyMTQwNTIxMjlaMBgxFjAUBgNV BAMTDTY5MzUwZWRhLWQwZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4d9x2c9kClMq6oiN6tXWvYUVJKRGJKRH8fv6F1rGfHWbuarXEm9Z+7DhFYsua lNoNrjeGPCx8gLQFBhRYhDCYolqLoWVOeQ8bjrSL7ncLoRZMt2zziCAq/iCnaOCh +bTu9EViNimLPYxhpN1XeTJzMUA7ppgABbRcZZu+PQu1kMAsjaNcYhKxjLvLGUcF 9UqVWmxxADkeCm/qss5kWHcCSGh6fgKNcTz8ejqb53ieSlwUhG+PPeoKovsgtImo hgKSTTFkqV4nDB+oBBlqr2Fu/1G7RjYLA9Y4M3bgMrki7tsMX9mDnYM1nRQ9PgWo ZYv3EjkaigL8aAKNeBJnEZThAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDxzmhajv TJnxEtxPtJNwHAmeNcIwHwYDVR0jBBgwFoAUZH5crcsfv367iZpyGcOg8D0/ew0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MURFLzkwNEY4NzBBNjBC NDExRjA4RUQ3QUU2M0M0RjlBRTAyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkg1Y3Jjc2Z2MzY3aVpweUdjT2c4RDBfZXcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 MURFLzkwNEY4NzBBNjBCNDExRjA4RUQ3QUU2M0M0RjlBRTAyL1pINWNyY3NmdjM2 N2lacHlHY09nOEQwX2V3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHH70lAe7NljFiZ+nZHz258XDcU1xuS860chJm2xl3RxWXCOWBLYF/be PYae2Mm0JtqClu820Bx5nMCEadP+e9U//L5dpRqGud9HcVEy4CJA5HyU7P6yMzTG 5HMcAdz8mka19lEO0dChCxadLrPgTF4/VatR11eDZUybi9VFTSihoBHwsuHaCF/m HkQfW4uKCHygztGrV4W7c2VnCMweF8qMWvVMcW4pvObAjiL+BIn/o2JVBoj+hE6S L5fOlveKeZAjpOvcP6J7qAme9LloKeTJTuiWAD0M2/f9S0SQMMam7eIpCLpMfgNI M9JEDM9thMmVGQRhLrVn4OKIXn870oU= -----END CERTIFICATE-----Generated at Sun Dec 7 16:43:46 2025 by rpki-client