This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft File: 5nG8sr6VpsiFJxIdiBXovPGKoeI.mft (raw, json) Hash identifier: 6ksrzbjYBbLmx1KORaF31qZdHQp9FqcnCLM6sP99Yko= Subject key identifier: D3:8A:3E:C6:38:2D:2D:69:60:89:89:90:09:72:1E:AF:4A:BF:87:3D Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 0A34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft Manifest number: 0A2B Signing time: Mon 22 Dec 2025 19:10:26 +0000 Manifest this update: Mon 22 Dec 2025 19:10:26 +0000 Manifest next update: Mon 29 Dec 2025 19:10:26 +0000 Files and hashes: 1: 5nG8sr6VpsiFJxIdiBXovPGKoeI.crl (hash: QgIBoc5SznWn2vhKqKxMdP7L6qH+bYnJ4xwnApeXaLc=) 2: 209BA8B682DF11EAABBC5018C4F9AE02.roa (hash: BPcITeixSaXAriwkv0vsDzYrlqCAlvQdRZ4cRFHy1EA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2612 (0xa34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926, serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Dec 22 19:10:26 2025 GMT Not After : Dec 29 19:10:26 2025 GMT Subject: CN=694997a2-50a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8a:b2:b5:f7:b4:b3:25:f6:15:7c:64:1c:27: a2:57:8a:88:37:23:5d:e9:d1:bd:fa:ab:16:5a:12: 8e:05:79:28:aa:0e:ef:ff:4d:94:ff:8a:c1:62:37: c5:78:38:f7:d1:c8:11:1f:3f:bf:c5:80:34:30:34: aa:5d:2a:33:92:23:14:90:73:ef:61:9d:b3:bc:a1: 5f:96:1d:7f:a0:67:1e:b7:5b:ae:99:3a:5c:f3:9f: b6:73:24:cf:06:61:23:ba:39:c8:93:96:ef:c6:c8: d2:70:6f:1e:7c:38:22:f3:ec:2c:e8:82:af:c4:9b: 2e:3c:f4:42:1f:38:7c:d7:e8:98:10:b7:fe:e1:2e: 31:64:c1:08:93:74:76:34:d3:ae:f5:f7:09:d5:9e: 12:26:f5:37:fd:6f:14:d8:1b:c9:bc:ab:fb:44:d3: 85:c6:f7:d9:9e:63:3e:f7:be:13:f6:ea:f0:ab:cf: d7:41:7a:71:88:e0:03:29:7d:b6:ae:60:5b:f1:fb: 6a:5b:c2:3c:46:e7:d3:e3:1a:6c:08:1c:6c:a2:45: 40:2d:6d:bc:e7:cc:aa:d7:3d:d0:a8:bb:32:e5:91: 46:b1:a7:67:43:90:51:54:8c:57:63:60:4b:f0:c3: b7:87:33:0d:13:63:ff:b2:06:fc:10:cb:2c:2c:c4: 87:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8A:3E:C6:38:2D:2D:69:60:89:89:90:09:72:1E:AF:4A:BF:87:3D X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:f5:ab:05:61:fd:a3:33:a2:6b:2d:f5:85:ba:3e:54:a4:9b: 5f:aa:df:eb:64:1f:a5:92:e2:36:a5:d9:f9:6c:4d:96:f5:00: 97:d3:7d:78:3f:45:01:d3:a5:76:ad:ee:af:ee:74:ea:f8:e0: 56:6d:1f:44:af:c5:cb:f2:47:30:80:b4:5b:7d:8c:7b:e9:f0: b5:49:ee:7b:50:3a:9b:4d:43:0c:4c:0a:a0:db:96:09:8a:1d: 9a:1b:14:30:23:ac:3c:ac:a1:8a:8a:3f:7b:71:5c:6c:4e:46: c5:74:01:db:a9:0d:db:a0:a4:cf:04:18:51:6b:a0:c8:6f:59: 4c:e3:dc:0e:20:e6:f5:72:b3:1f:66:ac:be:a2:77:c2:42:9e: 5a:78:27:83:8b:e8:9b:02:71:fb:e4:a7:06:fe:bc:92:2c:85: 69:e5:3d:67:3c:0d:62:de:93:52:32:10:1d:79:ef:00:10:17: b9:96:3f:65:b7:b0:1b:84:79:21:97:bf:a5:de:dc:b2:85:4b: 37:fb:4e:c5:73:2d:0d:ea:49:fe:9a:5d:c7:90:62:38:4f:bd: 6b:1b:17:4f:b1:69:8a:5c:b8:d0:e6:df:6d:4e:cb:05:8d:84: 7b:69:bc:07:e3:24:4a:2e:f6:ba:f3:e4:e9:31:26:c4:ac:83: 79:d9:09:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjUxMjIyMTkxMDI2WhcNMjUxMjI5MTkxMDI2WjAYMRYwFAYD VQQDDA02OTQ5OTdhMi01MGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4qytfe0syX2FXxkHCeiV4qINyNd6dG9+qsWWhKOBXkoqg7v/02U/4rBYjfF eDj30cgRHz+/xYA0MDSqXSozkiMUkHPvYZ2zvKFflh1/oGcet1uumTpc85+2cyTP BmEjujnIk5bvxsjScG8efDgi8+ws6IKvxJsuPPRCHzh81+iYELf+4S4xZMEIk3R2 NNOu9fcJ1Z4SJvU3/W8U2BvJvKv7RNOFxvfZnmM+974T9urwq8/XQXpxiOADKX22 rmBb8ftqW8I8RufT4xpsCBxsokVALW2858yq1z3QqLsy5ZFGsadnQ5BRVIxXY2BL 8MO3hzMNE2P/sgb8EMssLMSHmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOKPsY4 LS1pYImJkAlyHq9Kv4c9MB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDkyNi9CMzg1NzhDNDgyRDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBz aUZKeElkaUJYb3ZQR0tvZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo9asFYf2jM6JrLfWFuj5UpJtfqt/rZB+lkuI2pdn5bE2W9QCX0314 P0UB06V2re6v7nTq+OBWbR9Er8XL8kcwgLRbfYx76fC1Se57UDqbTUMMTAqg25YJ ih2aGxQwI6w8rKGKij97cVxsTkbFdAHbqQ3boKTPBBhRa6DIb1lM49wOIOb1crMf Zqy+onfCQp5aeCeDi+ibAnH75KcG/rySLIVp5T1nPA1i3pNSMhAdee8AEBe5lj9l t7AbhHkhl7+l3tyyhUs3+07Fcy0N6kn+ml3HkGI4T71rGxdPsWmKXLjQ5t9tTssF jYR7abwH4yRKLva68+TpMSbErIN52Qme -----END CERTIFICATE-----Generated at Wed Dec 24 15:08:25 2025 by rpki-client