This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: hAUStXF8vrlmdwtx/mkltWmQGqICbkqCqK4jlA3OL4I= Subject key identifier: 55:2E:02:24:39:6D:A3:18:8A:A4:70:B5:B5:AE:0C:56:D6:92:54:79 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 98 Signing time: Tue 23 Dec 2025 05:21:39 +0000 Manifest this update: Tue 23 Dec 2025 05:21:38 +0000 Manifest next update: Tue 30 Dec 2025 05:21:38 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: vzk6UnW9boWHMTUu0mJEdh3seWhmnuUkhcyNs+qmDYE=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Dec 23 05:21:38 2025 GMT Not After : Dec 30 05:21:38 2025 GMT Subject: CN=694a26e3-1903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:af:90:9d:9f:46:cb:8f:c8:27:31:ae:48: 00:19:1d:5a:d8:e3:18:0c:f9:a0:41:be:72:0e:bc: 1d:2f:46:4c:c3:20:e3:e6:63:f9:58:95:f7:2a:cd: 87:b3:89:43:b6:fe:fb:9c:51:90:00:75:45:0f:c6: 3f:8f:2e:8c:20:a5:ea:de:4f:e2:12:ff:2b:4b:86: 74:61:0e:9b:e3:5b:67:37:32:da:63:ae:70:e2:8a: b6:37:4b:fb:3f:3f:6a:a3:64:ff:dc:6d:3d:62:89: be:26:12:2c:64:14:b1:97:3f:5e:5a:b5:4e:13:84: 96:62:55:6d:6e:a9:19:03:d3:7c:31:8f:71:83:23: 95:86:e2:78:2f:aa:a0:dd:e1:7d:70:db:b6:19:81: ed:6e:89:41:9a:3c:59:90:2e:e0:52:8b:f5:9f:f2: d3:08:59:41:6b:13:bd:70:ee:57:e2:7e:bf:e7:3a: 60:56:f9:21:27:a8:ca:cc:0e:01:6d:d9:38:ee:e1: cd:e8:6f:51:30:22:15:fe:73:18:e6:1a:5f:80:f4: 2a:7e:b7:f1:f9:fb:88:b5:d3:f0:fc:73:19:58:18: 9a:89:12:54:62:bf:bb:19:3f:4c:17:59:13:86:18: 15:7f:ae:51:2a:ae:26:86:ee:27:2e:34:77:d4:a4: e9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2E:02:24:39:6D:A3:18:8A:A4:70:B5:B5:AE:0C:56:D6:92:54:79 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:28:6f:7b:69:f5:59:91:fb:ef:60:cd:a8:6e:14:bd:8a:9f: ac:be:d0:01:cd:87:d4:6c:37:89:aa:f6:94:2d:ab:45:13:c5: 66:9c:64:05:1a:92:3d:c7:30:7f:a1:3c:5d:43:7a:60:7c:10: 00:c8:34:78:73:12:f9:f2:5c:b3:78:22:f3:d2:71:6d:fe:48: 0d:d7:ed:08:8f:84:14:ac:68:53:fb:a6:d9:e1:c5:f9:5f:72: b2:26:9c:f7:ce:c3:b3:cd:b4:89:d8:46:02:2c:ad:76:d4:ab: cb:e3:9f:f1:db:62:00:dd:08:c5:f1:28:32:8e:0d:be:ac:58: 34:5d:55:87:5f:c6:e0:f4:82:f4:e0:93:5a:6e:c0:ab:a7:9d: 70:28:aa:a6:9f:d8:21:5e:a8:26:08:b7:7d:be:57:d9:db:65: de:0f:1a:22:c7:70:40:cf:b7:f7:8f:cf:b6:14:f7:19:cf:c1: 9d:51:79:49:3c:8b:68:65:90:e1:61:98:21:93:e4:e0:e3:95: e3:f1:99:95:9a:68:d7:4f:24:0e:8e:d4:51:49:38:4d:e0:a9: 07:03:52:8b:9d:ae:7b:8b:4d:a0:cf:94:7c:a4:16:04:6b:a8: 8e:73:0b:6d:9c:67:70:85:59:83:d6:58:aa:d2:63:00:36:09: 19:63:7d:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzMUQxMTAvBgNVBAUTKEU2MjgyMjBGM0ZEMDBGNDE3Qjk5NzJFMUQ0QTBGNjQx Njk2RTc5OTkwHhcNMjUxMjIzMDUyMTM4WhcNMjUxMjMwMDUyMTM4WjAYMRYwFAYD VQQDDA02OTRhMjZlMy0xOTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm+vkJ2fRsuPyCcxrkgAGR1a2OMYDPmgQb5yDrwdL0ZMwyDj5mP5WJX3Ks2H s4lDtv77nFGQAHVFD8Y/jy6MIKXq3k/iEv8rS4Z0YQ6b41tnNzLaY65w4oq2N0v7 Pz9qo2T/3G09Yom+JhIsZBSxlz9eWrVOE4SWYlVtbqkZA9N8MY9xgyOVhuJ4L6qg 3eF9cNu2GYHtbolBmjxZkC7gUov1n/LTCFlBaxO9cO5X4n6/5zpgVvkhJ6jKzA4B bdk47uHN6G9RMCIV/nMY5hpfgPQqfrfx+fuItdPw/HMZWBiaiRJUYr+7GT9MF1kT hhgVf65RKq4mhu4nLjR31KTpbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUuAiQ5 baMYiqRwtbWuDFbWklR5MB8GA1UdIwQYMBaAFOYoIg8/0A9Be5ly4dSg9kFpbnmZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTMxRC8yQ0Y2QjhCMEY5 QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQwRjdtWExoMUtEMlFXbHVl WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTMxRC8yQ0Y2QjhCMEY5QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQw RjdtWExoMUtEMlFXbHVlWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6KG97afVZkfvvYM2obhS9ip+svtABzYfUbDeJqvaULatFE8VmnGQF GpI9xzB/oTxdQ3pgfBAAyDR4cxL58lyzeCLz0nFt/kgN1+0Ij4QUrGhT+6bZ4cX5 X3KyJpz3zsOzzbSJ2EYCLK121KvL45/x22IA3QjF8Sgyjg2+rFg0XVWHX8bg9IL0 4JNabsCrp51wKKqmn9ghXqgmCLd9vlfZ22XeDxoix3BAz7f3j8+2FPcZz8GdUXlJ PItoZZDhYZghk+Tg45Xj8ZmVmmjXTyQOjtRRSThN4KkHA1KLna57i02gz5R8pBYE a6iOcwttnGdwhVmD1liq0mMANgkZY31v -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:40 2025 by rpki-client