This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft File: nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json) Hash identifier: 5Ty4KzzjpZMxvsz9Ia6BKu01Hd3maIES1l99egDZbz0= Subject key identifier: 74:16:56:26:33:F4:64:E6:3B:DD:D2:ED:DC:CD:6D:61:09:8D:05:BF Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 Certificate issuer: /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft Manifest number: 25 Signing time: Wed 03 Dec 2025 05:54:18 +0000 Manifest this update: Wed 03 Dec 2025 05:54:17 +0000 Manifest next update: Wed 10 Dec 2025 05:54:17 +0000 Files and hashes: 1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: tuMVKIgmQiygMmeZztawOkIfo0koUHUtuiqNCF6iZXQ=) 2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lVwKB14i6OpwyRz8FsA7PbQdrXdHjD1P3S/SDqyzydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Validity Not Before: Dec 3 05:54:17 2025 GMT Not After : Dec 10 05:54:17 2025 GMT Subject: CN=692fd08a-9ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:12:37:5b:8d:fc:88:73:70:f8:26:7e:b9:51: 57:1c:cb:33:23:71:98:29:47:2e:06:d3:11:fb:1f: 8e:8c:f3:32:83:39:8d:b1:a9:b5:a3:bf:ee:50:8f: f3:43:54:37:f6:d6:bf:4d:7c:e4:58:d0:e0:bc:22: 58:99:69:c9:c6:eb:b6:ee:c8:71:83:9c:56:9e:1f: c0:56:ff:df:af:a4:c4:f6:88:44:07:11:ae:1d:45: 90:2b:6f:75:bd:c8:1e:09:e4:3a:76:65:74:10:47: b1:10:6a:f0:52:cd:74:79:9a:64:a9:70:ab:0a:17: 73:fa:7e:4d:70:1d:76:b4:dc:9d:6d:c2:e9:52:72: ed:56:39:36:de:35:48:97:29:f4:3e:f6:7d:f1:2f: b2:65:39:d7:79:2d:9e:bd:43:a5:99:83:a5:bd:1f: 11:f4:ae:61:3a:1f:2f:be:87:72:fd:cd:76:92:07: ab:4f:aa:5b:c3:cf:30:cf:3c:6a:a6:36:92:a8:3e: 82:9c:95:c8:b2:06:13:86:90:ac:8c:86:49:d6:3b: e2:6b:63:84:3f:50:45:f1:8c:8c:b4:df:e1:bb:c5: dd:a7:1e:c5:31:a2:bf:88:40:36:8e:43:ba:09:bb: 73:b8:9b:f8:99:44:ad:75:f4:ed:18:fc:fb:ab:3f: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:16:56:26:33:F4:64:E6:3B:DD:D2:ED:DC:CD:6D:61:09:8D:05:BF X509v3 Authority Key Identifier: keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:b6:8b:94:ca:7f:fe:d4:e6:6e:03:49:27:67:e6:da:ea:ca: 4f:79:79:91:21:a5:b8:fb:5a:dc:ef:f4:47:82:e6:71:1b:fc: 32:fc:ee:3c:58:51:d5:12:55:e8:8f:b5:e8:03:12:9b:13:40: e7:bb:4d:35:bd:81:41:64:2e:8c:01:c3:07:c5:f7:0b:14:f2: 0a:b7:ac:5f:94:74:32:47:32:dc:ea:8c:1b:13:51:de:f7:28: b2:75:e3:2d:71:37:2e:3d:c8:8d:b6:14:1f:f8:45:da:7a:4d: 16:30:90:df:7e:19:61:0f:1b:22:01:cc:ab:51:4d:4b:50:2f: 9a:61:4f:3c:52:b8:89:2d:cc:62:ff:a8:9d:7f:b7:15:24:67: 6e:be:dd:ae:d0:ae:f8:2c:1a:2f:17:c3:36:db:7d:d8:fa:d6: 5f:6f:88:81:f3:96:fe:74:80:8c:d0:08:9b:78:c6:ea:af:79: ef:48:9c:26:09:b4:39:89:65:4c:22:fb:7b:38:c6:52:19:7c: 6f:08:52:62:cc:94:63:04:b5:83:ad:34:70:eb:2c:11:8e:ce: b0:64:a4:81:b6:30:a3:e2:39:0e:0e:80:24:7c:ea:6a:17:af: 23:c3:e0:04:2e:65:5a:df:94:ed:39:5e:36:08:8d:2e:ab:79: 22:bc:74:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoOUMxRTQ1QTgwODRDMzExREQ1MDA0NEExNzM2MDVFOEVF M0M0Q0M5NTAeFw0yNTEyMDMwNTU0MTdaFw0yNTEyMTAwNTU0MTdaMBgxFjAUBgNV BAMTDTY5MmZkMDhhLTllZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFEjdbjfyIc3D4Jn65UVccyzMjcZgpRy4G0xH7H46M8zKDOY2xqbWjv+5Qj/ND VDf21r9NfORY0OC8IliZacnG67buyHGDnFaeH8BW/9+vpMT2iEQHEa4dRZArb3W9 yB4J5Dp2ZXQQR7EQavBSzXR5mmSpcKsKF3P6fk1wHXa03J1twulScu1WOTbeNUiX KfQ+9n3xL7JlOdd5LZ69Q6WZg6W9HxH0rmE6Hy++h3L9zXaSB6tPqlvDzzDPPGqm NpKoPoKclciyBhOGkKyMhknWO+JrY4Q/UEXxjIy03+G7xd2nHsUxor+IQDaOQ7oJ u3O4m/iZRK119O0Y/PurP0KpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdBZWJjP0 ZOY73dLt3M1tYQmNBb8wHwYDVR0jBBgwFoAUnB5FqAhMMR3VAEShc2BejuPEzJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDLzlERjA3RTQ0OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIzVkFFU2hjMkJlanVQRXpK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbkI1RnFBaE1NUjNWQUVTaGMyQmVqdVBFekpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MUNDLzlERjA3RTQ0OUEwRTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIz VkFFU2hjMkJlanVQRXpKVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIK2i5TKf/7U5m4DSSdn5trqyk95eZEhpbj7Wtzv9EeC5nEb/DL87jxY UdUSVeiPtegDEpsTQOe7TTW9gUFkLowBwwfF9wsU8gq3rF+UdDJHMtzqjBsTUd73 KLJ14y1xNy49yI22FB/4Rdp6TRYwkN9+GWEPGyIBzKtRTUtQL5phTzxSuIktzGL/ qJ1/txUkZ26+3a7QrvgsGi8Xwzbbfdj61l9viIHzlv50gIzQCJt4xuqvee9InCYJ tDmJZUwi+3s4xlIZfG8IUmLMlGMEtYOtNHDrLBGOzrBkpIG2MKPiOQ4OgCR86moX ryPD4AQuZVrflO05XjYIjS6reSK8dPE= -----END CERTIFICATE-----Generated at Wed Dec 3 14:46:09 2025 by rpki-client