This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: HBf69Vahjsq8yaNt6fJdSWR7mUVTSsDwhKFZ2HvEZTs= Subject key identifier: 34:3F:EE:9A:D2:98:29:67:3A:C9:04:55:8A:EF:C3:5A:3E:13:F0:8A Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 34ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 34EA Signing time: Mon 22 Dec 2025 15:02:34 +0000 Manifest this update: Mon 22 Dec 2025 15:02:34 +0000 Manifest next update: Mon 29 Dec 2025 15:02:34 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: A5oJXFEensZ2MYy1I/t5bgA2EbT7VH+DSwk8Boyt4P4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13549 (0x34ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Dec 22 15:02:34 2025 GMT Not After : Dec 29 15:02:34 2025 GMT Subject: CN=69495d8a-b8a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c4:b2:6f:11:14:16:50:80:56:b3:ff:9e:83: 8a:2a:3f:55:e4:58:7e:a5:79:64:d3:44:11:50:e5: 55:f6:1f:a1:b5:5b:68:fb:90:c7:b2:a8:e4:e0:d6: 9a:46:1c:b5:0d:9f:6c:2f:c8:c3:fb:ab:fb:ec:0b: a5:ea:2c:aa:db:1f:16:25:56:7e:70:f2:67:2a:cc: 26:ee:52:ff:46:cb:fd:62:42:33:f7:3c:ff:f0:29: e6:2a:95:9a:d6:5c:24:22:5e:6f:6c:84:da:2e:70: eb:e1:59:22:c6:73:ca:d2:48:0c:e0:23:82:80:f1: e3:9a:25:b0:a9:44:7e:26:3e:9f:af:dc:e5:14:82: b5:09:48:92:9e:50:4f:d1:8b:d7:a9:95:e3:7c:49: 77:0a:e5:f0:94:c3:68:d7:e8:ba:4e:95:31:be:8a: 1e:9a:92:da:aa:49:86:dd:09:46:ae:a3:8a:11:08: 5e:6c:ee:8d:a7:ec:6c:57:e4:48:f6:f0:f7:e2:c3: 42:d4:ed:d0:85:74:87:c6:60:bc:42:53:c3:72:30: 0b:f7:a3:87:96:bf:fb:82:18:27:23:95:37:1a:13: f4:c7:87:41:48:d6:70:b9:72:25:95:bc:da:4d:93: b1:e5:f1:ad:5e:b7:c4:ff:ad:d1:60:f5:09:de:f7: 1f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:3F:EE:9A:D2:98:29:67:3A:C9:04:55:8A:EF:C3:5A:3E:13:F0:8A X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ab:5a:d9:29:be:5b:a9:1c:35:c9:06:57:13:ba:d3:91:e0: 6a:1a:e6:fa:c4:ff:6b:97:de:3b:00:c8:60:0f:32:71:d3:21: c8:c7:4e:6f:de:4d:f4:55:36:bb:36:f0:b6:e4:48:da:17:1b: e7:81:54:e2:94:1f:12:4a:5d:aa:09:17:bd:25:db:97:6d:d2: 10:6b:7e:19:1e:ca:f4:52:06:92:02:04:45:89:08:fa:e5:90: ca:06:25:40:fb:7a:8f:30:0f:6e:47:f6:d1:2b:bb:63:26:d6: 1f:9a:9e:d7:90:b1:0d:c2:ec:09:f2:8d:d9:a6:90:ef:97:54: c9:01:5d:35:82:43:2f:76:15:9b:04:c7:e7:fd:2e:f0:97:79: 01:06:c2:cb:d7:83:d1:c0:04:c2:ba:2d:05:c9:8d:19:ed:d1: de:bf:83:f6:01:84:18:3a:f4:65:0e:cb:c8:fa:fb:97:58:be: c5:8f:c1:30:96:c6:ed:4d:fd:d0:f9:b6:11:3b:da:f7:6e:c0: 3e:24:bf:ad:05:d3:b6:91:fe:3f:9d:ec:21:f9:d0:4d:b3:38: 21:a2:a0:78:69:be:ac:cf:fd:e8:ec:c9:1a:4e:bb:db:13:f4: de:91:94:2e:18:71:5c:84:0a:86:c5:25:79:40:16:a9:98:c1: a0:75:59:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUxMjIyMTUwMjM0WhcNMjUxMjI5MTUwMjM0WjAYMRYwFAYD VQQDDA02OTQ5NWQ4YS1iOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsSybxEUFlCAVrP/noOKKj9V5Fh+pXlk00QRUOVV9h+htVto+5DHsqjk4Naa Rhy1DZ9sL8jD+6v77Aul6iyq2x8WJVZ+cPJnKswm7lL/Rsv9YkIz9zz/8CnmKpWa 1lwkIl5vbITaLnDr4VkixnPK0kgM4COCgPHjmiWwqUR+Jj6fr9zlFIK1CUiSnlBP 0YvXqZXjfEl3CuXwlMNo1+i6TpUxvooempLaqkmG3QlGrqOKEQhebO6Np+xsV+RI 9vD34sNC1O3QhXSHxmC8QlPDcjAL96OHlr/7ghgnI5U3GhP0x4dBSNZwuXIllbza TZOx5fGtXrfE/63RYPUJ3vcfPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQ/7prS mClnOskEVYrvw1o+E/CKMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwq1rZKb5bqRw1yQZXE7rTkeBqGub6xP9rl947AMhgDzJx0yHIx05v 3k30VTa7NvC25EjaFxvngVTilB8SSl2qCRe9JduXbdIQa34ZHsr0UgaSAgRFiQj6 5ZDKBiVA+3qPMA9uR/bRK7tjJtYfmp7XkLENwuwJ8o3ZppDvl1TJAV01gkMvdhWb BMfn/S7wl3kBBsLL14PRwATCui0FyY0Z7dHev4P2AYQYOvRlDsvI+vuXWL7Fj8Ew lsbtTf3Q+bYRO9r3bsA+JL+tBdO2kf4/newh+dBNszghoqB4ab6sz/3o7MkaTrvb E/TekZQuGHFchAqGxSV5QBapmMGgdVnh -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:16 2025 by rpki-client