This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: G4+7MJceVN6b/NhKm0j2GTHJQ57X85ADZ8fXGerEhoE= Subject key identifier: 73:91:03:A1:18:DF:52:B9:69:87:40:C6:04:97:BC:2E:09:6C:9C:B2 Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 0815 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 0812 Signing time: Mon 22 Dec 2025 20:15:45 +0000 Manifest this update: Mon 22 Dec 2025 20:15:45 +0000 Manifest next update: Mon 29 Dec 2025 20:15:45 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: 5a/mKJ7mpr6/Mj0iJAx6VG90FgGxtKmQ+Mv44Uz1Mu0=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: hbQmOshNkorS1/g78QiEhSVwbWUn9A8H0a6ZSzOWB98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2069 (0x815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Dec 22 20:15:45 2025 GMT Not After : Dec 29 20:15:45 2025 GMT Subject: CN=6949a6f1-9983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d2:e5:aa:62:be:2c:81:a2:68:37:ff:4d:07: c8:1d:f0:a9:92:75:81:74:a2:cd:46:53:9a:a8:33: e0:61:d3:b5:8f:fa:a6:dd:79:04:0b:af:89:06:bd: 01:74:7e:1b:8e:60:6e:58:d8:46:ac:f8:01:bb:05: 8a:30:b6:15:7b:08:7b:9e:8d:6d:db:4e:81:6a:56: c7:45:44:c0:33:f8:b4:61:a5:61:af:dc:fa:f0:3c: 80:b7:90:bd:00:d4:2b:1b:d5:21:35:78:13:2a:24: ff:bb:f6:a1:b5:ff:d7:02:f5:61:d8:50:9c:24:8c: b3:a8:d0:3d:b9:f6:c2:61:91:71:09:86:8e:72:5e: 28:5f:0c:08:b9:70:cc:19:56:7b:92:32:ad:dc:7e: 68:b7:4d:0b:41:b3:ab:91:d0:35:42:34:1f:02:23: 75:fa:cc:02:61:49:22:0a:7e:ed:b9:82:8f:9d:a1: 98:4f:a3:61:03:3a:3b:f9:c8:d4:7a:38:3b:cc:10: e2:0b:a4:1d:12:f7:1d:ae:1a:f3:e1:9d:c0:75:45: 2a:9f:a8:0f:09:93:74:20:8b:bb:72:39:93:20:aa: a1:79:e8:83:32:14:dd:b6:a7:b6:45:dc:41:96:c7: a0:fa:45:36:cc:91:aa:9c:7d:46:dd:ad:87:e9:48: 07:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:91:03:A1:18:DF:52:B9:69:87:40:C6:04:97:BC:2E:09:6C:9C:B2 X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:bd:26:c0:6e:16:3e:14:a2:ef:53:f3:06:d2:6b:53:54:77: 31:e6:f0:5b:8b:59:14:6c:3e:82:61:db:27:20:e9:46:11:98: 35:56:8c:b0:84:a1:38:d2:f7:5e:8f:5e:f5:54:40:65:b5:48: 50:1f:a5:37:e5:70:fc:71:50:d6:d7:ce:02:f1:7d:8d:d7:89: ec:99:8d:3b:80:bf:17:d5:54:c8:f8:55:9b:85:26:24:b3:15: ea:87:54:78:67:2e:6f:60:0a:60:db:ca:7e:a3:8b:e3:69:f5: cb:08:e6:4c:12:1e:d3:b9:90:aa:01:b8:67:1e:b8:4c:87:2c: 91:67:ed:17:38:dc:e4:d0:69:ad:8a:08:bd:33:1a:bf:ec:1d: 08:2f:f6:21:48:19:cc:b0:fa:50:4f:62:6a:2e:9a:91:dd:a3: 3b:92:82:a9:cb:9c:94:c5:bb:b3:f0:ae:e0:1a:c9:d4:c8:da: 38:71:85:d8:7d:94:a0:a9:5f:8c:fe:d9:c4:f3:a4:dc:40:1d: bc:00:16:23:c5:e0:fe:98:c6:a2:92:22:49:c7:32:31:44:c3: 0e:e9:5e:77:f5:46:94:20:b2:f9:dd:4b:b9:86:6b:0a:d8:30: 5b:0b:d8:b8:3c:20:a9:4c:46:29:2c:73:ae:7c:05:2b:3f:5f: ea:bd:bf:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUxMjIyMjAxNTQ1WhcNMjUxMjI5MjAxNTQ1WjAYMRYwFAYD VQQDDA02OTQ5YTZmMS05OTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNLlqmK+LIGiaDf/TQfIHfCpknWBdKLNRlOaqDPgYdO1j/qm3XkEC6+JBr0B dH4bjmBuWNhGrPgBuwWKMLYVewh7no1t206BalbHRUTAM/i0YaVhr9z68DyAt5C9 ANQrG9UhNXgTKiT/u/ahtf/XAvVh2FCcJIyzqNA9ufbCYZFxCYaOcl4oXwwIuXDM GVZ7kjKt3H5ot00LQbOrkdA1QjQfAiN1+swCYUkiCn7tuYKPnaGYT6NhAzo7+cjU ejg7zBDiC6QdEvcdrhrz4Z3AdUUqn6gPCZN0IIu7cjmTIKqheeiDMhTdtqe2RdxB lseg+kU2zJGqnH1G3a2H6UgH3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHORA6EY 31K5aYdAxgSXvC4JbJyyMB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQvSbAbhY+FKLvU/MG0mtTVHcx5vBbi1kUbD6CYdsnIOlGEZg1Voyw hKE40vdej171VEBltUhQH6U35XD8cVDW184C8X2N14nsmY07gL8X1VTI+FWbhSYk sxXqh1R4Zy5vYApg28p+o4vjafXLCOZMEh7TuZCqAbhnHrhMhyyRZ+0XONzk0Gmt igi9Mxq/7B0IL/YhSBnMsPpQT2JqLpqR3aM7koKpy5yUxbuz8K7gGsnUyNo4cYXY fZSgqV+M/tnE86TcQB28ABYjxeD+mMaikiJJxzIxRMMO6V539UaUILL53Uu5hmsK 2DBbC9i4PCCpTEYpLHOufAUrP1/qvb/y -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:44 2025 by rpki-client