This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: +tBBrWX5aAIZjYpsnAebaTkQnjfFc3BE9lWzQd8rL6k= Subject key identifier: 9A:5B:EE:45:AF:79:BD:D4:ED:85:99:11:78:6A:D1:8B:EF:D5:4D:78 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1E15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1E00 Signing time: Sat 20 Dec 2025 15:55:17 +0000 Manifest this update: Sat 20 Dec 2025 15:55:16 +0000 Manifest next update: Sat 27 Dec 2025 15:55:16 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: F6hpRhjljdJHiVk9rScEQ6X0suXoofAKvovuu/hqico=) 2: 1D57FF40A01311E684546521C4F9AE02.roa (hash: 8kLRR6g7/NXM5uPCUqU+X4Qb9woBVi0kDN/Wkxs+ARo=) 3: 4865DD00A13B11E687921078C4F9AE02.roa (hash: MaFWYkY2HcnSI16cq7zrf3Xg1TMrKe+K2OOU5n2vPcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7701 (0x1e15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: Dec 20 15:55:16 2025 GMT Not After : Dec 27 15:55:16 2025 GMT Subject: CN=6946c6e5-ebb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6a:6b:e7:65:67:a0:3e:ea:28:5d:85:fa:20: 7a:24:f1:6d:68:a4:c8:1b:d4:0b:66:a0:cc:2e:33: 20:00:8d:96:54:33:6f:fa:89:e1:65:98:89:77:bb: fe:68:e7:03:e7:b8:cb:de:7d:71:16:55:76:81:11: 24:f3:a4:d0:8d:7c:0c:d8:8a:38:ff:35:63:77:1e: 93:70:f2:92:2a:98:ab:20:4f:d2:43:11:a5:62:b5: e2:79:7e:60:2f:e4:e3:1a:63:83:1d:42:b8:58:4b: ca:0f:43:61:9a:9e:2c:57:4e:a4:fe:2a:ff:39:20: 49:c8:73:03:3b:c7:c2:1b:4e:a5:01:b9:ec:de:02: d5:68:27:30:16:26:30:4c:ed:ca:54:21:08:c4:e9: 8f:be:ac:a3:b1:b8:8c:27:8b:f1:2f:c5:34:5e:9e: 81:d7:b7:46:5e:33:c4:e9:05:c3:98:c5:4d:49:ef: 5f:71:d5:68:75:2a:2c:f2:5f:a2:22:5b:df:9b:8a: 4b:79:0c:39:47:4b:e6:3c:1b:7c:23:ac:59:2d:97: 17:a7:bd:f8:1e:75:1a:97:78:d7:63:f2:0f:52:d9: 9f:f3:70:a5:2f:e0:a1:ea:4a:0f:7c:fa:98:cf:3c: 04:ee:60:e5:6d:1d:98:b7:73:17:da:6a:cd:3e:91: ce:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5B:EE:45:AF:79:BD:D4:ED:85:99:11:78:6A:D1:8B:EF:D5:4D:78 X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:29:90:60:7f:60:35:a8:46:77:d5:a4:9e:51:82:34:43:72: 5b:10:d6:59:11:d2:7c:f6:33:7a:84:b1:f2:95:60:b6:ff:65: b1:c6:67:af:1e:17:06:fe:19:51:ce:e4:47:04:26:5b:d6:b1: 0f:ce:76:47:5e:82:4a:1a:37:5f:5b:e9:32:d4:88:af:62:22: f5:bc:d9:e7:f0:8a:d0:79:c8:35:2a:9f:6b:2b:77:cc:f0:22: e5:06:72:64:e2:c8:dc:6e:90:80:d0:24:32:26:7e:3b:9f:35: 44:6d:5c:1d:92:d6:3a:2c:6e:bf:2e:a3:b4:69:4d:64:20:b8: 1c:52:49:79:a8:67:46:88:90:f0:c2:b5:da:8f:a4:21:8b:92: a3:28:00:ce:04:29:69:2f:8e:db:5a:81:64:f1:c5:98:6a:b2: 68:c7:71:1a:02:d7:11:23:d8:30:b9:fc:b1:0f:de:ed:c2:dc: 64:b4:10:d8:94:8a:35:0f:c5:b8:50:5a:28:4e:50:a5:66:b3: 3a:ad:ac:c0:dd:ce:dd:38:e5:56:c0:21:b2:86:37:9b:bc:60: 5e:e2:c6:38:ff:6a:dd:b9:85:77:aa:d5:29:9e:6d:1c:02:61: ef:8c:bd:18:ab:2f:30:34:2d:c6:17:ed:86:67:df:70:9d:d7: ab:d4:a5:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjUxMjIwMTU1NTE2WhcNMjUxMjI3MTU1NTE2WjAYMRYwFAYD VQQDDA02OTQ2YzZlNS1lYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Gpr52VnoD7qKF2F+iB6JPFtaKTIG9QLZqDMLjMgAI2WVDNv+onhZZiJd7v+ aOcD57jL3n1xFlV2gREk86TQjXwM2Io4/zVjdx6TcPKSKpirIE/SQxGlYrXieX5g L+TjGmODHUK4WEvKD0Nhmp4sV06k/ir/OSBJyHMDO8fCG06lAbns3gLVaCcwFiYw TO3KVCEIxOmPvqyjsbiMJ4vxL8U0Xp6B17dGXjPE6QXDmMVNSe9fcdVodSos8l+i Ilvfm4pLeQw5R0vmPBt8I6xZLZcXp734HnUal3jXY/IPUtmf83ClL+Ch6koPfPqY zzwE7mDlbR2Yt3MX2mrNPpHO3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpb7kWv eb3U7YWZEXhq0Yvv1U14MB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRKZBgf2A1qEZ31aSeUYI0Q3JbENZZEdJ89jN6hLHylWC2/2Wxxmev HhcG/hlRzuRHBCZb1rEPznZHXoJKGjdfW+ky1IivYiL1vNnn8IrQecg1Kp9rK3fM 8CLlBnJk4sjcbpCA0CQyJn47nzVEbVwdktY6LG6/LqO0aU1kILgcUkl5qGdGiJDw wrXaj6Qhi5KjKADOBClpL47bWoFk8cWYarJox3EaAtcRI9gwufyxD97twtxktBDY lIo1D8W4UFooTlClZrM6razA3c7dOOVWwCGyhjebvGBe4sY4/2rduYV3qtUpnm0c AmHvjL0Yqy8wNC3GF+2GZ99wnder1KU0 -----END CERTIFICATE-----Generated at Sat Dec 20 18:11:41 2025 by rpki-client