This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: jRzI//vxFzAzWpDxsURv5xWPunAdiS47ZKBEGe4l6H8= Subject key identifier: A8:2E:81:2E:ED:E8:55:47:BE:3E:64:AA:4C:9A:CC:EB:1E:21:35:C3 Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 34EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 34EF Signing time: Sat 20 Dec 2025 14:31:41 +0000 Manifest this update: Sat 20 Dec 2025 14:31:40 +0000 Manifest next update: Sat 27 Dec 2025 14:31:40 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: +h7LpgL89/t35eMxd/hCm+x6rPbpR1le72v+F1tzwtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13551 (0x34ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Dec 20 14:31:40 2025 GMT Not After : Dec 27 14:31:40 2025 GMT Subject: CN=6946b34d-6123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5b:ed:17:b4:79:1d:e0:2c:79:82:03:9c:bc: c3:35:1e:40:dd:ef:ba:56:a7:a7:e9:c4:b4:e0:26: a6:a6:40:95:96:14:60:c4:1c:2b:83:09:f0:e0:6f: 5a:09:c6:4b:a5:51:cf:5c:f9:c7:41:4d:87:a4:af: a9:c5:e2:ba:30:83:d1:64:d3:4e:5e:00:fa:28:09: 61:41:15:77:1b:c1:39:70:7e:0b:98:04:cf:47:e3: 1d:e9:dd:68:48:e0:ac:57:06:90:06:ea:cf:82:6d: 00:33:f0:56:5a:00:3c:47:06:98:58:a6:d8:15:05: 36:a4:65:b0:06:f4:ff:8d:8a:33:47:b1:28:87:71: 88:4e:3e:b8:02:bf:e9:33:27:71:e2:1a:96:69:32: df:cb:2c:49:fd:17:b5:84:3b:7d:b5:27:a9:f6:21: a6:81:22:05:e8:9e:9e:f8:ca:4a:96:6d:ed:3a:55: 82:3b:5f:a7:51:68:65:9e:06:24:bb:7a:f2:73:16: 75:8a:d2:8e:28:d7:22:8a:7e:2c:9f:57:cf:e0:85: 9b:6e:3e:9e:d1:21:f5:1a:ea:a9:d1:89:33:66:8c: e0:42:0f:e4:d5:53:dc:8e:d3:e1:3f:d3:09:9d:29: a4:17:ea:8d:dc:26:ea:91:ab:f4:3a:ca:9a:5c:46: d7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2E:81:2E:ED:E8:55:47:BE:3E:64:AA:4C:9A:CC:EB:1E:21:35:C3 X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8c:e9:5a:37:b4:c8:03:28:39:6b:60:09:97:6e:54:cf:8c: 51:59:c2:bd:50:aa:b6:cd:1d:0c:44:80:e1:07:89:de:34:fd: 23:53:b6:eb:95:86:55:26:5b:70:34:e7:a9:d9:da:8c:b6:e3: 38:e5:43:8a:38:8e:32:79:1b:b3:b4:11:df:f3:d3:f6:02:a6: 70:be:54:0b:ef:25:cf:c6:4a:8f:7b:b8:85:58:4b:32:e8:6f: 27:9c:f9:f3:03:c3:72:b1:92:9e:f1:e7:ef:de:56:32:7e:b8: 6a:1d:93:d9:c7:d2:3c:97:cd:f4:42:5b:a8:37:91:ae:e7:96: 43:46:91:52:6a:d4:ed:4f:3e:a3:da:49:48:84:72:e4:8d:9c: 83:ed:40:f7:be:72:c2:87:60:45:96:20:07:ab:d3:7f:59:71: 3e:1f:cb:43:0c:7a:e0:07:99:77:00:8d:d5:44:35:2a:2d:13: 73:8c:44:79:e2:e6:9f:33:64:15:6a:8c:d1:ae:25:e3:42:8b: 03:34:09:2b:26:d0:1c:4f:bc:99:4f:53:d0:fe:50:41:0e:2b: 47:95:c9:45:19:87:1a:d4:90:03:f8:6c:62:44:a7:35:d9:b6: b7:cc:a9:01:05:01:f2:fe:73:6d:13:31:17:64:fd:e6:f3:fa: 56:a1:ac:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjUxMjIwMTQzMTQwWhcNMjUxMjI3MTQzMTQwWjAYMRYwFAYD VQQDDA02OTQ2YjM0ZC02MTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41vtF7R5HeAseYIDnLzDNR5A3e+6Vqen6cS04CampkCVlhRgxBwrgwnw4G9a CcZLpVHPXPnHQU2HpK+pxeK6MIPRZNNOXgD6KAlhQRV3G8E5cH4LmATPR+Md6d1o SOCsVwaQBurPgm0AM/BWWgA8RwaYWKbYFQU2pGWwBvT/jYozR7Eoh3GITj64Ar/p Mydx4hqWaTLfyyxJ/Re1hDt9tSep9iGmgSIF6J6e+MpKlm3tOlWCO1+nUWhlngYk u3rycxZ1itKOKNciin4sn1fP4IWbbj6e0SH1Guqp0YkzZozgQg/k1VPcjtPhP9MJ nSmkF+qN3Cbqkav0OsqaXEbX+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgugS7t 6FVHvj5kqkyazOseITXDMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjjOlaN7TIAyg5a2AJl25Uz4xRWcK9UKq2zR0MRIDhB4neNP0jU7br lYZVJltwNOep2dqMtuM45UOKOI4yeRuztBHf89P2AqZwvlQL7yXPxkqPe7iFWEsy 6G8nnPnzA8NysZKe8efv3lYyfrhqHZPZx9I8l830QluoN5Gu55ZDRpFSatTtTz6j 2klIhHLkjZyD7UD3vnLCh2BFliAHq9N/WXE+H8tDDHrgB5l3AI3VRDUqLRNzjER5 4uafM2QVaozRriXjQosDNAkrJtAcT7yZT1PQ/lBBDitHlclFGYca1JAD+GxiRKc1 2ba3zKkBBQHy/nNtEzEXZP3m8/pWoazF -----END CERTIFICATE-----Generated at Sat Dec 20 16:20:22 2025 by rpki-client