This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: XXs60YUKy92krsTCrO/rVGq17qQM40bkUmqc43JG3AY= Subject key identifier: 2C:C3:BC:D4:22:36:91:B5:01:58:D2:B4:BF:D5:C7:C6:D7:55:65:9D Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0BDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0BD1 Signing time: Thu 18 Dec 2025 18:35:08 +0000 Manifest this update: Thu 18 Dec 2025 18:35:07 +0000 Manifest next update: Thu 25 Dec 2025 18:35:07 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: 84ThuHzWyOUGtBZWjWrNjIIbnSrOllhv91zxDXykvFU=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3035 (0xbdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Dec 18 18:35:07 2025 GMT Not After : Dec 25 18:35:07 2025 GMT Subject: CN=6944495c-88b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ba:32:0b:b5:c8:23:d2:a3:00:e6:61:e7:fb: 73:e7:a1:fe:d4:2c:b3:57:db:78:d7:b2:81:cb:1b: 80:55:9d:04:f4:63:94:31:7e:b3:cb:17:57:6a:19: 86:ac:06:65:6d:9c:4d:03:52:2a:33:45:41:e7:9a: fa:33:3e:e3:66:41:36:0c:cd:0a:60:35:47:47:37: 34:82:6a:05:06:57:1a:38:36:11:ce:b7:43:8b:56: d5:25:b8:a6:88:43:f0:5a:06:50:77:e2:1f:8f:51: 15:d7:d9:d0:70:a6:2a:78:5d:7f:5d:9d:44:92:58: 2b:ec:8b:7a:fd:2e:a6:fe:ee:48:d2:da:f2:33:2e: 65:5d:00:1b:c3:9a:9c:28:c3:88:f7:fe:91:22:d1: f9:f4:5e:17:54:6a:9a:c2:85:57:14:e7:f3:54:f7: 1f:a7:09:4b:a3:3c:b3:9d:97:d8:cd:c3:26:7c:f8: 7b:e4:28:7c:1d:b7:c6:02:e7:70:33:d7:95:e5:3d: d6:d3:d7:b5:f5:7b:ac:02:54:7f:d4:56:12:9c:48: 2d:1c:14:49:e3:ab:15:a3:f9:03:db:83:c0:85:76: 95:a9:23:21:60:6d:13:54:fb:c6:07:de:6b:20:f9: 28:37:f6:00:05:62:c3:8a:5c:5a:df:c5:f2:1a:91: 5c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C3:BC:D4:22:36:91:B5:01:58:D2:B4:BF:D5:C7:C6:D7:55:65:9D X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:64:b6:05:4f:71:ac:d2:51:07:26:a6:6c:e8:5c:18:72:fe: 8f:93:d8:03:0e:08:88:3c:7e:b0:29:61:86:20:59:a3:0f:2f: ee:6d:9f:9e:22:9e:46:67:d1:2a:77:09:3e:87:24:1b:21:c9: 04:70:56:d4:64:7d:63:aa:f5:76:c2:3a:b8:af:f2:bc:ed:2e: 3d:9b:f4:76:e6:bd:2c:36:df:f7:8b:55:07:8d:31:10:fe:60: 88:ec:59:a8:09:d8:93:ee:8f:1a:14:2a:ca:d6:c5:f6:7b:7c: 3f:08:80:8a:af:97:97:65:c6:ec:9b:b2:92:cf:a8:9b:b8:97: b5:53:db:cc:95:2a:ee:d5:33:e3:a2:47:98:0c:05:e2:0f:8b: 3a:05:a8:e0:4a:f4:4f:87:03:ee:56:af:77:47:89:de:95:95: cc:09:2f:5b:e5:af:49:f2:52:17:13:39:31:cd:39:83:c4:aa: 53:5c:11:e1:3b:68:69:bc:c5:4b:7d:fe:d9:09:6f:a1:d7:22: f5:6c:84:fc:72:d7:8b:f5:cd:c9:14:cd:4a:62:ca:b7:36:e4: 94:8a:b4:4b:04:d1:a5:f7:19:f8:6c:b1:c2:a2:df:fc:f8:a1: 82:27:0f:7e:c4:4f:79:a9:5a:91:f4:b3:24:8d:18:4e:b3:28: f9:c8:b4:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUxMjE4MTgzNTA3WhcNMjUxMjI1MTgzNTA3WjAYMRYwFAYD VQQDDA02OTQ0NDk1Yy04OGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7oyC7XII9KjAOZh5/tz56H+1CyzV9t417KByxuAVZ0E9GOUMX6zyxdXahmG rAZlbZxNA1IqM0VB55r6Mz7jZkE2DM0KYDVHRzc0gmoFBlcaODYRzrdDi1bVJbim iEPwWgZQd+Ifj1EV19nQcKYqeF1/XZ1Eklgr7It6/S6m/u5I0tryMy5lXQAbw5qc KMOI9/6RItH59F4XVGqawoVXFOfzVPcfpwlLozyznZfYzcMmfPh75Ch8HbfGAudw M9eV5T3W09e19XusAlR/1FYSnEgtHBRJ46sVo/kD24PAhXaVqSMhYG0TVPvGB95r IPkoN/YABWLDilxa38XyGpFc/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzDvNQi NpG1AVjStL/Vx8bXVWWdMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2ZLYFT3Gs0lEHJqZs6FwYcv6Pk9gDDgiIPH6wKWGGIFmjDy/ubZ+e Ip5GZ9Eqdwk+hyQbIckEcFbUZH1jqvV2wjq4r/K87S49m/R25r0sNt/3i1UHjTEQ /mCI7FmoCdiT7o8aFCrK1sX2e3w/CICKr5eXZcbsm7KSz6ibuJe1U9vMlSru1TPj okeYDAXiD4s6BajgSvRPhwPuVq93R4nelZXMCS9b5a9J8lIXEzkxzTmDxKpTXBHh O2hpvMVLff7ZCW+h1yL1bIT8cteL9c3JFM1KYsq3NuSUirRLBNGl9xn4bLHCot/8 +KGCJw9+xE95qVqR9LMkjRhOsyj5yLS7 -----END CERTIFICATE-----Generated at Sat Dec 20 16:17:17 2025 by rpki-client