This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: 5f+1+lJ6QuNsyFBJKh4SnWhe37SDKglSCn4e7fmtL8k= Subject key identifier: D9:CD:D7:BE:0E:AC:4C:4A:57:90:55:B5:E7:55:56:EB:41:C3:BB:43 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0AF7 Signing time: Thu 18 Dec 2025 19:04:22 +0000 Manifest this update: Thu 18 Dec 2025 19:04:21 +0000 Manifest next update: Thu 25 Dec 2025 19:04:21 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: 850aFeghJHic2L8BQLLje225eIk0l1GtMjXI22OhwDA=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: u5qMQVovxMEdO3VlriBzt3ygKjHOuxT4HxOLZ60i5D0=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Dec 18 19:04:21 2025 GMT Not After : Dec 25 19:04:21 2025 GMT Subject: CN=69445036-b576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:60:06:09:49:09:bf:7e:40:6e:35:77:5b:ba: f9:07:06:16:7e:17:d9:3f:5c:5a:a6:ef:2f:f9:0c: fe:cf:2e:f2:2e:64:e8:a4:d5:16:b2:1d:da:c6:a6: 3f:cf:ad:ab:0e:50:6d:44:b1:74:67:6c:15:6f:e0: 92:61:8a:08:10:bf:3c:02:15:34:8a:47:1e:33:f6: 2b:ee:61:79:86:ed:ea:17:99:e8:4b:d5:6d:a4:a5: 1a:c5:74:2e:25:19:34:89:62:8f:4e:2b:6c:71:49: 94:b2:47:23:75:23:9c:ea:ac:76:7a:2b:bd:17:f9: 0f:65:b3:14:38:18:49:8e:56:c8:86:96:cc:e3:7b: 16:f9:23:d3:04:a5:c0:26:e9:f3:a3:13:03:a1:d9: 99:af:d5:0f:80:dc:8e:6c:38:da:aa:ed:4a:03:50: 4e:20:26:8c:f2:17:cb:63:6e:c7:e7:dd:21:2c:a3: 86:42:cd:82:34:b0:80:fb:dd:64:28:22:dd:39:5b: fa:f4:f8:df:47:ec:40:f1:96:48:f8:13:c4:a3:cf: d0:23:57:f7:2f:b0:ad:2f:91:5d:92:4a:df:cc:30: 51:bf:3d:f9:1a:8d:a0:18:e1:15:17:0d:a6:89:6d: c6:b7:7f:e3:ea:42:3a:95:5a:43:04:ad:fe:a4:6b: 8f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:CD:D7:BE:0E:AC:4C:4A:57:90:55:B5:E7:55:56:EB:41:C3:BB:43 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:55:61:60:08:b7:70:eb:f3:80:4a:79:b0:9f:13:e7:c0:6e: f3:be:63:a6:67:6d:b2:af:2c:27:7a:53:0e:6c:8f:ef:ff:18: 79:65:d3:21:28:d7:b6:4e:ce:9a:b8:5f:14:fd:de:4f:76:ad: 0e:df:5b:a9:f3:b3:92:66:b9:38:e9:7f:4a:ea:9c:4e:ac:59: 5c:d3:b5:d5:95:80:69:bc:1c:24:b0:f5:78:f3:68:87:0a:43: 6a:87:44:a5:75:4c:f9:5b:40:97:08:f7:28:f1:5d:b4:5d:5e: 1b:52:76:2e:89:58:8c:72:85:96:62:28:31:6e:86:32:2f:6c: 1c:76:f2:c6:ed:39:14:14:1d:8d:2f:e4:74:c4:b1:3d:95:97: 3f:d7:62:ef:55:7c:7c:8d:e7:0d:2e:da:26:29:f3:00:22:43: 75:99:23:81:42:79:fe:62:b9:f3:34:4b:17:ab:99:49:3f:03: d7:d9:82:92:b7:70:c2:64:62:00:b7:07:fe:1f:63:92:bc:79: 6f:ef:0e:f2:7f:66:8b:30:57:97:64:32:07:d1:61:02:41:20: 56:55:75:7c:e4:4d:07:7c:52:e9:69:3f:74:7d:f5:14:eb:61: 7a:14:d6:42:bd:51:cc:cd:e6:8f:90:82:7f:bc:06:dc:8b:66: 6e:f3:4b:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUxMjE4MTkwNDIxWhcNMjUxMjI1MTkwNDIxWjAYMRYwFAYD VQQDDA02OTQ0NTAzNi1iNTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GAGCUkJv35AbjV3W7r5BwYWfhfZP1xapu8v+Qz+zy7yLmTopNUWsh3axqY/ z62rDlBtRLF0Z2wVb+CSYYoIEL88AhU0ikceM/Yr7mF5hu3qF5noS9VtpKUaxXQu JRk0iWKPTitscUmUskcjdSOc6qx2eiu9F/kPZbMUOBhJjlbIhpbM43sW+SPTBKXA JunzoxMDodmZr9UPgNyObDjaqu1KA1BOICaM8hfLY27H590hLKOGQs2CNLCA+91k KCLdOVv69PjfR+xA8ZZI+BPEo8/QI1f3L7CtL5FdkkrfzDBRvz35Go2gGOEVFw2m iW3Gt3/j6kI6lVpDBK3+pGuPJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnN174O rExKV5BVtedVVutBw7tDMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaVWFgCLdw6/OASnmwnxPnwG7zvmOmZ22yrywnelMObI/v/xh5ZdMh KNe2Ts6auF8U/d5Pdq0O31up87OSZrk46X9K6pxOrFlc07XVlYBpvBwksPV482iH CkNqh0SldUz5W0CXCPco8V20XV4bUnYuiViMcoWWYigxboYyL2wcdvLG7TkUFB2N L+R0xLE9lZc/12LvVXx8jecNLtomKfMAIkN1mSOBQnn+YrnzNEsXq5lJPwPX2YKS t3DCZGIAtwf+H2OSvHlv7w7yf2aLMFeXZDIH0WECQSBWVXV85E0HfFLpaT90ffUU 62F6FNZCvVHMzeaPkIJ/vAbci2Zu80sk -----END CERTIFICATE-----Generated at Fri Dec 19 13:51:30 2025 by rpki-client