This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: M60HPFKODbnklM5x9y0VHTAf/w5XMCaBhJ/vHD0gBkE= Subject key identifier: 95:91:98:6B:35:B9:EF:A1:6F:BD:43:29:84:1A:CB:08:D4:AD:9C:43 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: 0197 Signing time: Tue 23 Dec 2025 02:27:53 +0000 Manifest this update: Tue 23 Dec 2025 02:27:52 +0000 Manifest next update: Tue 30 Dec 2025 02:27:52 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: 4L8ohFLWLBvEnf1S2ztRZWfOI0/jxSOsXmr07v2EA30=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: TFl3UUaIvz5mdJOK5oWLRzuJytmWENM4h3ilLWP9+k4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362, serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Validity Not Before: Dec 23 02:27:52 2025 GMT Not After : Dec 30 02:27:52 2025 GMT Subject: CN=6949fe29-2b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b5:be:8f:a7:47:bb:9b:79:e2:5e:20:25:38: 01:40:87:9f:8a:20:40:ad:39:d0:64:29:20:8d:cf: 4e:84:20:96:6a:05:1b:41:3a:c6:72:23:4e:88:4f: 49:3d:00:6e:59:ee:b2:ce:76:74:59:04:9a:30:4f: 73:04:85:76:59:ad:9b:d5:95:50:43:dd:7b:67:92: b4:3c:14:99:0a:db:93:f9:c9:3c:45:98:01:64:a6: cf:49:6f:b2:91:51:50:2f:a3:9d:42:01:b7:d6:58: b5:cf:db:cf:83:d3:f0:d4:68:59:64:b1:55:e2:5e: 17:52:fa:88:cd:d5:1e:4d:29:9b:c5:dc:8c:91:5b: cf:32:e0:6b:ba:c6:e9:e8:37:3b:96:48:fe:df:4d: 35:62:d4:d1:06:81:c6:01:62:9f:01:1a:9f:48:11: b3:69:7c:23:36:0d:6b:d3:b7:e7:ec:26:31:e4:35: 57:4c:b3:81:c9:ea:4f:36:49:e9:4b:d2:49:e2:f1: 42:01:75:08:fc:15:39:ee:66:93:17:ba:37:73:7e: c9:04:3d:0d:c4:8f:5b:f2:48:49:9c:fb:1c:14:33: 91:75:32:58:8a:ec:df:57:09:1c:c7:a8:da:b3:43: b8:d5:67:8c:e9:6b:e3:c2:d9:60:66:6c:8e:3c:c4: 19:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:91:98:6B:35:B9:EF:A1:6F:BD:43:29:84:1A:CB:08:D4:AD:9C:43 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:6a:f3:8f:15:6e:e0:8d:bf:e0:b3:38:4f:86:a0:6e:c6:40: 7b:1a:44:a0:66:e8:54:51:a6:47:e0:25:35:32:02:e4:1e:0e: ed:af:c5:1c:da:cd:36:05:96:96:14:a8:87:9e:2c:10:94:9e: 4a:c5:09:40:a5:0d:4f:d3:5f:ab:13:07:fd:a3:7d:bc:dd:1d: 37:7a:fb:b9:92:b8:ca:9e:6a:4b:d8:97:4b:3f:b5:c7:0e:6f: b9:9b:d0:07:03:63:d4:b3:08:81:3d:12:99:c4:d4:41:d1:e9: 37:d2:d7:8c:5f:f6:39:17:24:8d:72:2a:f5:14:11:ea:01:2d: f0:02:f6:b7:7e:9e:77:0c:72:c3:77:80:90:7d:18:b4:e3:4a: 1a:f5:c2:19:71:32:47:de:c5:8e:5e:b6:f4:f6:c2:67:4c:69: 39:0a:07:ec:de:6f:b0:ff:dd:3b:a4:08:43:7c:d5:b9:b9:89: f7:0e:17:be:b9:1b:ec:1c:09:d3:5d:ec:71:1d:4c:1d:5d:6a: 92:b6:2a:5a:88:61:70:f1:6a:10:59:ae:93:94:e9:63:ee:b9: 46:e7:84:25:fb:3d:d3:f7:94:1b:6f:87:c2:ab:0b:75:7a:a3: 1b:1d:de:ee:bf:3c:fe:53:4d:ad:fe:8f:fa:55:ff:20:92:0e: 44:a9:c2:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EzNjIxMTAvBgNVBAUTKEU2QzQ2QzkxRDEyRDU4NUExMkIwNTU2OTYyMURFRTFB RDNGODkwOEUwHhcNMjUxMjIzMDIyNzUyWhcNMjUxMjMwMDIyNzUyWjAYMRYwFAYD VQQDDA02OTQ5ZmUyOS0yYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8LW+j6dHu5t54l4gJTgBQIefiiBArTnQZCkgjc9OhCCWagUbQTrGciNOiE9J PQBuWe6yznZ0WQSaME9zBIV2Wa2b1ZVQQ917Z5K0PBSZCtuT+ck8RZgBZKbPSW+y kVFQL6OdQgG31li1z9vPg9Pw1GhZZLFV4l4XUvqIzdUeTSmbxdyMkVvPMuBrusbp 6Dc7lkj+3001YtTRBoHGAWKfARqfSBGzaXwjNg1r07fn7CYx5DVXTLOByepPNknp S9JJ4vFCAXUI/BU57maTF7o3c37JBD0NxI9b8khJnPscFDORdTJYiuzfVwkcx6ja s0O41WeM6WvjwtlgZmyOPMQZRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWRmGs1 ue+hb71DKYQaywjUrZxDMB8GA1UdIwQYMBaAFObEbJHRLVhaErBVaWId7hrT+JCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTM2Mi83Q0JBNEM0Qzcy NkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdGb1NzRlZwWWgzdUd0UDRr STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTM2Mi83Q0JBNEM0QzcyNkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdG b1NzRlZwWWgzdUd0UDRrSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4avOPFW7gjb/gszhPhqBuxkB7GkSgZuhUUaZH4CU1MgLkHg7tr8Uc 2s02BZaWFKiHniwQlJ5KxQlApQ1P01+rEwf9o3283R03evu5krjKnmpL2JdLP7XH Dm+5m9AHA2PUswiBPRKZxNRB0ek30teMX/Y5FySNcir1FBHqAS3wAva3fp53DHLD d4CQfRi040oa9cIZcTJH3sWOXrb09sJnTGk5Cgfs3m+w/907pAhDfNW5uYn3Dhe+ uRvsHAnTXexxHUwdXWqStipaiGFw8WoQWa6TlOlj7rlG54Ql+z3T95Qbb4fCqwt1 eqMbHd7uvzz+U02t/o/6Vf8gkg5EqcL2 -----END CERTIFICATE-----Generated at Tue Dec 23 21:26:45 2025 by rpki-client