This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: jrmhdCLAL5vcd59ALqFVKQQpOtdRchpFTkvFxIYUR/c= Subject key identifier: 10:98:21:14:D3:F0:51:A0:B4:0C:E0:CB:EB:B2:92:9B:43:56:0A:7A Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0ADF Signing time: Sat 06 Dec 2025 18:43:23 +0000 Manifest this update: Sat 06 Dec 2025 18:43:22 +0000 Manifest next update: Sat 13 Dec 2025 18:43:22 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 4ZdS6Qv8iUdIFkGOleldzR2GKuSRjIBICVVIJHVxK0o=) 2: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: HTyyzc4XtgSz/IIMfSzZJ+tCNDi1E/skEpatmhSWJ4M=) 3: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: pnzNagfBV7JflMfDBvAJDWyy7ts19fn5YwbkxkgayA8=) 4: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: hhE8XmYwxey9Fv68RhRQXSH/5MjemozAt+vDJtNoqQU=) 5: C782AE14615911F08635B771C4F9AE02.roa (hash: MaO7vUeiFdOZPyehARwka9eV8U3aNvjxrHmSWVwidY8=) 6: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: uKI22TwxIQY9iFbcuULN7d8S3JosFyv3WIhvtX7yzyk=) 7: B24920940C6911EC90B57338C4F9AE02.roa (hash: 46zzXAJsoYLrd8w4NMQBrt4B+bpK+w9wRKgXWSkwTsI=) 8: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6TG7RmsvnGNbTnnGm7wGd69mXpkPkix9Q5ZbBmiNmUE=) 9: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: nQp6CVVIzkkqk2XECRH9BEijjawtFfwARhBhch9mLWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Dec 6 18:43:22 2025 GMT Not After : Dec 13 18:43:22 2025 GMT Subject: CN=6934794b-d1c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2d:83:39:10:0a:e3:2a:66:14:e0:f6:a9:40: 47:72:e8:b3:6d:86:d2:b2:45:a9:6f:98:ee:e4:ae: e3:22:bb:98:b3:33:2b:c5:6a:71:8e:fc:96:da:b5: 4a:3f:15:ac:0f:0a:52:84:b6:e9:57:7f:d2:5f:4a: 0a:e7:76:9a:e8:d4:d7:7f:1a:60:a0:57:c1:8c:28: fe:21:7b:e4:31:4e:22:19:b7:26:bc:84:b2:5a:80: 99:64:23:0f:1e:ad:df:0a:f5:db:c7:bd:bc:b2:88: 66:84:56:bf:a6:93:27:1c:86:e3:2a:71:14:f2:bb: 73:82:8a:29:ea:1e:61:ab:16:4c:83:fe:00:e5:8b: 09:d3:1b:46:f4:08:cd:e2:24:d2:01:b7:7a:47:9a: 20:d9:5d:55:e1:8c:a3:fc:3b:b2:ef:ad:a4:68:f3: e8:5c:b2:ab:38:b1:8e:49:78:f0:52:24:c2:6d:23: 16:3e:75:83:b9:dc:7b:b7:1b:24:42:f4:0b:65:57: a2:7d:67:e4:f5:79:09:17:9f:d6:c6:52:7b:f5:0c: 77:8d:7f:41:38:46:9a:37:6b:39:d6:bc:11:1e:ab: 28:eb:c4:a4:78:b6:aa:7f:9b:02:45:38:a7:85:64: 41:74:2f:6e:49:b6:7d:c2:f4:e7:0e:0b:e6:c1:65: 78:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:98:21:14:D3:F0:51:A0:B4:0C:E0:CB:EB:B2:92:9B:43:56:0A:7A X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:82:7c:45:9e:5d:ea:52:2a:39:ad:41:ba:42:f0:71:0c:25: ae:9d:17:fc:c8:f6:99:c8:f7:99:e8:c5:ad:97:c9:42:bc:f6: 2e:c2:05:8a:5f:28:d8:2b:2b:73:e2:e0:92:f9:20:91:dd:57: 3e:93:f3:d5:99:64:83:2a:23:84:2b:51:5c:d6:16:47:e2:45: a1:af:f8:e0:07:8c:d8:04:df:e9:e1:0b:46:38:ff:3e:2c:97: 03:4b:cf:ae:ac:e3:82:45:ef:ce:60:a7:06:8c:3c:47:c4:af: 85:15:71:ce:51:95:cf:90:a0:e0:1f:04:76:39:80:f4:fd:9f: 42:54:40:37:10:1f:42:0a:7b:cc:88:39:bb:63:a4:89:61:42: 8d:61:72:a7:e6:73:73:24:0d:ab:e4:ea:21:80:f2:3a:bf:a2: fc:7e:2a:cd:25:3e:cd:eb:01:0c:20:d6:b9:6f:51:96:a3:2c: f6:88:1c:bb:f9:33:d3:42:15:61:11:0a:6b:a1:41:ac:47:cb: 27:9d:37:54:60:75:04:fe:bc:ef:b9:d9:f1:00:4b:cf:01:22: f7:55:10:27:72:85:88:d6:e2:35:b8:eb:00:03:55:3c:b7:59: 76:99:50:de:1f:33:7a:66:a5:45:16:46:9b:45:65:fa:dc:d0: e7:64:3a:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUxMjA2MTg0MzIyWhcNMjUxMjEzMTg0MzIyWjAYMRYwFAYD VQQDEw02OTM0Nzk0Yi1kMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApC2DORAK4ypmFOD2qUBHcuizbYbSskWpb5ju5K7jIruYszMrxWpxjvyW2rVK PxWsDwpShLbpV3/SX0oK53aa6NTXfxpgoFfBjCj+IXvkMU4iGbcmvISyWoCZZCMP Hq3fCvXbx728sohmhFa/ppMnHIbjKnEU8rtzgoop6h5hqxZMg/4A5YsJ0xtG9AjN 4iTSAbd6R5og2V1V4Yyj/Duy762kaPPoXLKrOLGOSXjwUiTCbSMWPnWDudx7txsk QvQLZVeifWfk9XkJF5/WxlJ79Qx3jX9BOEaaN2s51rwRHqso68SkeLaqf5sCRTin hWRBdC9uSbZ9wvTnDgvmwWV43QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCYIRTT 8FGgtAzgy+uykptDVgp6MB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEgnxFnl3qUio5rUG6QvBxDCWunRf8yPaZyPeZ6MWtl8lCvPYuwgWK XyjYKytz4uCS+SCR3Vc+k/PVmWSDKiOEK1Fc1hZH4kWhr/jgB4zYBN/p4QtGOP8+ LJcDS8+urOOCRe/OYKcGjDxHxK+FFXHOUZXPkKDgHwR2OYD0/Z9CVEA3EB9CCnvM iDm7Y6SJYUKNYXKn5nNzJA2r5OohgPI6v6L8firNJT7N6wEMINa5b1GWoyz2iBy7 +TPTQhVhEQproUGsR8snnTdUYHUE/rzvudnxAEvPASL3VRAncoWI1uI1uOsAA1U8 t1l2mVDeHzN6ZqVFFkabRWX63NDnZDoX -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:29 2025 by rpki-client