This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json) Hash identifier: vEZNWF4a4d0Y4N+dHLuN114jYNoFTibMejDC5uLR1CE= Subject key identifier: 78:EB:71:47:64:7E:AA:2F:C4:43:9A:54:26:F8:83:6C:F0:0A:8C:AB Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft Manifest number: 71 Signing time: Sun 21 Dec 2025 05:57:17 +0000 Manifest this update: Sun 21 Dec 2025 05:57:16 +0000 Manifest next update: Sun 28 Dec 2025 05:57:16 +0000 Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: NI6xpbbcIfUzQh2wxgf35Y+4VndVsU4IFwzOz1FWCQ0=) 2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: Rm2y9XYNOuLaJLPo5EgOIcrmYm6wYWaPwijgwTBKrVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Validity Not Before: Dec 21 05:57:16 2025 GMT Not After : Dec 28 05:57:16 2025 GMT Subject: CN=69478c3d-9787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5e:24:fa:ae:2a:32:7c:bd:68:d0:03:01:a5: 2e:c5:41:ec:8f:0d:6d:e7:1a:3e:e5:4b:86:60:4e: b3:1a:69:95:e6:57:c6:d1:e0:c2:51:df:57:7c:21: cc:07:b2:48:a1:ff:5c:07:e8:02:4c:10:a2:d2:8b: de:c9:6c:d1:95:91:14:4d:e1:88:e0:d8:63:1f:eb: 2c:d5:e9:8b:6c:25:bf:97:e1:b3:05:ed:56:5c:45: 1f:28:b6:51:f6:9f:e1:8d:54:57:e2:50:67:2d:96: 31:dd:fc:fe:c3:78:e7:a9:ad:5e:a6:9e:7e:a0:46: 7d:c7:92:d9:fd:89:3f:03:01:2f:db:80:60:f7:23: 3a:4a:3f:64:04:6b:c0:ef:b9:12:b9:75:5e:cf:94: 89:87:6f:11:5e:ae:44:72:57:ab:1c:b3:00:99:51: 39:a7:10:1a:5e:66:4e:c9:c8:b1:8f:97:3d:0b:ce: 66:f9:fc:1c:d1:5d:ad:61:37:cc:32:72:4b:22:21: 43:d6:5b:2b:38:38:2d:41:d8:10:cf:91:d1:65:f2: 37:0f:04:6c:e3:15:4f:ae:48:a4:ec:99:6d:63:d3: 14:cc:7e:f2:cc:d8:e8:7e:42:0f:f8:81:6e:b3:0c: 60:42:cc:ab:0c:c4:ed:57:49:67:47:38:29:0b:a9: 79:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:EB:71:47:64:7E:AA:2F:C4:43:9A:54:26:F8:83:6C:F0:0A:8C:AB X509v3 Authority Key Identifier: keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:65:9b:cd:97:32:33:70:a5:66:d4:d8:a3:fb:e2:f1:9e:31: 59:75:7e:d2:4f:d5:40:7d:2b:83:55:c6:84:17:63:4b:ca:fa: 47:83:8e:26:c0:a7:7a:d5:e9:8f:3f:4c:8a:6f:b5:93:0a:fb: 4d:90:ff:9b:16:3c:f4:12:c0:4a:6c:fc:50:65:9a:36:5b:72: 4d:2d:da:c6:7e:4e:01:06:6a:83:d3:e7:5a:0f:0f:c1:50:18: c9:d0:6d:17:a0:51:b9:88:8e:68:15:a2:c7:e6:1c:74:c9:cf: a8:63:aa:c3:60:c5:f0:49:05:6b:d1:d5:6a:75:f2:f6:38:12: f1:37:1b:44:54:b9:19:7b:50:e3:6a:10:2b:78:0e:0e:55:d1: 7a:9f:04:27:e1:40:2d:04:ef:5e:eb:22:7d:6d:d6:e5:60:ad: 91:7c:88:99:96:cc:0e:db:a8:c0:f3:de:16:b2:37:de:68:1f: 0f:cd:c4:0a:6c:9a:0a:c9:57:6a:2f:db:80:7e:e5:f5:b4:08: 76:47:e1:d7:ab:ec:cc:4b:82:2a:92:e3:5a:fb:cb:64:ca:d2: 99:15:59:cb:cb:f7:96:d6:01:e4:01:91:d1:8e:9a:aa:9e:2f: d6:8d:93:77:e1:a6:8d:af:55:44:cb:dc:b8:f1:89:91:a0:1e: ed:09:0b:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDJDQTExMC8GA1UEBRMoNkY5MUM3NkE0Rjc0NjY0MTAwREQ4REVCRDE3ODUxNDJF MTM3ODAyRDAeFw0yNTEyMjEwNTU3MTZaFw0yNTEyMjgwNTU3MTZaMBgxFjAUBgNV BAMMDTY5NDc4YzNkLTk3ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVXiT6rioyfL1o0AMBpS7FQeyPDW3nGj7lS4ZgTrMaaZXmV8bR4MJR31d8IcwH skih/1wH6AJMEKLSi97JbNGVkRRN4Yjg2GMf6yzV6YtsJb+X4bMF7VZcRR8otlH2 n+GNVFfiUGctljHd/P7DeOeprV6mnn6gRn3Hktn9iT8DAS/bgGD3IzpKP2QEa8Dv uRK5dV7PlImHbxFerkRyV6scswCZUTmnEBpeZk7JyLGPlz0Lzmb5/BzRXa1hN8wy cksiIUPWWys4OC1B2BDPkdFl8jcPBGzjFU+uSKTsmW1j0xTMfvLM2Oh+Qg/4gW6z DGBCzKsMxO1XSWdHOCkLqXmbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeOtxR2R+ qi/EQ5pUJviDbPAKjKswHwYDVR0jBBgwFoAUb5HHak90ZkEA3Y3r0XhRQuE3gC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMkNBLzA5Rjc0RUY2MzU0 NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtFQTNZM3IwWGhSUXVFM2dD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjVISGFrOTBaa0VBM1kzcjBYaFJRdUUzZ0MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE MkNBLzA5Rjc0RUY2MzU0NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtF QTNZM3IwWGhSUXVFM2dDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADtlm82XMjNwpWbU2KP74vGeMVl1ftJP1UB9K4NVxoQXY0vK+keDjibA p3rV6Y8/TIpvtZMK+02Q/5sWPPQSwEps/FBlmjZbck0t2sZ+TgEGaoPT51oPD8FQ GMnQbRegUbmIjmgVosfmHHTJz6hjqsNgxfBJBWvR1Wp18vY4EvE3G0RUuRl7UONq ECt4Dg5V0XqfBCfhQC0E717rIn1t1uVgrZF8iJmWzA7bqMDz3hayN95oHw/NxAps mgrJV2ov24B+5fW0CHZH4der7MxLgiqS41r7y2TK0pkVWcvL95bWAeQBkdGOmqqe L9aNk3fhpo2vVUTL3LjxiZGgHu0JCwI= -----END CERTIFICATE-----Generated at Sun Dec 21 21:15:53 2025 by rpki-client