This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft File: SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json) Hash identifier: UarlkVqttrsg/TYPljMzaDM94JPoHmqML8Q+TZDl0no= Subject key identifier: 5D:11:35:3C:11:9F:4F:96:BA:6D:52:5F:5F:77:C6:11:A7:19:B1:1A Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0511 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft Manifest number: 043F Signing time: Fri 28 Nov 2025 23:29:01 +0000 Manifest this update: Fri 28 Nov 2025 23:29:01 +0000 Manifest next update: Fri 05 Dec 2025 23:29:01 +0000 Files and hashes: 1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: 4eaQOarj4fwn5DW3NhKsD1XgM+5ZG5NJmc1ZuXqEsAI=) 2: 1465D252621C11F0AAE4E551C4F9AE02.roa (hash: pE0TeYdIKCgc/QwPZRV1/6gtn2PDxZWuZWypXfqUCBk=) 3: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: 3+hYQrTmF+e7jJciHHC9Syz1XLKiAuOCDuMHFEIoOO8=) 4: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: yoHxToNdVsEl2/mlXGoTSTZxsnICbltZ8OX7V22JdbQ=) 5: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: xMiHMYItwXrD425Qd67NbjvjX4HrJ3EnpnA8c/QF/4k=) 6: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: SilbnDSMyvFBaNxXZnHVsn7YIdcJKbT+9vzuxU+MumM=) 7: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: A8LP0mnaTBBKppNqPSMaDhPFCk6GGBkjSaBDc8dCjBI=) 8: F87B578CB5E611F08C07425AC4F9AE02.roa (hash: y7UxQPzEfI3HoqpYaog23DQiTZxRgqBo5bC5YqQdvKI=) 9: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: soHDXhn1e2qK0BUfZsT/7EMAgURekf6y4K6+rsJFtvU=) 10: E984676EB5E611F0BCCCFA59C4F9AE02.roa (hash: e79uMm9d9d2sMrfZFQKyNez6EK836OZIdpe1x4pJt20=) 11: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: 9J2iOFdXW0WTaVQoSkjTpRubYQV1uYwslH5WX54SWS8=) 12: B6E083D46E2F11EEB9C12A34C4F9AE02.roa (hash: cEUErhxJhRs9Ayd1OjEDxa3aUEaS/H1Cn1wGLQy/Hdo=) 13: EE88C2F6580711F09A56942DC4F9AE02.roa (hash: OKC561ca7ASLfOkgXrHgKbplp4PP/4v4yOXE3sio9JA=) 14: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: R2/WUKzxoHuFFd/QsgqeEUvYq+HCK78+7w9Z8fUIsWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 23:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1297 (0x511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Nov 28 23:29:01 2025 GMT Not After : Dec 5 23:29:01 2025 GMT Subject: CN=692a303d-55b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:47:4c:81:1c:0c:25:73:ff:70:8d:10:67:66: a2:8b:62:18:7a:3e:fe:f8:b8:d8:08:27:c5:fd:e2: 4e:e2:6d:67:9c:3e:e0:bc:f1:6a:41:61:57:90:89: e1:82:af:d8:fb:01:af:34:6f:a9:e1:28:a6:66:ed: 1d:77:08:90:cd:09:4c:3c:14:7a:3d:3c:c0:d4:7e: 45:bb:05:63:08:97:ec:c3:e3:a9:62:bc:c7:fd:b3: 41:87:08:82:f2:ce:f8:61:77:06:3a:07:20:9b:43: 58:30:e4:fe:ef:43:58:5c:53:89:c6:6e:b8:bd:0e: 5d:e9:69:04:37:6d:00:19:b6:c8:71:d7:4c:7a:98: 29:9c:14:ab:7d:2a:b6:8a:92:d8:22:73:90:b5:c2: 07:ac:c7:86:d9:ae:51:92:77:d4:a0:3a:85:3a:74: e4:09:64:6a:31:55:01:d4:ac:e9:68:27:21:cf:66: 8e:17:f5:aa:77:77:6f:a5:b8:70:32:03:f2:65:e2: 30:1c:93:45:f7:75:53:0b:bb:3e:8e:7c:f0:95:db: eb:a5:1c:fb:b9:f7:4d:da:8b:b1:17:fe:2f:db:6d: 71:33:fa:a7:fd:07:e6:87:5d:52:0e:66:1a:8e:48: 50:97:e8:4b:91:d1:ed:58:71:7a:41:5e:c5:64:34: 8a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:11:35:3C:11:9F:4F:96:BA:6D:52:5F:5F:77:C6:11:A7:19:B1:1A X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d6:7d:70:d4:6b:01:1f:b7:ba:55:5b:f4:99:ea:ab:c9:b8: 38:56:ef:17:6d:39:0d:3a:8c:1a:11:56:68:a9:b3:63:91:74: 99:d4:a1:2a:a8:36:48:5c:2f:ce:57:9c:61:20:8f:cd:0a:ba: 3c:04:f0:a8:52:6f:11:51:00:31:dd:6f:c4:6d:49:36:a9:80: 6f:a2:ab:df:fd:96:49:a8:d7:2d:83:ea:e1:f5:e3:8a:04:eb: a3:19:b5:01:07:86:4d:55:30:32:2e:bb:bf:0e:e3:9d:e9:ee: 6e:4f:63:3d:45:c7:9b:3e:89:eb:77:df:e8:ba:37:67:29:43: 27:a6:15:c7:92:5f:7d:8a:fb:e3:28:6c:db:61:7a:6e:7b:df: 22:d4:51:33:02:33:fa:68:38:ca:ca:eb:56:c0:8e:23:c8:1a: 3b:a4:89:54:aa:fb:d7:ff:8a:6a:4d:0e:b3:28:20:d2:c8:0e: b3:ac:d2:e7:a7:a6:2c:eb:db:6c:ba:ed:65:13:95:a6:02:a4: 38:23:d1:1d:40:2d:f7:46:de:00:47:e8:38:15:cd:aa:c0:f7: f3:5b:92:7d:af:5c:13:fc:99:3f:f7:38:05:42:9a:95:57:86: 36:d2:61:e1:71:d1:c5:ee:ac:e8:c8:b7:93:76:85:38:f2:71: ad:fe:31:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUxMTI4MjMyOTAxWhcNMjUxMjA1MjMyOTAxWjAYMRYwFAYD VQQDEw02OTJhMzAzZC01NWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UdMgRwMJXP/cI0QZ2aii2IYej7++LjYCCfF/eJO4m1nnD7gvPFqQWFXkInh gq/Y+wGvNG+p4SimZu0ddwiQzQlMPBR6PTzA1H5FuwVjCJfsw+OpYrzH/bNBhwiC 8s74YXcGOgcgm0NYMOT+70NYXFOJxm64vQ5d6WkEN20AGbbIcddMepgpnBSrfSq2 ipLYInOQtcIHrMeG2a5RknfUoDqFOnTkCWRqMVUB1KzpaCchz2aOF/Wqd3dvpbhw MgPyZeIwHJNF93VTC7s+jnzwldvrpRz7ufdN2ouxF/4v221xM/qn/Qfmh11SDmYa jkhQl+hLkdHtWHF6QV7FZDSKZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0RNTwR n0+Wum1SX193xhGnGbEaMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM3NS8zQUE1REVFMERENTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29t YXBHa0Jtd0c5TFR0bUVaSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn1n1w1GsBH7e6VVv0meqrybg4Vu8XbTkNOowaEVZoqbNjkXSZ1KEq qDZIXC/OV5xhII/NCro8BPCoUm8RUQAx3W/EbUk2qYBvoqvf/ZZJqNctg+rh9eOK BOujGbUBB4ZNVTAyLru/DuOd6e5uT2M9RcebPonrd9/oujdnKUMnphXHkl99ivvj KGzbYXpue98i1FEzAjP6aDjKyutWwI4jyBo7pIlUqvvX/4pqTQ6zKCDSyA6zrNLn p6Ys69tsuu1lE5WmAqQ4I9EdQC33Rt4AR+g4Fc2qwPfzW5J9r1wT/Jk/9zgFQpqV V4Y20mHhcdHF7qzoyLeTdoU48nGt/jGR -----END CERTIFICATE-----Generated at Sun Nov 30 11:20:19 2025 by rpki-client