This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft File: 5IPa-2wrg71IK24pCn5AU1W1Ltk.mft (raw, json) Hash identifier: yKkq4sUTvPj+GmQ+cFnOkan3QrGgJFKNkSbqELHgGAc= Subject key identifier: BA:C5:B1:85:A9:4A:20:E4:48:6F:86:E8:6B:DE:AA:1A:B5:9B:0C:14 Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 10C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft Manifest number: 10B6 Signing time: Sat 20 Dec 2025 17:03:42 +0000 Manifest this update: Sat 20 Dec 2025 17:03:41 +0000 Manifest next update: Sat 27 Dec 2025 17:03:41 +0000 Files and hashes: 1: 5IPa-2wrg71IK24pCn5AU1W1Ltk.crl (hash: yf16+gPuZUWh/m34Q2L8P3UeJMqDb5mGcASifKSRHCA=) 2: 99B6039C215311EA86E1E020C4F9AE02.roa (hash: GBYQ/lKi3z5roPUPwktfDVMLitw965pomXZAG5jfako=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4290 (0x10c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: Dec 20 17:03:41 2025 GMT Not After : Dec 27 17:03:41 2025 GMT Subject: CN=6946d6ee-8b8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:1e:45:74:0c:5a:57:1e:c6:9f:78:c3:11:e0: 0a:ab:08:c3:3c:36:a7:eb:c0:66:cb:10:64:67:bb: d1:3c:f1:38:a6:2a:05:ae:a9:7a:e6:42:dd:38:3a: 50:8f:2b:7a:db:c5:60:fb:33:88:ba:50:8c:c7:47: 6c:ab:87:3c:09:e3:6c:85:f9:a3:c0:a7:32:fb:68: a8:86:9d:b2:79:07:b7:0e:ef:52:a0:84:df:19:f3: 19:a9:28:89:2b:09:9f:88:ed:ea:3e:b1:8d:e0:a6: b2:19:7e:54:44:19:3f:6c:a1:71:70:38:32:83:ad: 13:b6:79:c5:fd:c0:ac:d3:fb:85:6a:93:92:9d:91: 0a:4b:e9:8c:d0:2e:cc:5e:3d:51:f7:75:72:ae:57: a3:ac:dc:fa:8b:53:bd:f8:fe:b2:72:9a:81:70:c7: a1:4c:85:42:17:e0:6a:17:fa:c4:b8:04:f0:ed:52: 80:98:d9:bb:21:fa:57:82:41:22:8e:56:ad:ba:ab: d0:aa:4d:49:11:fc:fb:2c:26:3c:ea:d9:9b:5b:7b: 37:10:df:ca:f2:2f:54:c7:45:d4:91:8a:8a:89:dd: e9:64:a2:8e:d0:69:f8:c3:ef:e8:02:37:f9:2e:50: dc:57:6c:69:e4:c8:3b:f6:72:cd:82:db:89:90:80: 92:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C5:B1:85:A9:4A:20:E4:48:6F:86:E8:6B:DE:AA:1A:B5:9B:0C:14 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:56:5f:8f:04:0f:60:83:9e:0d:db:c7:e0:7a:e5:74:bd:43: 49:ba:4d:1a:f7:6a:4a:c6:6f:7e:51:4b:e2:01:f8:80:a8:2c: 0d:ce:d6:d7:c4:f0:69:f6:b5:f4:ff:8c:e2:25:84:9e:80:6d: 57:9d:dc:ea:3a:09:d9:e0:51:8b:48:f9:74:b9:bd:0a:a6:54: c4:4c:c6:dd:9d:59:10:aa:39:d6:0d:80:e8:8f:8d:56:ec:a6: ee:c0:2a:45:89:51:e3:e8:a4:8b:af:17:d3:76:bc:19:0a:3d: d1:98:b4:01:7f:2b:62:aa:b3:4e:2b:74:9e:a1:f3:e9:16:c9: 3f:be:27:cf:71:ac:46:86:1c:4c:9f:3d:a8:54:0f:f4:c2:cd: 4a:1a:57:3d:51:be:7f:49:73:bf:35:98:fc:59:5d:f8:aa:ae: f1:07:99:4c:f2:d1:fe:e0:8c:90:93:39:ef:e4:58:21:47:5a: 72:ed:21:b6:93:de:40:b3:4a:30:3a:5a:c8:3f:18:93:ca:7d: 28:7e:53:a8:09:09:69:f0:36:d7:c2:81:ca:91:02:5c:37:c0: 5e:2f:5b:82:ee:d0:3b:0e:4e:08:52:0f:d5:ac:7d:ad:3d:66: 95:11:17:d8:80:15:c9:7f:c4:87:2c:84:ee:18:1a:0d:cb:eb: 44:10:bd:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjUxMjIwMTcwMzQxWhcNMjUxMjI3MTcwMzQxWjAYMRYwFAYD VQQDDA02OTQ2ZDZlZS04YjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjh5FdAxaVx7Gn3jDEeAKqwjDPDan68BmyxBkZ7vRPPE4pioFrql65kLdODpQ jyt628Vg+zOIulCMx0dsq4c8CeNshfmjwKcy+2iohp2yeQe3Du9SoITfGfMZqSiJ KwmfiO3qPrGN4KayGX5URBk/bKFxcDgyg60TtnnF/cCs0/uFapOSnZEKS+mM0C7M Xj1R93VyrlejrNz6i1O9+P6ycpqBcMehTIVCF+BqF/rEuATw7VKAmNm7IfpXgkEi jlatuqvQqk1JEfz7LCY86tmbW3s3EN/K8i9Ux0XUkYqKid3pZKKO0Gn4w+/oAjf5 LlDcV2xp5Mg79nLNgtuJkICSWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrFsYWp SiDkSG+G6Gveqhq1mwwUMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTM2Qi9GN0M4N0U4NDNBN0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3 MUlLMjRwQ241QVUxVzFMdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Vl+PBA9gg54N28fgeuV0vUNJuk0a92pKxm9+UUviAfiAqCwNztbX xPBp9rX0/4ziJYSegG1XndzqOgnZ4FGLSPl0ub0KplTETMbdnVkQqjnWDYDoj41W 7KbuwCpFiVHj6KSLrxfTdrwZCj3RmLQBfytiqrNOK3SeofPpFsk/vifPcaxGhhxM nz2oVA/0ws1KGlc9Ub5/SXO/NZj8WV34qq7xB5lM8tH+4IyQkznv5FghR1py7SG2 k95As0owOlrIPxiTyn0oflOoCQlp8DbXwoHKkQJcN8BeL1uC7tA7Dk4IUg/VrH2t PWaVERfYgBXJf8SHLITuGBoNy+tEEL1m -----END CERTIFICATE-----Generated at Sun Dec 21 22:24:19 2025 by rpki-client