This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft File: 5CHll4Srb9cADNFZcQHsNg3ZQGY.mft (raw, json) Hash identifier: VPBakmPlimPNxRp5pC/58qGeA5ouEtFXqqCjWK0zAXE= Subject key identifier: DB:17:2B:9B:2E:A1:E0:5A:68:AD:56:18:EC:FB:3B:7C:3F:B9:F4:DD Authority key identifier: E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 Certificate issuer: /CN=A91A1E1C/serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft Manifest number: D6 Signing time: Tue 09 Dec 2025 03:41:57 +0000 Manifest this update: Tue 09 Dec 2025 03:41:56 +0000 Manifest next update: Tue 16 Dec 2025 03:41:56 +0000 Files and hashes: 1: 5CHll4Srb9cADNFZcQHsNg3ZQGY.crl (hash: vM8QXHssiBD4Ego/xn1LtLVo0+Hun9hviS9bzBfRJlM=) 2: 5BC18D6C9A6C11EF8C656668C4F9AE02.roa (hash: zytctE6qivUxRAHpqXA/YPn8xFqSFBHBItYhwkxUPj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 03:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1E1C, serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Validity Not Before: Dec 9 03:41:56 2025 GMT Not After : Dec 16 03:41:56 2025 GMT Subject: CN=69379a84-11f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b2:81:62:42:d2:fc:d8:e8:48:40:72:d9:93: 03:63:36:44:f6:bd:e8:03:54:96:1c:fb:93:79:2a: f6:4e:50:a9:8e:d7:bc:07:c3:3c:52:ac:f3:56:b9: 50:50:14:21:0d:06:b4:1b:31:bb:31:4d:34:c4:ed: fe:70:2f:5b:10:d0:c8:7d:68:f5:c5:3b:f2:a0:6a: 68:dd:0d:c7:39:3f:1c:67:26:31:74:df:d8:43:69: 31:80:f5:80:a5:6f:46:9b:20:e0:fc:44:f5:e8:ff: 61:54:1a:95:87:a3:fc:87:04:03:cd:97:3c:98:76: 1c:a2:57:65:83:c3:62:74:ca:15:5d:4e:b9:ad:ae: 1e:b9:03:71:54:5c:83:c2:45:2b:e8:3b:5f:e1:94: 9b:24:e5:fd:c4:7d:7f:20:54:c0:e9:35:50:6c:6b: 9f:1b:31:73:44:98:eb:24:ac:9a:9c:f0:67:dd:44: dd:eb:0c:f5:9b:80:b3:86:31:d3:be:c2:42:53:24: dc:a5:62:98:1c:6a:3d:c9:1a:8d:0a:a6:47:f8:88: 48:77:a8:04:d4:4c:4b:b1:19:c7:54:92:f0:73:44: 75:71:36:e9:da:fb:21:be:07:df:c0:85:40:88:fd: 37:17:24:0a:73:80:7e:52:18:b1:fc:c2:21:8f:97: 6e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:17:2B:9B:2E:A1:E0:5A:68:AD:56:18:EC:FB:3B:7C:3F:B9:F4:DD X509v3 Authority Key Identifier: keyid:E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:64:cf:13:ca:27:76:1e:28:bf:ca:c9:39:0a:9a:9d:b6:74: 55:2c:55:42:1f:43:c3:85:27:8d:d4:3f:7b:33:19:3a:46:c3: 35:57:06:6e:1c:23:aa:e7:35:0d:4d:ba:ef:13:33:28:30:2a: 23:04:1a:6c:19:cf:f2:d9:6c:6f:e7:c4:16:ae:26:42:d5:09: 6d:aa:03:9d:f2:fe:cb:39:87:71:c1:74:3c:7e:04:41:fa:1d: f2:3f:b0:77:f0:ae:18:82:13:51:3c:60:68:f7:80:b8:f5:35: 75:e2:c7:ee:82:36:40:57:74:88:ab:0c:89:07:95:f1:7a:61: 38:a0:68:51:10:4f:1c:93:a6:e3:4f:95:bd:86:cc:4f:65:43: 43:4d:e0:54:ef:5b:6c:ba:ad:d7:72:09:2d:71:0c:b7:30:34: d7:c5:54:ef:c1:d3:14:b8:fe:75:96:f4:20:b5:15:c7:28:69: 66:43:74:56:cf:b7:e9:5b:1d:57:af:3b:4e:21:57:2e:04:05: b1:9a:29:95:4d:5d:e2:e2:56:4d:41:bc:7c:5e:80:7e:c3:ed: 42:a5:d5:6c:60:dd:d2:50:c1:1c:af:44:1f:64:d5:a7:65:54: 2b:d5:92:c9:65:e4:2c:a8:49:15:ac:3b:9c:bd:99:99:df:5a: 5b:c8:e6:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFMUMxMTAvBgNVBAUTKEU0MjFFNTk3ODRBQjZGRDcwMDBDRDE1OTcxMDFFQzM2 MEREOTQwNjYwHhcNMjUxMjA5MDM0MTU2WhcNMjUxMjE2MDM0MTU2WjAYMRYwFAYD VQQDEw02OTM3OWE4NC0xMWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LKBYkLS/NjoSEBy2ZMDYzZE9r3oA1SWHPuTeSr2TlCpjte8B8M8UqzzVrlQ UBQhDQa0GzG7MU00xO3+cC9bENDIfWj1xTvyoGpo3Q3HOT8cZyYxdN/YQ2kxgPWA pW9GmyDg/ET16P9hVBqVh6P8hwQDzZc8mHYcoldlg8NidMoVXU65ra4euQNxVFyD wkUr6Dtf4ZSbJOX9xH1/IFTA6TVQbGufGzFzRJjrJKyanPBn3UTd6wz1m4CzhjHT vsJCUyTcpWKYHGo9yRqNCqZH+IhId6gE1ExLsRnHVJLwc0R1cTbp2vshvgffwIVA iP03FyQKc4B+Uhix/MIhj5duSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsXK5su oeBaaK1WGOz7O3w/ufTdMB8GA1UdIwQYMBaAFOQh5ZeEq2/XAAzRWXEB7DYN2UBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUUxQy8yNTIyMkQ4MDky MDAxMUVGOUUwQzNENkJDNEY5QUUwMi81Q0hsbDRTcmI5Y0FETkZaY1FIc05nM1pR R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVDSGxsNFNyYjljQURORlpjUUhzTmczWlFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUUxQy8yNTIyMkQ4MDkyMDAxMUVGOUUwQzNENkJDNEY5QUUwMi81Q0hsbDRTcmI5 Y0FETkZaY1FIc05nM1pRR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAZM8Tyid2Hii/ysk5CpqdtnRVLFVCH0PDhSeN1D97Mxk6RsM1VwZu HCOq5zUNTbrvEzMoMCojBBpsGc/y2Wxv58QWriZC1QltqgOd8v7LOYdxwXQ8fgRB +h3yP7B38K4YghNRPGBo94C49TV14sfugjZAV3SIqwyJB5XxemE4oGhREE8ck6bj T5W9hsxPZUNDTeBU71tsuq3XcgktcQy3MDTXxVTvwdMUuP51lvQgtRXHKGlmQ3RW z7fpWx1XrztOIVcuBAWxmimVTV3i4lZNQbx8XoB+w+1CpdVsYN3SUMEcr0QfZNWn ZVQr1ZLJZeQsqEkVrDucvZmZ31pbyOZz -----END CERTIFICATE-----Generated at Wed Dec 10 05:08:05 2025 by rpki-client