This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft File: 5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json) Hash identifier: Var13KG86oyOSL/c0bg80Td30veJ5nWTfbj3L3BRvko= Subject key identifier: 68:13:1B:A2:B8:E2:DF:67:C9:FF:7F:62:BD:82:8A:54:4F:8B:BE:1A Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 02EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft Manifest number: 02D9 Signing time: Fri 19 Dec 2025 00:39:14 +0000 Manifest this update: Fri 19 Dec 2025 00:39:13 +0000 Manifest next update: Fri 26 Dec 2025 00:39:13 +0000 Files and hashes: 1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: q/5mRqvO1w6HQ+EsMNoZ3shqLIzpUR/syukxSCwVaDI=) 2: 5B69CE3A474A11EF8624EE6DC4F9AE02.roa (hash: 0d7okG44VFnG4nuLf3zjFz92ZcS33/9Y18izFVAiNWk=) 3: 3D331986E17211EFA5959B2FC4F9AE02.roa (hash: pOsL4nJKiT9Wc01cD2wPZO+WlYtBX9ZtStyQuOwRJu4=) 4: F3997FACE21D11EFA5819B7EC4F9AE02.roa (hash: YJknqh8T+qXW11AGQpkWixPSeb/oim2jtPvDZDC0Y5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 751 (0x2ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: Dec 19 00:39:13 2025 GMT Not After : Dec 26 00:39:13 2025 GMT Subject: CN=69449eb2-e67a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c3:73:d4:33:3e:ac:3e:ee:e4:2c:eb:c5:32: e5:bb:1a:5a:2c:bc:a7:21:38:11:56:8c:cd:85:5a: 2f:ad:ee:1b:b8:f0:00:8d:1a:13:2f:d5:3c:fd:5d: 2e:73:a5:47:e4:be:4f:fb:26:7d:ab:b7:aa:5b:05: 0d:b6:71:57:2d:78:17:66:3e:60:ca:39:a0:c8:8c: e4:51:b0:62:77:cb:4f:60:f8:2f:5f:b7:a3:33:9e: df:15:d6:53:b8:15:ef:7d:13:20:e3:bc:9e:2d:8b: eb:ec:c5:61:ee:66:76:8c:e4:34:f1:63:6f:78:e0: 2e:5c:10:de:aa:43:40:fb:fb:db:0e:63:27:da:b7: e8:4f:77:bb:10:d5:8a:3b:df:a5:12:16:a4:28:ea: 63:fb:51:76:20:2a:46:55:77:a1:d2:fe:ab:68:c2: ad:83:46:e3:b7:df:19:f8:4a:b8:9a:c7:3b:9b:44: 5e:c3:ab:47:9a:d2:a8:0f:ed:c5:2a:98:35:a0:6a: be:5f:2a:bd:2a:41:28:c6:4b:ca:94:fd:d4:c7:05: e1:37:61:92:b5:fd:ad:89:64:0f:6d:35:dd:57:4e: 47:2f:3d:09:eb:d7:7f:4e:98:9b:34:8f:50:ca:61: 61:53:f9:07:53:1c:95:21:57:66:49:d1:2c:bb:ba: 4a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:13:1B:A2:B8:E2:DF:67:C9:FF:7F:62:BD:82:8A:54:4F:8B:BE:1A X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:04:c4:b9:8f:dc:6d:5c:6f:43:78:b2:7c:f1:bc:55:9f:7c: c1:47:80:d5:bb:61:4c:67:1c:c1:38:61:8f:ec:8b:e9:87:2b: f0:00:ff:c8:10:ce:3a:5b:c1:15:fd:2a:77:04:42:0b:43:7e: fc:3b:9a:82:51:fd:ee:dc:07:7f:31:b4:62:2a:0d:e2:14:bd: a5:37:2a:cb:1c:a7:a1:d8:21:e6:3e:23:74:e0:c3:a7:ba:2a: 03:01:ca:6f:aa:17:c9:90:b3:12:ab:71:99:d4:aa:6e:6e:05: 70:ae:9c:fe:8c:e2:22:11:8b:89:2c:b8:2c:c9:52:3d:bc:47: f8:e8:78:59:c7:6b:15:31:71:59:a6:5a:41:9e:82:68:f1:89: 4a:b9:00:cb:d4:76:14:40:d9:d9:0f:d6:3a:d8:d1:47:b6:79: 4a:66:53:e1:ef:d1:9e:06:f0:11:a4:8e:0c:36:39:22:f9:c8: f8:c3:b2:fc:6a:c9:a5:ac:26:7a:5a:81:58:1f:44:09:68:e3: 12:a3:1d:a8:3f:bb:bd:fc:04:b7:5d:24:a6:65:55:50:85:d6: fe:b3:48:50:1c:34:29:cd:5c:72:83:e8:42:aa:d5:65:9b:db: 30:e1:d5:68:69:c2:9b:3c:22:71:51:aa:66:21:b2:58:30:17: 84:04:3f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjUxMjE5MDAzOTEzWhcNMjUxMjI2MDAzOTEzWjAYMRYwFAYD VQQDDA02OTQ0OWViMi1lNjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcNz1DM+rD7u5CzrxTLluxpaLLynITgRVozNhVovre4buPAAjRoTL9U8/V0u c6VH5L5P+yZ9q7eqWwUNtnFXLXgXZj5gyjmgyIzkUbBid8tPYPgvX7ejM57fFdZT uBXvfRMg47yeLYvr7MVh7mZ2jOQ08WNveOAuXBDeqkNA+/vbDmMn2rfoT3e7ENWK O9+lEhakKOpj+1F2ICpGVXeh0v6raMKtg0bjt98Z+Eq4msc7m0Rew6tHmtKoD+3F Kpg1oGq+Xyq9KkEoxkvKlP3UxwXhN2GStf2tiWQPbTXdV05HLz0J69d/TpibNI9Q ymFhU/kHUxyVIVdmSdEsu7pKKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgTG6K4 4t9nyf9/Yr2CilRPi74aMB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0FCMy8wNUVEOTRDRTE5NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4x czU3MFkxQlpIT01TNVJUN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfBMS5j9xtXG9DeLJ88bxVn3zBR4DVu2FMZxzBOGGP7IvphyvwAP/I EM46W8EV/Sp3BEILQ378O5qCUf3u3Ad/MbRiKg3iFL2lNyrLHKeh2CHmPiN04MOn uioDAcpvqhfJkLMSq3GZ1KpubgVwrpz+jOIiEYuJLLgsyVI9vEf46HhZx2sVMXFZ plpBnoJo8YlKuQDL1HYUQNnZD9Y62NFHtnlKZlPh79GeBvARpI4MNjki+cj4w7L8 asmlrCZ6WoFYH0QJaOMSox2oP7u9/AS3XSSmZVVQhdb+s0hQHDQpzVxyg+hCqtVl m9sw4dVoacKbPCJxUapmIbJYMBeEBD89 -----END CERTIFICATE-----Generated at Fri Dec 19 18:00:46 2025 by rpki-client