This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: /8+FXtHSPVYcXl9u5Q+1rNsT7ARIlSEryMeQIEy/IG8= Subject key identifier: AA:0C:A4:D4:13:70:FD:E3:39:5B:D0:CD:B1:C1:DF:0E:D4:92:F0:7A Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 092B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 090A Signing time: Fri 12 Dec 2025 19:44:05 +0000 Manifest this update: Fri 12 Dec 2025 19:44:04 +0000 Manifest next update: Fri 19 Dec 2025 19:44:04 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: 6E8wDNqREHXV0sDIKnMauLG2jzlbpF7cMHAXdFNP+dQ=) 2: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: 1QX8DyT1A4CiikAaWBicwaY94hYcJgWNUoKN7UlLwiU=) 3: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: DP8lG9el46NF03CMOLzrMzttp6pe74xkZuZziqnxmJ4=) 4: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: LdDw24/Or3M92peybKBWsStvdJIFCX02q7LqBzB3QW8=) 5: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: mYMneOcMzVSjWOSfz2l4H7HMRndq3Nml1V+jd7+ZSu8=) 6: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: EeEFahw1S1xzRQMqYweCJnCU9S+/LW0T/PuPJ3E+UWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 19:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2347 (0x92b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Dec 12 19:44:04 2025 GMT Not After : Dec 19 19:44:04 2025 GMT Subject: CN=693c7085-21b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:72:67:f2:a7:25:05:39:95:f2:e7:36:50:ab: 07:be:f9:40:80:59:73:df:c5:48:d9:04:dc:f0:ec: 0c:09:44:c4:f0:dc:6f:6b:ec:cd:9c:25:fc:b9:01: 5b:10:b0:40:ed:6d:6e:29:68:59:aa:1c:2a:bc:5e: ec:b5:41:0d:d8:ba:10:43:29:73:21:22:26:3a:bd: 44:55:6c:ff:26:a0:0e:48:48:b9:98:57:88:2d:f7: b1:d5:49:ae:18:bc:d9:d1:ab:a9:6f:f0:e2:1b:ef: 68:d0:44:58:95:d7:ee:bd:cc:0b:3b:08:53:74:41: 95:2e:54:65:73:5b:bf:50:ed:1a:b9:8e:83:82:de: 6d:47:14:47:fa:dc:0b:44:15:1e:d8:64:f4:d9:12: c1:3a:ec:30:40:40:1b:03:b7:ee:37:32:02:79:f6: db:c7:71:3f:2d:fc:e0:e5:40:eb:90:e5:9e:67:44: 3c:7f:34:88:b2:3a:05:ce:13:02:7a:f0:fe:8b:be: 5f:7d:85:a2:d7:90:94:09:e4:57:e7:a7:fa:b0:79: f1:a0:63:2f:bb:ce:52:b6:41:0e:6e:48:8a:59:74: a2:39:b6:9d:af:bb:33:0a:d4:72:f4:a7:02:d2:56: 08:b5:d1:fe:44:43:c4:ae:8b:9e:3e:3c:4c:6d:17: be:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0C:A4:D4:13:70:FD:E3:39:5B:D0:CD:B1:C1:DF:0E:D4:92:F0:7A X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f4:74:4b:93:6f:60:98:1a:b7:62:df:d0:9e:f6:93:c3:7c: 66:a8:56:0c:72:bc:0f:fa:b8:6b:10:ec:ec:e5:9d:f9:3f:3a: b7:08:b5:c3:f7:14:22:70:9a:63:cb:50:78:8e:1a:6d:56:82: d7:02:e9:f6:93:cd:6c:86:1b:ee:60:88:c1:8e:7f:d3:c4:29: fb:6e:d5:ac:4d:c1:24:64:82:62:a1:91:12:a2:46:40:fb:92: 94:e3:26:84:30:f0:a1:d4:64:be:74:30:17:15:d0:1a:3f:bf: 68:f8:fe:c2:00:1b:69:47:a6:88:92:20:ff:02:00:03:48:be: 6e:78:a2:cd:0e:33:78:e1:15:a1:37:15:8c:4f:1a:56:7b:d2: c8:d3:5a:b2:4b:20:8b:64:45:dd:47:54:e5:53:c9:ee:78:c6: ab:03:fb:58:0e:4e:9e:f9:58:3e:0d:e6:ae:51:d2:78:b6:4b: ad:a0:b7:0c:47:4d:cd:ad:e2:7b:54:89:82:ee:32:4a:12:3d: 9f:79:8a:ef:81:d3:eb:6a:cf:ed:70:81:0b:93:99:10:f7:8c: c8:2c:4a:4b:9d:2d:54:68:33:06:24:2d:84:0d:7a:28:b3:93: 29:a8:6c:21:ff:0d:bb:ec:f0:0a:58:5f:ea:84:91:47:16:11: d2:ef:ac:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUxMjEyMTk0NDA0WhcNMjUxMjE5MTk0NDA0WjAYMRYwFAYD VQQDDA02OTNjNzA4NS0yMWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnJn8qclBTmV8uc2UKsHvvlAgFlz38VI2QTc8OwMCUTE8Nxva+zNnCX8uQFb ELBA7W1uKWhZqhwqvF7stUEN2LoQQylzISImOr1EVWz/JqAOSEi5mFeILfex1Umu GLzZ0aupb/DiG+9o0ERYldfuvcwLOwhTdEGVLlRlc1u/UO0auY6Dgt5tRxRH+twL RBUe2GT02RLBOuwwQEAbA7fuNzICefbbx3E/Lfzg5UDrkOWeZ0Q8fzSIsjoFzhMC evD+i75ffYWi15CUCeRX56f6sHnxoGMvu85StkEObkiKWXSiObadr7szCtRy9KcC 0lYItdH+REPErouePjxMbRe+vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoMpNQT cP3jOVvQzbHB3w7UkvB6MB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk9HRLk29gmBq3Yt/QnvaTw3xmqFYMcrwP+rhrEOzs5Z35Pzq3CLXD 9xQicJpjy1B4jhptVoLXAun2k81shhvuYIjBjn/TxCn7btWsTcEkZIJioZESokZA +5KU4yaEMPCh1GS+dDAXFdAaP79o+P7CABtpR6aIkiD/AgADSL5ueKLNDjN44RWh NxWMTxpWe9LI01qySyCLZEXdR1TlU8nueMarA/tYDk6e+Vg+DeauUdJ4tkutoLcM R03NreJ7VImC7jJKEj2feYrvgdPras/tcIELk5kQ94zILEpLnS1UaDMGJC2EDXoo s5MpqGwh/w277PAKWF/qhJFHFhHS76z9 -----END CERTIFICATE-----Generated at Sun Dec 14 01:04:26 2025 by rpki-client