This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: DCJIE5mFFInojHfkmxNFOgwWs9pmbSh6PQxCemFQEP4= Subject key identifier: 70:4D:B6:A0:17:C9:34:6B:AD:34:CE:C7:25:F7:5E:7A:E3:24:5A:F7 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 0114 Signing time: Sun 21 Dec 2025 04:02:32 +0000 Manifest this update: Sun 21 Dec 2025 04:02:31 +0000 Manifest next update: Sun 28 Dec 2025 04:02:31 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: esDP8hCYiy1iokgzDurwuNM0VA5/ffslQbWcJnqqWks=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: RU5OhSVcdir8OrT3E9J1urB5y05ack2UMndknf/XUMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Dec 21 04:02:31 2025 GMT Not After : Dec 28 04:02:31 2025 GMT Subject: CN=69477158-8ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4c:7b:9d:4e:c4:46:13:6e:cc:7b:68:cf:31: c5:1e:68:70:5e:3e:55:0e:79:7f:8a:05:e0:f9:14: bf:0b:de:64:f4:d6:c8:84:d5:b8:39:b3:f8:cf:f8: b3:f7:8a:33:9c:94:fd:4b:21:e3:b0:74:50:88:dc: ee:13:d7:8a:91:8b:57:c2:75:55:c6:b9:5c:ed:3e: 3e:c7:2a:77:df:ad:3d:a4:b5:1f:4e:7f:96:c7:bd: 13:32:7e:54:59:eb:3d:11:17:ca:ec:a3:4d:47:3a: ce:20:2d:70:b3:c0:34:2c:b2:65:a1:95:dd:41:b1: 00:f8:5e:d2:95:c3:de:bb:f8:e0:95:66:3d:6a:d3: 28:54:6c:39:ce:42:b9:4a:1d:92:3e:5d:15:c0:ef: 36:5a:f8:97:e6:ef:f5:38:98:65:99:f4:8a:f4:58: 90:7e:f2:57:e8:a8:78:fd:67:de:77:fa:89:69:89: 2f:86:ee:82:48:d2:f6:56:77:fa:3e:12:5c:37:59: 73:2c:0b:81:79:59:a4:60:ab:db:16:61:57:b8:3b: 5b:67:01:c9:ff:9b:2a:71:73:ff:60:c0:6d:43:24: 20:a2:7d:6e:08:a9:92:e6:64:29:5f:69:de:f5:c5: 7e:64:fe:5b:fa:1b:0b:36:51:51:71:cd:b6:bf:c4: 64:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4D:B6:A0:17:C9:34:6B:AD:34:CE:C7:25:F7:5E:7A:E3:24:5A:F7 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:41:8a:9e:35:9d:e8:19:a7:93:e5:b7:e7:4b:09:db:71:5f: 31:bb:11:ae:37:43:28:45:fa:95:ad:58:8f:40:ff:0f:91:9c: 9f:1d:2b:12:ac:eb:c8:b7:2a:76:af:78:ce:57:c0:01:c3:7b: 64:2e:b4:77:9c:e1:f3:82:90:b1:7e:a4:71:fc:6e:3e:f2:24: 7a:4b:24:b9:81:6f:97:be:2e:86:af:8a:c8:aa:d6:8e:17:f8: 8e:da:43:15:0c:07:4b:1f:3d:ab:df:d0:44:6a:49:fe:12:85: 30:1b:d9:7b:9f:ae:03:84:15:e4:fb:a1:fe:74:9a:f8:4f:c7: be:f1:20:d1:6f:95:03:e9:11:f7:e3:4d:68:9e:ac:7e:5e:bd: 30:e4:ef:a4:1a:76:69:61:e2:f0:cf:ae:f6:8e:ea:10:ba:bf: 48:ca:a8:51:c7:f0:b8:40:2f:9d:11:49:a9:5a:87:4f:d1:82: 54:7d:ea:d4:76:71:e0:ed:19:10:87:1c:87:76:18:48:03:6c: f8:1c:53:6a:4f:9c:5f:82:9b:96:17:1f:01:11:4b:d8:0b:cf: bb:f0:ec:f8:ad:60:29:3a:4a:f7:6d:d0:18:41:ab:59:f5:43: f0:45:a6:39:48:79:33:d0:a8:d3:88:55:a1:22:77:fe:58:50: 83:c3:75:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUxMjIxMDQwMjMxWhcNMjUxMjI4MDQwMjMxWjAYMRYwFAYD VQQDDA02OTQ3NzE1OC04ZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ux7nU7ERhNuzHtozzHFHmhwXj5VDnl/igXg+RS/C95k9NbIhNW4ObP4z/iz 94oznJT9SyHjsHRQiNzuE9eKkYtXwnVVxrlc7T4+xyp33609pLUfTn+Wx70TMn5U Wes9ERfK7KNNRzrOIC1ws8A0LLJloZXdQbEA+F7SlcPeu/jglWY9atMoVGw5zkK5 Sh2SPl0VwO82WviX5u/1OJhlmfSK9FiQfvJX6Kh4/Wfed/qJaYkvhu6CSNL2Vnf6 PhJcN1lzLAuBeVmkYKvbFmFXuDtbZwHJ/5sqcXP/YMBtQyQgon1uCKmS5mQpX2ne 9cV+ZP5b+hsLNlFRcc22v8RkLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBNtqAX yTRrrTTOxyX3XnrjJFr3MB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwQYqeNZ3oGaeT5bfnSwnbcV8xuxGuN0MoRfqVrViPQP8PkZyfHSsS rOvItyp2r3jOV8ABw3tkLrR3nOHzgpCxfqRx/G4+8iR6SyS5gW+Xvi6Gr4rIqtaO F/iO2kMVDAdLHz2r39BEakn+EoUwG9l7n64DhBXk+6H+dJr4T8e+8SDRb5UD6RH3 401onqx+Xr0w5O+kGnZpYeLwz672juoQur9IyqhRx/C4QC+dEUmpWodP0YJUferU dnHg7RkQhxyHdhhIA2z4HFNqT5xfgpuWFx8BEUvYC8+78Oz4rWApOkr3bdAYQatZ 9UPwRaY5SHkz0KjTiFWhInf+WFCDw3XA -----END CERTIFICATE-----Generated at Sun Dec 21 08:19:42 2025 by rpki-client