This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: fstVFa+2rzRYzzU90cJWPCCHq/Taj6p6CxjhSyr1r6Y= Subject key identifier: FA:C2:E1:AA:BA:E9:EC:4B:BD:67:99:AE:26:B1:82:01:27:20:FC:ED Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 0206 Signing time: Tue 23 Dec 2025 02:05:18 +0000 Manifest this update: Tue 23 Dec 2025 02:05:18 +0000 Manifest next update: Tue 30 Dec 2025 02:05:18 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: nmj56+qN7OjIt3nfsTx4aFzWolMXhlxvsaJK0hgIDjU=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: MOCyDx3MMCgJ0iKiHYJPId15Yf0kFHcGhSay9PLqfd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Dec 23 02:05:18 2025 GMT Not After : Dec 30 02:05:18 2025 GMT Subject: CN=6949f8de-160c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d7:88:8c:76:83:bf:ee:bf:d5:3b:65:7a:09: 84:e2:45:c8:73:9c:56:09:18:22:64:8c:fd:a6:e7: 7f:d2:1a:5f:01:48:b6:fb:26:46:5e:61:14:f1:b0: f2:f4:94:76:3d:e1:4a:b8:b6:85:d4:1c:08:da:f8: 71:15:e4:d0:08:44:3a:07:3e:57:44:f7:4e:57:dd: 25:32:b0:5b:bc:46:e1:be:65:61:e2:f6:1a:47:df: bb:fb:a9:a8:e6:d9:e2:88:f1:e0:a7:15:5b:c9:3d: c2:8b:55:23:a5:7c:f5:c2:fb:e1:71:9e:32:c0:42: af:ad:0d:d4:15:95:82:1a:bb:7a:50:b4:b9:14:92: c9:c6:ea:e7:42:63:8b:18:9d:9d:81:77:70:a7:57: fb:00:4c:5a:61:92:75:46:ed:10:68:be:8b:75:af: 93:d3:74:c2:ae:95:45:7d:69:cd:4f:8d:0c:ed:a6: 2b:18:69:ac:37:e9:cf:7d:a1:0c:ba:b9:51:3b:e7: c5:bc:57:45:03:29:47:5a:31:63:07:54:c1:fa:dc: 27:cc:b2:42:e7:a1:41:bf:bb:47:62:a1:85:b0:e9: b8:9a:0a:1f:32:3a:bc:a4:1d:bb:9c:16:6e:6e:b6: 31:ee:7c:09:d7:8c:5d:c1:df:5c:bc:e5:06:e9:3a: 80:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C2:E1:AA:BA:E9:EC:4B:BD:67:99:AE:26:B1:82:01:27:20:FC:ED X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:b0:23:09:df:1e:0c:f3:df:62:bf:36:25:7f:d9:2b:13:90: c3:74:d4:d7:a3:7e:a4:3d:ca:63:ec:d0:8c:db:a3:3d:72:f3: f8:61:63:64:1c:13:f5:2e:c3:8e:af:96:39:c6:c9:f0:a8:ea: ed:d6:c4:d6:8d:95:ae:c6:3d:e9:23:19:36:43:d2:b7:89:24: cf:5f:93:c1:f4:51:63:5e:05:ad:8f:92:10:ec:20:bd:ff:ac: 92:b5:a8:df:4f:dc:9f:ec:26:3c:2f:d3:5e:83:80:a3:60:95: 37:4c:1d:01:a0:56:ab:b3:75:37:75:ab:0e:bc:3d:36:a0:0b: f2:77:31:35:66:c3:5a:c6:75:ad:54:a1:7d:16:2e:ca:b9:bc: 5b:8e:81:a5:5d:57:03:c4:e8:b8:f5:de:e9:cc:8e:39:94:b9: e2:bf:b3:d8:36:e7:70:b8:14:61:ed:a8:2f:95:82:40:9a:d7: b9:18:9d:9d:16:6d:c1:72:90:9c:d1:6b:fc:29:40:d1:65:b2: ea:54:11:3e:f3:84:65:b8:7a:a8:a5:b6:b7:d5:b9:f4:4f:3d: 78:22:6d:40:47:85:4f:74:5a:51:31:c5:ab:c7:df:7a:db:5d: 04:c1:03:db:05:1a:e8:2c:e2:77:4d:4b:31:53:30:e3:bf:f8: 8a:8d:d6:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUxMjIzMDIwNTE4WhcNMjUxMjMwMDIwNTE4WjAYMRYwFAYD VQQDDA02OTQ5ZjhkZS0xNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNeIjHaDv+6/1TtlegmE4kXIc5xWCRgiZIz9pud/0hpfAUi2+yZGXmEU8bDy 9JR2PeFKuLaF1BwI2vhxFeTQCEQ6Bz5XRPdOV90lMrBbvEbhvmVh4vYaR9+7+6mo 5tniiPHgpxVbyT3Ci1UjpXz1wvvhcZ4ywEKvrQ3UFZWCGrt6ULS5FJLJxurnQmOL GJ2dgXdwp1f7AExaYZJ1Ru0QaL6Lda+T03TCrpVFfWnNT40M7aYrGGmsN+nPfaEM urlRO+fFvFdFAylHWjFjB1TB+twnzLJC56FBv7tHYqGFsOm4mgofMjq8pB27nBZu brYx7nwJ14xdwd9cvOUG6TqAZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrC4aq6 6exLvWeZriaxggEnIPztMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWsCMJ3x4M899ivzYlf9krE5DDdNTXo36kPcpj7NCM26M9cvP4YWNk HBP1LsOOr5Y5xsnwqOrt1sTWjZWuxj3pIxk2Q9K3iSTPX5PB9FFjXgWtj5IQ7CC9 /6yStajfT9yf7CY8L9Neg4CjYJU3TB0BoFars3U3dasOvD02oAvydzE1ZsNaxnWt VKF9Fi7KubxbjoGlXVcDxOi49d7pzI45lLniv7PYNudwuBRh7agvlYJAmte5GJ2d Fm3BcpCc0Wv8KUDRZbLqVBE+84RluHqopba31bn0Tz14Im1AR4VPdFpRMcWrx996 210EwQPbBRroLOJ3TUsxUzDjv/iKjdZ3 -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:23 2025 by rpki-client