This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: 5pZSP9rRg27JIYTUMjb1QiMMHAgNzQU4gxvthi+CoNM= Subject key identifier: 16:3D:64:00:85:75:B1:88:40:10:09:BD:F4:CD:F3:AB:29:2F:C9:91 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 05AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 0597 Signing time: Sat 06 Dec 2025 22:01:43 +0000 Manifest this update: Sat 06 Dec 2025 22:01:43 +0000 Manifest next update: Sat 13 Dec 2025 22:01:43 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: WwAt7bxgexFlQQ1sZGGR47sCXoVsGXCikHvOpqRanj8=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Dec 6 22:01:43 2025 GMT Not After : Dec 13 22:01:43 2025 GMT Subject: CN=6934a7c7-1b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1a:ee:2c:c9:7a:40:4d:9e:ab:39:89:99:35: bd:56:83:a6:68:e9:fa:b7:17:a2:fa:68:be:49:42: 31:80:5c:c7:fa:77:dd:bd:a8:4c:d9:47:e2:65:84: 51:e3:62:63:be:e0:e0:ca:36:6d:b2:b5:e5:34:d8: f1:85:6f:37:31:c5:7f:88:12:04:60:73:dc:11:9e: 95:67:76:71:a2:eb:00:48:ed:23:bf:3f:d7:d3:44: ae:b9:62:c9:e9:3d:b1:c6:47:46:e4:44:ff:aa:c8: 89:6d:87:6b:36:f6:57:98:61:a9:9a:8c:3e:54:a3: 50:3e:2c:b3:74:10:7e:c9:6a:00:61:35:ea:76:37: fb:9a:74:15:42:0b:57:15:17:64:f9:c5:fe:bb:49: 45:71:8d:ae:d7:6a:e9:ff:bd:2d:ff:89:0a:cf:f3: 32:2c:bf:59:da:a9:e4:8f:38:38:c8:c7:f6:0a:f8: 30:32:53:e4:30:b4:24:ff:b9:e5:58:5e:a1:8d:b4: cd:9c:52:ae:3b:e2:60:a0:27:5e:f6:12:b2:7b:82: a6:23:a2:6c:95:da:4c:6b:3d:7a:dc:93:42:45:30: e2:8d:23:31:61:f6:79:b8:e4:2e:38:e3:2f:43:06: a6:05:6f:c2:87:c0:4a:07:31:8e:75:80:73:c5:d8: ce:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3D:64:00:85:75:B1:88:40:10:09:BD:F4:CD:F3:AB:29:2F:C9:91 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b3:93:7e:d9:3b:ef:fa:00:69:61:66:ee:d4:6e:2c:77:27: 17:37:25:88:64:a2:23:80:40:6d:ff:43:f1:b4:02:84:f3:a1: 4f:fe:76:3b:0b:e4:e4:30:9d:d0:a6:2a:ee:1a:cc:43:8c:4f: bb:93:7d:5b:73:4d:ae:2b:48:d6:b6:5c:39:e9:7b:46:f1:71: e8:86:f4:b1:31:f8:f1:73:8f:fa:53:44:5c:53:8b:69:65:ae: 18:12:64:37:96:c9:cf:5d:4b:2b:58:dd:2b:50:1f:3d:2a:3e: 6f:67:56:05:1b:bc:35:00:79:31:be:96:2f:52:d7:d9:d3:89: 94:ae:2b:44:45:49:4f:a6:1c:56:20:29:37:29:ff:0d:ab:91: 20:30:3f:c4:17:70:ab:59:4d:c1:be:d6:58:23:85:8c:ff:8f: b2:6f:6c:71:06:06:37:c8:86:94:39:94:43:03:4d:da:52:24: 1f:9b:60:da:43:ee:2f:60:9a:4b:83:05:85:39:20:e2:10:b8: 5f:71:d8:ab:46:d2:17:80:1c:f6:3a:b0:cc:75:9f:35:cc:34: ed:f0:7a:d8:9d:a2:81:72:34:49:96:e7:6d:1c:f5:ba:99:6e: c6:df:f6:62:59:41:59:a3:e5:17:49:a4:78:95:43:3b:32:18: 20:54:2d:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUxMjA2MjIwMTQzWhcNMjUxMjEzMjIwMTQzWjAYMRYwFAYD VQQDEw02OTM0YTdjNy0xYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBruLMl6QE2eqzmJmTW9VoOmaOn6txei+mi+SUIxgFzH+nfdvahM2UfiZYRR 42JjvuDgyjZtsrXlNNjxhW83McV/iBIEYHPcEZ6VZ3ZxousASO0jvz/X00SuuWLJ 6T2xxkdG5ET/qsiJbYdrNvZXmGGpmow+VKNQPiyzdBB+yWoAYTXqdjf7mnQVQgtX FRdk+cX+u0lFcY2u12rp/70t/4kKz/MyLL9Z2qnkjzg4yMf2CvgwMlPkMLQk/7nl WF6hjbTNnFKuO+JgoCde9hKye4KmI6JsldpMaz163JNCRTDijSMxYfZ5uOQuOOMv QwamBW/Ch8BKBzGOdYBzxdjO3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBY9ZACF dbGIQBAJvfTN86spL8mRMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAos5N+2Tvv+gBpYWbu1G4sdycXNyWIZKIjgEBt/0PxtAKE86FP/nY7 C+TkMJ3QpiruGsxDjE+7k31bc02uK0jWtlw56XtG8XHohvSxMfjxc4/6U0RcU4tp Za4YEmQ3lsnPXUsrWN0rUB89Kj5vZ1YFG7w1AHkxvpYvUtfZ04mUritERUlPphxW ICk3Kf8Nq5EgMD/EF3CrWU3BvtZYI4WM/4+yb2xxBgY3yIaUOZRDA03aUiQfm2Da Q+4vYJpLgwWFOSDiELhfcdirRtIXgBz2OrDMdZ81zDTt8HrYnaKBcjRJludtHPW6 mW7G3/ZiWUFZo+UXSaR4lUM7MhggVC0m -----END CERTIFICATE-----Generated at Mon Dec 8 06:48:06 2025 by rpki-client