This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft File: 5Ihhomij6U17foS6dO6vR3KJZwk.mft (raw, json) Hash identifier: VfXHV56ZeRXqmLmapWVwv7bB4z71Haw+WvUrzUEJ83U= Subject key identifier: 23:1C:DD:18:87:36:6E:62:3F:40:D7:D8:53:6F:CE:C2:CF:0C:8D:37 Authority key identifier: E4:88:61:A2:68:A3:E9:4D:7B:7E:84:BA:74:EE:AF:47:72:89:67:09 Certificate issuer: /CN=A91D3060/serialNumber=E48861A268A3E94D7B7E84BA74EEAF4772896709 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft Manifest number: 2C Signing time: Tue 23 Dec 2025 06:28:02 +0000 Manifest this update: Tue 23 Dec 2025 06:28:01 +0000 Manifest next update: Tue 30 Dec 2025 06:28:01 +0000 Files and hashes: 1: 5Ihhomij6U17foS6dO6vR3KJZwk.crl (hash: lKCn6pt8lZ2+ce/+hU5spGaO5Duo5nzQTpT16HM91sM=) 2: 0FCEAD129CF111F0A76B5F3AC4F9AE02.roa (hash: JHl7T/hUKLaY1UFwRDqsjEcFvOE7EYojRZktIev0/Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.crl rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3060, serialNumber=E48861A268A3E94D7B7E84BA74EEAF4772896709 Validity Not Before: Dec 23 06:28:01 2025 GMT Not After : Dec 30 06:28:01 2025 GMT Subject: CN=694a3672-b5c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:14:99:d1:7c:c9:6c:6c:6d:4a:d1:b9:9b:f8: 3a:d7:ff:85:ad:08:cb:d2:40:3b:00:50:fa:03:84: e5:88:c2:b8:01:1d:4f:9f:91:73:0b:1d:fc:57:f8: ac:90:83:e5:28:52:7e:83:d0:67:85:b2:7d:03:47: 41:66:1e:7e:29:61:b4:fb:12:62:aa:41:fc:02:df: e2:eb:5c:42:35:34:c3:be:4a:54:2a:1e:31:69:80: 99:87:a5:dd:74:9a:28:25:dc:9c:ac:48:52:10:7c: b7:14:de:86:5b:6b:0f:8f:92:80:c7:fe:f9:8e:4f: d7:09:79:4e:d9:61:3f:74:78:c5:d4:7d:33:4d:31: 36:e8:f6:f7:34:9f:3f:97:44:e0:21:62:82:fe:9e: ee:06:8c:a4:b8:77:10:91:7f:31:6d:8e:d8:8c:3f: dd:c9:01:12:8f:8c:86:9f:a4:be:46:6b:88:c5:90: f8:cc:2b:0c:85:1f:33:55:e1:6f:a4:2b:b2:02:37: 17:52:84:04:1c:06:9c:b7:d6:11:f0:ce:df:a4:9a: 00:35:28:97:d8:72:4c:7b:d7:41:7d:c0:34:4f:41: 44:17:44:5e:25:97:42:35:11:56:19:b3:cc:b1:78: 5c:7a:cf:66:a4:88:81:1d:d8:24:63:3f:f3:b1:9c: a7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1C:DD:18:87:36:6E:62:3F:40:D7:D8:53:6F:CE:C2:CF:0C:8D:37 X509v3 Authority Key Identifier: keyid:E4:88:61:A2:68:A3:E9:4D:7B:7E:84:BA:74:EE:AF:47:72:89:67:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:34:2c:13:ce:63:3a:26:a1:39:19:90:d2:e1:32:1d:2a:9a: 71:ca:23:72:79:b6:63:f4:66:74:8d:45:7c:ba:20:60:b0:27: 8b:8c:04:49:6b:5a:cb:d0:56:a7:39:7b:f7:44:13:13:6e:5b: 32:34:97:9e:ad:1e:e3:d9:37:f8:7c:25:56:37:ed:19:1f:ef: 6d:31:98:2d:25:02:1b:1d:24:1c:bf:25:09:2d:b4:35:64:0b: 5b:95:5c:f0:a6:42:bc:01:67:5c:85:87:ec:ed:ef:18:e1:f1: 1e:ba:f9:3d:e6:0a:40:1a:b4:3f:f8:73:9e:a5:6e:a0:ac:da: a1:91:95:bf:1c:f4:05:92:46:04:4e:7e:d1:e6:fd:6d:e1:fd: d0:4b:73:75:fe:83:78:3c:34:f2:4c:f1:bc:48:49:68:0f:5b: 22:3c:4f:99:ba:be:2a:3a:65:19:e4:4f:52:98:69:79:46:81: da:60:af:20:a8:94:1d:11:83:b2:ba:3d:c4:7e:94:e5:40:98: ba:13:e8:4d:0a:1e:b9:6a:ed:63:42:29:54:74:6c:49:cd:31: be:83:4c:54:ec:c5:a3:92:7b:f1:a0:8c:3e:93:fe:07:e5:27: de:68:4b:75:ce:72:f1:42:82:1d:e4:f4:8b:49:1d:86:2b:c8: ce:9a:e0:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzA2MDExMC8GA1UEBRMoRTQ4ODYxQTI2OEEzRTk0RDdCN0U4NEJBNzRFRUFGNDc3 Mjg5NjcwOTAeFw0yNTEyMjMwNjI4MDFaFw0yNTEyMzAwNjI4MDFaMBgxFjAUBgNV BAMMDTY5NGEzNjcyLWI1YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdFJnRfMlsbG1K0bmb+DrX/4WtCMvSQDsAUPoDhOWIwrgBHU+fkXMLHfxX+KyQ g+UoUn6D0GeFsn0DR0FmHn4pYbT7EmKqQfwC3+LrXEI1NMO+SlQqHjFpgJmHpd10 migl3JysSFIQfLcU3oZbaw+PkoDH/vmOT9cJeU7ZYT90eMXUfTNNMTbo9vc0nz+X ROAhYoL+nu4GjKS4dxCRfzFtjtiMP93JARKPjIafpL5Ga4jFkPjMKwyFHzNV4W+k K7ICNxdShAQcBpy31hHwzt+kmgA1KJfYckx710F9wDRPQUQXRF4ll0I1EVYZs8yx eFx6z2akiIEd2CRjP/OxnKdHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIxzdGIc2 bmI/QNfYU2/Ows8MjTcwHwYDVR0jBBgwFoAU5Ihhomij6U17foS6dO6vR3KJZwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMDYwL0VGOTQxQTEwOUNF RjExRjA5NjQ5N0MzN0M0RjlBRTAyLzVJaGhvbWlqNlUxN2ZvUzZkTzZ2UjNLSlp3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUloaG9taWo2VTE3Zm9TNmRPNnZSM0tKWndrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MDYwL0VGOTQxQTEwOUNFRjExRjA5NjQ5N0MzN0M0RjlBRTAyLzVJaGhvbWlqNlUx N2ZvUzZkTzZ2UjNLSlp3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKo0LBPOYzomoTkZkNLhMh0qmnHKI3J5tmP0ZnSNRXy6IGCwJ4uMBElr WsvQVqc5e/dEExNuWzI0l56tHuPZN/h8JVY37Rkf720xmC0lAhsdJBy/JQkttDVk C1uVXPCmQrwBZ1yFh+zt7xjh8R66+T3mCkAatD/4c56lbqCs2qGRlb8c9AWSRgRO ftHm/W3h/dBLc3X+g3g8NPJM8bxISWgPWyI8T5m6vio6ZRnkT1KYaXlGgdpgryCo lB0Rg7K6PcR+lOVAmLoT6E0KHrlq7WNCKVR0bEnNMb6DTFTsxaOSe/GgjD6T/gfl J95oS3XOcvFCgh3k9ItJHYYryM6a4Mo= -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:05 2025 by rpki-client