This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: aImGo3Y3yRDxCK0hKuIQqtvYB7iTT7eGEzE5OFymaf4= Subject key identifier: E5:66:5A:7A:7B:C2:80:22:D2:B7:3B:5A:B8:C7:09:A2:27:0E:B2:C2 Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0CB3 Signing time: Mon 22 Dec 2025 17:54:53 +0000 Manifest this update: Mon 22 Dec 2025 17:54:53 +0000 Manifest next update: Mon 29 Dec 2025 17:54:53 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: wCT9XS5OBXWoJa7cKQAJpkO+C82s8H051zbfvHrWHY0=) 2: F3529CDCAE1511EE92D99E46C4F9AE02.roa (hash: hTD7DjMK2EnPCWqJypUdiJk7jUHRPt10GcfYU8sN4po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Dec 22 17:54:53 2025 GMT Not After : Dec 29 17:54:53 2025 GMT Subject: CN=694985ed-7930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:05:42:47:81:c4:12:c5:34:81:e2:79:d7:f4: 22:48:fb:43:6c:93:c7:26:18:cb:90:c4:cb:75:75: 60:d4:91:26:74:d7:f7:48:65:10:15:13:5e:b6:9e: 62:59:68:2d:c4:7b:5b:f3:9b:69:7d:96:09:a2:a2: 2f:33:c9:10:36:d3:3b:a2:3a:b3:1c:eb:3c:5b:a0: 69:8f:f1:49:42:9f:d6:2b:9f:c0:c0:f9:a0:b8:49: fa:fb:bb:b3:3d:59:5e:a2:7d:a8:8b:61:77:8f:9a: 97:72:a3:4d:b6:2b:e8:c8:17:ce:9c:7d:b7:64:01: 32:d5:d0:9b:e2:87:ac:a4:05:91:86:24:ff:6f:7b: 2b:4b:4b:dd:e4:c8:50:45:ea:ad:dd:55:11:a5:c5: 38:dd:6c:13:e3:74:6e:1d:4a:06:36:d8:44:de:ac: e8:8f:72:b2:9c:01:88:c3:d7:5c:72:d4:b3:39:a4: dd:59:75:67:a0:74:56:98:ca:b5:df:4b:6f:ed:a0: f1:58:f1:7a:bc:7a:47:a1:5d:f2:64:ba:18:87:99: 84:37:c5:a4:79:1c:da:33:53:f7:fe:a0:4b:2a:31: ee:c3:0e:f8:10:e5:48:13:7a:6d:eb:f7:7a:ee:57: c9:56:37:c3:5d:4e:a7:da:6d:1e:13:5c:d1:b1:94: be:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:66:5A:7A:7B:C2:80:22:D2:B7:3B:5A:B8:C7:09:A2:27:0E:B2:C2 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:86:41:c9:59:19:e4:73:c6:a9:32:46:e6:6f:49:52:fc:a7: 22:9a:6d:6a:5e:51:4e:eb:e6:aa:ba:7f:40:c3:b8:d2:9f:f6: 95:ed:14:41:b6:ab:f9:d1:c0:52:d7:9c:76:d3:c4:a6:b6:09: 7b:85:b1:93:01:17:7f:fe:75:b7:35:82:74:05:e7:6f:c2:a1: 51:2c:d8:49:b6:63:2f:ee:8b:bf:bf:c7:5d:36:0e:ca:e3:2e: 72:3e:67:94:65:a4:40:d7:69:8c:39:0e:d8:05:c1:49:7f:34: d1:84:41:43:57:83:93:7f:eb:84:12:94:68:cc:a1:8a:74:02: 01:97:cc:27:4a:35:9d:39:b3:a0:80:4f:1e:6f:1e:ef:2e:fd: f7:85:12:06:00:25:08:0d:c2:56:6a:f7:07:f5:ce:8f:04:a8: f6:f5:75:c9:e9:80:5b:59:4e:0c:2b:5f:70:60:56:64:f4:fb: 62:4c:e6:64:d4:55:34:94:ba:7b:dd:78:9b:4e:e7:17:8d:4c: 2a:dd:07:9b:3a:ee:04:00:4d:2c:4a:6b:3e:1e:ed:d0:c2:21: fc:d9:bf:2f:cf:8b:97:da:7f:f7:97:c3:16:6d:a3:8b:53:cb: 5f:26:69:e5:74:91:64:fe:9b:a4:ab:43:b5:c7:cf:a7:5b:a4: 9c:43:6f:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjUxMjIyMTc1NDUzWhcNMjUxMjI5MTc1NDUzWjAYMRYwFAYD VQQDDA02OTQ5ODVlZC03OTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gVCR4HEEsU0geJ51/QiSPtDbJPHJhjLkMTLdXVg1JEmdNf3SGUQFRNetp5i WWgtxHtb85tpfZYJoqIvM8kQNtM7ojqzHOs8W6Bpj/FJQp/WK5/AwPmguEn6+7uz PVleon2oi2F3j5qXcqNNtivoyBfOnH23ZAEy1dCb4oespAWRhiT/b3srS0vd5MhQ Reqt3VURpcU43WwT43RuHUoGNthE3qzoj3KynAGIw9dcctSzOaTdWXVnoHRWmMq1 30tv7aDxWPF6vHpHoV3yZLoYh5mEN8WkeRzaM1P3/qBLKjHuww74EOVIE3pt6/d6 7lfJVjfDXU6n2m0eE1zRsZS+KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVmWnp7 woAi0rc7WrjHCaInDrLCMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAphkHJWRnkc8apMkbmb0lS/Kcimm1qXlFO6+aqun9Aw7jSn/aV7RRB tqv50cBS15x208Smtgl7hbGTARd//nW3NYJ0BedvwqFRLNhJtmMv7ou/v8ddNg7K 4y5yPmeUZaRA12mMOQ7YBcFJfzTRhEFDV4OTf+uEEpRozKGKdAIBl8wnSjWdObOg gE8ebx7vLv33hRIGACUIDcJWavcH9c6PBKj29XXJ6YBbWU4MK19wYFZk9PtiTOZk 1FU0lLp73XibTucXjUwq3QebOu4EAE0sSms+Hu3QwiH82b8vz4uX2n/3l8MWbaOL U8tfJmnldJFk/pukq0O1x8+nW6ScQ2/Y -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:03 2025 by rpki-client