This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft File: 5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft (raw, json) Hash identifier: OagkQKUaTSu5jL1JvYruNrXXkal5owiCo7+casuMJkk= Subject key identifier: 58:8D:ED:99:EA:1E:D7:AC:98:C1:4B:1A:4C:B3:AC:2E:78:18:64:73 Authority key identifier: E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF Certificate issuer: /CN=A91D60CF/serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft Manifest number: 011B Signing time: Tue 23 Dec 2025 03:44:45 +0000 Manifest this update: Tue 23 Dec 2025 03:44:44 +0000 Manifest next update: Tue 30 Dec 2025 03:44:44 +0000 Files and hashes: 1: 5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl (hash: m9mqLxeI1iyzAwDgP9lZPhAg06u85BweRQt7z+DqfXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF Validity Not Before: Dec 23 03:44:44 2025 GMT Not After : Dec 30 03:44:44 2025 GMT Subject: CN=694a102d-88b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b5:98:47:6e:aa:3d:76:84:d0:87:34:4b:31: 60:34:ec:1b:0b:31:4d:b0:5c:19:7f:0d:44:86:eb: 40:ec:d7:2e:9a:78:29:11:90:9e:bd:ca:1b:74:72: 65:b5:a0:29:53:ab:0d:fc:9c:ce:fe:bc:98:70:f7: 03:a5:39:98:dc:d2:c9:6c:fe:d1:5a:73:e6:de:3b: 02:a4:fb:e7:33:18:e7:7d:78:70:ae:35:39:1f:bf: 73:a0:03:1e:16:f5:ac:fe:51:2b:92:a1:bb:8d:27: 65:68:7c:cf:46:6c:59:f8:a8:9e:87:58:47:dc:e9: 66:ac:6a:01:d5:0b:7b:93:bb:18:ad:47:ef:87:44: 4c:1d:ab:9f:97:ca:c1:23:b4:87:8f:f0:cf:78:37: 14:92:97:b5:79:5d:3c:d6:0b:00:f7:56:79:15:b8: 01:4e:cc:28:2b:fa:4d:7c:d8:40:aa:ee:bc:61:eb: 75:7c:32:77:ac:4c:9f:14:1a:89:01:b7:dc:b4:5c: 5a:0c:cd:61:b3:ba:b2:d0:9c:f9:8f:e0:73:13:5b: 2c:fb:26:21:16:c6:a3:d6:da:83:91:12:f7:91:2e: 27:5f:67:76:97:66:b3:3a:5b:e3:34:de:e8:77:e5: 63:07:d7:30:9c:10:26:6a:39:8c:09:ae:9d:02:05: 2c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8D:ED:99:EA:1E:D7:AC:98:C1:4B:1A:4C:B3:AC:2E:78:18:64:73 X509v3 Authority Key Identifier: keyid:E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:18:5b:c1:3a:85:30:36:20:96:2c:3e:c3:3f:4a:50:5d:c6: 2f:4d:dd:3d:f1:cb:aa:2a:ca:81:98:4e:f9:e4:a2:fd:36:a3: 0b:2c:fe:ef:62:fb:b4:40:7f:65:ac:9a:ed:29:d7:b5:08:a1: 0f:6c:39:78:7d:ef:2f:1e:4f:9e:42:4f:95:b2:01:87:d3:1f: dd:0e:32:51:56:f3:7c:6f:49:70:25:6e:f4:b3:18:68:d7:e9: 8d:a6:2a:9a:f9:c2:53:7a:0d:4b:fd:6c:0a:bb:85:a5:40:61: d5:a4:6e:0a:d6:5a:85:73:14:0a:46:71:78:d9:96:11:70:d4: 94:a2:40:9b:5f:f7:e4:a4:4f:75:f4:a0:ba:05:6c:81:0e:4a: be:2a:cd:be:7b:39:8a:7a:d1:82:62:00:4a:e4:82:81:2c:69: 3b:2a:f7:c0:cd:a3:66:12:1f:b1:70:f4:39:c4:6f:95:94:6f: f9:3b:ad:ef:3c:ce:c7:4c:52:cc:dd:e7:42:22:88:69:76:16: b9:87:34:41:92:8a:17:fa:92:b1:3a:14:09:e0:f3:ce:d0:b9: f5:a8:b5:98:86:42:71:e7:b2:c3:27:de:a0:93:ac:0d:3a:3b: ce:7d:f3:6c:8e:29:44:c0:11:85:a6:77:b3:f9:e0:64:ac:fe: fe:52:09:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKEU2NEUwMjE3NzQzNUFFRjFDQkZENjI0RTI2NjdFNjk2 OUFBRkFBRkYwHhcNMjUxMjIzMDM0NDQ0WhcNMjUxMjMwMDM0NDQ0WjAYMRYwFAYD VQQDDA02OTRhMTAyZC04OGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLWYR26qPXaE0Ic0SzFgNOwbCzFNsFwZfw1EhutA7NcumngpEZCevcobdHJl taApU6sN/JzO/ryYcPcDpTmY3NLJbP7RWnPm3jsCpPvnMxjnfXhwrjU5H79zoAMe FvWs/lErkqG7jSdlaHzPRmxZ+Kieh1hH3OlmrGoB1Qt7k7sYrUfvh0RMHaufl8rB I7SHj/DPeDcUkpe1eV081gsA91Z5FbgBTswoK/pNfNhAqu68Yet1fDJ3rEyfFBqJ AbfctFxaDM1hs7qy0Jz5j+BzE1ss+yYhFsaj1tqDkRL3kS4nX2d2l2azOlvjNN7o d+VjB9cwnBAmajmMCa6dAgUsOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiN7Znq HtesmMFLGkyzrC54GGRzMB8GA1UdIwQYMBaAFOZOAhd0Na7xy/1iTiZn5paar6r/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FRjgxMzdFNDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi81azRDRjNRMXJ2SExfV0pPSm1mbWxwcXZx djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrNENGM1ExcnZITF9XSk9KbWZtbHBxdnF2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FRjgxMzdFNDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi81azRDRjNRMXJ2 SExfV0pPSm1mbWxwcXZxdjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaGFvBOoUwNiCWLD7DP0pQXcYvTd098cuqKsqBmE755KL9NqMLLP7v Yvu0QH9lrJrtKde1CKEPbDl4fe8vHk+eQk+VsgGH0x/dDjJRVvN8b0lwJW70sxho 1+mNpiqa+cJTeg1L/WwKu4WlQGHVpG4K1lqFcxQKRnF42ZYRcNSUokCbX/fkpE91 9KC6BWyBDkq+Ks2+ezmKetGCYgBK5IKBLGk7KvfAzaNmEh+xcPQ5xG+VlG/5O63v PM7HTFLM3edCIohpdha5hzRBkooX+pKxOhQJ4PPO0Ln1qLWYhkJx57LDJ96gk6wN OjvOffNsjilEwBGFpnez+eBkrP7+Ugn/ -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:27 2025 by rpki-client