This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: j3bH9lteT/mCaE5Ax8IXayt3qqquz/ko00013HV9dAM= Subject key identifier: AE:22:C1:72:5D:0E:7F:10:D7:90:6C:41:D4:79:01:6B:28:EE:33:E0 Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 0464 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 045F Signing time: Mon 22 Dec 2025 23:13:12 +0000 Manifest this update: Mon 22 Dec 2025 23:13:11 +0000 Manifest next update: Mon 29 Dec 2025 23:13:11 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: 7I3PedIoCwmVJ7fm5ph/cn0ckwCgZDr1MZ+cOggd6WE=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: X0bJVDOuH3hxzxDqtFhaGE8zyPysnrk6jtT4gfdw6QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Dec 22 23:13:11 2025 GMT Not After : Dec 29 23:13:11 2025 GMT Subject: CN=6949d088-251a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:84:95:c1:45:da:59:22:65:0a:70:4b:80:10: 55:44:f4:ee:03:37:2f:62:2a:12:07:2c:07:52:39: dc:3a:6e:40:ac:4b:79:4f:d1:e3:8a:ac:de:07:72: e2:d5:ea:c2:5e:2e:cb:23:d8:6d:83:c0:2b:fa:4e: 32:90:27:ec:a6:a4:9b:f6:6d:8f:0c:91:34:61:8d: 88:0c:c9:71:4d:0c:5f:26:29:83:67:7f:1d:dd:97: ef:bf:d0:c3:38:f3:8f:14:89:02:b6:ae:49:f3:87: 44:25:a6:9d:11:8e:4b:87:56:2d:19:5a:5f:c8:3d: 8a:e6:a0:77:2c:b6:83:b7:b0:64:a5:6b:07:8c:f5: cb:ba:8f:9f:6d:2f:05:ad:63:5b:7f:81:10:0f:2d: 7b:df:90:84:52:e6:5c:92:26:ca:8b:b6:86:fb:f9: d6:4e:52:21:79:54:52:ee:10:e0:18:2f:3b:b2:e3: 4c:ab:7f:6f:8e:3f:00:80:c9:96:74:85:7d:d8:4a: 77:97:c0:05:49:db:c1:59:60:c0:07:44:d1:3f:34: 8e:ba:34:f8:dd:53:00:d8:81:30:5d:55:0c:cd:5e: 7f:cb:47:d0:8e:54:b9:3d:49:57:1f:63:34:d4:b5: 05:dc:84:00:49:f5:db:ce:75:37:4b:94:4a:ea:cd: 44:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:22:C1:72:5D:0E:7F:10:D7:90:6C:41:D4:79:01:6B:28:EE:33:E0 X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:f3:7b:97:a8:66:a6:d8:62:1e:0d:79:1d:bb:4a:d8:7a:04: f0:3f:8a:3e:74:93:88:c3:a3:a2:6c:0d:a3:0e:3f:e0:9b:22: 48:e9:58:02:d8:1e:8a:1e:b3:47:e2:23:2b:2c:63:46:4b:0a: ae:91:3e:29:22:25:2e:a6:58:ea:45:59:12:be:3e:f0:5d:72: dd:c3:f2:db:1d:9b:fa:23:06:a8:85:e3:b6:71:2a:9b:43:37: 76:61:ff:e3:f5:51:ea:37:a0:84:35:8a:5a:32:cf:cf:1e:2e: 29:72:d9:f6:2f:f6:4c:15:f3:02:ae:69:65:ae:9f:55:83:fd: c3:bc:20:0e:ab:70:b6:f5:69:49:a7:69:0b:e8:10:1f:12:08: f9:9e:cd:20:f3:95:a7:18:55:7f:ac:30:23:9b:14:c1:28:ea: 23:21:37:b1:09:49:cc:98:f6:c2:2d:53:d6:a0:6e:c0:16:67: 9a:a1:96:1d:5a:8b:fa:ee:7e:bf:79:27:ef:44:45:d6:b0:8f: 1d:fc:47:04:29:9d:01:3a:91:83:45:b4:f7:7b:45:8b:5f:85: 83:c7:e7:75:0b:5d:c8:12:f3:93:35:b4:5d:ac:ab:67:03:0e: c6:29:9f:09:c9:05:b6:1a:f6:75:04:31:0a:0a:da:21:56:1e: 60:59:dc:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjUxMjIyMjMxMzExWhcNMjUxMjI5MjMxMzExWjAYMRYwFAYD VQQDDA02OTQ5ZDA4OC0yNTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oSVwUXaWSJlCnBLgBBVRPTuAzcvYioSBywHUjncOm5ArEt5T9HjiqzeB3Li 1erCXi7LI9htg8Ar+k4ykCfspqSb9m2PDJE0YY2IDMlxTQxfJimDZ38d3Zfvv9DD OPOPFIkCtq5J84dEJaadEY5Lh1YtGVpfyD2K5qB3LLaDt7BkpWsHjPXLuo+fbS8F rWNbf4EQDy1735CEUuZckibKi7aG+/nWTlIheVRS7hDgGC87suNMq39vjj8AgMmW dIV92Ep3l8AFSdvBWWDAB0TRPzSOujT43VMA2IEwXVUMzV5/y0fQjlS5PUlXH2M0 1LUF3IQASfXbznU3S5RK6s1EVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4iwXJd Dn8Q15BsQdR5AWso7jPgMB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX83uXqGam2GIeDXkdu0rYegTwP4o+dJOIw6OibA2jDj/gmyJI6VgC 2B6KHrNH4iMrLGNGSwqukT4pIiUupljqRVkSvj7wXXLdw/LbHZv6IwaoheO2cSqb Qzd2Yf/j9VHqN6CENYpaMs/PHi4pctn2L/ZMFfMCrmllrp9Vg/3DvCAOq3C29WlJ p2kL6BAfEgj5ns0g85WnGFV/rDAjmxTBKOojITexCUnMmPbCLVPWoG7AFmeaoZYd Wov67n6/eSfvREXWsI8d/EcEKZ0BOpGDRbT3e0WLX4WDx+d1C13IEvOTNbRdrKtn Aw7GKZ8JyQW2GvZ1BDEKCtohVh5gWdy0 -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:02 2025 by rpki-client