This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft File: 5wYBKhBr0JRljmBMVgMFDxTcP0w.mft (raw, json) Hash identifier: s7fxYMA8vFBmrLV12bpphF67e/kC3sUZEBOmQcgXpBw= Subject key identifier: D7:B8:B9:1A:E6:5E:AD:1A:2E:B6:0B:63:01:2F:A4:DA:7B:B8:82:ED Authority key identifier: E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C Certificate issuer: /CN=A91D94CD/serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft Manifest number: 22 Signing time: Wed 03 Dec 2025 05:56:14 +0000 Manifest this update: Wed 03 Dec 2025 05:56:13 +0000 Manifest next update: Wed 10 Dec 2025 05:56:13 +0000 Files and hashes: 1: 5wYBKhBr0JRljmBMVgMFDxTcP0w.crl (hash: XUO37LksUVTebnOCGjo7ttIlvvXo1UkLL6jVeQnxBgw=) 2: 67D535ACA32311F0A8D9D520C4F9AE02.roa (hash: ZY5NmPmVYKYD8Ao1eKkQAecn1eXKiXTVvX4cp2N0VAQ=) 3: 6767E894A32311F0A8D9D520C4F9AE02.roa (hash: qcRG/dop8kZF9v/2SljCJ8so+bQR2vG4pDOzpAMHKg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D94CD, serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Validity Not Before: Dec 3 05:56:13 2025 GMT Not After : Dec 10 05:56:13 2025 GMT Subject: CN=692fd0fd-236c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:c8:55:b5:44:74:20:e6:bf:01:7c:f2:f3: c2:2e:75:43:d3:b3:8f:4a:df:b0:16:84:44:bc:d9: 54:6d:84:09:60:90:20:b2:b2:79:68:04:3a:22:61: 3d:69:69:8d:9c:66:f7:ab:61:42:8b:79:39:40:72: 6b:78:d2:4d:64:9c:40:38:4d:7b:e9:b3:e9:8e:d9: 43:3b:c3:79:c3:ea:31:a4:e8:84:de:74:90:85:cb: 14:ef:34:33:22:1e:da:4b:7e:4f:3d:01:7c:e8:a8: 1c:d4:4e:11:6b:1a:08:c2:29:92:3c:dd:b3:49:a0: de:16:d2:4b:e1:aa:41:6c:09:05:a0:02:58:b1:da: f9:bf:86:33:a8:f3:9a:28:77:e2:1d:7e:a4:95:f1: b0:47:12:12:02:98:30:de:5b:87:23:9f:53:47:bc: d5:b2:64:da:7a:35:b7:f2:c4:5b:6f:80:1a:8c:92: 86:86:5f:80:d3:c3:0a:fc:33:ca:59:ce:93:cf:17: 69:b7:de:23:cd:0e:b9:cc:ac:83:fa:94:35:c8:47: 08:4f:2b:8b:48:fd:93:b6:cc:0a:da:4d:2a:a6:63: 01:a6:af:f9:e0:0a:c6:69:ea:22:70:fe:0b:ab:39: 62:b2:ee:6f:7c:27:d7:f7:58:1c:71:d8:d2:6c:c4: 57:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B8:B9:1A:E6:5E:AD:1A:2E:B6:0B:63:01:2F:A4:DA:7B:B8:82:ED X509v3 Authority Key Identifier: keyid:E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:84:02:22:9b:53:74:e4:82:c6:5c:4c:f2:ae:2c:42:25:5c: e2:4f:fd:9d:c6:c8:c6:01:ff:86:60:51:0a:af:4d:cf:a5:d7: 6f:dc:fb:46:05:a7:88:e1:16:59:21:a2:9e:1a:f0:17:7b:3f: 31:db:55:ff:42:e1:e3:94:0b:6e:32:4e:50:b8:74:8e:c0:5a: 32:3b:c8:93:a8:90:57:f0:e2:7c:ed:e5:f6:05:64:df:23:8a: 8f:7f:63:54:2a:00:d4:4b:eb:14:20:d3:d1:57:da:61:3d:b6: b6:dd:45:cf:72:5a:7b:06:09:14:ea:c3:6d:b5:98:19:02:41: 18:19:11:48:02:bc:11:e5:75:6c:b9:eb:15:6a:16:1a:17:62: 61:a9:7a:1b:05:a3:b6:96:a6:49:45:8f:66:6b:fd:b3:bc:00: ce:fb:bb:bc:61:61:2f:a2:ea:74:16:1c:f9:6b:e1:0a:60:4a: 70:18:68:8a:b6:b1:e3:fb:36:f4:78:9a:3f:3d:7e:a6:45:b5: d5:f8:18:d3:c4:14:03:a7:04:71:9f:96:c5:c5:69:6e:14:18: 6c:ab:fa:29:2c:3f:1c:3b:98:a4:1d:7a:93:14:e4:a5:7b:64: 55:6a:a1:9d:00:07:e4:74:83:0c:a4:d8:bb:67:dc:01:fd:47: c7:6d:22:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTRDRDExMC8GA1UEBRMoRTcwNjAxMkExMDZCRDA5NDY1OEU2MDRDNTYwMzA1MEYx NERDM0Y0QzAeFw0yNTEyMDMwNTU2MTNaFw0yNTEyMTAwNTU2MTNaMBgxFjAUBgNV BAMTDTY5MmZkMGZkLTIzNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7+MhVtUR0IOa/AXzy88IudUPTs49K37AWhES82VRthAlgkCCysnloBDoiYT1p aY2cZverYUKLeTlAcmt40k1knEA4TXvps+mO2UM7w3nD6jGk6ITedJCFyxTvNDMi HtpLfk89AXzoqBzUThFrGgjCKZI83bNJoN4W0kvhqkFsCQWgAlix2vm/hjOo85oo d+IdfqSV8bBHEhICmDDeW4cjn1NHvNWyZNp6NbfyxFtvgBqMkoaGX4DTwwr8M8pZ zpPPF2m33iPNDrnMrIP6lDXIRwhPK4tI/ZO2zAraTSqmYwGmr/ngCsZp6iJw/gur OWKy7m98J9f3WBxx2NJsxFc1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU17i5GuZe rRoutgtjAS+k2nu4gu0wHwYDVR0jBBgwFoAU5wYBKhBr0JRljmBMVgMFDxTcP0ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5NENELzJDRDdGRDBFOUVD ODExRjA4Q0QyQUM3QkM0RjlBRTAyLzV3WUJLaEJyMEpSbGptQk1WZ01GRHhUY1Aw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNXdZQktoQnIwSlJsam1CTVZnTUZEeFRjUDB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 NENELzJDRDdGRDBFOUVDODExRjA4Q0QyQUM3QkM0RjlBRTAyLzV3WUJLaEJyMEpS bGptQk1WZ01GRHhUY1Awdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFuEAiKbU3TkgsZcTPKuLEIlXOJP/Z3GyMYB/4ZgUQqvTc+l12/c+0YF p4jhFlkhop4a8Bd7PzHbVf9C4eOUC24yTlC4dI7AWjI7yJOokFfw4nzt5fYFZN8j io9/Y1QqANRL6xQg09FX2mE9trbdRc9yWnsGCRTqw221mBkCQRgZEUgCvBHldWy5 6xVqFhoXYmGpehsFo7aWpklFj2Zr/bO8AM77u7xhYS+i6nQWHPlr4QpgSnAYaIq2 seP7NvR4mj89fqZFtdX4GNPEFAOnBHGflsXFaW4UGGyr+iksPxw7mKQdepMU5KV7 ZFVqoZ0AB+R0gwyk2Ltn3AH9R8dtIlE= -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:34 2025 by rpki-client