This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: tCNerck8z+9zJZCsTLORaN/2rZWLeqtv4rhb/O4087Q= Subject key identifier: D4:17:3B:D7:35:4C:9B:35:95:F6:4F:04:5C:0B:89:97:AA:25:C9:54 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 0213 Signing time: Sun 07 Dec 2025 00:45:49 +0000 Manifest this update: Sun 07 Dec 2025 00:45:49 +0000 Manifest next update: Sun 14 Dec 2025 00:45:49 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: tn7cljZ1DvG2GuL2ju7foVl7BZJJCHEE3oNMdz7hCqk=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Dec 7 00:45:49 2025 GMT Not After : Dec 14 00:45:49 2025 GMT Subject: CN=6934ce3d-a1f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a7:ab:31:73:85:f8:67:cb:cd:70:61:6f:43: 08:cd:35:8c:be:c6:4b:b1:0c:24:e6:8b:8f:4f:72: 6b:0b:9d:7b:b6:22:3c:85:ea:0c:40:b4:ea:c2:1f: 6f:b1:cb:b2:3d:cb:9c:cd:58:7f:a7:97:4d:92:ba: ac:6c:4e:ff:73:42:78:4c:e7:09:65:4a:2c:03:6e: 96:47:e8:92:26:5e:a4:73:f2:cf:27:8e:fe:bd:c5: 2e:66:85:98:2c:01:c4:d8:f9:3c:33:88:15:42:e8: ac:9b:25:9f:c8:a6:98:13:42:53:9f:b5:9a:67:bf: 35:d5:f6:6d:7c:fa:99:48:40:ff:ff:cf:8e:f6:c4: f9:b5:73:a3:c6:ff:fe:d0:06:db:42:9d:ae:f2:98: 6c:c3:36:a4:7c:a0:8c:3e:4e:f3:1b:a5:26:cd:bd: 72:66:ea:ce:22:22:45:3f:04:27:cd:06:0d:b4:95: ce:e6:c7:39:ea:93:f3:5c:0d:da:44:d1:d5:df:9a: 92:a8:83:a0:f5:18:06:97:8f:b7:0e:3e:27:06:56: e4:f9:32:c3:6b:72:d2:1c:b3:9f:de:62:0d:e5:42: e2:01:62:fa:85:a9:24:76:3b:fa:60:80:cb:25:a9: d0:0a:17:ee:f8:e9:77:80:93:fc:ac:9c:1b:02:fa: e7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:17:3B:D7:35:4C:9B:35:95:F6:4F:04:5C:0B:89:97:AA:25:C9:54 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:bd:ee:6d:af:db:a2:18:8a:15:f1:b9:10:99:1d:d6:bd:db: 0c:51:2d:36:3a:6e:74:1b:62:6b:02:11:15:83:6d:48:e0:bd: 3b:e0:35:53:af:40:a9:39:02:c2:70:25:5a:ef:10:de:30:58: 16:20:bf:48:4f:08:50:fd:17:4a:46:0e:37:fa:23:4e:0f:9f: 78:f6:39:9e:ce:53:0d:78:ce:7e:33:60:50:e2:5c:3c:1f:6a: 8a:37:9f:41:aa:78:a1:ee:61:58:0b:d0:59:60:88:e9:f7:97: 7e:a1:ca:d5:fd:b7:4e:12:18:96:dc:28:b4:4a:13:9f:3a:f5: ad:35:52:f7:a0:2f:f6:1e:16:dd:30:b0:ea:54:fb:6e:d5:6b: a5:39:f2:1d:f4:43:79:38:58:67:5e:c5:70:01:52:96:74:08: 3f:3c:5c:f7:e0:0d:d2:67:85:9e:d3:bf:9c:32:28:79:a9:94: 6f:97:14:24:1a:f9:07:b2:8c:62:f8:f5:27:a2:19:2a:9a:59: 06:bf:ba:55:15:21:a6:00:88:2a:90:09:5a:19:89:48:c7:63: c3:b8:ed:69:88:15:fb:23:63:9f:c6:5a:ef:51:41:9c:e0:f8: 92:6e:3b:01:34:ce:65:fb:3f:22:13:6f:ae:50:b4:a6:ef:c9: 86:7c:cd:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUxMjA3MDA0NTQ5WhcNMjUxMjE0MDA0NTQ5WjAYMRYwFAYD VQQDEw02OTM0Y2UzZC1hMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqerMXOF+GfLzXBhb0MIzTWMvsZLsQwk5ouPT3JrC517tiI8heoMQLTqwh9v scuyPcuczVh/p5dNkrqsbE7/c0J4TOcJZUosA26WR+iSJl6kc/LPJ47+vcUuZoWY LAHE2Pk8M4gVQuismyWfyKaYE0JTn7WaZ7811fZtfPqZSED//8+O9sT5tXOjxv/+ 0AbbQp2u8phswzakfKCMPk7zG6Umzb1yZurOIiJFPwQnzQYNtJXO5sc56pPzXA3a RNHV35qSqIOg9RgGl4+3Dj4nBlbk+TLDa3LSHLOf3mIN5ULiAWL6hakkdjv6YIDL JanQChfu+Ol3gJP8rJwbAvrnZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQXO9c1 TJs1lfZPBFwLiZeqJclUMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSve5tr9uiGIoV8bkQmR3WvdsMUS02Om50G2JrAhEVg21I4L074DVT r0CpOQLCcCVa7xDeMFgWIL9ITwhQ/RdKRg43+iNOD5949jmezlMNeM5+M2BQ4lw8 H2qKN59Bqnih7mFYC9BZYIjp95d+ocrV/bdOEhiW3Ci0ShOfOvWtNVL3oC/2Hhbd MLDqVPtu1WulOfId9EN5OFhnXsVwAVKWdAg/PFz34A3SZ4We07+cMih5qZRvlxQk GvkHsoxi+PUnohkqmlkGv7pVFSGmAIgqkAlaGYlIx2PDuO1piBX7I2OfxlrvUUGc 4PiSbjsBNM5l+z8iE2+uULSm78mGfM24 -----END CERTIFICATE-----Generated at Mon Dec 8 14:24:26 2025 by rpki-client