This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft File: 5bsti54YaXwBWe2BMuXzS4axN7E.mft (raw, json) Hash identifier: kp5TZ0DFyGp42WH+PIOpsnlyAwViNyZTx7tEzFZv/94= Subject key identifier: 0A:1F:3B:06:2C:64:4A:E4:C3:C9:1C:07:DC:1E:56:03:8C:AC:BD:CB Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft Manifest number: 0203 Signing time: Tue 23 Dec 2025 01:25:59 +0000 Manifest this update: Tue 23 Dec 2025 01:25:58 +0000 Manifest next update: Tue 30 Dec 2025 01:25:58 +0000 Files and hashes: 1: 5bsti54YaXwBWe2BMuXzS4axN7E.crl (hash: dOVZB03wrMpxLi2VKj3mtjFLFsuyd6k8baLRWvhju7I=) 2: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (hash: GC2+Qt2m2cOxU2MSwTfp+OhWSqEwAQ14izm/J1/ZU5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B, serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: Dec 23 01:25:58 2025 GMT Not After : Dec 30 01:25:58 2025 GMT Subject: CN=6949efa7-22eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5b:2d:0d:63:03:9f:02:31:f3:4f:4e:18:f3: 8d:fa:99:38:d0:01:78:26:70:c0:a4:83:31:ab:2c: 03:bd:52:32:d7:17:3c:84:cc:4d:2b:21:c5:f4:c2: 3b:26:12:77:1d:75:a3:8b:f2:fb:a3:a7:e7:fb:81: c7:63:71:eb:7c:bd:de:d6:21:4a:69:23:4c:ad:df: 22:a6:f9:11:c9:6e:e9:6e:a9:0f:06:42:35:96:37: d3:0f:6a:92:78:7f:d2:bc:e3:e2:10:d1:f1:a0:50: 6d:9d:0d:08:55:ea:d0:66:5a:c3:74:e1:99:1b:2b: fa:f1:59:18:fb:94:0c:90:55:6d:fa:f2:f0:02:94: 01:f1:34:0c:52:04:02:f6:5c:66:51:ad:c9:fe:ec: 67:41:e6:aa:96:b6:5a:c7:40:02:43:ab:ac:be:12: 64:cf:97:0f:9f:8b:36:1e:09:e1:33:6b:bd:3e:3c: 80:9b:9c:71:54:0a:e3:f6:2b:08:e6:51:6c:b0:c6: 8a:11:66:91:f1:4b:27:b9:b9:81:07:58:17:5c:bd: 54:ef:91:b5:d2:d3:87:93:0e:90:6d:54:be:08:67: 18:8d:d0:99:5a:92:7e:62:75:e9:b1:11:97:c9:2f: 71:bc:5f:c3:0f:f8:c2:21:ee:26:3d:f9:4f:31:95: fc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:1F:3B:06:2C:64:4A:E4:C3:C9:1C:07:DC:1E:56:03:8C:AC:BD:CB X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:47:1c:d9:83:dd:cd:97:9b:9f:df:59:d1:ca:ea:fe:04:16: 4e:15:28:b5:24:ef:43:74:4a:55:64:ae:f2:eb:ab:e4:b5:22: 97:1e:f1:8a:77:3a:48:3a:df:bc:11:28:fe:cf:0c:a4:ef:99: 09:c7:b1:6f:2b:71:f2:09:d1:b9:fa:60:77:0d:37:18:a2:0a: 4b:bc:84:47:53:69:91:5d:90:10:ee:67:2d:88:3c:d5:44:a9: ae:1a:49:1d:3d:de:8b:6f:fb:6b:07:ed:94:cb:16:93:f0:52: 71:33:73:53:0e:d4:df:ca:dd:11:54:8c:f3:7d:7e:2c:cf:09: 21:0a:f8:be:df:c8:3c:e6:49:e3:38:24:7d:59:cd:4a:ff:2c: 5e:54:1b:4e:b7:98:cf:9d:b4:11:99:89:e0:10:22:33:5f:f9: d3:b5:4b:1a:9c:2f:34:7a:74:fc:d4:29:54:7a:e9:a0:dc:f5: bc:8c:b1:e6:d8:0f:14:07:4b:06:89:af:9a:03:26:ff:a3:d1: 2e:57:45:69:12:9c:85:20:05:8a:a6:10:c8:e5:00:52:2b:4f: ac:32:11:b8:23:83:8f:bb:d5:7b:0b:b9:d7:1c:ed:cb:db:3a: f9:f4:8c:66:83:fd:91:0a:2b:78:93:75:33:80:2d:e6:af:e3: 47:b5:ef:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjUxMjIzMDEyNTU4WhcNMjUxMjMwMDEyNTU4WjAYMRYwFAYD VQQDDA02OTQ5ZWZhNy0yMmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1stDWMDnwIx809OGPON+pk40AF4JnDApIMxqywDvVIy1xc8hMxNKyHF9MI7 JhJ3HXWji/L7o6fn+4HHY3HrfL3e1iFKaSNMrd8ipvkRyW7pbqkPBkI1ljfTD2qS eH/SvOPiENHxoFBtnQ0IVerQZlrDdOGZGyv68VkY+5QMkFVt+vLwApQB8TQMUgQC 9lxmUa3J/uxnQeaqlrZax0ACQ6usvhJkz5cPn4s2HgnhM2u9PjyAm5xxVArj9isI 5lFssMaKEWaR8UsnubmBB1gXXL1U75G10tOHkw6QbVS+CGcYjdCZWpJ+YnXpsRGX yS9xvF/DD/jCIe4mPflPMZX8zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAofOwYs ZErkw8kcB9weVgOMrL3LMB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMyQi9EMjdFNkVEMENCOTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFY d0JXZTJCTXVYelM0YXhON0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwRxzZg93Nl5uf31nRyur+BBZOFSi1JO9DdEpVZK7y66vktSKXHvGK dzpIOt+8ESj+zwyk75kJx7FvK3HyCdG5+mB3DTcYogpLvIRHU2mRXZAQ7mctiDzV RKmuGkkdPd6Lb/trB+2UyxaT8FJxM3NTDtTfyt0RVIzzfX4szwkhCvi+38g85knj OCR9Wc1K/yxeVBtOt5jPnbQRmYngECIzX/nTtUsanC80enT81ClUeumg3PW8jLHm 2A8UB0sGia+aAyb/o9EuV0VpEpyFIAWKphDI5QBSK0+sMhG4I4OPu9V7C7nXHO3L 2zr59Ixmg/2RCit4k3UzgC3mr+NHte/4 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:29 2025 by rpki-client