This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: 2E/c9Y+pJ2XQoQ+Wre0QdcV2aiiuyag3p3MS6z/97Z0= Subject key identifier: 8A:A6:FA:88:8D:90:E6:A8:61:A9:18:A5:1A:65:60:0A:DE:36:EF:DD Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 05E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 05D9 Signing time: Thu 20 Nov 2025 21:50:44 +0000 Manifest this update: Thu 20 Nov 2025 21:50:44 +0000 Manifest next update: Thu 27 Nov 2025 21:50:44 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: xhVtBd87+V91GH1/3aF7MaJygguCwi/rm9MhzAxnjok=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 21:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Nov 20 21:50:44 2025 GMT Not After : Nov 27 21:50:44 2025 GMT Subject: CN=691f8d34-f5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fc:82:f7:3f:42:da:ed:b3:8f:df:cc:56:d0: 02:94:8e:9b:d0:b8:68:c6:27:1c:66:52:06:70:03: 7f:7c:b1:28:68:bb:de:a9:fc:85:41:23:d5:4b:57: 5f:7f:21:04:18:18:31:6c:15:0f:c2:ff:69:c5:b7: 31:1c:08:c9:35:8a:68:cd:08:9d:c8:71:05:97:c6: eb:8d:09:6f:6b:97:e1:9d:7b:65:09:18:e2:43:e7: 85:ed:a8:00:f4:8c:39:52:f5:aa:07:08:f1:7c:51: 40:99:fa:95:d5:fa:0b:be:9e:ac:25:ca:9f:01:1b: 19:ca:78:46:45:ba:18:00:f4:e4:0c:8b:54:fb:ef: 3c:ac:d8:ed:c8:7f:27:84:b3:55:ef:99:a6:7f:07: c2:9d:f1:41:3b:9c:4d:a0:ea:dc:60:77:d2:78:c3: 19:77:1b:2d:48:94:a7:54:e1:85:d3:33:20:2d:5c: e7:0a:f5:79:26:17:49:a8:b5:50:48:8c:5d:9e:8e: 7a:cf:46:d8:63:fb:33:bf:65:ae:59:6c:4a:9a:78: 1e:32:f5:0e:5e:e5:dc:c3:37:b2:cf:4c:a3:07:a7: bb:75:2e:c7:bc:b8:74:cc:6c:14:e3:62:47:5c:ee: 6f:7b:23:dc:ae:d1:51:be:c9:c2:fd:98:06:91:b4: 74:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A6:FA:88:8D:90:E6:A8:61:A9:18:A5:1A:65:60:0A:DE:36:EF:DD X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:25:3b:66:dc:3a:45:a1:0f:ee:81:b6:bc:5b:14:96:c9:93: 0d:30:f4:17:04:99:36:71:2b:d1:03:b7:42:32:ae:1d:c7:58: 3e:0a:72:89:82:43:df:49:91:9b:b1:7b:4a:b7:64:c7:82:e4: ea:cd:67:3a:8a:5e:5b:0a:51:bf:13:06:53:1a:87:b7:dd:fb: 92:bb:e4:c1:72:f8:f8:e2:86:a5:7c:6e:0c:72:14:67:8a:1f: 96:8a:97:63:5f:af:1c:92:e2:3d:ad:ef:bd:96:02:d4:0a:f6: a9:d8:44:87:b5:e4:9c:8f:bd:97:c9:6b:3b:56:bc:19:fe:8d: a2:ac:b2:37:08:94:28:d0:80:0b:0d:55:9e:6f:42:48:73:69: cd:15:5d:1f:83:2b:86:0c:d7:b9:ca:57:a2:81:ec:dd:93:3d: f8:9a:a8:08:43:17:43:c9:80:aa:1d:aa:1f:9f:dc:4d:4f:73: c6:4d:c3:d0:58:28:45:9f:07:c1:2f:16:86:ca:18:ca:77:a1: 4f:48:0d:ad:14:c4:a1:4d:5a:ca:b6:1e:0f:c4:a5:a1:4d:f5: 9c:37:5a:2f:41:45:ca:62:d2:9d:3a:7a:d5:c7:d4:f8:39:01: 48:6e:91:fb:fa:e5:92:f1:2b:6f:b8:48:39:50:ef:99:90:fe: c2:e5:9c:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUxMTIwMjE1MDQ0WhcNMjUxMTI3MjE1MDQ0WjAYMRYwFAYD VQQDEw02OTFmOGQzNC1mNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/yC9z9C2u2zj9/MVtAClI6b0LhoxiccZlIGcAN/fLEoaLveqfyFQSPVS1df fyEEGBgxbBUPwv9pxbcxHAjJNYpozQidyHEFl8brjQlva5fhnXtlCRjiQ+eF7agA 9Iw5UvWqBwjxfFFAmfqV1foLvp6sJcqfARsZynhGRboYAPTkDItU++88rNjtyH8n hLNV75mmfwfCnfFBO5xNoOrcYHfSeMMZdxstSJSnVOGF0zMgLVznCvV5JhdJqLVQ SIxdno56z0bYY/szv2WuWWxKmngeMvUOXuXcwzeyz0yjB6e7dS7HvLh0zGwU42JH XO5veyPcrtFRvsnC/ZgGkbR0OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqm+oiN kOaoYakYpRplYAreNu/dMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANJTtm3DpFoQ/ugba8WxSWyZMNMPQXBJk2cSvRA7dCMq4dx1g+CnKJ gkPfSZGbsXtKt2THguTqzWc6il5bClG/EwZTGoe33fuSu+TBcvj44oalfG4MchRn ih+WipdjX68ckuI9re+9lgLUCvap2ESHteScj72XyWs7VrwZ/o2irLI3CJQo0IAL DVWeb0JIc2nNFV0fgyuGDNe5yleigezdkz34mqgIQxdDyYCqHaofn9xNT3PGTcPQ WChFnwfBLxaGyhjKd6FPSA2tFMShTVrKth4PxKWhTfWcN1ovQUXKYtKdOnrVx9T4 OQFIbpH7+uWS8StvuEg5UO+ZkP7C5Zyn -----END CERTIFICATE-----Generated at Sat Nov 22 21:40:34 2025 by rpki-client