This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: ns39HH/XvMACQi5jS7u+VdyDnm85b8NFkanwOpU2tiE= Subject key identifier: 62:DD:D3:2E:21:52:A7:B7:CA:27:F4:C6:5D:80:43:A6:89:80:2C:7A Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C7C Signing time: Fri 28 Nov 2025 17:56:10 +0000 Manifest this update: Fri 28 Nov 2025 17:56:09 +0000 Manifest next update: Fri 05 Dec 2025 17:56:09 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: fUkqYwHs1fRqHXUbaOf5K7VfZZtCYo4onSIeYQqrXyY=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 17:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Nov 28 17:56:09 2025 GMT Not After : Dec 5 17:56:09 2025 GMT Subject: CN=6929e239-caf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0a:1c:7a:3d:d2:88:e0:76:00:6a:8b:2a:f2: 70:f6:81:cc:7d:2f:b5:a2:27:84:21:03:82:fa:61: 16:19:4e:96:3c:9a:5c:77:5a:4b:f4:e8:88:90:95: 31:ee:72:a0:1f:33:6a:ed:e4:37:0e:53:a7:bd:d5: 38:98:75:dd:f4:07:3e:79:99:5d:35:0e:04:d1:15: 44:7c:76:75:34:81:3b:3d:05:96:bf:09:ad:b9:83: 81:4b:eb:a4:12:f5:4a:87:14:a9:fe:62:f2:2c:93: ef:db:c5:0a:6a:99:4a:a4:03:57:5f:7b:d5:86:90: 22:38:a4:ef:34:75:0e:75:ca:ab:e5:64:f8:1b:f2: 1a:6d:ce:b5:17:94:41:cb:6a:90:91:54:6e:23:06: 24:77:36:39:6a:80:69:55:9f:a6:7e:0e:23:a8:4b: dd:21:ad:15:28:e8:0e:e0:e6:3c:8a:3d:ab:c6:86: a7:e6:e7:37:1a:79:28:7f:f5:b8:6c:3c:dd:03:4e: f5:1e:83:7a:6c:1d:06:3b:ca:1c:b3:d4:c6:cb:f0: 34:8b:d0:2b:48:1d:d5:3d:73:da:2d:84:f7:df:0f: 42:e6:f4:fb:d0:4b:df:f4:43:1b:15:13:40:4b:cb: 55:4c:6e:83:22:c4:56:ba:e9:d5:73:c9:0a:83:cb: fa:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DD:D3:2E:21:52:A7:B7:CA:27:F4:C6:5D:80:43:A6:89:80:2C:7A X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:85:87:8f:a3:58:f9:5a:26:78:da:99:27:9f:64:0f:80:ae: 72:e1:6f:7e:88:cf:7a:ea:d6:7b:28:47:3b:4c:f1:32:6a:f2: e0:96:7f:41:df:2c:13:f3:8a:f5:38:32:57:bb:e4:1c:31:0c: 3e:0d:49:a6:26:c5:30:7c:46:53:63:ba:bd:ba:fd:55:73:39: f6:e0:dc:11:66:0c:b3:e2:2b:99:e1:3d:da:b4:53:84:03:ed: 88:40:20:5d:24:3f:48:13:fa:cd:e3:3f:99:ae:24:44:94:fe: 2d:d0:6d:32:90:85:98:fe:71:c4:a7:ea:ab:20:07:d2:4a:c4: 60:3e:07:4a:08:85:86:9d:de:fc:6f:9e:eb:82:9a:95:54:d3: 5e:df:ac:42:ca:d4:11:77:6e:79:9f:11:f7:5f:5f:b1:20:b9: a4:b0:a1:c9:89:97:70:53:d5:d4:1a:fd:15:a6:ee:5c:21:53: a3:fe:e9:a4:18:50:df:35:8a:88:ae:1a:96:a1:10:e5:5b:61: bc:a4:85:b1:85:69:1a:aa:1c:d7:a0:72:48:aa:54:c0:1f:95: d2:e0:5b:da:0d:3c:de:b6:ac:d7:aa:18:0a:a8:47:73:b5:ad: d8:93:58:21:a7:82:3a:5d:05:43:3b:aa:6c:6a:03:ac:61:f7: 85:ea:eb:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUxMTI4MTc1NjA5WhcNMjUxMjA1MTc1NjA5WjAYMRYwFAYD VQQDEw02OTI5ZTIzOS1jYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Qocej3SiOB2AGqLKvJw9oHMfS+1oieEIQOC+mEWGU6WPJpcd1pL9OiIkJUx 7nKgHzNq7eQ3DlOnvdU4mHXd9Ac+eZldNQ4E0RVEfHZ1NIE7PQWWvwmtuYOBS+uk EvVKhxSp/mLyLJPv28UKaplKpANXX3vVhpAiOKTvNHUOdcqr5WT4G/Iabc61F5RB y2qQkVRuIwYkdzY5aoBpVZ+mfg4jqEvdIa0VKOgO4OY8ij2rxoan5uc3Gnkof/W4 bDzdA071HoN6bB0GO8ocs9TGy/A0i9ArSB3VPXPaLYT33w9C5vT70Evf9EMbFRNA S8tVTG6DIsRWuunVc8kKg8v6UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLd0y4h Uqe3yif0xl2AQ6aJgCx6MB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmhYePo1j5WiZ42pknn2QPgK5y4W9+iM966tZ7KEc7TPEyavLgln9B 3ywT84r1ODJXu+QcMQw+DUmmJsUwfEZTY7q9uv1Vczn24NwRZgyz4iuZ4T3atFOE A+2IQCBdJD9IE/rN4z+ZriRElP4t0G0ykIWY/nHEp+qrIAfSSsRgPgdKCIWGnd78 b57rgpqVVNNe36xCytQRd255nxH3X1+xILmksKHJiZdwU9XUGv0Vpu5cIVOj/umk GFDfNYqIrhqWoRDlW2G8pIWxhWkaqhzXoHJIqlTAH5XS4FvaDTzetqzXqhgKqEdz ta3Yk1ghp4I6XQVDO6psagOsYfeF6ut2 -----END CERTIFICATE-----Generated at Sat Nov 29 09:36:36 2025 by rpki-client