This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: qmWi678DPS3pSqTZHZcdlf0ZPhU9V16kmsngt3FjEEE= Subject key identifier: DE:5C:84:0D:04:24:63:1B:36:1E:72:F6:F4:E6:F7:5E:87:B7:D9:DE Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0428 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 041A Signing time: Tue 16 Dec 2025 23:49:20 +0000 Manifest this update: Tue 16 Dec 2025 23:49:20 +0000 Manifest next update: Tue 23 Dec 2025 23:49:20 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: 6KSDl4TqN+khAbg8NTlp/UqkAWcykdet7aKQXGd+BEs=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 1kY42j3eWLAd8yp1AvznjQwJBoHaBnQrkaPK6EtSCdQ=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: XbxtLk1+2CfWndcMlMOnwCxgbfEchquqUDJGfTWj61E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 23:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1064 (0x428) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Dec 16 23:49:20 2025 GMT Not After : Dec 23 23:49:20 2025 GMT Subject: CN=6941f000-5bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:92:b9:b6:85:d1:c6:27:a1:a0:9c:c9:99: 0f:61:20:6f:4d:5b:27:53:c2:53:ea:b5:0f:85:d0: 69:43:84:18:e1:c0:2f:29:ad:92:6e:b0:64:b4:0d: 6c:50:fc:17:9c:43:94:47:61:e5:5c:9d:63:fd:ff: 27:08:c5:47:85:d5:20:e5:8b:7b:97:a9:ed:f5:1d: 53:d2:25:0b:20:2b:9d:28:ab:42:8e:1b:d6:ea:65: ba:6b:ad:84:82:de:63:aa:16:d6:12:71:40:13:28: b1:ac:c9:4b:a6:15:2d:56:0c:cb:74:b9:db:fa:f4: e3:72:80:20:e9:00:da:6e:8e:6a:93:fc:a0:10:36: 48:38:5a:7a:60:d2:6d:bf:54:0c:82:86:f7:0f:49: 96:b5:bf:11:67:3e:b5:71:28:94:3f:88:ae:a0:84: 5b:45:8d:75:f9:c1:e0:d2:e5:71:1f:f1:15:19:65: 64:25:02:7d:c6:c1:81:35:37:fb:4a:5c:67:2f:ca: 89:4a:d0:7b:ff:19:17:3e:09:75:c3:b9:45:9d:ad: e1:62:98:58:1c:3c:99:68:40:18:b1:68:f2:23:5b: 6a:8c:27:1f:b8:10:79:20:0b:47:2e:6d:f7:b8:fe: b1:08:ef:cf:bf:32:2b:44:70:92:3f:35:c4:ee:ff: b4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:5C:84:0D:04:24:63:1B:36:1E:72:F6:F4:E6:F7:5E:87:B7:D9:DE X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:e7:34:ee:ee:21:7f:cd:48:4e:7c:86:c2:74:21:9f:af:58: a1:b2:82:7a:ce:c0:7c:59:50:6f:06:55:18:ed:65:7b:dd:95: 50:d3:e1:bb:c7:82:56:38:f2:57:d4:1d:f3:bd:f5:88:1c:bb: 44:14:f3:d2:19:8c:9e:de:3a:41:8d:cf:5b:c2:7c:a2:0d:53: 80:4c:f8:29:95:37:20:24:10:e7:b4:0e:a1:bf:f2:98:2a:fe: 6b:4c:5e:85:8d:3f:ae:31:24:7c:9c:5a:ea:55:fd:ee:a8:d8: 7e:a4:55:a6:5c:6e:27:5b:29:fa:ff:99:2d:14:03:84:09:91: f3:f6:3f:de:67:98:a1:12:d6:c6:2b:f4:ae:37:8f:cf:f1:a0: 64:05:fd:1f:13:01:13:7b:a6:3b:6b:fa:23:d0:f7:72:83:d4: da:7e:4f:a8:f0:31:c9:e6:55:7e:40:02:c4:f1:d4:da:0d:c5: e4:6e:d8:19:af:d6:fd:8a:27:6d:96:3c:12:40:42:c3:c3:4f: 2d:d0:f5:4f:1b:81:a5:34:e3:ea:81:e6:21:9b:ac:91:58:59: 8b:4a:36:9c:c1:4e:c2:89:db:28:0c:8a:9a:18:ff:56:fc:aa: d5:aa:a3:64:3c:db:d9:c5:6d:13:65:81:c0:ff:18:17:eb:f6: 67:78:95:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUxMjE2MjM0OTIwWhcNMjUxMjIzMjM0OTIwWjAYMRYwFAYD VQQDDA02OTQxZjAwMC01YmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZCSubaF0cYnoaCcyZkPYSBvTVsnU8JT6rUPhdBpQ4QY4cAvKa2SbrBktA1s UPwXnEOUR2HlXJ1j/f8nCMVHhdUg5Yt7l6nt9R1T0iULICudKKtCjhvW6mW6a62E gt5jqhbWEnFAEyixrMlLphUtVgzLdLnb+vTjcoAg6QDabo5qk/ygEDZIOFp6YNJt v1QMgob3D0mWtb8RZz61cSiUP4iuoIRbRY11+cHg0uVxH/EVGWVkJQJ9xsGBNTf7 SlxnL8qJStB7/xkXPgl1w7lFna3hYphYHDyZaEAYsWjyI1tqjCcfuBB5IAtHLm33 uP6xCO/PvzIrRHCSPzXE7v+06wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5chA0E JGMbNh5y9vTm916Ht9neMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb5zTu7iF/zUhOfIbCdCGfr1ihsoJ6zsB8WVBvBlUY7WV73ZVQ0+G7 x4JWOPJX1B3zvfWIHLtEFPPSGYye3jpBjc9bwnyiDVOATPgplTcgJBDntA6hv/KY Kv5rTF6FjT+uMSR8nFrqVf3uqNh+pFWmXG4nWyn6/5ktFAOECZHz9j/eZ5ihEtbG K/SuN4/P8aBkBf0fEwETe6Y7a/oj0Pdyg9Tafk+o8DHJ5lV+QALE8dTaDcXkbtgZ r9b9iidtljwSQELDw08t0PVPG4GlNOPqgeYhm6yRWFmLSjacwU7CidsoDIqaGP9W /KrVqqNkPNvZxW0TZYHA/xgX6/ZneJXH -----END CERTIFICATE-----Generated at Thu Dec 18 11:35:21 2025 by rpki-client