This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: 5Onz1hY8y0J+y5eqA9d/W4EYODFu75CRx3mbcwNht5s= Subject key identifier: 8A:5F:9B:11:51:D1:DA:22:9C:57:B0:7B:89:26:DF:95:77:50:41:ED Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 1726 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 170D Signing time: Sun 14 Dec 2025 16:28:39 +0000 Manifest this update: Sun 14 Dec 2025 16:28:38 +0000 Manifest next update: Sun 21 Dec 2025 16:28:38 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: vbVmeVj72sc1YQn0BEkxWpva5w3KTdU9kaG5tLedzUU=) 2: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) 3: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 16:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5926 (0x1726) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Dec 14 16:28:38 2025 GMT Not After : Dec 21 16:28:38 2025 GMT Subject: CN=693ee5b6-54d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:86:16:35:e6:bb:11:a4:24:18:fb:98:43:8f: 7f:fe:af:7e:82:0b:8f:83:b1:49:20:4a:7e:d9:d7: 10:16:84:16:a2:fc:64:aa:97:30:ae:34:77:9a:44: b9:f8:59:c5:15:3b:98:5c:ab:44:15:e6:40:88:00: 00:dc:79:ee:01:95:5c:e3:ff:4e:50:09:b1:68:00: 95:6e:06:cb:03:32:b5:33:12:54:91:cd:1d:f3:2a: ef:68:23:15:5b:05:0d:4b:0f:90:c8:7d:3a:86:97: eb:a4:6d:af:07:52:42:56:84:27:87:c0:37:67:c7: 48:81:80:c8:90:7b:22:54:e1:d0:56:b2:22:89:16: 47:4f:ef:34:5a:e4:26:6f:f9:0e:8d:00:1c:50:d3: 02:e8:c7:38:fe:24:96:fc:f7:84:cb:a0:d7:af:d6: 83:5e:fc:d1:13:3a:23:1b:b3:b5:a9:33:78:e1:54: 33:ea:91:9c:4a:60:a7:00:24:3a:52:4a:0a:dd:f7: 19:31:01:e8:51:fd:04:47:5c:c1:4c:42:c7:0f:62: 83:fb:00:22:6e:f9:26:f6:8c:2c:62:11:bb:2c:02: e5:3d:7e:51:d3:66:be:09:87:2f:e0:25:91:3b:f2: 62:33:b0:d6:a2:13:64:3c:cc:aa:7c:ed:37:4a:5f: 61:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:5F:9B:11:51:D1:DA:22:9C:57:B0:7B:89:26:DF:95:77:50:41:ED X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:01:c5:3c:f4:30:b2:5a:d2:6b:36:51:46:10:bf:84:5f:00: 52:cd:b9:ae:d2:16:1e:6d:03:5e:9e:0d:a0:84:a1:49:b3:cf: 30:c4:74:8a:fc:e6:d0:3a:95:41:ab:a1:b2:1b:8f:8f:9e:71: d9:b3:1b:95:e2:7c:71:68:7e:b7:a0:c7:be:e4:d7:c6:92:b5: 81:1e:97:fd:8b:83:1d:3b:cf:4a:9c:ff:10:b0:d0:41:8e:78: 0f:52:d1:c2:3c:39:e4:ee:ee:e0:c7:92:bf:e8:9d:09:c8:72: a0:eb:12:37:0e:40:01:16:23:df:b0:57:c8:3c:12:5c:5e:63: 4a:82:f1:4b:34:20:80:64:ed:b6:41:dd:59:5b:20:da:98:75: 6f:71:e0:7d:48:af:29:76:92:51:9f:8a:fa:2c:0f:25:90:a7: ba:e8:13:01:9d:cb:21:16:5c:7e:17:cf:0c:a4:58:16:87:bd: 92:1b:1e:0e:1e:3e:bf:4e:d1:b7:09:9f:15:61:02:eb:9d:16: e2:03:74:ef:b8:b4:c6:ca:73:c1:2d:5e:4a:d2:f9:d7:85:dd: 62:18:51:4b:f0:e3:8e:ad:67:a4:da:1e:18:da:51:5a:4c:3c: cc:66:f8:74:7f:a2:51:5e:19:5b:63:31:d2:06:5a:32:6d:e4: 59:00:69:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUxMjE0MTYyODM4WhcNMjUxMjIxMTYyODM4WjAYMRYwFAYD VQQDDA02OTNlZTViNi01NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIYWNea7EaQkGPuYQ49//q9+gguPg7FJIEp+2dcQFoQWovxkqpcwrjR3mkS5 +FnFFTuYXKtEFeZAiAAA3HnuAZVc4/9OUAmxaACVbgbLAzK1MxJUkc0d8yrvaCMV WwUNSw+QyH06hpfrpG2vB1JCVoQnh8A3Z8dIgYDIkHsiVOHQVrIiiRZHT+80WuQm b/kOjQAcUNMC6Mc4/iSW/PeEy6DXr9aDXvzREzojG7O1qTN44VQz6pGcSmCnACQ6 UkoK3fcZMQHoUf0ER1zBTELHD2KD+wAibvkm9owsYhG7LALlPX5R02a+CYcv4CWR O/JiM7DWohNkPMyqfO03Sl9hMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpfmxFR 0doinFewe4km35V3UEHtMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+AcU89DCyWtJrNlFGEL+EXwBSzbmu0hYebQNeng2ghKFJs88wxHSK /ObQOpVBq6GyG4+PnnHZsxuV4nxxaH63oMe+5NfGkrWBHpf9i4MdO89KnP8QsNBB jngPUtHCPDnk7u7gx5K/6J0JyHKg6xI3DkABFiPfsFfIPBJcXmNKgvFLNCCAZO22 Qd1ZWyDamHVvceB9SK8pdpJRn4r6LA8lkKe66BMBncshFlx+F88MpFgWh72SGx4O Hj6/TtG3CZ8VYQLrnRbiA3TvuLTGynPBLV5K0vnXhd1iGFFL8OOOrWek2h4Y2lFa TDzMZvh0f6JRXhlbYzHSBloybeRZAGnm -----END CERTIFICATE-----Generated at Tue Dec 16 13:54:05 2025 by rpki-client