This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: +YUVlSQlgXLIeAPkM0mjyAghTUIAOE3yfGDd5FfFtMI= Subject key identifier: 8B:99:18:B2:E5:94:A2:B4:6D:48:2D:88:DB:CE:E8:9F:8F:9F:DA:F7 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 051C Signing time: Fri 26 Dec 2025 22:42:51 +0000 Manifest this update: Fri 26 Dec 2025 22:42:50 +0000 Manifest next update: Fri 02 Jan 2026 22:42:50 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: RyDXTl6mLAjOXmYMdwO+8gR/6mv2j4JN+LUbXcs45Ow=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: YP1QtoS6tJ0tfsbd9mqDdJjDX65W26gYVq3o6iBYRuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 22:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Dec 26 22:42:50 2025 GMT Not After : Jan 2 22:42:50 2026 GMT Subject: CN=694f0f6b-1cc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:ce:82:b6:90:e2:21:a5:cb:4b:49:64:b2: 64:ad:b7:e8:21:8f:5a:21:ab:88:d5:ec:63:6a:27: ae:d6:f2:82:53:53:02:51:00:de:03:e8:73:24:aa: 43:94:bb:a0:09:9f:1c:eb:7a:d6:4e:4c:92:56:6c: 97:56:0a:f3:02:aa:4f:c8:61:3b:0f:dd:e0:4e:bd: 1f:c0:3e:dd:9d:fb:13:03:b7:71:89:60:71:3e:e8: 9b:6a:d8:19:33:5d:aa:27:8d:54:6e:6b:e5:64:0a: 1b:db:aa:e5:7b:a8:94:80:36:04:9e:b4:18:5f:1d: f1:a4:bb:9c:4d:b5:26:6e:f2:71:ef:e1:e9:bc:ab: ea:4d:96:ff:1c:91:f7:d3:3f:ca:e4:40:a1:7e:d9: 25:43:da:97:b0:74:70:6c:13:c6:18:71:bd:24:a7: dc:1a:09:6f:9c:a9:cd:05:58:7b:0a:fb:47:aa:41: 30:6d:5d:22:a6:65:6d:33:7f:ef:a9:b1:c7:bf:47: c0:e9:c3:c1:93:f4:1e:59:4c:97:70:15:19:14:70: a3:c9:42:c0:ce:de:95:e4:e9:6d:6c:06:3f:ac:a9: 62:77:00:3b:44:6e:1e:5e:df:2c:c0:4d:79:6a:15: e9:97:62:b2:69:6f:a6:ac:f1:a6:04:9d:76:77:df: 31:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:99:18:B2:E5:94:A2:B4:6D:48:2D:88:DB:CE:E8:9F:8F:9F:DA:F7 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d6:48:eb:07:ca:17:8d:e1:7e:3b:ea:52:81:a5:cc:27:0a: 58:43:69:2f:7f:3e:25:b8:b7:7d:dd:1f:4e:0b:1b:50:de:9c: e4:ef:f0:8a:15:df:9b:b3:5a:c2:e2:52:f4:67:87:d1:f4:77: 32:12:00:1b:74:c4:d0:6e:cf:54:d2:34:80:31:7e:02:ac:73: ad:c9:b4:b0:9e:bb:d1:71:e6:c6:75:f3:58:32:80:80:c8:f1: c8:21:be:70:8c:85:03:34:1e:38:f2:dd:00:e9:9b:50:30:35: c6:52:7e:27:57:e2:1a:3f:6a:99:c1:d5:04:65:28:d8:21:26: ee:fd:f5:81:80:62:c9:0e:98:f4:ad:1d:8f:8c:64:d6:75:18: b2:83:50:77:46:81:c2:34:f6:45:f1:b5:26:c7:07:a7:e8:f3: 59:a9:80:ec:2a:18:f0:2d:a2:00:4c:13:ff:1a:69:db:30:c3: 48:10:38:c3:4c:b7:d4:dc:90:d8:3a:31:0e:23:dd:a1:a0:1d: c9:9f:1d:91:87:31:74:90:5e:d3:76:ef:f7:a6:9a:55:bc:39: 66:a1:9f:02:90:c8:a0:88:65:04:a8:0f:6f:a6:5a:d3:c6:6b: 77:1b:47:91:56:20:ad:0b:8b:29:e2:23:f3:a6:20:25:25:10: ac:b4:28:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUxMjI2MjI0MjUwWhcNMjYwMTAyMjI0MjUwWjAYMRYwFAYD VQQDDA02OTRmMGY2Yi0xY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ/OgraQ4iGly0tJZLJkrbfoIY9aIauI1exjaieu1vKCU1MCUQDeA+hzJKpD lLugCZ8c63rWTkySVmyXVgrzAqpPyGE7D93gTr0fwD7dnfsTA7dxiWBxPuibatgZ M12qJ41UbmvlZAob26rle6iUgDYEnrQYXx3xpLucTbUmbvJx7+HpvKvqTZb/HJH3 0z/K5EChftklQ9qXsHRwbBPGGHG9JKfcGglvnKnNBVh7CvtHqkEwbV0ipmVtM3/v qbHHv0fA6cPBk/QeWUyXcBUZFHCjyULAzt6V5OltbAY/rKlidwA7RG4eXt8swE15 ahXpl2KyaW+mrPGmBJ12d98xHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuZGLLl lKK0bUgtiNvO6J+Pn9r3MB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB1kjrB8oXjeF+O+pSgaXMJwpYQ2kvfz4luLd93R9OCxtQ3pzk7/CK Fd+bs1rC4lL0Z4fR9HcyEgAbdMTQbs9U0jSAMX4CrHOtybSwnrvRcebGdfNYMoCA yPHIIb5wjIUDNB448t0A6ZtQMDXGUn4nV+IaP2qZwdUEZSjYISbu/fWBgGLJDpj0 rR2PjGTWdRiyg1B3RoHCNPZF8bUmxwen6PNZqYDsKhjwLaIATBP/GmnbMMNIEDjD TLfU3JDYOjEOI92hoB3Jnx2RhzF0kF7Tdu/3pppVvDlmoZ8CkMigiGUEqA9vplrT xmt3G0eRViCtC4sp4iPzpiAlJRCstCji -----END CERTIFICATE-----Generated at Sat Dec 27 10:02:52 2025 by rpki-client