This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: 6HreR8fgzLhdLHP6dau7VpBa/97X5v+zydJqYoTiJqk= Subject key identifier: C8:40:B2:84:3F:50:5C:50:F0:9B:DB:40:C7:B9:ED:A5:1A:41:A8:65 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 96 Signing time: Fri 19 Dec 2025 05:30:36 +0000 Manifest this update: Fri 19 Dec 2025 05:30:36 +0000 Manifest next update: Fri 26 Dec 2025 05:30:36 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: KnzljKQiIKFheh42nVpfI+cMVABAJ6TbLes3baHOBWY=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Dec 19 05:30:36 2025 GMT Not After : Dec 26 05:30:36 2025 GMT Subject: CN=6944e2fc-06e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:07:79:51:20:90:b7:99:bd:03:56:04:df:b8: 34:66:66:13:4c:96:c8:35:29:cf:ce:90:56:dc:97: b5:8e:05:31:21:a8:2c:78:38:9b:04:97:b5:a6:fb: 43:29:51:1f:ce:ae:e3:93:c4:48:9f:fa:33:26:08: de:41:b7:a3:78:fe:dc:5a:1f:dd:15:e5:19:2e:88: 9b:93:86:80:fb:74:89:26:60:3e:8b:3b:9e:b9:be: 03:da:c7:1d:01:2f:83:63:2f:59:f4:9e:29:d5:0c: af:73:ec:ba:2b:b9:71:db:ec:2d:b8:34:25:b5:89: 72:bb:af:fe:28:70:94:f3:eb:49:b4:b1:fe:44:1d: 20:2f:63:c9:53:32:1e:28:9c:5b:c5:62:ff:de:38: 8e:99:91:d5:da:93:32:3d:43:bf:c2:17:ab:c7:50: 5f:04:6d:5e:df:85:65:42:37:94:2f:18:7b:e1:cb: 66:3b:78:60:f4:a3:2f:da:c1:7d:22:d7:f1:81:10: d7:41:eb:76:1c:bc:27:cf:77:c5:7d:8d:ab:63:94: 66:9f:49:ca:4e:d7:83:9b:f2:3f:e1:48:08:72:b5: a1:aa:d0:11:99:b4:5e:3c:bd:fe:a6:f0:8c:b5:48: 83:4a:17:89:fe:f3:db:21:d1:a5:8d:f5:16:8d:61: 61:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:40:B2:84:3F:50:5C:50:F0:9B:DB:40:C7:B9:ED:A5:1A:41:A8:65 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:eb:b2:bd:08:5c:c8:83:89:83:da:ce:af:5d:72:4b:1a:0f: 28:7f:9e:f8:de:80:20:8f:51:44:5f:b3:84:84:b1:06:b4:86: 68:b0:a0:21:fa:ef:83:ca:31:d3:8c:ac:30:10:5b:10:f1:42: b6:da:54:23:6d:f3:f6:48:12:93:92:c1:35:d7:8f:85:f4:16: 3a:7b:ac:c6:60:6c:fe:85:3c:4e:74:d2:cc:56:8f:7f:00:3a: ab:59:b2:1d:ce:54:a0:ed:9d:a4:8d:39:f9:f7:b6:f3:15:01: 04:1e:50:65:21:34:05:5d:ba:52:e6:54:b5:c4:80:c3:ba:46: 7a:ec:9e:27:69:b1:0c:b8:b7:ca:3b:47:89:32:36:1e:7a:1a: d9:89:0e:d4:95:4b:96:0a:c9:93:ed:57:3e:6d:fd:6d:5c:e5: 7d:18:2b:e4:a4:17:a8:a8:bc:83:ce:10:b8:df:02:2d:40:15: 7f:43:62:df:f1:74:91:5c:66:ec:5f:98:c9:ce:0d:c8:fb:d9: 40:a1:95:90:50:af:b9:f4:3d:ce:4c:c1:db:a4:34:1d:0e:76: 11:6b:79:c7:d3:a1:90:04:b5:1b:e3:27:ec:64:9e:88:e5:45: 08:b7:ae:c4:36:d8:e8:48:5c:46:75:a3:34:fd:13:d7:56:04: ea:ab:ac:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzMUQxMTAvBgNVBAUTKEU2MjgyMjBGM0ZEMDBGNDE3Qjk5NzJFMUQ0QTBGNjQx Njk2RTc5OTkwHhcNMjUxMjE5MDUzMDM2WhcNMjUxMjI2MDUzMDM2WjAYMRYwFAYD VQQDDA02OTQ0ZTJmYy0wNmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiQd5USCQt5m9A1YE37g0ZmYTTJbINSnPzpBW3Je1jgUxIagseDibBJe1pvtD KVEfzq7jk8RIn/ozJgjeQbejeP7cWh/dFeUZLoibk4aA+3SJJmA+izueub4D2scd AS+DYy9Z9J4p1Qyvc+y6K7lx2+wtuDQltYlyu6/+KHCU8+tJtLH+RB0gL2PJUzIe KJxbxWL/3jiOmZHV2pMyPUO/wherx1BfBG1e34VlQjeULxh74ctmO3hg9KMv2sF9 ItfxgRDXQet2HLwnz3fFfY2rY5Rmn0nKTteDm/I/4UgIcrWhqtARmbRePL3+pvCM tUiDSheJ/vPbIdGljfUWjWFhvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhAsoQ/ UFxQ8JvbQMe57aUaQahlMB8GA1UdIwQYMBaAFOYoIg8/0A9Be5ly4dSg9kFpbnmZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTMxRC8yQ0Y2QjhCMEY5 QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQwRjdtWExoMUtEMlFXbHVl WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTMxRC8yQ0Y2QjhCMEY5QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQw RjdtWExoMUtEMlFXbHVlWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC67K9CFzIg4mD2s6vXXJLGg8of5743oAgj1FEX7OEhLEGtIZosKAh +u+DyjHTjKwwEFsQ8UK22lQjbfP2SBKTksE114+F9BY6e6zGYGz+hTxOdNLMVo9/ ADqrWbIdzlSg7Z2kjTn597bzFQEEHlBlITQFXbpS5lS1xIDDukZ67J4nabEMuLfK O0eJMjYeehrZiQ7UlUuWCsmT7Vc+bf1tXOV9GCvkpBeoqLyDzhC43wItQBV/Q2Lf 8XSRXGbsX5jJzg3I+9lAoZWQUK+59D3OTMHbpDQdDnYRa3nH06GQBLUb4yfsZJ6I 5UUIt67ENtjoSFxGdaM0/RPXVgTqq6zd -----END CERTIFICATE-----Generated at Fri Dec 19 19:24:08 2025 by rpki-client