This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: MnpQKUid5IAAdbcdoEfhzeIrU7QzZtUI20v0Nnbob1c= Subject key identifier: 86:62:E0:97:8B:13:0E:C2:E5:61:0A:03:40:09:00:81:54:A1:47:BB Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 1737 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 172D Signing time: Thu 18 Dec 2025 16:29:32 +0000 Manifest this update: Thu 18 Dec 2025 16:29:31 +0000 Manifest next update: Thu 25 Dec 2025 16:29:31 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: yfvOwnZwVYa516YxJGA9HnL7BOUNReNyMK5GnBT0R1c=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: aM0yH97r/h3xu615cUuk5zwsCFMLHVQ8whXpoG1e1kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5943 (0x1737) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6, serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: Dec 18 16:29:31 2025 GMT Not After : Dec 25 16:29:31 2025 GMT Subject: CN=69442bec-57fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d6:21:9f:26:e0:1e:ed:52:d3:df:87:3b:42: 36:95:a2:7e:49:13:5e:71:6f:23:00:61:90:8f:06: cc:db:8c:da:d8:c8:ed:35:62:d4:25:b0:14:a0:40: 1d:87:80:6d:aa:46:e9:3a:8f:c0:77:20:f5:60:e3: 5f:03:d1:43:7c:40:d1:06:42:2a:22:8c:44:38:9c: f5:c6:8f:cb:ef:93:6d:b3:e4:57:c7:a7:8f:91:44: 15:c4:d9:1f:e6:32:75:2f:2a:60:7b:8e:a5:86:4d: a6:26:2e:6e:9a:5e:52:eb:e2:f9:a3:8e:69:b3:84: 1e:46:3c:3e:50:0e:31:19:16:73:f0:31:1a:14:d7: e9:e5:fd:71:bb:69:3c:8b:ec:a5:a4:37:f9:6b:f3: 2e:69:f3:32:75:d4:3a:37:4e:a5:d3:e6:4c:75:b1: 60:85:5d:46:1e:60:a0:e9:6d:81:20:4c:cc:7b:c1: 08:5e:19:8a:a1:35:e0:9f:cd:a9:6c:83:e2:b4:c3: bb:0c:7b:5c:51:77:23:ea:36:87:fc:ea:1a:e6:a9: 24:86:e4:96:83:a3:b9:f8:ec:6d:24:9d:46:0a:4c: 32:e0:53:1d:6b:6e:68:80:38:71:ef:09:21:c7:63: 58:1a:7f:bd:b4:b7:28:78:44:d5:ed:e8:96:72:b3: 51:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:62:E0:97:8B:13:0E:C2:E5:61:0A:03:40:09:00:81:54:A1:47:BB X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d2:94:dd:1f:04:57:7a:b6:a5:45:1c:c2:75:13:f5:85:12: 82:a7:6b:ad:1a:8b:36:e0:eb:4f:dd:27:02:36:27:8c:b5:03: c6:e8:40:8f:a6:38:7b:82:b3:83:80:14:01:1d:e4:79:d8:4a: e5:5e:60:48:73:54:02:4f:2e:68:0a:c4:d9:0f:2d:b2:a8:ba: eb:d8:dc:fc:93:a4:01:79:6a:69:3d:48:24:0c:52:f8:f8:ff: a4:db:16:f6:58:2b:f9:4c:93:5c:5b:cb:89:5b:c0:bf:60:13: 94:5b:de:17:1c:86:73:56:5a:86:1c:f0:81:d5:68:50:06:9d: cc:38:6c:f8:b4:9c:6b:d1:d0:1f:41:08:1d:ed:79:89:92:01: dd:b8:cd:bd:85:8a:2a:82:e9:bc:0d:2f:bf:e8:35:3f:08:c0: 49:d0:fe:e4:b3:a7:53:8b:1a:cf:24:52:82:a8:69:3d:db:be: ae:de:62:24:1c:e9:6f:ff:a0:70:b0:fc:4c:8e:69:de:48:9e: 8e:7a:42:38:b0:a8:75:50:73:b0:28:54:7f:90:0f:2c:9d:e1: a8:e9:7e:3f:b9:0c:0c:73:5e:27:fc:8f:88:38:45:6d:9c:50: 08:e2:d9:49:1b:c7:65:85:ea:e5:4f:0c:a5:af:85:ad:f9:58: f6:6e:39:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjUxMjE4MTYyOTMxWhcNMjUxMjI1MTYyOTMxWjAYMRYwFAYD VQQDDA02OTQ0MmJlYy01N2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNYhnybgHu1S09+HO0I2laJ+SRNecW8jAGGQjwbM24za2MjtNWLUJbAUoEAd h4BtqkbpOo/AdyD1YONfA9FDfEDRBkIqIoxEOJz1xo/L75Nts+RXx6ePkUQVxNkf 5jJ1Lypge46lhk2mJi5uml5S6+L5o45ps4QeRjw+UA4xGRZz8DEaFNfp5f1xu2k8 i+ylpDf5a/MuafMyddQ6N06l0+ZMdbFghV1GHmCg6W2BIEzMe8EIXhmKoTXgn82p bIPitMO7DHtcUXcj6jaH/Ooa5qkkhuSWg6O5+OxtJJ1GCkwy4FMda25ogDhx7wkh x2NYGn+9tLcoeETV7eiWcrNRvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZi4JeL Ew7C5WEKA0AJAIFUoUe7MB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ0pTdHwRXeralRRzCdRP1hRKCp2utGos24OtP3ScCNieMtQPG6ECP pjh7grODgBQBHeR52ErlXmBIc1QCTy5oCsTZDy2yqLrr2Nz8k6QBeWppPUgkDFL4 +P+k2xb2WCv5TJNcW8uJW8C/YBOUW94XHIZzVlqGHPCB1WhQBp3MOGz4tJxr0dAf QQgd7XmJkgHduM29hYoqgum8DS+/6DU/CMBJ0P7ks6dTixrPJFKCqGk9276u3mIk HOlv/6BwsPxMjmneSJ6OekI4sKh1UHOwKFR/kA8sneGo6X4/uQwMc14n/I+IOEVt nFAI4tlJG8dlherlTwylr4Wt+Vj2bjm/ -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:42 2025 by rpki-client