This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: 1fKlDmIpuhw5VmMzV+2cFGkug9v4f5sSOf8LwFYBW7M= Subject key identifier: F1:D4:0B:62:77:B8:B9:29:C1:FA:22:C5:39:17:B5:5D:D1:25:6E:0D Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0BDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0BD2 Signing time: Sat 20 Dec 2025 18:28:10 +0000 Manifest this update: Sat 20 Dec 2025 18:28:10 +0000 Manifest next update: Sat 27 Dec 2025 18:28:10 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: vuY93NmAIHEUUBTU5ljmSncWmXLyDSpnbMyp3YctyAQ=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3036 (0xbdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Dec 20 18:28:10 2025 GMT Not After : Dec 27 18:28:10 2025 GMT Subject: CN=6946eaba-3251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a0:31:a0:a8:af:28:95:e7:bc:e1:ef:ca:5c: 8e:21:78:bb:06:c2:ea:2a:5a:34:96:af:27:d9:ba: b3:bc:f0:62:64:0c:31:2e:35:19:51:07:51:dd:74: 15:0d:51:92:34:06:af:78:cd:08:0d:c2:9b:59:91: a5:5d:a3:6a:52:10:6f:13:bc:54:ef:45:93:07:2f: 35:7b:34:f8:16:17:5b:90:c6:de:13:a2:34:39:c1: 46:85:7e:c6:f6:0d:1a:91:46:d9:a6:df:c8:07:38: d6:b3:d6:cf:3f:8f:ef:b1:da:e3:6f:db:9d:86:d8: 81:3d:0b:6d:dc:b9:5d:38:13:44:75:48:ce:92:08: 7f:79:10:3b:dc:2c:54:00:88:e1:51:d5:16:5d:60: 17:00:b3:e7:a5:a9:ed:ff:32:03:de:85:6a:8c:86: 90:4a:4c:7e:f3:15:4d:f1:8c:8e:88:60:35:07:b0: 64:a4:ca:9e:c4:9d:21:d4:21:b4:49:24:10:e0:fe: 35:7a:13:83:a5:17:10:a2:2e:d8:5e:ed:15:81:16: e0:15:e8:f1:cf:4f:72:a6:b9:cc:0c:16:1c:50:21: fd:df:80:3d:c6:e2:6b:2d:3c:ce:50:9f:60:80:e0: da:b3:b5:b2:41:69:86:21:62:02:b3:40:90:98:08: 5e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D4:0B:62:77:B8:B9:29:C1:FA:22:C5:39:17:B5:5D:D1:25:6E:0D X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:2e:ee:78:15:58:95:28:9b:b2:4c:43:3b:cc:43:bf:09:d1: f7:39:19:eb:67:b5:5d:d2:8f:09:74:a6:86:73:bb:b2:85:24: 8a:ef:a0:75:ae:a7:7e:93:9a:f5:d7:67:21:0f:cd:2d:60:a5: 05:38:23:30:9e:3c:1d:5e:51:09:74:13:d2:fa:6f:f4:e1:ac: 87:3e:35:28:02:dc:04:d5:c4:16:bb:46:4d:d3:f5:e8:2d:f6: ee:45:03:f9:50:47:74:e0:ee:c1:c7:c7:05:9f:90:ff:98:05: d1:55:69:e2:e6:59:e2:00:fd:66:4f:31:59:47:4c:11:76:42: e5:27:be:b2:6e:42:75:21:6c:88:fb:20:25:c1:ba:c7:4d:97: b1:ea:8c:76:39:97:a1:e8:4e:02:e2:54:00:dd:cb:db:e4:08: 67:c5:86:ef:a9:cb:8f:f5:a8:1d:6b:df:65:25:6a:c1:6a:17: 98:83:20:95:1e:68:c8:84:80:2c:32:84:68:38:35:92:50:35: 64:66:b0:8b:32:87:c6:5e:b6:2a:b7:f9:cb:f8:37:42:b1:c9: c5:06:de:02:2d:9e:c3:2f:a7:4b:98:1d:b7:b0:b3:af:0d:cf: ae:d2:dd:ac:a7:ce:ee:1c:ec:69:9c:7d:29:17:23:ff:fb:53: 76:ba:a0:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUxMjIwMTgyODEwWhcNMjUxMjI3MTgyODEwWjAYMRYwFAYD VQQDDA02OTQ2ZWFiYS0zMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmaAxoKivKJXnvOHvylyOIXi7BsLqKlo0lq8n2bqzvPBiZAwxLjUZUQdR3XQV DVGSNAaveM0IDcKbWZGlXaNqUhBvE7xU70WTBy81ezT4FhdbkMbeE6I0OcFGhX7G 9g0akUbZpt/IBzjWs9bPP4/vsdrjb9udhtiBPQtt3LldOBNEdUjOkgh/eRA73CxU AIjhUdUWXWAXALPnpant/zID3oVqjIaQSkx+8xVN8YyOiGA1B7BkpMqexJ0h1CG0 SSQQ4P41ehODpRcQoi7YXu0VgRbgFejxz09yprnMDBYcUCH934A9xuJrLTzOUJ9g gODas7WyQWmGIWICs0CQmAheoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHUC2J3 uLkpwfoixTkXtV3RJW4NMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbLu54FViVKJuyTEM7zEO/CdH3ORnrZ7Vd0o8JdKaGc7uyhSSK76B1 rqd+k5r112chD80tYKUFOCMwnjwdXlEJdBPS+m/04ayHPjUoAtwE1cQWu0ZN0/Xo LfbuRQP5UEd04O7Bx8cFn5D/mAXRVWni5lniAP1mTzFZR0wRdkLlJ76ybkJ1IWyI +yAlwbrHTZex6ox2OZeh6E4C4lQA3cvb5AhnxYbvqcuP9agda99lJWrBaheYgyCV HmjIhIAsMoRoODWSUDVkZrCLMofGXrYqt/nL+DdCscnFBt4CLZ7DL6dLmB23sLOv Dc+u0t2sp87uHOxpnH0pFyP/+1N2uqBx -----END CERTIFICATE-----Generated at Mon Dec 22 12:58:35 2025 by rpki-client