This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: 4g0gLJ1IBgJ/RdyMZBTmp0j3f7KmhkLNmgNGBiLxUac= Subject key identifier: E1:4F:5D:4C:A6:CF:07:F1:76:00:E2:50:4D:8B:05:80:DA:F6:C1:CA Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0AE5 Signing time: Thu 18 Dec 2025 19:04:51 +0000 Manifest this update: Thu 18 Dec 2025 19:04:51 +0000 Manifest next update: Thu 25 Dec 2025 19:04:51 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: KkJ54HEGy+8Cs3MiIEt6wBH7Sf5R3dB/aSmcJyttuOk=) 2: B24920940C6911EC90B57338C4F9AE02.roa (hash: 46zzXAJsoYLrd8w4NMQBrt4B+bpK+w9wRKgXWSkwTsI=) 3: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: hhE8XmYwxey9Fv68RhRQXSH/5MjemozAt+vDJtNoqQU=) 4: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: uKI22TwxIQY9iFbcuULN7d8S3JosFyv3WIhvtX7yzyk=) 5: C782AE14615911F08635B771C4F9AE02.roa (hash: MaO7vUeiFdOZPyehARwka9eV8U3aNvjxrHmSWVwidY8=) 6: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: nQp6CVVIzkkqk2XECRH9BEijjawtFfwARhBhch9mLWM=) 7: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: pnzNagfBV7JflMfDBvAJDWyy7ts19fn5YwbkxkgayA8=) 8: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6TG7RmsvnGNbTnnGm7wGd69mXpkPkix9Q5ZbBmiNmUE=) 9: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: HTyyzc4XtgSz/IIMfSzZJ+tCNDi1E/skEpatmhSWJ4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2830 (0xb0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Dec 18 19:04:51 2025 GMT Not After : Dec 25 19:04:51 2025 GMT Subject: CN=69445053-1634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:eb:ba:e4:28:4c:f5:20:5a:61:8f:e3:f1:7c: 5c:42:fe:81:d9:8b:f4:f7:02:76:27:45:a0:7c:2e: 4b:77:4e:7b:08:f1:a0:5d:99:cc:eb:25:87:35:04: 28:f0:d7:ab:df:85:0c:fe:17:97:0d:69:ec:f1:e4: bb:16:f3:ed:b1:27:a7:94:d7:7d:80:0c:b1:e6:52: b5:a5:76:af:b7:e0:b8:df:4d:d6:95:93:c1:15:aa: 9f:dc:a5:82:0b:0b:11:05:77:40:14:95:36:8f:65: 26:f3:22:15:f0:1a:f8:62:79:3f:6d:e5:a8:a6:fe: 0e:e0:5c:7c:ec:19:e1:d7:58:e9:01:70:aa:a2:36: 85:20:f6:e3:21:1f:df:dd:90:46:8b:61:bc:cf:ee: 58:7f:22:2d:9c:11:5c:5e:01:3c:66:ef:ab:16:17: f8:8f:ee:92:52:04:e3:46:9f:32:46:70:49:3c:64: 04:9e:1c:d9:ca:d1:83:04:99:d7:f6:53:48:8f:a0: b5:b6:e7:89:ba:ee:50:7e:ae:c5:d8:55:dd:0e:10: 34:4d:cb:51:aa:c9:79:e6:8e:20:d7:1c:81:2d:85: 1f:18:14:dd:5e:6e:ba:ea:4a:60:5f:8a:05:8c:47: 27:93:f6:57:ea:04:bb:6d:4a:1e:a6:79:f1:eb:35: 45:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4F:5D:4C:A6:CF:07:F1:76:00:E2:50:4D:8B:05:80:DA:F6:C1:CA X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:8f:5a:a5:15:a1:14:80:95:3f:9d:5c:8e:12:37:17:33:57: 27:4a:38:b2:29:14:10:39:4f:b6:5d:e3:9f:b6:e4:31:5a:d7: 4a:4b:84:20:29:ff:d2:56:38:31:25:fd:6d:e0:24:79:8c:02: c3:ed:31:bb:d9:81:1d:93:5c:96:90:e2:65:97:94:4a:c1:9d: d7:a7:2d:8b:64:2d:09:fa:8e:c5:f4:8c:f5:2f:e4:91:2d:6a: 51:6d:a1:af:f4:23:08:a1:d9:ff:b7:11:ea:d6:8e:31:5d:60: b0:1c:d9:d9:a8:bb:00:9b:55:21:be:68:27:1d:17:13:31:f5: 37:ef:49:4e:f2:f8:b4:d3:08:b2:17:aa:af:ad:c9:ab:75:47: 16:a3:2d:51:cc:f0:8d:2a:c9:7f:7b:56:2d:9e:2f:41:e0:2e: 7d:e3:8a:ad:6c:be:e3:f6:3c:6d:d3:73:d0:5c:c1:9e:f6:cf: d9:9d:e3:45:44:b9:ab:b0:b8:68:23:60:b2:ba:11:91:93:05: 7b:75:a2:71:c1:36:ca:f9:7c:15:a9:58:69:f3:e8:06:83:76: f5:a7:ed:14:04:3d:db:c6:f1:d0:dc:43:03:2d:f1:09:41:96: 2f:69:bd:39:dc:6f:b6:63:98:a6:17:92:be:21:d9:61:dd:22: 81:ba:b4:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUxMjE4MTkwNDUxWhcNMjUxMjI1MTkwNDUxWjAYMRYwFAYD VQQDDA02OTQ0NTA1My0xNjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuu65ChM9SBaYY/j8XxcQv6B2Yv09wJ2J0WgfC5Ld057CPGgXZnM6yWHNQQo 8Ner34UM/heXDWns8eS7FvPtsSenlNd9gAyx5lK1pXavt+C4303WlZPBFaqf3KWC CwsRBXdAFJU2j2Um8yIV8Br4Ynk/beWopv4O4Fx87Bnh11jpAXCqojaFIPbjIR/f 3ZBGi2G8z+5YfyItnBFcXgE8Zu+rFhf4j+6SUgTjRp8yRnBJPGQEnhzZytGDBJnX 9lNIj6C1tueJuu5Qfq7F2FXdDhA0TctRqsl55o4g1xyBLYUfGBTdXm666kpgX4oF jEcnk/ZX6gS7bUoepnnx6zVFOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFPXUym zwfxdgDiUE2LBYDa9sHKMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXj1qlFaEUgJU/nVyOEjcXM1cnSjiyKRQQOU+2XeOftuQxWtdKS4Qg Kf/SVjgxJf1t4CR5jALD7TG72YEdk1yWkOJll5RKwZ3Xpy2LZC0J+o7F9Iz1L+SR LWpRbaGv9CMIodn/txHq1o4xXWCwHNnZqLsAm1UhvmgnHRcTMfU370lO8vi00wiy F6qvrcmrdUcWoy1RzPCNKsl/e1Ytni9B4C5944qtbL7j9jxt03PQXMGe9s/ZneNF RLmrsLhoI2CyuhGRkwV7daJxwTbK+XwVqVhp8+gGg3b1p+0UBD3bxvHQ3EMDLfEJ QZYvab053G+2Y5imF5K+Idlh3SKBurT6 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:30 2025 by rpki-client