This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft File: 5Otd-leSQpC7j-xFuZd_xsf2-jc.mft (raw, json) Hash identifier: qduAEKYdB7d0XhJ5R3Q2Cs4WTOU8UmQDxmKWchB5i8I= Subject key identifier: D5:E9:3F:70:9A:9B:0A:A7:17:DE:F5:A8:55:28:A3:02:C0:48:6A:6F Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 Certificate issuer: /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Certificate serial: 0CF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft Manifest number: 0CE3 Signing time: Thu 18 Dec 2025 17:55:13 +0000 Manifest this update: Thu 18 Dec 2025 17:55:12 +0000 Manifest next update: Thu 25 Dec 2025 17:55:12 +0000 Files and hashes: 1: 5Otd-leSQpC7j-xFuZd_xsf2-jc.crl (hash: YhyOJ78zxlZonGEh2+wCmHB4Vec5KQiLLiURVKm+JOE=) 2: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (hash: 6JiNuWz5Fkw8aMu3lON6uTLPgLOG+xf9uCqK1rE3Qew=) 3: EA17F65E6C6711ECB7C0925AC4F9AE02.roa (hash: 80MLiBcpNIycThAKM26TDicBsDE58l79IER/QoSPi08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3319 (0xcf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Validity Not Before: Dec 18 17:55:12 2025 GMT Not After : Dec 25 17:55:12 2025 GMT Subject: CN=69444001-f13f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:dd:ca:97:e8:88:eb:59:cc:d7:0f:99:6f:74: e2:29:ae:4b:e8:66:cf:49:ef:8d:90:fd:89:d9:a3: 28:a2:37:da:6f:65:08:79:75:95:84:03:7e:ad:b1: 47:5e:1a:da:59:d4:f5:ce:34:8e:a3:f1:30:06:f5: 42:8f:db:35:b5:4d:85:12:52:a3:b3:5b:71:d9:63: 09:9b:51:1c:e6:32:8b:8a:09:84:85:96:aa:3f:98: 8b:0c:9f:6c:91:55:7a:fb:ef:58:91:16:e3:70:59: 9a:00:0b:9e:e2:87:c2:f7:9d:75:b4:d1:39:89:8b: 68:51:8a:0f:45:ff:dd:f8:b2:37:82:eb:e3:e7:06: 27:27:1e:aa:44:9d:14:e7:1f:77:c3:15:bc:ac:98: 73:09:47:d6:1f:6e:f5:67:fd:3e:1e:ab:93:8d:5e: a4:b7:89:be:79:ba:3b:31:d2:d9:d3:56:58:2c:f3: 12:d0:41:96:03:53:9c:d5:98:6b:38:c2:b2:8b:6f: 81:1d:c1:2e:f1:07:97:af:9e:cd:b7:dd:c1:c8:cf: 80:d1:44:aa:da:a1:bc:52:08:a4:96:4a:71:d4:07: 3c:08:9c:a4:cd:84:69:63:04:cb:96:39:78:52:a1: 34:a2:92:16:29:bf:51:77:94:c7:e0:40:13:85:19: 4d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E9:3F:70:9A:9B:0A:A7:17:DE:F5:A8:55:28:A3:02:C0:48:6A:6F X509v3 Authority Key Identifier: keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:26:b9:97:00:d1:94:5d:e4:75:28:e8:ee:54:02:cc:37:38: e1:17:0d:60:21:f9:89:a0:0d:b3:16:1a:0b:c8:f9:e6:d4:cb: b1:f6:e4:2d:0f:2f:a0:43:3b:a4:15:8f:f5:22:7b:b2:7b:f9: 7f:f3:01:b7:6e:b3:93:62:85:58:9e:9f:68:83:37:50:e5:5d: 34:65:94:23:14:9e:bc:54:78:4a:e6:6d:21:11:e9:ef:da:5f: 8d:67:9a:9c:cb:29:3f:79:b7:c0:2f:9b:5f:33:31:7b:e6:69: e5:2c:a4:92:7b:d4:61:b5:41:7d:f0:37:a3:26:48:c1:fc:af: 6c:50:30:80:4c:93:94:73:b1:1d:4c:f8:bf:52:84:d2:bd:82: 85:51:86:26:de:da:cd:67:82:e4:4a:fe:7e:29:00:8e:ef:24: 7a:d3:ed:3b:04:fe:8d:f3:00:ed:80:42:02:64:a0:63:9b:f9: bd:15:b2:2a:92:07:69:a6:76:0d:2c:de:0b:fd:a6:b3:7a:de: 6f:2b:e3:82:68:0d:e7:03:73:17:25:49:6c:4b:2f:cd:c5:fd: 4e:f4:5b:d2:0a:1d:be:14:ed:09:42:41:7c:f6:44:92:4f:22: f8:50:ab:d2:b5:b2:8b:10:f2:fd:ac:70:43:51:64:3d:ff:d5: d4:9f:ae:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCMEIxMTAvBgNVBAUTKEU0RUI1REZBNTc5MjQyOTBCQjhGRUM0NUI5OTc3RkM2 QzdGNkZBMzcwHhcNMjUxMjE4MTc1NTEyWhcNMjUxMjI1MTc1NTEyWjAYMRYwFAYD VQQDDA02OTQ0NDAwMS1mMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7N3Kl+iI61nM1w+Zb3TiKa5L6GbPSe+NkP2J2aMoojfab2UIeXWVhAN+rbFH XhraWdT1zjSOo/EwBvVCj9s1tU2FElKjs1tx2WMJm1Ec5jKLigmEhZaqP5iLDJ9s kVV6++9YkRbjcFmaAAue4ofC9511tNE5iYtoUYoPRf/d+LI3guvj5wYnJx6qRJ0U 5x93wxW8rJhzCUfWH271Z/0+HquTjV6kt4m+ebo7MdLZ01ZYLPMS0EGWA1Oc1Zhr OMKyi2+BHcEu8QeXr57Nt93ByM+A0USq2qG8Ugiklkpx1Ac8CJykzYRpYwTLljl4 UqE0opIWKb9Rd5TH4EAThRlNfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXpP3Ca mwqnF971qFUoowLASGpvMB8GA1UdIwQYMBaAFOTrXfpXkkKQu4/sRbmXf8bH9vo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEIwQi81QUVCNUVCMkZD QzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1FwQzdqLXhGdVpkX3hzZjIt amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVPdGQtbGVTUXBDN2oteEZ1WmRfeHNmMi1qYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEIwQi81QUVCNUVCMkZDQzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1Fw QzdqLXhGdVpkX3hzZjItamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7JrmXANGUXeR1KOjuVALMNzjhFw1gIfmJoA2zFhoLyPnm1Mux9uQt Dy+gQzukFY/1Inuye/l/8wG3brOTYoVYnp9ogzdQ5V00ZZQjFJ68VHhK5m0hEenv 2l+NZ5qcyyk/ebfAL5tfMzF75mnlLKSSe9RhtUF98DejJkjB/K9sUDCATJOUc7Ed TPi/UoTSvYKFUYYm3trNZ4LkSv5+KQCO7yR60+07BP6N8wDtgEICZKBjm/m9FbIq kgdppnYNLN4L/aazet5vK+OCaA3nA3MXJUlsSy/Nxf1O9FvSCh2+FO0JQkF89kSS TyL4UKvStbKLEPL9rHBDUWQ9/9XUn658 -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:35 2025 by rpki-client