This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: CaoZd0sGVkBCr2gGeJUnrDd27hSzl3S/clqIoEK8pns= Subject key identifier: DC:20:A3:C8:9A:62:3C:C2:2F:55:EF:A2:07:79:99:7B:E4:57:D1:55 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 0113 Signing time: Fri 19 Dec 2025 04:01:13 +0000 Manifest this update: Fri 19 Dec 2025 04:01:13 +0000 Manifest next update: Fri 26 Dec 2025 04:01:13 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: txc3oP+nBu4YVUnIfj8PypBi/RpQLm7YCSJzjdFlZdA=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: RU5OhSVcdir8OrT3E9J1urB5y05ack2UMndknf/XUMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Dec 19 04:01:13 2025 GMT Not After : Dec 26 04:01:13 2025 GMT Subject: CN=6944ce09-a0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:50:a7:10:0c:ca:dc:a0:98:3f:78:fa:11: 84:75:a8:ee:49:96:db:9e:67:27:52:7d:54:98:d7: 9b:63:87:c5:4e:7b:ec:1f:03:af:bf:d8:65:b9:8e: 5a:b3:90:da:12:b2:84:8b:28:6a:78:fe:3d:d4:85: 18:6e:1c:b0:12:7c:35:dd:1a:bd:b5:39:6f:a3:dd: 73:7e:3f:eb:49:fc:b2:07:57:86:b1:c9:eb:48:8b: f6:2e:de:12:ed:3e:b6:98:94:7d:8c:2a:8c:17:7d: 48:3c:98:ba:57:c6:92:21:2e:4d:7f:10:84:57:e0: fc:9c:ed:2f:da:b2:db:ce:23:74:1e:25:73:6e:00: 32:f8:ba:59:e1:97:b1:ec:06:11:14:cc:f2:6d:e8: b9:7b:f2:1d:b0:3c:d9:45:c9:7a:de:93:7a:f9:e5: cd:4a:0a:ed:5a:be:e3:34:83:e9:26:2a:7b:10:0c: 07:25:82:ac:16:18:35:62:94:b4:27:de:bf:8c:93: 89:4f:4d:a6:fc:8b:4a:fa:03:81:91:2f:08:13:d3: b2:53:1e:94:f6:6f:f3:03:69:d5:de:cd:2b:0d:13: b0:95:6a:4f:47:f1:a4:e2:01:ea:dd:b0:78:8f:3d: 93:11:77:13:f5:14:f0:3e:92:1f:53:73:c8:45:e3: 77:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:20:A3:C8:9A:62:3C:C2:2F:55:EF:A2:07:79:99:7B:E4:57:D1:55 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:bd:14:b0:54:36:b2:a0:df:66:88:4d:e3:9b:3d:66:1f:e8: e9:73:fd:75:f4:b6:3c:06:c0:21:e5:12:33:40:18:8a:7c:f1: 36:2b:bb:85:6c:f8:7c:3d:d0:c8:e7:28:ea:62:46:93:33:d3: d9:e1:17:08:f4:cf:f4:dc:0f:e0:b6:87:a8:e3:0c:4e:a3:b0: 28:cf:97:97:5b:06:f0:ac:c1:10:af:4d:1e:1d:cd:9b:e8:2c: 9a:e7:bd:5e:2f:dc:00:91:ca:c1:9b:85:8c:7a:ea:95:01:ef: 31:35:8a:d9:95:bb:36:47:bd:0f:3b:50:ef:2a:0d:f0:00:30: 11:83:ab:11:e5:4a:24:b3:26:23:a9:e0:28:ac:65:86:c9:49: a7:3b:2d:42:dc:a6:82:f6:eb:86:b7:fb:81:6f:96:06:ab:39: 9e:cc:36:15:b4:56:ac:b8:db:c0:b7:39:6b:9c:f3:5b:fd:f8: 56:db:0b:a7:43:44:be:a0:7b:21:33:ed:de:a3:8a:3f:ed:50: da:53:91:e9:1a:ff:65:e0:99:3a:5b:f0:27:ef:3c:76:ff:16: 65:35:c7:fe:fc:e6:e5:4d:cf:50:c3:c0:37:6f:7e:a2:2c:28: 46:e0:08:00:8e:64:fe:73:6b:c0:1c:9b:de:03:2e:e3:fb:51: af:82:fb:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUxMjE5MDQwMTEzWhcNMjUxMjI2MDQwMTEzWjAYMRYwFAYD VQQDDA02OTQ0Y2UwOS1hMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiBQpxAMytygmD94+hGEdajuSZbbnmcnUn1UmNebY4fFTnvsHwOvv9hluY5a s5DaErKEiyhqeP491IUYbhywEnw13Rq9tTlvo91zfj/rSfyyB1eGscnrSIv2Lt4S 7T62mJR9jCqMF31IPJi6V8aSIS5NfxCEV+D8nO0v2rLbziN0HiVzbgAy+LpZ4Zex 7AYRFMzybei5e/IdsDzZRcl63pN6+eXNSgrtWr7jNIPpJip7EAwHJYKsFhg1YpS0 J96/jJOJT02m/ItK+gOBkS8IE9OyUx6U9m/zA2nV3s0rDROwlWpPR/Gk4gHq3bB4 jz2TEXcT9RTwPpIfU3PIReN3WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwgo8ia YjzCL1Xvogd5mXvkV9FVMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjvRSwVDayoN9miE3jmz1mH+jpc/119LY8BsAh5RIzQBiKfPE2K7uF bPh8PdDI5yjqYkaTM9PZ4RcI9M/03A/gtoeo4wxOo7Aoz5eXWwbwrMEQr00eHc2b 6Cya571eL9wAkcrBm4WMeuqVAe8xNYrZlbs2R70PO1DvKg3wADARg6sR5UoksyYj qeAorGWGyUmnOy1C3KaC9uuGt/uBb5YGqzmezDYVtFasuNvAtzlrnPNb/fhW2wun Q0S+oHshM+3eo4o/7VDaU5HpGv9l4Jk6W/An7zx2/xZlNcf+/OblTc9Qw8A3b36i LChG4AgAjmT+c2vAHJveAy7j+1GvgvvR -----END CERTIFICATE-----Generated at Sat Dec 20 01:52:04 2025 by rpki-client