This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft File: f5auCiLKk4vV-dmnMor1g2LrIsE.mft (raw, json) Hash identifier: HVEhBJ75QBBuY+5fd845Q3rR94MFEh1BNcL++TQID2g= Subject key identifier: 67:26:F5:9D:D9:9A:F3:17:E4:F2:A9:B8:F2:E1:68:62:20:B0:F0:29 Authority key identifier: 7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 Certificate issuer: /CN=A91BFFBE/serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft Manifest number: D4 Signing time: Fri 19 Dec 2025 04:49:20 +0000 Manifest this update: Fri 19 Dec 2025 04:49:20 +0000 Manifest next update: Fri 26 Dec 2025 04:49:20 +0000 Files and hashes: 1: f5auCiLKk4vV-dmnMor1g2LrIsE.crl (hash: cu0RpsJk9bnhBduz0+8astlrdHZzz0w4RmQmnvsp6E4=) 2: 835EF5A2C9DD11F09DEB004DC4F9AE02.roa (hash: b0gDJVf3M0zI90KeDasxgMyUSDFcKBbXk+l2t4A0mWE=) 3: DCAD7228C9DD11F0AAF51581C4F9AE02.roa (hash: UJvZLXPSCNqpnXZ276Fx1goF+GJjK4vVWZ5GmP11adM=) 4: 4450DA2C9D0311EF877CD229C4F9AE02.roa (hash: X5kzDfqJWwzJqVe1tvfjzhYAWwGVLO7LnjiYU6TrgbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFFBE, serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Validity Not Before: Dec 19 04:49:20 2025 GMT Not After : Dec 26 04:49:20 2025 GMT Subject: CN=6944d950-3ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:05:14:64:cf:dc:af:7a:8a:fd:13:90:46:d3: 42:c0:8c:7d:11:bb:20:40:3d:34:36:5b:86:a6:73: 7f:e8:24:0c:2e:52:d4:d0:5d:22:b0:40:7b:d5:2e: f5:78:3a:70:89:89:51:74:c4:04:41:a3:54:17:6e: 25:63:05:41:5f:7a:1a:8c:cd:3d:a6:d3:93:c4:33: 7b:0c:0d:30:b1:ba:20:81:ef:31:d7:23:86:b2:7e: f2:65:22:a6:13:5d:c4:b1:44:fc:24:ee:44:6c:45: f5:62:a9:30:b4:74:6a:b2:4f:52:43:79:77:2c:52: d9:b0:fc:63:0c:75:cb:d4:87:a7:52:c0:2b:c2:61: f9:ed:36:74:af:cb:54:6e:48:26:ea:4e:b9:12:b3: fd:20:1a:00:f3:b8:40:2c:49:83:9e:3d:e8:1a:aa: b3:0a:ed:cb:46:de:f3:ae:cd:38:03:30:51:16:33: a3:69:78:c9:4e:f5:99:6d:4f:0d:42:4f:8d:c3:61: 6e:1b:b0:50:bf:66:7f:c3:6b:f4:94:5b:f2:9b:e9: 8f:1e:23:ae:48:be:35:6e:83:e7:0c:59:5d:c3:6d: 01:ea:b9:e7:f6:8f:cd:c9:fe:45:0b:f4:fe:98:e4: 6b:b8:f3:92:bb:c7:ea:d3:10:2e:9d:78:97:1b:52: 8c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:26:F5:9D:D9:9A:F3:17:E4:F2:A9:B8:F2:E1:68:62:20:B0:F0:29 X509v3 Authority Key Identifier: keyid:7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:86:fb:e7:2a:23:33:fa:49:ae:ce:63:3e:48:20:8b:5d:64: 04:9a:93:ae:72:c1:bf:70:e5:f1:e5:a9:26:c3:b7:32:2d:f6: 3d:a9:fd:1d:4a:a1:23:59:9c:69:32:32:a5:a5:b8:6b:c8:1a: 9c:f6:96:b8:24:fd:e4:26:c8:b3:e0:3d:cb:bb:4a:17:8e:d6: b7:a4:6a:1d:f7:da:03:df:7d:04:fd:06:be:7f:fd:15:12:0c: f7:7e:f2:ff:42:8c:f1:12:fd:52:05:76:a9:6e:d9:b6:1f:00: 8a:d7:cf:cb:ee:53:4b:3e:06:10:70:60:86:c6:52:1f:83:59: 8d:7f:21:c8:2a:03:56:d9:9b:9d:7c:58:e6:42:2b:06:29:b9: da:87:81:e8:5f:d0:d4:b9:b5:29:d1:e9:8e:c0:b7:8c:4b:f2: c2:37:87:9a:bd:b9:2a:36:31:51:7c:36:4d:98:0c:54:93:07: 1f:6e:7c:15:f1:3d:94:ca:e8:c1:c6:c1:f3:c1:c4:b3:d7:6f: 6c:4a:ea:1a:db:7c:d8:df:9f:94:c8:24:37:ef:2e:0c:ca:ab: a1:4b:c9:9e:d0:2a:da:5a:3b:f7:28:04:7d:62:85:d7:91:52: 15:cb:0c:dd:bb:ce:be:da:84:02:ee:89:b4:65:3d:88:1d:17: de:a5:6f:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZGQkUxMTAvBgNVBAUTKDdGOTZBRTBBMjJDQTkzOEJENUY5RDlBNzMyOEFGNTgz NjJFQjIyQzEwHhcNMjUxMjE5MDQ0OTIwWhcNMjUxMjI2MDQ0OTIwWjAYMRYwFAYD VQQDDA02OTQ0ZDk1MC0zYWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQUUZM/cr3qK/ROQRtNCwIx9EbsgQD00NluGpnN/6CQMLlLU0F0isEB71S71 eDpwiYlRdMQEQaNUF24lYwVBX3oajM09ptOTxDN7DA0wsbogge8x1yOGsn7yZSKm E13EsUT8JO5EbEX1YqkwtHRqsk9SQ3l3LFLZsPxjDHXL1IenUsArwmH57TZ0r8tU bkgm6k65ErP9IBoA87hALEmDnj3oGqqzCu3LRt7zrs04AzBRFjOjaXjJTvWZbU8N Qk+Nw2FuG7BQv2Z/w2v0lFvym+mPHiOuSL41boPnDFldw20B6rnn9o/Nyf5FC/T+ mORruPOSu8fq0xAunXiXG1KMmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcm9Z3Z mvMX5PKpuPLhaGIgsPApMB8GA1UdIwQYMBaAFH+WrgoiypOL1fnZpzKK9YNi6yLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkZCRS80MjE1OUY1QTlE MDIxMUVGOTlDQzg2MDlDNEY5QUUwMi9mNWF1Q2lMS2s0dlYtZG1uTW9yMWcyTHJJ c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y1YXVDaUxLazR2Vi1kbW5Nb3IxZzJMcklzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkZCRS80MjE1OUY1QTlEMDIxMUVGOTlDQzg2MDlDNEY5QUUwMi9mNWF1Q2lMS2s0 dlYtZG1uTW9yMWcyTHJJc0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuhvvnKiMz+kmuzmM+SCCLXWQEmpOucsG/cOXx5akmw7cyLfY9qf0d SqEjWZxpMjKlpbhryBqc9pa4JP3kJsiz4D3Lu0oXjta3pGod99oD330E/Qa+f/0V Egz3fvL/QozxEv1SBXapbtm2HwCK18/L7lNLPgYQcGCGxlIfg1mNfyHIKgNW2Zud fFjmQisGKbnah4HoX9DUubUp0emOwLeMS/LCN4eavbkqNjFRfDZNmAxUkwcfbnwV 8T2UyujBxsHzwcSz129sSuoa23zY35+UyCQ37y4MyquhS8me0CraWjv3KAR9YoXX kVIVywzdu86+2oQC7om0ZT2IHRfepW8o -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:13 2025 by rpki-client