This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: /LF9oGJW231tfbi1+98s9JsNSpul68Tqu3BC2xJ0kMc= Subject key identifier: FE:36:9E:54:41:C3:A2:15:28:16:2E:F9:EC:E2:8D:06:56:C3:C6:38 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 059E Signing time: Sat 20 Dec 2025 22:29:36 +0000 Manifest this update: Sat 20 Dec 2025 22:29:36 +0000 Manifest next update: Sat 27 Dec 2025 22:29:36 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: 2iTCpjpAiV0t061En+G5Qm+ABPRC5789Xj9VBxPZ9ec=) 2: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 3: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Dec 20 22:29:36 2025 GMT Not After : Dec 27 22:29:36 2025 GMT Subject: CN=69472350-4a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cc:e6:2f:9a:6c:39:de:0d:35:12:b1:71:9b: 57:9a:03:bb:cf:c3:be:42:6c:93:35:f9:61:78:7a: 84:91:2f:ec:cc:53:04:85:65:17:9d:7f:05:93:d0: 41:72:55:d1:42:fa:fe:36:f3:fc:dc:5f:fd:b5:38: fe:d3:8d:81:72:ed:36:a2:a8:66:2c:68:a7:f6:a8: cb:e0:94:83:38:1e:25:61:48:76:8b:74:95:3d:16: 61:18:00:78:da:00:30:da:41:ce:e9:37:53:3c:1d: 35:87:34:83:4e:67:77:34:57:f3:42:51:c1:02:47: bf:74:b7:0c:5c:59:c8:b1:a0:3b:ab:7b:b3:a4:7a: c8:1f:b2:57:4e:15:f5:cf:03:5e:1a:e4:eb:7b:08: 8a:00:4f:2a:ac:1e:e2:d0:5e:04:9f:28:4b:00:a9: 6f:d0:d3:ef:b1:8e:b1:03:a2:bb:8c:3b:5a:13:66: 43:ab:6a:c1:d0:2d:0d:9a:f6:df:d5:e4:48:34:86: 1a:4a:c0:68:45:c9:39:79:ce:e9:ab:d4:05:f6:f0: 41:c0:bf:1b:c0:e2:93:0b:cc:86:2d:5d:82:94:3f: 6f:5d:05:05:08:0d:d1:d7:6e:8d:72:72:d0:b8:e7: 73:0c:0d:eb:de:b6:96:75:25:80:27:3e:46:08:0a: 92:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:36:9E:54:41:C3:A2:15:28:16:2E:F9:EC:E2:8D:06:56:C3:C6:38 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b6:68:11:fc:a3:07:f0:a3:b2:2c:97:2f:46:a2:ec:34:96: 6e:e0:37:2e:c0:19:32:29:b8:2f:e3:49:79:c2:41:8a:97:23: 42:7f:e9:2f:27:79:1c:09:d8:d4:db:66:be:68:80:6e:b6:6f: 4c:00:5a:e7:b6:0c:9d:1a:94:36:10:12:ea:0c:c4:f4:2b:b9: 28:31:04:0c:90:d2:f6:54:33:9c:59:9c:17:7f:76:0c:31:d4: 18:c8:0e:a3:ff:fb:33:73:4b:3a:40:18:f0:43:8c:49:66:88: 66:74:6b:99:a7:86:b0:e0:1d:7a:8e:13:31:e3:8d:f1:39:a3: 6a:48:bd:99:40:9e:1a:e1:68:be:41:cc:75:58:c5:bf:d5:85: 83:b1:e0:de:39:b4:1b:ac:4c:c5:01:6f:b5:6c:ad:68:87:c1: 8c:9f:d5:4e:83:34:bb:83:9e:ef:ac:58:8e:73:85:7e:73:e5: 62:90:bf:4b:2f:22:12:95:55:87:20:a0:37:4d:fb:a2:ba:ad: 54:ee:58:cb:06:4b:43:03:89:b5:1a:a3:2e:bb:bc:b2:f6:6a: 9b:93:55:8f:30:d6:6a:74:e3:68:ed:0e:79:3f:b0:bd:27:ed: 1e:c1:d0:6e:f5:b3:3b:ff:a3:f9:ee:0b:aa:4e:7d:8e:74:01: 3b:de:83:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUxMjIwMjIyOTM2WhcNMjUxMjI3MjIyOTM2WjAYMRYwFAYD VQQDDA02OTQ3MjM1MC00YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsczmL5psOd4NNRKxcZtXmgO7z8O+QmyTNflheHqEkS/szFMEhWUXnX8Fk9BB clXRQvr+NvP83F/9tTj+042Bcu02oqhmLGin9qjL4JSDOB4lYUh2i3SVPRZhGAB4 2gAw2kHO6TdTPB01hzSDTmd3NFfzQlHBAke/dLcMXFnIsaA7q3uzpHrIH7JXThX1 zwNeGuTrewiKAE8qrB7i0F4EnyhLAKlv0NPvsY6xA6K7jDtaE2ZDq2rB0C0Nmvbf 1eRINIYaSsBoRck5ec7pq9QF9vBBwL8bwOKTC8yGLV2ClD9vXQUFCA3R126NcnLQ uOdzDA3r3raWdSWAJz5GCAqSRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP42nlRB w6IVKBYu+ezijQZWw8Y4MB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAtmgR/KMH8KOyLJcvRqLsNJZu4DcuwBkyKbgv40l5wkGKlyNCf+kv J3kcCdjU22a+aIButm9MAFrntgydGpQ2EBLqDMT0K7koMQQMkNL2VDOcWZwXf3YM MdQYyA6j//szc0s6QBjwQ4xJZohmdGuZp4aw4B16jhMx443xOaNqSL2ZQJ4a4Wi+ Qcx1WMW/1YWDseDeObQbrEzFAW+1bK1oh8GMn9VOgzS7g57vrFiOc4V+c+VikL9L LyISlVWHIKA3Tfuiuq1U7ljLBktDA4m1GqMuu7yy9mqbk1WPMNZqdONo7Q55P7C9 J+0ewdBu9bM7/6P57guqTn2OdAE73oOd -----END CERTIFICATE-----Generated at Sun Dec 21 08:00:17 2025 by rpki-client