This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: XrpDlG6fAudPlmbeme8lAtNxZi9dAIgnpZkwS+zqaMY= Subject key identifier: 85:A0:71:60:13:BE:BA:D1:EC:2E:DA:F4:28:11:24:D9:D9:CA:36:31 Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0CBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0CB1 Signing time: Thu 18 Dec 2025 18:04:04 +0000 Manifest this update: Thu 18 Dec 2025 18:04:04 +0000 Manifest next update: Thu 25 Dec 2025 18:04:04 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: SRVceFTpu5mKlp4GZ0YY6M0sIyMIFZ1Syh6aWMYyOVc=) 2: F3529CDCAE1511EE92D99E46C4F9AE02.roa (hash: hTD7DjMK2EnPCWqJypUdiJk7jUHRPt10GcfYU8sN4po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Dec 18 18:04:04 2025 GMT Not After : Dec 25 18:04:04 2025 GMT Subject: CN=69444214-1a91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0a:86:76:e7:21:f7:c4:f1:62:d7:a6:d3:36: f8:7b:67:d6:b7:f9:7e:a6:4c:ef:f7:df:d3:f3:5d: 18:8a:cc:e4:65:9e:14:d4:41:37:75:b9:b7:6b:28: 9d:f8:94:55:b8:6c:86:25:87:e1:2d:b3:e2:d1:be: c9:ac:45:42:7d:4a:ed:94:2e:d7:83:91:a5:cd:9e: 02:aa:b7:25:8e:75:c7:5b:6a:05:64:dd:f1:eb:c0: de:57:85:ee:86:a1:da:6b:62:19:64:22:85:be:f9: f8:7a:9a:6a:44:d8:f5:b8:04:fb:5b:42:e8:40:1b: 85:b9:50:c7:27:02:f7:1e:15:9d:5f:64:73:61:fa: 2f:ee:01:2a:37:8c:64:97:54:09:ac:42:01:1e:f5: 4c:8f:bc:e6:e2:76:6a:68:7b:20:a5:72:ee:59:f3: bf:b4:2f:1c:e4:67:4e:80:7e:71:e1:bd:eb:65:a0: 62:0b:18:0e:87:2e:e4:0e:8c:d6:92:9f:59:2e:b0: 6b:ae:c1:46:7d:25:5d:f6:b2:ab:e0:25:f8:8f:2a: 1f:dc:b6:bc:6b:2f:53:36:df:c2:ef:b6:85:6b:e9: a4:c6:84:66:45:4c:6d:22:9a:06:ea:15:58:35:bc: 64:e9:64:c4:91:c3:e1:e4:5f:b0:3a:ed:6c:63:15: b0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A0:71:60:13:BE:BA:D1:EC:2E:DA:F4:28:11:24:D9:D9:CA:36:31 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:bd:55:9a:d4:b0:35:f3:3b:bd:e6:97:1b:93:db:c2:e6:19: a6:d7:95:af:4e:53:19:e7:ee:99:c7:0b:4a:ac:f3:41:08:e8: bb:fe:a0:f4:61:d1:36:92:f6:03:51:12:39:6a:64:a8:9a:8c: 47:a3:ba:06:53:da:15:86:cd:34:9b:e2:03:c8:c2:29:54:31: 31:6b:54:af:f8:92:b8:09:4c:72:47:89:89:97:70:58:73:74: 8f:37:f0:97:6c:25:27:51:23:72:76:3f:f1:6d:59:2d:41:19: eb:f4:64:51:37:2f:38:90:d8:df:f3:3d:f6:e7:e1:10:13:7c: 8a:53:0e:c0:9a:5e:95:7e:35:74:ce:e8:b9:8b:cf:16:7b:40: f8:61:1a:8b:6e:83:e3:23:2f:da:8d:79:c2:02:59:09:4a:8d: a5:3e:12:a9:af:e5:94:8b:4e:de:d9:18:74:04:3f:45:5c:34: 99:b4:27:ed:57:2a:76:00:46:d7:b1:58:c2:29:0c:cd:09:f0: 9f:c1:20:90:83:7a:70:7e:2f:88:be:5a:6d:2a:37:37:76:d7: dd:b8:32:ec:24:6a:ea:e4:39:2a:15:a7:15:fe:4a:2a:f4:e5: cc:4c:e5:58:9f:ce:48:dc:c9:39:ac:48:f2:86:48:e4:c9:3c: d0:f1:e9:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjUxMjE4MTgwNDA0WhcNMjUxMjI1MTgwNDA0WjAYMRYwFAYD VQQDDA02OTQ0NDIxNC0xYTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowqGduch98TxYtem0zb4e2fWt/l+pkzv99/T810YiszkZZ4U1EE3dbm3ayid +JRVuGyGJYfhLbPi0b7JrEVCfUrtlC7Xg5GlzZ4CqrcljnXHW2oFZN3x68DeV4Xu hqHaa2IZZCKFvvn4eppqRNj1uAT7W0LoQBuFuVDHJwL3HhWdX2RzYfov7gEqN4xk l1QJrEIBHvVMj7zm4nZqaHsgpXLuWfO/tC8c5GdOgH5x4b3rZaBiCxgOhy7kDozW kp9ZLrBrrsFGfSVd9rKr4CX4jyof3La8ay9TNt/C77aFa+mkxoRmRUxtIpoG6hVY Nbxk6WTEkcPh5F+wOu1sYxWwHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWgcWAT vrrR7C7a9CgRJNnZyjYxMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhvVWa1LA18zu95pcbk9vC5hmm15WvTlMZ5+6ZxwtKrPNBCOi7/qD0 YdE2kvYDURI5amSomoxHo7oGU9oVhs00m+IDyMIpVDExa1Sv+JK4CUxyR4mJl3BY c3SPN/CXbCUnUSNydj/xbVktQRnr9GRRNy84kNjf8z325+EQE3yKUw7Aml6VfjV0 zui5i88We0D4YRqLboPjIy/ajXnCAlkJSo2lPhKpr+WUi07e2Rh0BD9FXDSZtCft Vyp2AEbXsVjCKQzNCfCfwSCQg3pwfi+IvlptKjc3dtfduDLsJGrq5DkqFacV/koq 9OXMTOVYn85I3Mk5rEjyhkjkyTzQ8ekV -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:28 2025 by rpki-client