This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft File: 5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft (raw, json) Hash identifier: Qoc2fw07XtU5k9/jJsAY1/sxvOBlNWdxaAgB3La3Fm4= Subject key identifier: DF:6B:0E:4E:FE:E1:FD:7D:3C:C7:F6:80:AD:ED:7C:8A:8A:7F:0B:E2 Authority key identifier: E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF Certificate issuer: /CN=A91D60CF/serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft Manifest number: 0119 Signing time: Fri 19 Dec 2025 03:54:10 +0000 Manifest this update: Fri 19 Dec 2025 03:54:10 +0000 Manifest next update: Fri 26 Dec 2025 03:54:10 +0000 Files and hashes: 1: 5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl (hash: ADRIcXVC7I989XZFSnQum6Xi71O3EgHqz37WY95ZFA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=E64E02177435AEF1CBFD624E2667E6969AAFAAFF Validity Not Before: Dec 19 03:54:10 2025 GMT Not After : Dec 26 03:54:10 2025 GMT Subject: CN=6944cc62-1ed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:00:dd:30:1b:6a:87:28:4a:38:b5:79:e8:17: bb:f5:b4:b8:62:80:6a:4a:3c:d6:a0:92:7a:be:8e: 0e:41:ca:ab:8d:11:6f:32:8d:9a:1d:45:45:10:a3: dc:f1:b5:d2:09:ce:fb:3f:80:99:3c:ca:05:4f:ba: 06:e5:78:6f:c1:d0:3e:e8:84:71:3d:94:f5:1a:0f: 50:e7:69:18:30:29:b5:c5:3b:6f:85:4d:0b:48:4d: 00:85:cb:fb:2e:9a:e3:e5:1c:b5:6d:2a:f6:c9:a9: 5f:8e:9e:ef:b1:57:d9:3b:c5:89:b5:9e:ab:05:19: ed:77:e1:33:4c:cb:9a:7e:8a:92:6e:70:39:8a:a4: 27:3b:e0:4d:64:70:f5:64:6d:4c:06:52:84:42:46: 17:70:2d:67:31:36:33:77:b0:aa:9c:58:84:6d:6e: 38:19:c7:d8:0f:36:58:65:f5:2f:ef:b6:b2:56:59: 3c:12:c5:53:9b:0e:38:97:d9:a4:22:6d:2c:3c:6c: da:d5:b5:c2:9a:3d:b9:aa:3a:4b:0c:f3:ab:26:a0: a8:f8:d7:b2:f1:4f:61:06:1e:35:9d:9d:30:9f:33: 24:4f:57:15:4e:d5:ce:e1:54:fe:b3:77:03:dc:64: 5f:c5:b1:11:54:ad:38:04:3a:7a:dc:f0:a7:05:e3: 6f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:6B:0E:4E:FE:E1:FD:7D:3C:C7:F6:80:AD:ED:7C:8A:8A:7F:0B:E2 X509v3 Authority Key Identifier: keyid:E6:4E:02:17:74:35:AE:F1:CB:FD:62:4E:26:67:E6:96:9A:AF:AA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/EF8137E42AFC11EFA0243C4AC4F9AE02/5k4CF3Q1rvHL_WJOJmfmlpqvqv8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:6a:77:a6:ce:49:ee:f8:31:44:82:a5:e7:13:03:96:e0:3b: 5b:b2:b8:44:a5:8e:1f:e7:d9:20:08:8b:7b:98:32:89:5d:56: 98:a2:71:32:d9:03:73:09:a7:ca:ee:3e:50:de:12:8d:17:07: 86:4d:f7:68:dd:e7:e0:7c:88:ee:35:79:ad:3e:ff:91:82:a9: d8:9d:c7:b0:1e:7f:da:91:3f:0a:00:f0:07:f5:3d:31:f7:5b: 52:b4:7d:75:da:7f:83:ba:7c:db:2b:92:4e:d3:c4:78:df:b4: 11:e4:20:c6:38:31:06:ca:3c:0e:1a:64:74:eb:15:f6:15:6d: c3:06:45:9a:e3:eb:9a:09:22:d3:b7:db:02:a6:6f:8f:2c:b1: d9:64:b4:29:73:5e:bd:f7:ec:4c:fe:66:37:3f:4b:7a:a4:ee: 67:5c:95:a2:29:f7:dc:bd:a7:b9:86:ff:a2:19:e1:dc:c2:6c: 76:0d:0f:e9:41:74:b7:5e:3c:20:63:8a:34:12:4a:72:21:7a: d5:1e:95:4c:1e:e8:a1:b2:30:73:0f:e7:2d:d7:26:9b:ff:ab: 26:a2:95:c0:b6:08:be:14:74:00:06:0f:a9:4b:39:66:9a:47: 81:97:1b:44:9c:97:08:dd:7b:44:33:cd:c0:33:e5:ac:ef:ea: b4:87:36:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKEU2NEUwMjE3NzQzNUFFRjFDQkZENjI0RTI2NjdFNjk2 OUFBRkFBRkYwHhcNMjUxMjE5MDM1NDEwWhcNMjUxMjI2MDM1NDEwWjAYMRYwFAYD VQQDDA02OTQ0Y2M2Mi0xZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwDdMBtqhyhKOLV56Be79bS4YoBqSjzWoJJ6vo4OQcqrjRFvMo2aHUVFEKPc 8bXSCc77P4CZPMoFT7oG5XhvwdA+6IRxPZT1Gg9Q52kYMCm1xTtvhU0LSE0Ahcv7 Lprj5Ry1bSr2yalfjp7vsVfZO8WJtZ6rBRntd+EzTMuafoqSbnA5iqQnO+BNZHD1 ZG1MBlKEQkYXcC1nMTYzd7CqnFiEbW44GcfYDzZYZfUv77ayVlk8EsVTmw44l9mk Im0sPGza1bXCmj25qjpLDPOrJqCo+Ney8U9hBh41nZ0wnzMkT1cVTtXO4VT+s3cD 3GRfxbERVK04BDp63PCnBeNvoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9rDk7+ 4f19PMf2gK3tfIqKfwviMB8GA1UdIwQYMBaAFOZOAhd0Na7xy/1iTiZn5paar6r/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FRjgxMzdFNDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi81azRDRjNRMXJ2SExfV0pPSm1mbWxwcXZx djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrNENGM1ExcnZITF9XSk9KbWZtbHBxdnF2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FRjgxMzdFNDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi81azRDRjNRMXJ2 SExfV0pPSm1mbWxwcXZxdjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJanemzknu+DFEgqXnEwOW4DtbsrhEpY4f59kgCIt7mDKJXVaYonEy 2QNzCafK7j5Q3hKNFweGTfdo3efgfIjuNXmtPv+RgqnYncewHn/akT8KAPAH9T0x 91tStH112n+DunzbK5JO08R437QR5CDGODEGyjwOGmR06xX2FW3DBkWa4+uaCSLT t9sCpm+PLLHZZLQpc1699+xM/mY3P0t6pO5nXJWiKffcvae5hv+iGeHcwmx2DQ/p QXS3XjwgY4o0EkpyIXrVHpVMHuihsjBzD+ct1yab/6smopXAtgi+FHQABg+pSzlm mkeBlxtEnJcI3XtEM83AM+Ws7+q0hzZu -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:10 2025 by rpki-client