This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: 3KLyoVOka4WArlolOh16WHJxMQ6iE0YbcXBwAIW+JlE= Subject key identifier: 52:7A:0E:98:89:B6:89:6E:FE:91:67:5C:D7:2E:1D:C3:AE:F9:00:66 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 041B Signing time: Thu 18 Dec 2025 23:43:00 +0000 Manifest this update: Thu 18 Dec 2025 23:42:59 +0000 Manifest next update: Thu 25 Dec 2025 23:42:59 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: WS3sLvjLpbPQZKmky5XcQr/ZTTPQAg4M76ZII60gk+o=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 1kY42j3eWLAd8yp1AvznjQwJBoHaBnQrkaPK6EtSCdQ=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: XbxtLk1+2CfWndcMlMOnwCxgbfEchquqUDJGfTWj61E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:42:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Dec 18 23:42:59 2025 GMT Not After : Dec 25 23:42:59 2025 GMT Subject: CN=69449184-8474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:c3:e6:45:4b:f3:f8:f1:d4:b4:1e:19:b9: 75:90:ca:51:24:7e:f0:8b:1e:1d:3c:9b:1e:d5:49: 4e:6f:cb:65:6d:6b:95:ff:64:4e:cd:83:25:dd:e3: 18:18:98:b6:b7:da:50:66:98:23:3e:ca:f6:65:7e: 36:61:1a:26:6d:2a:7c:ac:c0:50:c4:16:e8:f8:ef: 93:18:80:32:bf:d1:4f:0e:ee:2b:72:e9:21:b3:7d: db:4c:f1:ee:1f:8a:7e:b8:e9:7c:65:dc:3f:3f:6b: c1:2c:0e:ee:42:09:57:4d:d4:5a:b4:4d:4a:3a:85: 27:63:7a:cd:77:1b:22:f4:17:68:e7:6d:a3:45:34: c1:38:c5:78:1e:38:17:18:e9:ec:bb:1f:7b:39:cb: 39:67:0f:b6:de:f7:ef:84:4b:be:cf:8f:49:e5:70: ef:c1:a1:59:db:69:62:e4:7b:3f:a9:7b:aa:64:69: a5:d8:6a:d9:ba:71:b2:ee:00:80:f4:34:62:7a:b8: 84:12:15:81:53:71:44:2b:d7:ce:e9:45:fe:ba:4c: 16:80:7e:a1:62:6e:f4:6e:47:83:b8:3e:46:97:ae: 56:1a:79:a4:f4:e2:c4:f4:87:9b:b0:b0:d1:83:ea: 33:48:10:a7:1a:84:1a:f8:ee:df:e8:13:34:a1:65: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7A:0E:98:89:B6:89:6E:FE:91:67:5C:D7:2E:1D:C3:AE:F9:00:66 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:2a:9a:61:e4:27:6b:71:d7:27:e6:06:8c:a0:df:33:31:e0: 36:af:d3:ab:aa:95:0f:0a:5c:98:41:40:ef:15:16:bf:89:18: 32:c7:40:49:a0:22:03:86:9a:d0:e4:0b:dc:1f:6e:14:56:96: 55:91:d4:c0:1a:eb:5f:d5:0e:37:6a:9e:2e:73:a3:d1:7d:6f: 27:38:0d:06:f6:19:6b:fa:c2:3c:65:bc:fa:4c:59:bc:20:2e: 6d:0e:81:2f:15:ed:3e:fa:98:05:02:e8:06:95:e4:7f:74:0f: fb:e5:1f:6a:9f:7f:e6:f8:3f:5e:82:8b:67:a4:18:32:ef:c0: 6c:cc:2a:af:dc:69:da:e2:0f:c8:d7:50:45:09:97:d9:f2:a8: 62:e9:c1:c2:d9:18:da:ca:0d:f2:8b:0f:de:82:fb:ff:a6:28: 1a:60:f7:73:44:05:20:78:1c:a5:8c:d1:bb:6e:a6:c0:df:54: ea:0a:71:6d:e3:7e:7c:85:1e:46:de:1c:b4:ad:20:74:40:9f: 42:60:8d:97:7c:97:bc:ab:9f:53:27:4f:f7:ff:39:9e:88:90: 87:bf:d0:8f:4c:2f:1d:b7:d9:70:30:a0:0c:69:15:de:6a:b6: 6e:7a:bf:32:d4:95:22:e1:27:40:6e:f8:91:68:c0:37:bd:56: 3d:1b:3b:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUxMjE4MjM0MjU5WhcNMjUxMjI1MjM0MjU5WjAYMRYwFAYD VQQDDA02OTQ0OTE4NC04NDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtevD5kVL8/jx1LQeGbl1kMpRJH7wix4dPJse1UlOb8tlbWuV/2ROzYMl3eMY GJi2t9pQZpgjPsr2ZX42YRombSp8rMBQxBbo+O+TGIAyv9FPDu4rcukhs33bTPHu H4p+uOl8Zdw/P2vBLA7uQglXTdRatE1KOoUnY3rNdxsi9Bdo522jRTTBOMV4HjgX GOnsux97Ocs5Zw+23vfvhEu+z49J5XDvwaFZ22li5Hs/qXuqZGml2GrZunGy7gCA 9DRieriEEhWBU3FEK9fO6UX+ukwWgH6hYm70bkeDuD5Gl65WGnmk9OLE9IebsLDR g+ozSBCnGoQa+O7f6BM0oWWXqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJ6DpiJ tolu/pFnXNcuHcOu+QBmMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Kpph5Cdrcdcn5gaMoN8zMeA2r9OrqpUPClyYQUDvFRa/iRgyx0BJ oCIDhprQ5AvcH24UVpZVkdTAGutf1Q43ap4uc6PRfW8nOA0G9hlr+sI8Zbz6TFm8 IC5tDoEvFe0++pgFAugGleR/dA/75R9qn3/m+D9egotnpBgy78BszCqv3Gna4g/I 11BFCZfZ8qhi6cHC2Rjayg3yiw/egvv/pigaYPdzRAUgeByljNG7bqbA31TqCnFt 4358hR5G3hy0rSB0QJ9CYI2XfJe8q59TJ0/3/zmeiJCHv9CPTC8dt9lwMKAMaRXe arZuer8y1JUi4SdAbviRaMA3vVY9Gztn -----END CERTIFICATE-----Generated at Sat Dec 20 04:59:51 2025 by rpki-client