This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft File: 5xqfIU6Aybw7LSOf-LmqtxP27bc.mft (raw, json) Hash identifier: 5pYb2gNTfIdG3t3ho0SuETUyfMZCWqlOjpPiIWn9ebw= Subject key identifier: 0F:C7:0F:4F:E5:20:46:04:54:F5:28:81:D7:93:3D:F6:6D:D7:A8:73 Authority key identifier: E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 Certificate issuer: /CN=A91E8525/serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Certificate serial: 1A3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft Manifest number: 1A29 Signing time: Thu 18 Dec 2025 16:15:22 +0000 Manifest this update: Thu 18 Dec 2025 16:15:22 +0000 Manifest next update: Thu 25 Dec 2025 16:15:22 +0000 Files and hashes: 1: 5xqfIU6Aybw7LSOf-LmqtxP27bc.crl (hash: FCvamzU5PwHUeNWVkOA1DRChKXJfymZbJ59igOije2M=) 2: 3A21C144E51211EBB1225278C4F9AE02.roa (hash: nW5GBU8+whiRwJPpyl+4Uvg+meP7sM49SIVv5JyITRM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6716 (0x1a3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8525, serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Validity Not Before: Dec 18 16:15:22 2025 GMT Not After : Dec 25 16:15:22 2025 GMT Subject: CN=6944289a-583a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c5:4a:dd:8a:51:5a:2f:e1:d2:2a:b9:a4:c8: 37:41:e5:61:72:62:86:6f:ec:a4:8e:ef:2b:dd:17: 13:2c:be:81:c8:c8:44:74:eb:f8:ba:3c:c9:2d:53: 41:53:d1:21:51:1c:02:b4:66:31:8b:fe:04:c2:9e: ee:66:07:c1:e9:a5:6b:3d:84:c7:b5:14:67:f7:9b: e2:95:56:87:b8:2e:5e:be:4b:c7:b9:da:75:77:55: 0d:2a:04:57:92:36:98:80:67:64:55:a4:9e:94:84: ac:8c:16:3c:bd:ca:65:05:91:80:f9:a0:a0:49:1a: 64:0d:29:76:57:03:d0:28:6b:a9:63:cd:6a:cc:61: bb:7f:0f:ce:64:ec:39:5c:d1:6b:48:a4:da:27:eb: 31:87:36:01:64:22:ee:0c:7e:a5:70:15:a3:20:c2: ad:54:b8:76:73:d6:52:9c:43:3f:1c:6a:13:6d:32: 6c:75:67:fc:1f:85:b4:ba:c9:c6:78:19:27:97:e4: f6:ed:f3:40:2a:5a:ca:25:f0:29:a3:06:1f:a1:ab: fd:aa:9e:c9:78:79:7c:06:fa:91:7d:8e:93:8a:9a: 84:0b:b5:8a:87:7b:0a:43:22:04:90:98:0a:e2:dc: c4:68:ce:7d:60:c6:7c:bd:84:49:2b:4b:42:b2:e2: a2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C7:0F:4F:E5:20:46:04:54:F5:28:81:D7:93:3D:F6:6D:D7:A8:73 X509v3 Authority Key Identifier: keyid:E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:47:db:e5:d0:ce:1e:fb:c2:78:95:82:4c:78:71:ff:f9:cf: d8:b0:95:b6:42:65:82:63:9e:5e:ea:3a:3c:7f:33:87:e3:d9: 5e:f4:59:69:5d:3c:45:e9:c8:62:74:3d:9b:38:7b:4c:ff:07: c2:dc:5e:ca:51:ff:79:f1:6f:57:44:3d:7a:c6:b5:65:e4:69: 74:60:50:52:5c:85:dd:e2:bc:74:81:17:fa:50:34:61:42:7b: e0:0d:78:ab:7d:9a:ea:bc:24:ef:eb:90:35:05:65:8c:ae:e3: 64:37:a6:33:94:08:ce:89:c9:77:a3:57:48:99:3e:79:76:58: bf:3d:e7:e8:14:2a:58:09:30:6b:c9:6c:68:c8:0a:4e:46:b9: d1:26:23:12:cf:40:4f:f9:3f:2b:57:6d:70:6f:45:9a:b8:8e: 55:c8:40:14:10:4d:00:0c:a5:b1:9d:09:ba:22:b4:52:6f:fc: 66:0a:66:17:7c:8f:88:90:f6:5d:c6:50:ed:07:fa:69:58:9f: 06:7a:c8:b8:0a:95:9c:81:87:2c:c5:e0:39:f4:40:df:94:e9: 6f:6e:da:d9:e9:74:77:cd:50:a1:19:f0:83:38:ec:a1:41:40: 20:dd:1b:d8:35:e8:3a:57:74:8e:07:88:ae:ad:58:4f:2c:52: 7d:53:63:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1MjUxMTAvBgNVBAUTKEU3MUE5RjIxNEU4MEM5QkMzQjJEMjM5RkY4QjlBQUI3 MTNGNkVEQjcwHhcNMjUxMjE4MTYxNTIyWhcNMjUxMjI1MTYxNTIyWjAYMRYwFAYD VQQDDA02OTQ0Mjg5YS01ODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycVK3YpRWi/h0iq5pMg3QeVhcmKGb+ykju8r3RcTLL6ByMhEdOv4ujzJLVNB U9EhURwCtGYxi/4Ewp7uZgfB6aVrPYTHtRRn95vilVaHuC5evkvHudp1d1UNKgRX kjaYgGdkVaSelISsjBY8vcplBZGA+aCgSRpkDSl2VwPQKGupY81qzGG7fw/OZOw5 XNFrSKTaJ+sxhzYBZCLuDH6lcBWjIMKtVLh2c9ZSnEM/HGoTbTJsdWf8H4W0usnG eBknl+T27fNAKlrKJfApowYfoav9qp7JeHl8BvqRfY6TipqEC7WKh3sKQyIEkJgK 4tzEaM59YMZ8vYRJK0tCsuKivwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/HD0/l IEYEVPUogdeTPfZt16hzMB8GA1UdIwQYMBaAFOcanyFOgMm8Oy0jn/i5qrcT9u23 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODUyNS81MjIxMjYxMDYx MkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXlidzdMU09mLUxtcXR4UDI3 YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4cWZJVTZBeWJ3N0xTT2YtTG1xdHhQMjdiYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODUyNS81MjIxMjYxMDYxMkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXli dzdMU09mLUxtcXR4UDI3YmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCR9vl0M4e+8J4lYJMeHH/+c/YsJW2QmWCY55e6jo8fzOH49le9Flp XTxF6chidD2bOHtM/wfC3F7KUf958W9XRD16xrVl5Gl0YFBSXIXd4rx0gRf6UDRh QnvgDXirfZrqvCTv65A1BWWMruNkN6YzlAjOicl3o1dImT55dli/PefoFCpYCTBr yWxoyApORrnRJiMSz0BP+T8rV21wb0WauI5VyEAUEE0ADKWxnQm6IrRSb/xmCmYX fI+IkPZdxlDtB/ppWJ8Gesi4CpWcgYcsxeA59EDflOlvbtrZ6XR3zVChGfCDOOyh QUAg3RvYNeg6V3SOB4iurVhPLFJ9U2PX -----END CERTIFICATE-----Generated at Fri Dec 19 19:23:16 2025 by rpki-client