This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft File: 5OTCQkd4XDQv81kH9-EcSrs5i4M.mft (raw, json) Hash identifier: 11VspR0dA2Qo023Kgq+0TjMQTpVeZU1uufExTJ6TFOc= Subject key identifier: 7E:08:B9:93:B9:F3:90:D5:13:22:51:86:CC:A3:09:D4:DD:8F:57:43 Authority key identifier: E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 Certificate issuer: /CN=A91E85F1/serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft Manifest number: 91 Signing time: Wed 31 Dec 2025 05:34:42 +0000 Manifest this update: Wed 31 Dec 2025 05:34:42 +0000 Manifest next update: Wed 07 Jan 2026 05:34:42 +0000 Files and hashes: 1: 5OTCQkd4XDQv81kH9-EcSrs5i4M.crl (hash: YYNkSdIJtuCCUgCZTY6AEfCwSoCw6t3tIqaQ0lzHk2g=) 2: 212E0B520DFE11F0B266963AC4F9AE02.roa (hash: dDhbAceYPTZoJoEOB7Q4AGN3lBigI7VE7UVJ4rk45bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 05:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Validity Not Before: Dec 31 05:34:42 2025 GMT Not After : Jan 7 05:34:42 2026 GMT Subject: CN=6954b5f2-38d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:21:25:b5:d0:75:96:ef:be:15:1d:7b:9d:88: de:73:f2:db:c6:8f:12:2a:ef:d4:26:45:d7:84:7f: 01:f9:00:ba:b0:78:ac:21:24:0d:14:a6:61:8f:c1: f9:d3:ef:a2:be:8d:eb:89:1b:09:38:f8:cb:66:af: 0d:08:51:b1:8e:f3:0b:ae:e1:4a:12:a4:95:b4:23: 26:32:0e:68:30:4e:60:db:12:f2:19:e2:36:74:5a: 25:fd:4c:07:e4:84:47:0c:f3:78:8c:c2:e9:07:a9: 0b:9a:b7:86:6c:3c:e1:8b:74:4d:32:20:b4:81:39: 7b:08:80:5f:02:f6:7b:0d:7d:a7:2c:f4:ea:38:c7: 05:1d:49:19:a7:70:36:a6:44:a9:5e:49:8d:d9:48: 76:7e:3b:9d:b4:e8:b5:b6:39:59:6f:74:8d:00:03: 7c:0f:5b:70:33:77:e8:7f:6e:6f:7e:bf:b3:04:69: c6:49:a2:24:14:2d:6a:0c:ba:2b:73:11:9c:38:e2: 8a:a1:95:9b:09:ef:2c:30:c9:a1:dd:75:5a:c1:b0: 83:be:4c:88:a8:78:61:95:53:c9:f5:7c:a1:b4:6f: 15:18:57:7e:84:f6:08:72:bc:32:cf:6f:f0:bc:78: 31:c2:10:c9:82:b2:b5:79:7d:9c:8b:c0:82:58:26: b8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:08:B9:93:B9:F3:90:D5:13:22:51:86:CC:A3:09:D4:DD:8F:57:43 X509v3 Authority Key Identifier: keyid:E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:04:7b:ab:26:bd:4c:0b:65:5c:0f:74:e9:45:01:04:a6:46: 1d:7a:f4:ea:e2:9c:4c:85:8a:2a:da:0c:e5:e1:99:2f:82:2d: 60:e4:17:92:fe:96:66:ff:81:8f:d7:99:7b:4a:cd:4b:c7:66: a3:57:c9:c6:7a:6d:b4:9d:cb:8a:c9:76:00:1e:3c:d4:c3:ed: 05:05:16:59:e8:13:41:07:ba:22:7f:f2:a4:09:77:0b:58:ef: 1a:52:c9:6f:e1:7c:d7:0a:a6:2c:e4:9a:46:5f:89:0c:20:e4: 5b:4d:26:ad:da:23:f6:05:13:02:a0:71:eb:f0:33:e0:3a:5a: 80:b4:0b:ed:95:2f:cd:0d:53:ae:8b:46:89:2b:70:5b:c1:71: 90:3c:e3:69:43:7e:ac:00:7f:d4:9d:12:55:d1:f8:72:d2:43: 1a:c6:f8:55:86:7f:5c:4c:22:0a:a8:fe:76:db:ca:2b:a1:6f: 1c:68:67:ce:cc:53:e6:a0:0f:89:fb:a9:73:c4:45:65:c3:e6: ef:a8:e4:1f:13:3e:8c:cb:00:09:ba:10:9c:1a:17:ab:a3:94: ca:a2:1f:b9:a9:4d:3d:b9:3f:8c:c5:7e:c6:d6:c6:bb:c0:73: 1c:35:57:09:28:e9:33:1b:b3:25:37:7c:ec:a9:98:70:f2:96: ef:a7:a7:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1RjExMTAvBgNVBAUTKEU0RTRDMjQyNDc3ODVDMzQyRkYzNTkwN0Y3RTExQzRB QkIzOThCODMwHhcNMjUxMjMxMDUzNDQyWhcNMjYwMTA3MDUzNDQyWjAYMRYwFAYD VQQDDA02OTU0YjVmMi0zOGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSEltdB1lu++FR17nYjec/Lbxo8SKu/UJkXXhH8B+QC6sHisISQNFKZhj8H5 0++ivo3riRsJOPjLZq8NCFGxjvMLruFKEqSVtCMmMg5oME5g2xLyGeI2dFol/UwH 5IRHDPN4jMLpB6kLmreGbDzhi3RNMiC0gTl7CIBfAvZ7DX2nLPTqOMcFHUkZp3A2 pkSpXkmN2Uh2fjudtOi1tjlZb3SNAAN8D1twM3fof25vfr+zBGnGSaIkFC1qDLor cxGcOOKKoZWbCe8sMMmh3XVawbCDvkyIqHhhlVPJ9XyhtG8VGFd+hPYIcrwyz2/w vHgxwhDJgrK1eX2ci8CCWCa4+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4IuZO5 85DVEyJRhsyjCdTdj1dDMB8GA1UdIwQYMBaAFOTkwkJHeFw0L/NZB/fhHEq7OYuD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVGMS82MjIwNjMzQzBE RkMxMUYwQTFEOTgwNTNDNEY5QUUwMi81T1RDUWtkNFhEUXY4MWtIOS1FY1NyczVp NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVPVENRa2Q0WERRdjgxa0g5LUVjU3JzNWk0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVGMS82MjIwNjMzQzBERkMxMUYwQTFEOTgwNTNDNEY5QUUwMi81T1RDUWtkNFhE UXY4MWtIOS1FY1NyczVpNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBBHurJr1MC2VcD3TpRQEEpkYdevTq4pxMhYoq2gzl4Zkvgi1g5BeS /pZm/4GP15l7Ss1Lx2ajV8nGem20ncuKyXYAHjzUw+0FBRZZ6BNBB7oif/KkCXcL WO8aUslv4XzXCqYs5JpGX4kMIORbTSat2iP2BRMCoHHr8DPgOlqAtAvtlS/NDVOu i0aJK3BbwXGQPONpQ36sAH/UnRJV0fhy0kMaxvhVhn9cTCIKqP5228oroW8caGfO zFPmoA+J+6lzxEVlw+bvqOQfEz6MywAJuhCcGhero5TKoh+5qU09uT+MxX7G1sa7 wHMcNVcJKOkzG7MlN3zsqZhw8pbvp6fr -----END CERTIFICATE-----Generated at Wed Dec 31 11:55:20 2025 by rpki-client