This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft File: 5P3k1jhc-jqHPsReepFHztMJvAI.mft (raw, json) Hash identifier: Wj1esI3/2/ZPhf8/M+FAc+DIdijdNt5fay7akINEt/g= Subject key identifier: 07:B9:47:AD:DC:6D:62:25:D9:41:2F:21:64:6F:52:72:46:1E:25:52 Authority key identifier: E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 Certificate issuer: /CN=A91EC46B/serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Certificate serial: 06DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft Manifest number: 06D2 Signing time: Thu 18 Dec 2025 21:30:38 +0000 Manifest this update: Thu 18 Dec 2025 21:30:37 +0000 Manifest next update: Thu 25 Dec 2025 21:30:37 +0000 Files and hashes: 1: 5P3k1jhc-jqHPsReepFHztMJvAI.crl (hash: pDTYupDEHLUgGLo9y9LSwWeCg67EMQ95SmI1iiFtdYU=) 2: 18ED6F18862211EB99005123C4F9AE02.roa (hash: 90VtaliYuYSpWhN/aywXhHAjbblGVidwwylxbvYodJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC46B, serialNumber=E4FDE4D6385CFA3A873EC45E7A9147CED309BC02 Validity Not Before: Dec 18 21:30:37 2025 GMT Not After : Dec 25 21:30:37 2025 GMT Subject: CN=6944727e-8a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b4:ac:55:14:03:ac:85:10:52:9c:6f:4f:46: 42:c4:9c:cf:9b:43:ac:88:3a:c7:94:46:99:7c:eb: 2e:fd:c7:24:06:0e:79:b0:8f:54:2c:20:67:0d:b5: 08:8f:86:1a:ac:a2:98:c2:79:bd:11:2f:7a:5c:c6: dd:2a:65:65:54:b4:c2:d0:51:b1:99:a4:63:9d:26: 87:4e:df:74:b9:de:cf:1d:b5:31:64:ea:6c:3d:2a: 76:5d:00:8c:79:d4:2b:73:6b:4b:dc:00:63:db:d8: c9:c5:b4:fc:28:e3:55:95:d8:29:d0:b8:0c:b2:3a: 11:34:7e:d8:cf:5b:f2:e0:db:31:99:fc:f9:7c:61: f7:ea:65:ed:42:42:2e:39:9d:d6:d2:63:22:c6:d3: 0b:f7:ea:4c:e8:f0:c7:80:93:a1:81:53:f8:1e:48: 24:0c:4a:f4:2f:ad:d4:ea:73:e7:77:8f:ab:bc:0c: 19:bb:11:42:20:2b:d9:5c:71:23:20:0f:c6:2c:ca: f0:24:39:d8:9b:84:c3:10:c1:20:13:b4:e1:fa:44: 11:90:c7:ec:fc:50:b6:a3:f7:f6:d0:8b:fe:60:d7: b6:40:bd:a2:4c:f2:26:23:25:50:4a:1e:d9:b7:0a: df:5a:6c:91:91:f2:d4:6b:0f:fd:0f:92:8a:11:68: 6d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B9:47:AD:DC:6D:62:25:D9:41:2F:21:64:6F:52:72:46:1E:25:52 X509v3 Authority Key Identifier: keyid:E4:FD:E4:D6:38:5C:FA:3A:87:3E:C4:5E:7A:91:47:CE:D3:09:BC:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5P3k1jhc-jqHPsReepFHztMJvAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC46B/F685BC9C7FC211EBA714542AC4F9AE02/5P3k1jhc-jqHPsReepFHztMJvAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:e3:8c:0f:04:aa:32:69:e9:0c:57:c9:b7:56:7d:4c:a8:d3: e5:15:fe:a3:7a:3a:95:dc:41:71:c2:6d:54:b1:10:a5:51:43: ee:77:77:88:82:bb:b6:cd:9e:e2:54:85:8d:35:2c:6b:11:da: ad:75:56:1c:38:25:e8:16:ec:6e:59:a5:d3:e9:88:10:85:27: a9:fd:6c:0e:70:49:18:fe:c1:a6:da:10:7c:a3:73:a8:d7:fa: ba:56:0e:30:6c:c4:8c:7f:62:e4:63:1b:e6:fb:e6:9c:1a:9a: 4d:bb:01:ec:ad:b7:4b:8b:be:f4:e6:15:08:e3:2b:fc:e0:6e: 78:81:bc:4a:b4:2e:54:96:a6:7f:41:e5:b9:70:e8:4d:df:05: 4b:56:b9:ff:2e:cf:d2:e3:31:6d:b9:b2:f9:78:b3:59:73:bc: 36:aa:b5:e6:0f:5c:24:93:eb:f4:eb:d4:8d:25:5a:4e:fc:90: 9d:96:bc:5b:aa:48:4b:6f:78:7f:39:3c:a8:0f:d7:73:cc:7e: 34:54:e6:be:7f:bc:f2:1e:0a:22:2d:6f:fc:38:bb:df:d4:10: 5b:2a:ab:69:f8:93:da:4b:05:2a:a1:80:d9:f4:9f:a1:80:99: 56:a0:62:bc:ae:f9:32:98:6f:b6:29:da:0c:d0:42:6b:ca:88: 96:a7:25:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0NkIxMTAvBgNVBAUTKEU0RkRFNEQ2Mzg1Q0ZBM0E4NzNFQzQ1RTdBOTE0N0NF RDMwOUJDMDIwHhcNMjUxMjE4MjEzMDM3WhcNMjUxMjI1MjEzMDM3WjAYMRYwFAYD VQQDDA02OTQ0NzI3ZS04YTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjbSsVRQDrIUQUpxvT0ZCxJzPm0OsiDrHlEaZfOsu/cckBg55sI9ULCBnDbUI j4YarKKYwnm9ES96XMbdKmVlVLTC0FGxmaRjnSaHTt90ud7PHbUxZOpsPSp2XQCM edQrc2tL3ABj29jJxbT8KONVldgp0LgMsjoRNH7Yz1vy4Nsxmfz5fGH36mXtQkIu OZ3W0mMixtML9+pM6PDHgJOhgVP4HkgkDEr0L63U6nPnd4+rvAwZuxFCICvZXHEj IA/GLMrwJDnYm4TDEMEgE7Th+kQRkMfs/FC2o/f20Iv+YNe2QL2iTPImIyVQSh7Z twrfWmyRkfLUaw/9D5KKEWhtvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAe5R63c bWIl2UEvIWRvUnJGHiVSMB8GA1UdIwQYMBaAFOT95NY4XPo6hz7EXnqRR87TCbwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzQ2Qi9GNjg1QkM5QzdG QzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1qcUhQc1JlZXBGSHp0TUp2 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVQM2sxamhjLWpxSFBzUmVlcEZIenRNSnZBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzQ2Qi9GNjg1QkM5QzdGQzIxMUVCQTcxNDU0MkFDNEY5QUUwMi81UDNrMWpoYy1q cUhQc1JlZXBGSHp0TUp2QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB144wPBKoyaekMV8m3Vn1MqNPlFf6jejqV3EFxwm1UsRClUUPud3eI gru2zZ7iVIWNNSxrEdqtdVYcOCXoFuxuWaXT6YgQhSep/WwOcEkY/sGm2hB8o3Oo 1/q6Vg4wbMSMf2LkYxvm++acGppNuwHsrbdLi7705hUI4yv84G54gbxKtC5UlqZ/ QeW5cOhN3wVLVrn/Ls/S4zFtubL5eLNZc7w2qrXmD1wkk+v069SNJVpO/JCdlrxb qkhLb3h/OTyoD9dzzH40VOa+f7zyHgoiLW/8OLvf1BBbKqtp+JPaSwUqoYDZ9J+h gJlWoGK8rvkymG+2KdoM0EJryoiWpyVa -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:35 2025 by rpki-client