This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: 8v6e/OmvBJmOQthQw0ucwNtGAcRbUdENOO9mnTJrJYA= Subject key identifier: D8:6F:25:81:D4:44:B1:F6:21:23:67:4F:A9:E9:1F:D2:4C:D7:1F:6F Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 0DBD3665ACF7D02DCEE53ACFB767BAFAC3AA5064 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 01F6 Signing time: Sun 21 Dec 2025 01:25:32 +0000 Manifest this update: Sun 21 Dec 2025 01:20:32 +0000 Manifest next update: Mon 22 Dec 2025 03:50:32 +0000 Files and hashes: 1: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (hash: 2pHYFNhpresl2Qe+bmQCdeuqTmZNLu6JpjLmSUgR1DM=) 2: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 3: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: ookmbsWFbg+9xHZ1MlZYR8C8SeTg9Fi1QoqMLsxk6Xs=) 4: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: HGFsE6Gsz7OH2XwtzZYUQVsQsZrY2UEUP0y2at048i0=) 5: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 6: 34332e3235322e32302e302f32342d3234203d3e203134363138.roa (hash: POeaLZ7jyGbDhNwka17vD8hm5iiL/jnjTj3d8a5jHPw=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:bd:36:65:ac:f7:d0:2d:ce:e5:3a:cf:b7:67:ba:fa:c3:aa:50:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Dec 21 01:20:32 2025 GMT Not After : Dec 22 03:50:32 2025 GMT Subject: CN=D86F2581D444B1F62123674FA9E91FD24CD71F6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:56:51:e2:67:60:0b:b3:45:9d:41:6c:fe:8a: 54:3b:16:5b:08:8b:6f:c2:b6:24:6c:4a:0e:fc:bb: c7:28:ad:4c:76:e8:dd:f3:91:6f:71:14:4b:b0:1a: 7b:3d:7d:72:04:71:1b:8d:98:b3:68:6f:74:cb:7e: 1b:e9:03:77:d5:5b:eb:c0:10:b4:fd:1c:80:e7:8c: 50:26:47:82:f5:9d:4e:86:ec:17:b0:af:e3:79:97: f7:d2:62:81:ec:02:a1:07:dd:9b:78:50:0f:3e:99: 2b:a5:36:c5:90:b7:0b:2c:2d:48:b9:c3:bc:59:ab: 98:79:04:af:ff:e2:11:64:63:25:a0:42:3e:71:19: 61:81:10:df:ed:08:97:18:f8:14:27:70:ec:5b:51: f6:a9:c2:23:a5:ff:a9:cb:66:ca:54:8d:b1:10:7a: 0a:4b:65:72:6a:c8:1c:34:a0:70:95:05:b2:7d:6f: 37:5f:70:15:ee:d0:30:37:64:d2:36:55:46:a1:63: e2:0c:82:9f:a1:59:62:4f:95:e8:5c:8a:42:ba:2e: f4:64:fe:68:66:57:6b:03:ac:ac:ee:43:b6:10:e1: 3f:ab:2f:87:e6:75:ad:98:f9:de:72:44:da:19:0a: bb:fb:ea:8f:20:fc:47:fb:a0:29:1e:f9:9a:a2:e3: 5f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6F:25:81:D4:44:B1:F6:21:23:67:4F:A9:E9:1F:D2:4C:D7:1F:6F X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:97:64:f0:53:da:c8:ec:21:1a:b3:04:7d:15:02:42:ff:39: 1d:8a:3c:4f:ba:c0:0a:da:80:54:97:34:33:d6:ed:6e:d6:6b: ad:f6:cb:63:4d:8a:ad:d1:a1:37:40:5b:3e:c8:a4:f6:37:89: d2:c4:31:8b:0f:2d:4d:00:a1:ba:f4:77:d7:6a:f1:f4:10:38: 46:c2:0b:5b:6c:1d:10:9d:46:34:f2:fb:7b:1c:de:23:6e:ac: 12:4a:c1:2a:a9:8d:b7:78:d6:37:9e:b8:d6:47:c0:82:87:ef: dd:b7:a7:39:8d:95:43:75:00:7a:76:88:22:54:70:a7:de:2a: f8:64:f5:9a:ba:65:b8:e4:cd:83:b2:7d:56:37:9d:e6:d8:de: 4c:52:4b:1f:3e:d1:db:d3:10:8b:f8:6f:07:c4:b4:b8:c2:5f: 6b:f3:9e:db:28:fd:40:38:1f:98:f6:43:32:43:b9:30:63:42: 94:02:19:07:83:bf:5e:8d:12:a1:d6:ee:b3:c6:17:66:85:dc: 4b:79:8a:0f:fe:c2:a3:bb:5c:e3:0e:bf:c7:38:44:67:72:fc: 6b:30:e3:35:ac:27:b7:16:45:6f:09:0b:80:d3:58:71:4e:d4: 2b:50:71:6d:73:94:59:61:42:ba:ee:c1:b0:31:e1:7a:bf:76: 74:bb:e6:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDb02Zaz30C3O5TrPt2e6+sOqUGQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MTIyMTAxMjAzMloX DTI1MTIyMjAzNTAzMlowMzExMC8GA1UEAxMoRDg2RjI1ODFENDQ0QjFGNjIxMjM2 NzRGQTlFOTFGRDI0Q0Q3MUY2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJxWUeJnYAuzRZ1BbP6KVDsWWwiLb8K2JGxKDvy7xyitTHbo3fORb3EUS7Aa ez19cgRxG42Ys2hvdMt+G+kDd9Vb68AQtP0cgOeMUCZHgvWdTobsF7Cv43mX99Ji gewCoQfdm3hQDz6ZK6U2xZC3CywtSLnDvFmrmHkEr//iEWRjJaBCPnEZYYEQ3+0I lxj4FCdw7FtR9qnCI6X/qctmylSNsRB6CktlcmrIHDSgcJUFsn1vN19wFe7QMDdk 0jZVRqFj4gyCn6FZYk+V6FyKQrou9GT+aGZXawOsrO5DthDhP6svh+Z1rZj53nJE 2hkKu/vqjyD8R/ugKR75mqLjX5cCAwEAAaOCAhswggIXMB0GA1UdDgQWBBTYbyWB 1ESx9iEjZ0+p6R/STNcfbzAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAXJdk8FPayOwhGrMEfRUCQv85HYo8T7rACtqAVJc0M9btbtZr rfbLY02KrdGhN0BbPsik9jeJ0sQxiw8tTQChuvR312rx9BA4RsILW2wdEJ1GNPL7 exzeI26sEkrBKqmNt3jWN5641kfAgofv3benOY2VQ3UAenaIIlRwp94q+GT1mrpl uOTNg7J9Vjed5tjeTFJLHz7R29MQi/hvB8S0uMJfa/Oe2yj9QDgfmPZDMkO5MGNC lAIZB4O/Xo0Sodbus8YXZoXcS3mKD/7Co7tc4w6/xzhEZ3L8azDjNawntxZFbwkL gNNYcU7UK1BxbXOUWWFCuu7BsDHher92dLvm8Q== -----END CERTIFICATE-----Generated at Sun Dec 21 09:00:30 2025 by rpki-client