This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: qTizaZrwVYmuOwr+kunGnL/kd+Ic+0hPSk9YKj0FQcc= Subject key identifier: 60:B2:2A:C6:82:FC:C5:62:CA:9F:4D:A7:EB:7E:40:A4:88:4D:0E:63 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 0201 Signing time: Fri 05 Dec 2025 00:42:00 +0000 Manifest this update: Fri 05 Dec 2025 00:41:59 +0000 Manifest next update: Fri 12 Dec 2025 00:41:59 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: oSdmopr9us1lO+osIL27lSXs/bCzzrE4OlpASo+bTos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Dec 5 00:41:59 2025 GMT Not After : Dec 12 00:41:59 2025 GMT Subject: CN=69322a58-108e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:07:4a:72:15:22:70:8d:0d:a7:a7:88:61:e2: ea:c8:40:da:a3:69:80:2b:2e:0a:e1:db:b6:2e:38: 93:ca:b6:3a:f5:8d:4d:cb:2f:1a:5c:22:03:33:75: 8e:89:fc:aa:39:97:bd:e3:e5:22:54:f2:97:26:09: ec:af:7f:a6:d6:b6:34:44:fc:9f:34:4d:5a:37:c2: c6:b1:8c:d0:ea:b4:4b:dd:b0:09:6c:95:1c:4e:49: e3:e0:ea:3a:05:d1:b3:fd:2d:86:9e:d4:f8:05:73: 23:b8:5d:c8:24:9b:ed:01:8a:3b:2d:54:d6:07:91: 09:c9:ed:6b:8b:ea:62:e1:5d:e0:92:57:64:48:8c: a4:af:a8:0a:30:4b:be:37:03:b1:85:df:78:90:31: 57:91:b6:36:8b:9e:71:e8:cc:ff:b3:d2:5e:70:c1: cc:93:b1:77:1f:22:4c:63:c7:b4:3d:34:0c:62:55: b5:54:7b:2e:0d:7b:ab:54:bf:4f:36:06:81:ba:52: 73:5f:b0:03:b5:61:39:d2:18:77:21:0a:cf:21:ce: 32:9f:2f:8f:27:4b:1b:d8:12:02:82:b6:07:c4:b5: 2f:25:4c:2f:85:72:a2:bd:4c:20:d9:1e:66:34:c4: 23:71:2f:72:37:19:53:ee:3b:9e:2a:74:77:51:a8: 4d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B2:2A:C6:82:FC:C5:62:CA:9F:4D:A7:EB:7E:40:A4:88:4D:0E:63 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f7:98:51:1f:70:c2:74:42:53:d8:e9:9e:a5:50:02:9c:bb: f3:16:99:0a:18:d7:15:94:fa:1c:86:7e:aa:d8:f0:73:98:59: a5:13:21:11:45:69:36:26:50:fa:cd:8a:9a:23:c1:af:03:6b: 1f:e9:ce:a5:bb:bf:96:e9:22:b1:9b:45:4b:b9:0e:3a:d2:f6: 99:7e:a9:1a:e2:3b:8d:c4:21:bc:71:88:a9:01:48:2c:17:1a: 8c:7a:cf:3e:e8:59:65:31:05:0e:1a:c9:57:34:5a:1d:20:97: 13:40:35:2f:c9:ae:0e:da:4b:53:3d:ad:ac:56:aa:a5:c4:6f: 35:47:be:30:8a:96:e6:9c:4a:5e:19:77:f9:3e:9f:d3:ff:34: 70:57:6d:ab:fc:4f:76:69:82:1c:99:f4:62:6e:11:92:16:fe: 18:d4:18:80:cd:8c:dc:a7:3f:21:6e:74:bd:7b:85:0b:fa:36: c2:68:b8:67:88:c2:9d:bf:32:82:73:46:a0:28:17:ba:de:1b: 0f:67:8e:3f:eb:e6:5b:2d:52:8e:ce:3f:d6:45:4a:30:08:c5: e9:c3:82:3d:bf:b1:db:7c:9e:98:a1:67:82:b2:59:4f:93:c3: 45:0e:f8:b2:e3:3a:bd:b9:f5:f3:a0:af:40:28:3d:03:63:d1: b4:47:da:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjUxMjA1MDA0MTU5WhcNMjUxMjEyMDA0MTU5WjAYMRYwFAYD VQQDEw02OTMyMmE1OC0xMDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AdKchUicI0Np6eIYeLqyEDao2mAKy4K4du2LjiTyrY69Y1Nyy8aXCIDM3WO ifyqOZe94+UiVPKXJgnsr3+m1rY0RPyfNE1aN8LGsYzQ6rRL3bAJbJUcTknj4Oo6 BdGz/S2GntT4BXMjuF3IJJvtAYo7LVTWB5EJye1ri+pi4V3gkldkSIykr6gKMEu+ NwOxhd94kDFXkbY2i55x6Mz/s9JecMHMk7F3HyJMY8e0PTQMYlW1VHsuDXurVL9P NgaBulJzX7ADtWE50hh3IQrPIc4yny+PJ0sb2BICgrYHxLUvJUwvhXKivUwg2R5m NMQjcS9yNxlT7jueKnR3UahNUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCyKsaC /MViyp9Np+t+QKSITQ5jMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS95hRH3DCdEJT2OmepVACnLvzFpkKGNcVlPochn6q2PBzmFmlEyER RWk2JlD6zYqaI8GvA2sf6c6lu7+W6SKxm0VLuQ460vaZfqka4juNxCG8cYipAUgs FxqMes8+6FllMQUOGslXNFodIJcTQDUvya4O2ktTPa2sVqqlxG81R74wipbmnEpe GXf5Pp/T/zRwV22r/E92aYIcmfRibhGSFv4Y1BiAzYzcpz8hbnS9e4UL+jbCaLhn iMKdvzKCc0agKBe63hsPZ44/6+ZbLVKOzj/WRUowCMXpw4I9v7HbfJ6YoWeCsllP k8NFDviy4zq9ufXzoK9AKD0DY9G0R9p0 -----END CERTIFICATE-----Generated at Sun Dec 7 00:01:44 2025 by rpki-client