This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: sfdmA8NepkniJmCLLXshfh7CSkd8cLt9qrwN30c8TbU= Subject key identifier: 2E:7E:95:F4:91:F7:28:87:49:AB:68:74:8F:21:5E:90:5E:C2:58:80 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 8F Signing time: Fri 05 Dec 2025 04:29:10 +0000 Manifest this update: Fri 05 Dec 2025 04:29:10 +0000 Manifest next update: Fri 12 Dec 2025 04:29:10 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: iIBORJX5bFjqsTGjGoxxdeKYkIv7PN8kgvV4YKDKrXo=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Dec 5 04:29:10 2025 GMT Not After : Dec 12 04:29:10 2025 GMT Subject: CN=69325f96-935d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:82:2a:4f:a9:0d:a6:ed:0f:02:c0:74:c6:36: 13:b1:4c:9e:f1:b0:54:f7:45:fc:89:c3:0a:bb:6f: 6f:b3:21:88:60:c7:7f:8e:8c:ee:ef:fb:66:a8:2e: 8c:83:73:e0:64:d3:49:7f:39:60:9a:d0:bf:ea:7d: 03:6a:b2:f5:a5:67:67:37:21:22:74:ae:e0:e9:be: 43:46:da:cf:8d:e6:66:05:b3:f2:e8:85:da:da:22: 0c:a2:0d:6e:90:f8:30:b5:80:a5:f1:cb:96:ff:09: 9a:79:eb:1d:29:f4:0d:0a:01:c2:20:ab:8d:ee:e1: 3b:98:0b:6b:c6:25:3c:5a:6a:a9:27:f7:dc:90:91: a0:f9:25:1a:ae:ac:1d:76:a6:2c:49:80:4f:35:9b: f8:92:c1:b6:e6:af:d7:db:63:11:0b:fc:cb:a6:f1: 5b:f6:b5:ec:cc:97:b7:5f:b8:ca:2a:2e:40:9f:6b: 3c:b3:0d:d8:fd:19:b9:04:09:02:87:5c:c2:e8:16: f9:5a:dd:fb:89:9a:7e:54:ac:bf:5a:90:e2:09:36: 11:8d:bb:9e:6a:49:81:97:b6:64:77:b4:de:e3:b3: f7:cd:c0:6b:48:d0:40:1d:ef:34:17:11:c0:97:86: 2a:0a:80:86:87:c9:50:91:e3:f9:93:ed:92:5e:4f: 08:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:7E:95:F4:91:F7:28:87:49:AB:68:74:8F:21:5E:90:5E:C2:58:80 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:80:95:38:a6:e3:5a:a0:c7:f5:57:45:fe:fb:62:6e:e9:6c: 66:26:f2:d8:05:15:59:2e:44:de:67:d9:e2:1a:c1:1e:0b:fc: a5:ec:e8:3f:e6:73:99:bb:38:52:49:1b:e5:e5:a0:5e:aa:20: b7:0c:4b:49:be:30:5f:53:a2:3f:0c:d1:18:8a:1f:bc:17:cc: a6:94:ed:38:d5:d0:e6:1c:46:4c:22:0f:07:bf:1f:7a:19:65: 08:83:1f:fb:5e:cb:fd:70:94:e9:c5:30:08:cc:c5:eb:9f:4f: fe:19:7c:12:5d:d2:ca:05:33:fe:e3:dd:04:e8:a7:01:98:a6: e5:84:1b:9d:67:ab:51:4c:d4:45:37:6d:8a:05:70:af:b8:31: 70:09:7f:ad:91:f5:1d:83:41:74:cd:d2:fc:0e:a2:64:df:89: 6c:6b:d5:f3:cc:86:7e:95:ac:ce:b2:b2:8b:96:9a:f8:76:da: e6:7d:a1:13:5f:d7:53:41:de:0f:30:e0:60:9c:b1:8a:91:e3: 6b:db:7d:1f:5a:3b:c0:5a:b2:cc:bd:2c:d9:96:08:6d:9a:eb: 3f:1a:61:62:5f:b1:d5:c4:d8:08:ab:65:de:e4:24:b3:87:5a: 76:8e:d8:8a:59:fe:b7:29:1d:78:81:8b:a2:10:cf:cc:10:99: 78:b1:b4:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzMUQxMTAvBgNVBAUTKEU2MjgyMjBGM0ZEMDBGNDE3Qjk5NzJFMUQ0QTBGNjQx Njk2RTc5OTkwHhcNMjUxMjA1MDQyOTEwWhcNMjUxMjEyMDQyOTEwWjAYMRYwFAYD VQQDEw02OTMyNWY5Ni05MzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIIqT6kNpu0PAsB0xjYTsUye8bBU90X8icMKu29vsyGIYMd/jozu7/tmqC6M g3PgZNNJfzlgmtC/6n0DarL1pWdnNyEidK7g6b5DRtrPjeZmBbPy6IXa2iIMog1u kPgwtYCl8cuW/wmaeesdKfQNCgHCIKuN7uE7mAtrxiU8WmqpJ/fckJGg+SUarqwd dqYsSYBPNZv4ksG25q/X22MRC/zLpvFb9rXszJe3X7jKKi5An2s8sw3Y/Rm5BAkC h1zC6Bb5Wt37iZp+VKy/WpDiCTYRjbueakmBl7Zkd7Te47P3zcBrSNBAHe80FxHA l4YqCoCGh8lQkeP5k+2SXk8IDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5+lfSR 9yiHSatodI8hXpBewliAMB8GA1UdIwQYMBaAFOYoIg8/0A9Be5ly4dSg9kFpbnmZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTMxRC8yQ0Y2QjhCMEY5 QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQwRjdtWExoMUtEMlFXbHVl WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTMxRC8yQ0Y2QjhCMEY5QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQw RjdtWExoMUtEMlFXbHVlWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXgJU4puNaoMf1V0X++2Ju6WxmJvLYBRVZLkTeZ9niGsEeC/yl7Og/ 5nOZuzhSSRvl5aBeqiC3DEtJvjBfU6I/DNEYih+8F8ymlO041dDmHEZMIg8Hvx96 GWUIgx/7Xsv9cJTpxTAIzMXrn0/+GXwSXdLKBTP+490E6KcBmKblhBudZ6tRTNRF N22KBXCvuDFwCX+tkfUdg0F0zdL8DqJk34lsa9XzzIZ+lazOsrKLlpr4dtrmfaET X9dTQd4PMOBgnLGKkeNr230fWjvAWrLMvSzZlghtmus/GmFiX7HVxNgIq2Xe5CSz h1p2jtiKWf63KR14gYuiEM/MEJl4sbTp -----END CERTIFICATE-----Generated at Sun Dec 7 03:08:48 2025 by rpki-client