This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft File: A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft (raw, json) Hash identifier: rNIeJswh4O7pPVHQImNYRVAtJN4GEaiwT+i5X7B0108= Subject key identifier: 3A:3E:5E:01:50:7E:10:08:11:BB:C6:E8:CA:23:D3:6D:74:9C:CD:01 Authority key identifier: 03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 Certificate issuer: /CN=A91380F7/serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft Manifest number: C1 Signing time: Fri 05 Dec 2025 03:52:56 +0000 Manifest this update: Fri 05 Dec 2025 03:52:56 +0000 Manifest next update: Fri 12 Dec 2025 03:52:55 +0000 Files and hashes: 1: A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl (hash: 3BPuAXrI6nYOl08P17aKjaylI5cRigJX5wB6Z33+An0=) 2: 9B3FE178A7FA11EFA7886875C4F9AE02.roa (hash: wskyOCDE340iqc6+xbxJBMsRJGfe9vODWh/hz8Ga1HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380F7, serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Validity Not Before: Dec 5 03:52:56 2025 GMT Not After : Dec 12 03:52:55 2025 GMT Subject: CN=69325718-0ca2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:25:02:5e:17:c0:91:16:ad:03:2e:b3:d4:85: 0e:af:0d:83:3c:4a:70:46:75:02:68:bd:64:d3:b2: b6:c3:82:e6:f9:ae:03:21:20:fe:8e:5b:26:c4:56: d9:30:c2:7a:9d:52:57:e5:ab:b1:ff:de:22:fd:e2: 86:7a:3b:fc:5c:64:f2:79:58:c6:80:46:17:cc:af: c3:7b:bd:3d:f0:d9:0e:82:f0:d9:3b:bd:34:4f:3d: 77:0f:3f:d8:01:bc:41:c2:a1:cb:cc:a9:1f:30:f6: 40:64:04:61:d0:09:1c:c1:4f:6d:5a:e8:5d:52:e5: 6c:ac:01:29:86:8e:c9:ab:c6:b3:17:6f:63:fa:c7: c6:89:62:92:ef:01:65:21:e4:52:18:25:0a:66:41: f0:10:07:b9:1b:3c:7a:60:7e:77:68:91:14:9a:c9: e9:25:1d:2c:48:d6:77:35:2e:72:c3:d3:71:df:0a: f1:36:fc:8b:b7:4a:bf:6d:43:8e:4e:e3:03:8d:34: 2a:a2:f2:6a:78:7f:53:d4:fc:e3:e1:a4:a7:73:67: 5f:38:e9:0b:cf:67:65:6c:1f:84:fd:09:07:8b:6f: bc:0a:69:4e:37:70:f9:3a:f1:b7:af:54:0d:9d:62: 95:9e:c4:5f:74:02:e3:6a:9f:b2:a2:0f:c6:37:be: 24:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:3E:5E:01:50:7E:10:08:11:BB:C6:E8:CA:23:D3:6D:74:9C:CD:01 X509v3 Authority Key Identifier: keyid:03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:83:a6:e6:1a:cf:e8:b8:10:d1:14:a1:82:aa:ec:aa:51:a6: b2:e5:f9:22:64:74:e4:d8:f5:05:96:b2:fe:40:5c:d3:ae:84: fa:30:d4:ab:4f:a1:e1:ef:46:c6:ea:8e:8b:6b:fb:ed:35:79: b4:f4:00:34:ba:f8:da:e9:aa:e8:61:e2:60:a5:ac:b5:11:9a: 63:89:5f:e5:e7:3b:bc:a9:ed:8e:d5:fd:26:95:f5:39:70:de: f3:b7:d9:cb:b5:3d:da:d1:21:12:bc:13:a4:e8:ce:cb:96:36: 5a:f0:4d:38:4b:24:d3:63:0f:58:f9:9f:7c:ca:a8:53:ea:db: 96:c3:88:aa:4b:21:18:d2:93:ba:52:63:da:a8:b1:68:a6:97: d0:76:e0:da:35:48:02:50:00:24:8f:18:a6:d0:57:28:72:20: 40:01:6d:49:1a:c5:da:90:dc:b9:d0:0b:8e:6a:42:7f:96:d3: 85:fd:05:f9:15:f1:94:6c:92:ad:df:1d:60:f4:8f:9d:f2:aa: 16:b5:64:06:a0:72:5d:92:3a:d3:bd:50:79:ca:a3:b3:91:fc: d3:1e:cf:ed:68:04:33:7f:f1:39:6a:55:63:b4:e0:32:2a:e2: 41:89:17:61:6a:01:c5:ac:7c:99:e4:23:de:58:0a:e9:18:13: d2:dc:4a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwRjcxMTAvBgNVBAUTKDAzOTFEOUE3MEU4OTNFNzUxQkM2MTI4OUM1NDQxN0I4 N0ExMDQ1NTkwHhcNMjUxMjA1MDM1MjU2WhcNMjUxMjEyMDM1MjU1WjAYMRYwFAYD VQQDEw02OTMyNTcxOC0wY2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiUCXhfAkRatAy6z1IUOrw2DPEpwRnUCaL1k07K2w4Lm+a4DISD+jlsmxFbZ MMJ6nVJX5aux/94i/eKGejv8XGTyeVjGgEYXzK/De7098NkOgvDZO700Tz13Dz/Y AbxBwqHLzKkfMPZAZARh0AkcwU9tWuhdUuVsrAEpho7Jq8azF29j+sfGiWKS7wFl IeRSGCUKZkHwEAe5Gzx6YH53aJEUmsnpJR0sSNZ3NS5yw9Nx3wrxNvyLt0q/bUOO TuMDjTQqovJqeH9T1Pzj4aSnc2dfOOkLz2dlbB+E/QkHi2+8CmlON3D5OvG3r1QN nWKVnsRfdALjap+yog/GN74kGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDo+XgFQ fhAIEbvG6Moj0210nM0BMB8GA1UdIwQYMBaAFAOR2acOiT51G8YSicVEF7h6EEVZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODBGNy9BN0VCQzFEMkE3 RjgxMUVGQkI0NEYzNzFDNEY5QUUwMi9BNUhacHc2SlBuVWJ4aEtKeFVRWHVIb1FS VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E1SFpwdzZKUG5VYnhoS0p4VVFYdUhvUVJWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODBGNy9BN0VCQzFEMkE3RjgxMUVGQkI0NEYzNzFDNEY5QUUwMi9BNUhacHc2SlBu VWJ4aEtKeFVRWHVIb1FSVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLg6bmGs/ouBDRFKGCquyqUaay5fkiZHTk2PUFlrL+QFzTroT6MNSr T6Hh70bG6o6La/vtNXm09AA0uvja6aroYeJgpay1EZpjiV/l5zu8qe2O1f0mlfU5 cN7zt9nLtT3a0SESvBOk6M7LljZa8E04SyTTYw9Y+Z98yqhT6tuWw4iqSyEY0pO6 UmPaqLFoppfQduDaNUgCUAAkjxim0FcociBAAW1JGsXakNy50AuOakJ/ltOF/QX5 FfGUbJKt3x1g9I+d8qoWtWQGoHJdkjrTvVB5yqOzkfzTHs/taAQzf/E5alVjtOAy KuJBiRdhagHFrHyZ5CPeWArpGBPS3Eo+ -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:33 2025 by rpki-client