This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft File: -tm5N3fQzrort6a3jVB_d5CSHAY.mft (raw, json) Hash identifier: z8Jx/ZsSHO1pQdxZmpnQUgeNDYmV++MdqVOUCq80a0Y= Subject key identifier: 3D:29:CC:76:0A:C8:E5:E0:94:0E:DC:75:F2:71:BC:F1:42:A4:91:D1 Authority key identifier: FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 Certificate issuer: /CN=A91557F2/serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Certificate serial: 0747 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft Manifest number: 08F2 Signing time: Sat 06 Dec 2025 20:42:19 +0000 Manifest this update: Sat 06 Dec 2025 20:42:19 +0000 Manifest next update: Sat 13 Dec 2025 20:42:19 +0000 Files and hashes: 1: -tm5N3fQzrort6a3jVB_d5CSHAY.crl (hash: onl4dTJh68pXqugcPGH1MbURA6A+qcPudGk6L2VCTKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1863 (0x747) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F2, serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Validity Not Before: Dec 6 20:42:19 2025 GMT Not After : Dec 13 20:42:19 2025 GMT Subject: CN=6934952b-22e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:35:0e:e7:ca:cf:2f:d4:67:13:db:c1:51: 4a:4d:25:48:ca:3e:20:b7:c8:f8:3d:d8:ef:e4:c9: 08:f9:93:98:81:91:fd:c6:1f:14:6b:a7:7c:b9:52: fb:80:2b:b7:24:2b:b7:76:a4:92:1a:3f:c0:7e:a1: d4:40:28:89:d6:6e:f3:e2:32:37:f6:be:38:e0:56: 9e:be:aa:16:d6:66:01:38:c5:8f:7b:a7:db:5b:37: 4b:d8:21:16:0a:5a:da:71:b2:a4:bf:6f:87:76:ca: 70:8a:db:ab:c3:7b:6e:14:86:7f:c4:33:4f:a4:c5: a5:58:a0:a9:66:f8:ca:4c:c6:32:10:9d:d8:61:66: be:2e:2e:41:14:61:ce:62:2f:b7:85:88:c0:32:80: 07:a2:2f:b5:7b:21:75:e7:e7:7a:d8:b2:28:e9:b6: 04:90:77:90:a7:c7:e4:56:b7:06:d7:60:09:14:da: 40:30:9b:c1:3f:23:52:fe:30:68:27:75:be:28:a8: 16:b8:76:0d:1b:7d:b4:ad:fd:83:9e:ce:f6:cc:a4: 39:9d:26:83:60:fa:dc:84:fa:ae:6f:b1:35:a0:8e: 78:d8:54:be:6d:ce:ff:92:da:45:24:bb:18:03:22: 9d:18:13:f9:15:cf:73:22:0f:6c:e8:57:e6:af:a2: 14:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:29:CC:76:0A:C8:E5:E0:94:0E:DC:75:F2:71:BC:F1:42:A4:91:D1 X509v3 Authority Key Identifier: keyid:FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:9c:d2:1e:bf:af:0a:e1:67:89:08:ac:0c:f2:4f:a0:e4:3d: 0f:5d:00:d1:d0:23:50:f3:d9:18:87:e6:2b:7e:81:d9:03:b2: 14:0c:e1:f6:1c:ce:2f:24:c7:0c:60:f8:b7:46:65:70:a0:c7: f6:32:0e:58:0e:7f:40:70:34:2b:74:ed:70:bd:a2:8d:a2:8a: 5a:cf:57:d0:0b:6c:15:01:ee:93:b2:d6:bc:66:c6:43:0f:ed: 6d:b5:4a:23:ed:d9:d3:1d:e6:ad:30:11:57:5a:e4:99:e7:bf: 8c:84:f6:9f:79:a0:88:08:63:07:73:1e:b9:ce:fd:62:a1:cb: 0d:fa:39:87:34:b6:98:89:bf:2c:53:07:2b:07:03:0f:c7:a0: 6f:f0:bd:d3:81:79:50:a7:67:0f:08:1d:66:46:7f:bb:a9:ee: aa:50:14:83:a3:eb:b3:6b:3a:e3:95:c7:7c:d6:27:13:78:a5: 23:d7:f2:aa:47:dd:27:09:4d:94:59:90:16:90:2b:9d:ce:c2: 78:d9:c6:1a:76:f4:89:3a:75:c9:a4:ae:7e:7e:53:28:f0:28: 1a:7b:47:b1:9e:6b:d7:c9:d5:1e:3f:9f:4f:da:ac:f5:7e:62: 17:ea:50:b7:13:bb:ad:da:3e:bb:b3:39:8c:81:16:47:67:08: 51:1f:b9:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjIxMTAvBgNVBAUTKEZBRDlCOTM3NzdEMENFQkEyQkI3QTZCNzhENTA3Rjc3 OTA5MjFDMDYwHhcNMjUxMjA2MjA0MjE5WhcNMjUxMjEzMjA0MjE5WjAYMRYwFAYD VQQDEw02OTM0OTUyYi0yMmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWw1DufKzy/UZxPbwVFKTSVIyj4gt8j4Pdjv5MkI+ZOYgZH9xh8Ua6d8uVL7 gCu3JCu3dqSSGj/AfqHUQCiJ1m7z4jI39r444FaevqoW1mYBOMWPe6fbWzdL2CEW ClracbKkv2+Hdspwiturw3tuFIZ/xDNPpMWlWKCpZvjKTMYyEJ3YYWa+Li5BFGHO Yi+3hYjAMoAHoi+1eyF15+d62LIo6bYEkHeQp8fkVrcG12AJFNpAMJvBPyNS/jBo J3W+KKgWuHYNG320rf2Dns72zKQ5nSaDYPrchPqub7E1oI542FS+bc7/ktpFJLsY AyKdGBP5Fc9zIg9s6Ffmr6IUkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0pzHYK yOXglA7cdfJxvPFCpJHRMB8GA1UdIwQYMBaAFPrZuTd30M66K7emt41Qf3eQkhwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGMi8yMzM1MDRBNDRG Q0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpyb3J0NmEzalZCX2Q1Q1NI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10bTVOM2ZRenJvcnQ2YTNqVkJfZDVDU0hBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdGMi8yMzM1MDRBNDRGQ0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpy b3J0NmEzalZCX2Q1Q1NIQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbnNIev68K4WeJCKwM8k+g5D0PXQDR0CNQ89kYh+YrfoHZA7IUDOH2 HM4vJMcMYPi3RmVwoMf2Mg5YDn9AcDQrdO1wvaKNoopaz1fQC2wVAe6Tsta8ZsZD D+1ttUoj7dnTHeatMBFXWuSZ57+MhPafeaCICGMHcx65zv1iocsN+jmHNLaYib8s UwcrBwMPx6Bv8L3TgXlQp2cPCB1mRn+7qe6qUBSDo+uzazrjlcd81icTeKUj1/Kq R90nCU2UWZAWkCudzsJ42cYadvSJOnXJpK5+flMo8Cgae0exnmvXydUeP59P2qz1 fmIX6lC3E7ut2j67szmMgRZHZwhRH7kp -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:52 2025 by rpki-client