This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: jsJxHOJdDvL+hbyQh9cHnbaegzpLPpJf2ypChuUd0uA= Subject key identifier: B0:4F:D6:96:0A:82:BD:D1:F4:BA:B5:40:BB:E4:78:2B:8D:98:0C:04 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1E0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1DF9 Signing time: Sat 06 Dec 2025 15:47:22 +0000 Manifest this update: Sat 06 Dec 2025 15:47:22 +0000 Manifest next update: Sat 13 Dec 2025 15:47:22 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: c+Gae3jkh4mpnbKFUFvVXGO23m80rSWBVSaL67N6JSc=) 2: 4865DD00A13B11E687921078C4F9AE02.roa (hash: MaFWYkY2HcnSI16cq7zrf3Xg1TMrKe+K2OOU5n2vPcU=) 3: 1D57FF40A01311E684546521C4F9AE02.roa (hash: 8kLRR6g7/NXM5uPCUqU+X4Qb9woBVi0kDN/Wkxs+ARo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7694 (0x1e0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: Dec 6 15:47:22 2025 GMT Not After : Dec 13 15:47:22 2025 GMT Subject: CN=6934500a-c452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cc:3e:6a:aa:0a:d6:e1:f1:b2:43:7e:ac:76: 2c:7e:2b:eb:07:7d:3b:6f:45:25:c3:18:55:c1:07: 52:6a:db:71:3d:50:2d:97:2c:82:9f:52:e8:39:45: 91:2f:33:fe:49:99:ca:45:05:ee:23:d7:98:0a:ec: bd:48:a9:0d:cd:a7:2b:f7:ee:a3:d7:6c:10:8f:94: b3:e0:84:cb:90:60:c9:a5:8e:dd:13:66:3d:3f:2e: ea:53:6b:5b:29:23:bc:80:f2:5f:ad:12:93:61:28: a5:2f:3d:b4:98:98:78:53:2f:21:5e:ff:9f:b2:97: 2c:e1:82:a1:ec:c4:2e:9e:ff:59:aa:2a:38:c4:8c: 89:03:f9:99:b7:20:4d:e6:f0:4a:c2:1f:81:53:83: 4c:57:ab:d8:92:ce:b4:2d:97:f2:1a:10:53:17:96: d4:78:0c:69:a3:f5:3f:9a:45:37:ff:a8:83:6b:87: 9a:4a:37:94:9f:dc:14:bb:63:ae:4d:db:b2:cd:f9: bf:93:3e:89:b2:27:3b:26:14:34:12:79:e3:e1:38: 31:78:19:6f:21:07:ba:9b:d3:1e:3a:98:64:c0:56: aa:8c:10:fa:9e:13:5e:36:81:fd:28:ba:e9:bf:50: 20:38:4a:a8:8b:14:5f:f8:d1:6e:e7:e3:5d:52:ff: 78:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:4F:D6:96:0A:82:BD:D1:F4:BA:B5:40:BB:E4:78:2B:8D:98:0C:04 X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:6d:5f:8e:e4:51:3f:db:0f:f1:f3:19:e2:0e:3b:61:7d:2c: 2f:2d:70:e7:40:7f:86:42:b6:c3:9a:f6:57:c2:8a:26:66:3f: 1f:cd:e9:42:62:55:ce:4c:64:3a:3d:55:e8:fd:65:9b:2a:1c: 80:8d:c3:ae:12:f0:4b:74:82:ca:e0:6c:fe:4f:37:0e:6e:4e: 91:03:a9:ec:e6:44:0f:f1:87:71:0c:e4:26:3f:4a:4d:69:7e: e0:4e:5f:56:14:75:da:b6:f8:0f:25:07:0b:14:71:2b:ce:ac: 16:2c:15:90:25:e0:a1:27:ce:b5:a3:e4:1c:31:a2:9d:80:60: b3:e1:b2:9c:12:17:68:5c:6b:0b:cf:67:64:ab:67:30:b4:db: 30:74:d0:de:cc:1c:a0:f7:3c:74:fe:99:f1:11:6e:6e:d2:d9: 50:af:d4:87:f9:eb:79:b7:ce:7c:55:83:5d:95:32:0c:90:26: 72:85:ae:95:58:dd:c3:03:ac:7c:05:ad:03:32:78:f6:3e:da: 75:ce:80:55:f3:aa:6a:4b:4f:e9:67:5a:2e:bb:3b:d3:f1:bf: 68:ef:78:44:80:fd:f8:89:eb:05:1f:7c:76:7e:21:4d:30:f9: ec:c2:d6:6b:96:ee:7a:58:f5:39:e5:73:e5:01:36:41:75:e6: a3:33:06:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjUxMjA2MTU0NzIyWhcNMjUxMjEzMTU0NzIyWjAYMRYwFAYD VQQDEw02OTM0NTAwYS1jNDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8w+aqoK1uHxskN+rHYsfivrB307b0UlwxhVwQdSattxPVAtlyyCn1LoOUWR LzP+SZnKRQXuI9eYCuy9SKkNzacr9+6j12wQj5Sz4ITLkGDJpY7dE2Y9Py7qU2tb KSO8gPJfrRKTYSilLz20mJh4Uy8hXv+fspcs4YKh7MQunv9Zqio4xIyJA/mZtyBN 5vBKwh+BU4NMV6vYks60LZfyGhBTF5bUeAxpo/U/mkU3/6iDa4eaSjeUn9wUu2Ou Tduyzfm/kz6Jsic7JhQ0Ennj4TgxeBlvIQe6m9MeOphkwFaqjBD6nhNeNoH9KLrp v1AgOEqoixRf+NFu5+NdUv94eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBP1pYK gr3R9Lq1QLvkeCuNmAwEMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcbV+O5FE/2w/x8xniDjthfSwvLXDnQH+GQrbDmvZXwoomZj8fzelC YlXOTGQ6PVXo/WWbKhyAjcOuEvBLdILK4Gz+TzcObk6RA6ns5kQP8YdxDOQmP0pN aX7gTl9WFHXatvgPJQcLFHErzqwWLBWQJeChJ861o+QcMaKdgGCz4bKcEhdoXGsL z2dkq2cwtNswdNDezByg9zx0/pnxEW5u0tlQr9SH+et5t858VYNdlTIMkCZyha6V WN3DA6x8Ba0DMnj2Ptp1zoBV86pqS0/pZ1ouuzvT8b9o73hEgP34iesFH3x2fiFN MPnswtZrlu56WPU55XPlATZBdeajMwb1 -----END CERTIFICATE-----Generated at Sat Dec 6 22:03:16 2025 by rpki-client