This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: CrsEE5kTT90TQxpFRMzgMQK+AdkOLEcbupcz8/bcUAs= Subject key identifier: 65:BB:D3:FE:BA:E5:E7:73:13:EF:01:46:81:1F:FF:27:0F:B3:7B:ED Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: C5 Signing time: Fri 05 Dec 2025 03:50:23 +0000 Manifest this update: Fri 05 Dec 2025 03:50:23 +0000 Manifest next update: Fri 12 Dec 2025 03:50:23 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: WFiarLzHdyaPCaUfj89DeNnWHieajVj1IL4thFG15Y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: Dec 5 03:50:23 2025 GMT Not After : Dec 12 03:50:23 2025 GMT Subject: CN=6932567f-b9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:33:a4:3a:da:cc:79:1b:da:8d:92:5a:48:06: 66:59:11:41:e3:ed:95:56:55:49:ac:15:9a:fa:ef: 00:6a:71:44:1a:73:a2:86:b7:7b:73:d6:30:12:4b: 67:17:e6:22:32:af:c9:2d:3d:8e:8c:21:17:cb:17: 13:d3:ca:5d:40:e3:10:71:c7:92:fb:e2:7e:d9:7a: 51:0e:ae:14:f4:16:d2:63:d9:ab:6b:6c:20:96:2a: 96:0a:29:91:d0:90:8a:20:5c:c2:ab:a5:53:a1:b8: a7:91:39:a5:76:1c:32:15:b3:9b:23:ef:c2:ae:c8: d2:9a:ec:af:44:02:00:5b:a5:93:e3:96:54:33:23: 3b:d5:87:da:be:c7:92:3e:af:ac:af:4a:dc:58:30: 51:fb:bd:80:31:d7:ac:a3:f7:f3:18:cb:8a:c6:b9: 7e:6d:7a:20:e9:ae:26:fe:eb:5d:b6:68:c2:bc:c5: 7c:65:49:39:ac:7e:7d:c3:73:50:b6:ca:ec:65:cb: 23:36:a3:21:93:09:8d:26:f7:99:ea:8b:00:7d:b3: d4:2c:45:59:b9:86:8d:c0:22:57:fc:e9:94:43:13: 3b:e1:02:7e:98:91:7a:9e:03:49:1f:68:06:3c:12: dc:9c:50:96:0e:ba:7f:22:f4:e3:25:48:ae:7f:a5: a3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BB:D3:FE:BA:E5:E7:73:13:EF:01:46:81:1F:FF:27:0F:B3:7B:ED X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:44:19:5d:5a:84:b7:e7:55:53:08:99:69:d7:e5:7a:9b:58: a6:67:ba:f2:8b:b2:63:90:69:0e:8c:72:8a:43:73:65:12:69: a9:8d:eb:f3:c3:32:84:8f:e1:8a:bf:83:9a:7c:95:89:b8:9f: d5:a8:1d:19:10:c8:78:59:ff:a1:00:bd:23:00:5b:df:45:82: 1e:02:af:0c:b0:7e:d0:95:02:be:29:21:5d:c2:c2:c4:b0:39: b6:3e:e8:29:95:21:59:04:59:47:fd:33:08:0e:e9:73:94:d8: 4c:63:90:7a:2b:33:e3:4b:e5:ee:3d:f8:77:de:db:dc:59:53: 0d:b6:bf:d9:43:6b:c4:53:65:67:9e:62:2f:e6:7e:42:2c:f5: c1:67:cf:6d:69:d8:63:d3:c4:ff:e6:28:85:0d:c4:8e:1f:56: 20:0d:21:e4:46:40:fb:73:17:06:ec:86:23:a2:65:46:99:24: 1c:00:62:52:b0:cd:65:c7:c4:e8:fc:11:47:a2:d7:9a:d6:a4: 08:c7:39:58:5a:82:bb:3d:47:9a:36:68:c3:9e:b7:16:24:e6: be:b7:3d:89:b8:79:0c:36:f6:a2:b5:29:47:bf:20:5d:2e:47: 21:07:2a:2e:4d:4a:1a:74:c7:13:be:99:32:f0:eb:d7:ae:85: 02:54:b2:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEyRkUxMTAvBgNVBAUTKEQ0N0VGOTI4MUUzMTQzMURFNThFMzQ3QzY5N0UzOUJG Mjc0MjkxMTkwHhcNMjUxMjA1MDM1MDIzWhcNMjUxMjEyMDM1MDIzWjAYMRYwFAYD VQQDEw02OTMyNTY3Zi1iOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzOkOtrMeRvajZJaSAZmWRFB4+2VVlVJrBWa+u8AanFEGnOihrd7c9YwEktn F+YiMq/JLT2OjCEXyxcT08pdQOMQcceS++J+2XpRDq4U9BbSY9mra2wgliqWCimR 0JCKIFzCq6VTobinkTmldhwyFbObI+/CrsjSmuyvRAIAW6WT45ZUMyM71YfavseS Pq+sr0rcWDBR+72AMdeso/fzGMuKxrl+bXog6a4m/utdtmjCvMV8ZUk5rH59w3NQ tsrsZcsjNqMhkwmNJveZ6osAfbPULEVZuYaNwCJX/OmUQxM74QJ+mJF6ngNJH2gG PBLcnFCWDrp/IvTjJUiuf6WjcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGW70/66 5edzE+8BRoEf/ycPs3vtMB8GA1UdIwQYMBaAFNR++SgeMUMd5Y40fGl+Ob8nQpEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTJGRS80OTFENjk0Q0Ey NTUxMUVGQjJDQTc4MkFDNEY5QUUwMi8xSDc1S0I0eFF4M2xqalI4YVg0NXZ5ZENr UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTJGRS80OTFENjk0Q0EyNTUxMUVGQjJDQTc4MkFDNEY5QUUwMi8xSDc1S0I0eFF4 M2xqalI4YVg0NXZ5ZENrUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxRBldWoS351VTCJlp1+V6m1imZ7ryi7JjkGkOjHKKQ3NlEmmpjevz wzKEj+GKv4OafJWJuJ/VqB0ZEMh4Wf+hAL0jAFvfRYIeAq8MsH7QlQK+KSFdwsLE sDm2PugplSFZBFlH/TMIDulzlNhMY5B6KzPjS+XuPfh33tvcWVMNtr/ZQ2vEU2Vn nmIv5n5CLPXBZ89tadhj08T/5iiFDcSOH1YgDSHkRkD7cxcG7IYjomVGmSQcAGJS sM1lx8To/BFHotea1qQIxzlYWoK7PUeaNmjDnrcWJOa+tz2JuHkMNvaitSlHvyBd LkchByouTUoadMcTvpky8OvXroUCVLLq -----END CERTIFICATE-----Generated at Sun Dec 7 02:33:10 2025 by rpki-client