This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: OvD248stYzzTEvx6upb/Rpr1EYqA49vsgU8EKB18++M= Subject key identifier: C4:6A:EF:61:71:A3:A2:01:BD:A9:2B:AD:A8:0F:DC:4E:B2:11:A8:70 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0B12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0AF0 Signing time: Thu 04 Dec 2025 18:46:41 +0000 Manifest this update: Thu 04 Dec 2025 18:46:40 +0000 Manifest next update: Thu 11 Dec 2025 18:46:40 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: KiK2lgqqAWX2+6eoqBUC5m7aRDknK66+CXz8PSskQBM=) 2: 04281A2C6E8211F0A2E51335C4F9AE02.roa (hash: u5qMQVovxMEdO3VlriBzt3ygKjHOuxT4HxOLZ60i5D0=) 3: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 6594I8zep7LQa/TMRBKeHx0wDGtSmtz334l2zdXQB4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Dec 4 18:46:40 2025 GMT Not After : Dec 11 18:46:40 2025 GMT Subject: CN=6931d711-2436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:0e:97:cd:16:87:d9:20:b7:39:08:d9:b7:d2: 14:08:c8:5a:35:c2:84:5d:5d:1a:d7:15:95:ce:0e: 22:08:6a:26:50:10:4d:22:84:4a:0e:6b:3b:d0:29: fd:e4:1f:a3:75:d7:a1:a3:6c:dd:ea:4d:4d:bc:fc: de:98:4f:49:6d:f2:2f:8d:da:c8:0f:10:2a:19:21: 50:e0:0d:c4:30:9b:96:b3:c6:67:bd:b9:09:0c:b2: ff:f9:02:8e:0f:2b:52:1a:6a:52:6b:6b:6f:ad:80: e5:0d:8c:8b:82:f0:d8:4c:70:e8:a1:38:ef:e6:ed: a5:18:33:e8:40:05:c2:fd:37:2d:85:f9:99:57:cd: 2d:77:41:da:05:7e:1f:3e:f5:7b:90:7b:3e:e7:e3: fa:16:79:89:9a:1c:8b:bb:45:14:14:c0:cf:70:43: c0:a0:6a:d2:12:98:51:9b:4a:0f:63:6c:5a:18:64: 39:b6:e2:8e:30:8e:95:31:4b:e6:bc:f2:b3:82:a9: 84:bb:ec:13:35:54:7e:85:3d:75:9a:78:3a:8b:2e: 3e:e0:6f:71:59:16:38:a2:80:64:00:01:53:89:fe: 48:ab:97:39:ad:9c:69:2b:2e:65:c7:56:f1:6b:dd: 8e:c8:6b:d3:d7:e2:d1:21:66:73:6c:fb:2f:86:98: 72:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6A:EF:61:71:A3:A2:01:BD:A9:2B:AD:A8:0F:DC:4E:B2:11:A8:70 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:3d:4e:25:66:52:5a:f3:48:16:44:be:56:82:80:5e:ac:45: 08:1a:8d:bb:6e:13:ce:00:b7:7f:f4:3a:dd:ce:0f:3c:4c:80: 45:96:ed:65:45:b2:a3:e7:d3:35:a8:61:fb:d1:a5:b3:be:1f: bc:04:40:3b:ef:ad:a5:89:38:be:58:80:08:1b:3f:d2:e5:88: 3a:d3:07:a6:63:4c:80:5e:0b:79:f9:e8:69:88:e5:14:e3:a2: b4:0d:4d:e6:8e:9d:65:b0:c5:84:0f:22:6f:39:46:25:98:5c: 3a:b0:4a:c7:bf:7e:17:19:81:c4:eb:11:33:09:ff:0c:80:d0: 36:f0:f6:21:1c:cf:d5:62:6c:e2:4e:a6:12:d9:ca:ad:e7:8a: 98:ec:df:81:4a:04:3b:d5:d0:cb:89:af:2c:62:e0:0b:5d:85: 20:9a:9c:e9:58:28:12:37:d9:e9:a9:c4:50:92:e2:2f:70:75: 64:fd:2f:22:6d:a1:ac:4f:34:6d:10:94:6d:b5:b9:9e:e7:60: 85:d9:31:4c:b6:dd:68:44:4c:c5:02:ec:29:52:e1:5e:55:e1: a8:0a:46:65:eb:06:03:45:f2:5f:b5:8c:fa:f7:80:58:08:eb: 4d:c0:db:55:7b:4e:66:44:9f:37:80:83:7c:b5:20:97:81:23: 97:57:3e:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUxMjA0MTg0NjQwWhcNMjUxMjExMTg0NjQwWjAYMRYwFAYD VQQDEw02OTMxZDcxMS0yNDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9g6XzRaH2SC3OQjZt9IUCMhaNcKEXV0a1xWVzg4iCGomUBBNIoRKDms70Cn9 5B+jddeho2zd6k1NvPzemE9JbfIvjdrIDxAqGSFQ4A3EMJuWs8ZnvbkJDLL/+QKO DytSGmpSa2tvrYDlDYyLgvDYTHDooTjv5u2lGDPoQAXC/TcthfmZV80td0HaBX4f PvV7kHs+5+P6FnmJmhyLu0UUFMDPcEPAoGrSEphRm0oPY2xaGGQ5tuKOMI6VMUvm vPKzgqmEu+wTNVR+hT11mng6iy4+4G9xWRY4ooBkAAFTif5Iq5c5rZxpKy5lx1bx a92OyGvT1+LRIWZzbPsvhphyVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRq72Fx o6IBvakrragP3E6yEahwMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3PU4lZlJa80gWRL5WgoBerEUIGo27bhPOALd/9Drdzg88TIBFlu1l RbKj59M1qGH70aWzvh+8BEA7762liTi+WIAIGz/S5Yg60wemY0yAXgt5+ehpiOUU 46K0DU3mjp1lsMWEDyJvOUYlmFw6sErHv34XGYHE6xEzCf8MgNA28PYhHM/VYmzi TqYS2cqt54qY7N+BSgQ71dDLia8sYuALXYUgmpzpWCgSN9npqcRQkuIvcHVk/S8i baGsTzRtEJRttbme52CF2TFMtt1oREzFAuwpUuFeVeGoCkZl6wYDRfJftYz694BY COtNwNtVe05mRJ83gIN8tSCXgSOXVz5d -----END CERTIFICATE-----Generated at Sat Dec 6 17:20:23 2025 by rpki-client