This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft File: o5hxRib4es6-X2_QHlBwGRWqfRU.mft (raw, json) Hash identifier: +M5R1R1oi/f8acRWxuvXLbIk/Uc/h5AX+ijvayprED4= Subject key identifier: 30:AA:C7:04:79:D7:12:12:8E:05:0C:34:A0:53:C8:2B:8E:AD:D6:E5 Authority key identifier: A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 Certificate issuer: /CN=A91827C5/serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft Manifest number: D5 Signing time: Fri 05 Dec 2025 03:38:14 +0000 Manifest this update: Fri 05 Dec 2025 03:38:14 +0000 Manifest next update: Fri 12 Dec 2025 03:38:14 +0000 Files and hashes: 1: o5hxRib4es6-X2_QHlBwGRWqfRU.crl (hash: ORkK3Ua/XCVO+mxPSK8rZM5aK1EjD1jnv4nyi8NFlnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827C5, serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Validity Not Before: Dec 5 03:38:14 2025 GMT Not After : Dec 12 03:38:14 2025 GMT Subject: CN=693253a6-5aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bd:f7:dc:06:e6:4d:55:52:46:98:7f:c7:c9: 8d:0d:15:79:a9:92:c4:91:12:f9:5e:c9:45:cd:ef: 61:7a:2a:16:2b:1a:00:87:8f:0b:b5:55:1f:16:15: fe:da:bc:cd:dd:41:7d:bc:8d:99:cc:63:83:ca:1f: cd:3d:98:20:5c:16:0b:9d:d7:94:c7:11:7d:df:97: f5:b7:92:46:30:e7:a8:7f:b2:98:da:40:c5:b0:b1: 04:ca:27:50:a7:36:36:57:30:49:7b:d2:5b:86:a9: ff:90:0b:37:c9:96:3c:87:a8:58:5e:0a:e5:d5:58: d0:fc:9c:de:95:04:48:2e:ed:39:18:65:18:1d:14: 52:1e:87:84:71:de:13:22:06:18:5d:5d:06:26:78: 19:94:5e:5f:88:ec:37:fd:f3:58:aa:1d:3f:9b:35: 28:c8:08:6f:82:25:24:cd:80:9a:44:da:d6:a7:35: 99:d6:b6:9c:73:2d:d1:a7:d5:78:0c:7b:e7:d7:63: 14:b5:80:14:76:ca:80:5a:a4:05:ce:24:88:1a:3c: 92:f0:3d:fc:82:93:9d:96:a9:c5:af:d6:aa:ae:ef: 6b:4d:ff:00:b0:68:1b:6e:eb:9a:5d:17:3e:0a:51: f2:92:1e:75:96:a9:83:4b:bd:47:43:52:64:0e:95: ad:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:AA:C7:04:79:D7:12:12:8E:05:0C:34:A0:53:C8:2B:8E:AD:D6:E5 X509v3 Authority Key Identifier: keyid:A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:5b:41:af:75:0e:5e:75:22:e5:ff:4a:9d:3e:8c:9a:6a:93: 24:20:a8:21:8a:b9:38:ce:40:4f:cb:cb:6c:cd:15:e3:f7:ee: 69:b2:19:17:70:8a:e1:5b:e2:b1:4d:9e:a4:e8:9a:22:46:71: 50:f0:30:c6:3d:2d:db:7c:23:6c:53:01:8f:cd:f8:b0:c1:37: 72:a7:c3:e7:24:48:9a:01:09:70:61:0b:69:f3:bb:a0:6e:d3: b6:9d:8e:cc:53:f3:57:96:3a:50:1c:51:c4:d2:6e:71:01:7f: 08:00:cf:e9:4a:66:6e:ec:22:41:57:99:6c:7c:cd:c7:ac:d1: c4:cf:bd:85:de:29:77:41:2a:76:6e:d6:fe:01:15:10:a8:fc: 7f:5e:1b:f5:74:2d:24:b5:79:db:7e:68:06:c1:d7:de:2f:fa: b7:ad:d0:ce:25:24:04:52:c4:a9:71:d7:58:92:49:2b:b3:7e: 79:b2:bb:ff:45:75:22:27:55:ab:c2:7e:73:1a:26:b0:c3:de: 84:07:cd:c9:0b:2d:1b:8f:08:83:47:c9:0c:18:1e:e0:43:07: e5:af:21:07:4c:78:84:e1:65:1c:15:8c:97:0a:43:a1:79:18: 72:2c:94:f4:2d:d2:8c:35:93:f1:44:6e:a6:93:16:dd:28:f3: 2f:b3:00:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI3QzUxMTAvBgNVBAUTKEEzOTg3MTQ2MjZGODdBQ0VCRTVGNkZEMDFFNTA3MDE5 MTVBQTdEMTUwHhcNMjUxMjA1MDMzODE0WhcNMjUxMjEyMDMzODE0WjAYMRYwFAYD VQQDEw02OTMyNTNhNi01YWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqr333AbmTVVSRph/x8mNDRV5qZLEkRL5XslFze9heioWKxoAh48LtVUfFhX+ 2rzN3UF9vI2ZzGODyh/NPZggXBYLndeUxxF935f1t5JGMOeof7KY2kDFsLEEyidQ pzY2VzBJe9Jbhqn/kAs3yZY8h6hYXgrl1VjQ/JzelQRILu05GGUYHRRSHoeEcd4T IgYYXV0GJngZlF5fiOw3/fNYqh0/mzUoyAhvgiUkzYCaRNrWpzWZ1raccy3Rp9V4 DHvn12MUtYAUdsqAWqQFziSIGjyS8D38gpOdlqnFr9aqru9rTf8AsGgbbuuaXRc+ ClHykh51lqmDS71HQ1JkDpWt+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCqxwR5 1xISjgUMNKBTyCuOrdblMB8GA1UdIwQYMBaAFKOYcUYm+HrOvl9v0B5QcBkVqn0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjdDNS9EOUFBQjgyQzhB RDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVzNi1YMl9RSGxCd0dSV3Fm UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281aHhSaWI0ZXM2LVgyX1FIbEJ3R1JXcWZSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjdDNS9EOUFBQjgyQzhBRDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVz Ni1YMl9RSGxCd0dSV3FmUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyW0GvdQ5edSLl/0qdPoyaapMkIKghirk4zkBPy8tszRXj9+5pshkX cIrhW+KxTZ6k6JoiRnFQ8DDGPS3bfCNsUwGPzfiwwTdyp8PnJEiaAQlwYQtp87ug btO2nY7MU/NXljpQHFHE0m5xAX8IAM/pSmZu7CJBV5lsfM3HrNHEz72F3il3QSp2 btb+ARUQqPx/Xhv1dC0ktXnbfmgGwdfeL/q3rdDOJSQEUsSpcddYkkkrs355srv/ RXUiJ1Wrwn5zGiaww96EB83JCy0bjwiDR8kMGB7gQwflryEHTHiE4WUcFYyXCkOh eRhyLJT0LdKMNZPxRG6mkxbdKPMvswA8 -----END CERTIFICATE-----Generated at Sat Dec 6 21:28:37 2025 by rpki-client