This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json) Hash identifier: q9LRX/XWqzbjN+O1vUhwpGuAOXgKJv2xZHX0BJ9nh6w= Subject key identifier: CA:5B:C4:58:5E:A4:85:F1:73:9F:58:C7:2F:32:51:C0:33:A2:0C:4E Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft Manifest number: 69 Signing time: Fri 05 Dec 2025 04:53:24 +0000 Manifest this update: Fri 05 Dec 2025 04:53:23 +0000 Manifest next update: Fri 12 Dec 2025 04:53:23 +0000 Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: kMfR3UH1Xd+Di0+WqP+r41fLlLw7qs4EnkxONQ9YyGE=) 2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: Rm2y9XYNOuLaJLPo5EgOIcrmYm6wYWaPwijgwTBKrVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Validity Not Before: Dec 5 04:53:23 2025 GMT Not After : Dec 12 04:53:23 2025 GMT Subject: CN=69326544-9971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d1:ea:e1:a5:47:f1:2d:a5:8a:a0:c9:cc:40: 88:e7:a4:89:e5:ec:ec:05:00:10:b0:ff:a8:a9:da: de:fe:be:18:73:23:bd:ac:c9:da:c9:d8:ab:c8:3b: ab:fd:82:e9:99:6e:4f:aa:27:cf:16:0c:f9:13:d7: 89:84:1d:6a:c7:43:41:fc:41:e4:72:c3:a7:b8:6d: 3e:bb:92:61:da:c7:5b:2c:a3:5a:79:fd:b6:64:3f: 4b:8f:8b:a2:0b:2c:f1:70:79:ce:6f:da:59:ed:54: 88:c3:01:4d:2e:73:f0:34:a5:d2:7a:ce:2b:10:cc: 81:b0:90:17:17:90:05:f5:70:79:cb:4d:3f:98:8d: 78:5f:f7:f2:5c:83:ac:5f:51:56:9b:f6:72:f7:ad: fa:2e:68:a8:41:6b:bc:87:f7:c6:a1:b7:62:2e:38: 00:cd:5a:08:aa:8a:ed:cf:16:18:4d:5c:16:31:e7: 4f:ef:7d:93:77:be:9c:46:14:7e:ae:62:19:fe:55: bd:30:7a:a5:9e:68:9d:69:6e:5a:51:dd:de:85:58: 01:c2:bc:4b:a7:5f:8b:7b:12:a9:e3:ad:0a:75:89: 22:1c:ff:15:82:c3:c2:df:3d:a8:8a:24:2e:3b:9f: 70:80:61:d9:eb:8b:62:53:7f:54:09:b4:98:35:81: d3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5B:C4:58:5E:A4:85:F1:73:9F:58:C7:2F:32:51:C0:33:A2:0C:4E X509v3 Authority Key Identifier: keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:c5:31:3d:32:71:c0:50:c4:c9:00:54:fb:c5:87:3c:c2:21: dd:73:5d:88:77:f2:c5:40:aa:76:71:2a:47:58:12:ed:46:6c: 09:3e:0b:29:a9:88:70:56:1c:d4:c1:f7:80:c4:22:d7:6c:3c: 32:18:16:88:6d:ba:ce:15:1f:6e:c6:e0:2a:a1:84:75:16:ad: a2:e6:d2:f3:5a:99:92:cf:71:f9:a0:40:f1:d4:1a:c3:28:ab: 0f:b4:aa:88:f5:08:95:0a:69:f6:f8:97:e0:a1:91:39:20:0b: d7:67:20:7e:19:42:0e:27:27:8e:2e:84:fb:4c:89:68:73:53: bb:66:5f:73:26:8b:98:8b:cc:2a:19:1f:ae:76:43:c5:ff:9f: 43:cd:6a:a1:d5:51:87:d0:1c:57:ae:11:6a:c2:a4:33:35:f6: 3d:03:10:a3:37:59:15:6f:ba:5e:99:7f:63:b6:95:97:e4:cc: df:1c:e5:a9:9d:3c:26:7b:50:cc:90:2e:49:55:d6:ed:3e:62: b6:70:66:49:9b:b4:65:06:df:38:08:c9:c9:2a:4a:a6:8c:bd: 07:5c:76:97:24:ff:3b:72:9c:ec:94:02:af:2f:48:1f:57:3f: 05:14:40:8d:a9:2b:0f:37:e8:84:5a:33:24:3f:0a:a4:8f:f4: 69:d4:48:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDJDQTExMC8GA1UEBRMoNkY5MUM3NkE0Rjc0NjY0MTAwREQ4REVCRDE3ODUxNDJF MTM3ODAyRDAeFw0yNTEyMDUwNDUzMjNaFw0yNTEyMTIwNDUzMjNaMBgxFjAUBgNV BAMTDTY5MzI2NTQ0LTk5NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDi0erhpUfxLaWKoMnMQIjnpInl7OwFABCw/6ip2t7+vhhzI72sydrJ2KvIO6v9 gumZbk+qJ88WDPkT14mEHWrHQ0H8QeRyw6e4bT67kmHax1sso1p5/bZkP0uPi6IL LPFwec5v2lntVIjDAU0uc/A0pdJ6zisQzIGwkBcXkAX1cHnLTT+YjXhf9/Jcg6xf UVab9nL3rfouaKhBa7yH98aht2IuOADNWgiqiu3PFhhNXBYx50/vfZN3vpxGFH6u Yhn+Vb0weqWeaJ1pblpR3d6FWAHCvEunX4t7EqnjrQp1iSIc/xWCw8LfPaiKJC47 n3CAYdnri2JTf1QJtJg1gdP/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUylvEWF6k hfFzn1jHLzJRwDOiDE4wHwYDVR0jBBgwFoAUb5HHak90ZkEA3Y3r0XhRQuE3gC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMkNBLzA5Rjc0RUY2MzU0 NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtFQTNZM3IwWGhSUXVFM2dD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjVISGFrOTBaa0VBM1kzcjBYaFJRdUUzZ0MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE MkNBLzA5Rjc0RUY2MzU0NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtF QTNZM3IwWGhSUXVFM2dDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKDFMT0yccBQxMkAVPvFhzzCId1zXYh38sVAqnZxKkdYEu1GbAk+Cymp iHBWHNTB94DEItdsPDIYFohtus4VH27G4CqhhHUWraLm0vNamZLPcfmgQPHUGsMo qw+0qoj1CJUKafb4l+ChkTkgC9dnIH4ZQg4nJ44uhPtMiWhzU7tmX3Mmi5iLzCoZ H652Q8X/n0PNaqHVUYfQHFeuEWrCpDM19j0DEKM3WRVvul6Zf2O2lZfkzN8c5amd PCZ7UMyQLklV1u0+YrZwZkmbtGUG3zgIyckqSqaMvQdcdpck/ztynOyUAq8vSB9X PwUUQI2pKw836IRaMyQ/CqSP9GnUSGY= -----END CERTIFICATE-----Generated at Sun Dec 7 04:54:57 2025 by rpki-client