This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: ZLWbWFWxiNUJIHhCjmDM26eXT5uAtWp5sdCW4pe/bO0= Subject key identifier: 12:3D:F1:8C:8B:9B:9B:C4:3F:A5:36:2D:3D:4F:C6:14:14:1B:B3:91 Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 0166 Signing time: Fri 05 Dec 2025 02:09:24 +0000 Manifest this update: Fri 05 Dec 2025 02:09:23 +0000 Manifest next update: Fri 12 Dec 2025 02:09:23 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: PouDRh1ldCSd53nAHS0j3tdGMFTJ4EK+h2BIenE84kc=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: rRDvrlPYTiklnnMokp9hSZMDep3YQlLeE2vCJYFlOfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444, serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: Dec 5 02:09:23 2025 GMT Not After : Dec 12 02:09:23 2025 GMT Subject: CN=69323ed3-78ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:39:e9:a5:a1:21:b4:0e:92:d6:5f:a2:2f: 1b:6f:5a:53:44:ef:45:83:e5:14:af:b4:bd:ce:62: ae:07:6b:2d:63:25:a3:91:7c:f6:dd:b1:21:a8:9e: b5:0a:59:f0:06:b8:74:23:42:83:10:83:d3:d9:0a: f6:05:de:3d:06:b6:44:c6:db:ca:f2:0e:5f:d7:e9: 66:7d:de:15:f1:77:46:52:2a:4b:43:17:01:91:fc: e0:da:d7:9d:6f:c6:ff:e6:37:27:13:3f:1f:4c:26: 3d:c4:ae:3d:ed:df:bd:d4:68:da:56:a1:35:df:97: f9:fb:9d:87:f3:fc:db:4d:23:71:1b:e8:b0:a4:96: 25:b9:ab:ab:dd:9d:79:45:d6:c9:25:d5:9d:ad:9b: 69:03:a1:a2:a7:84:db:a3:52:2b:0c:50:4e:03:09: b3:4d:e0:8d:23:00:29:47:eb:df:87:3f:32:fd:cf: 7a:d6:e0:cc:6c:c3:a9:e2:ac:cd:02:bd:f7:ca:89: c4:5b:da:cb:1a:d6:a6:43:f1:08:2c:41:c1:a9:e4: fd:1c:2d:af:d3:dc:f3:7a:b6:9c:68:67:af:f1:57: 74:a3:9f:b0:f2:73:1f:12:f5:84:e5:3c:26:c7:12: 57:31:2d:d3:f6:6a:7c:fd:a2:45:58:83:eb:59:07: aa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:3D:F1:8C:8B:9B:9B:C4:3F:A5:36:2D:3D:4F:C6:14:14:1B:B3:91 X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:b4:6b:fc:4e:b2:b9:4c:0e:32:4a:61:05:f8:0e:98:a4:af: a5:61:1f:be:7c:14:fb:19:aa:1b:92:8d:97:1a:20:c5:80:4a: 6d:9f:bd:35:89:0a:59:81:a2:74:46:88:19:c1:87:17:fc:cc: eb:0c:c3:6c:9a:6b:d3:fc:30:9e:92:44:a3:98:31:6c:4a:52: ca:63:dc:20:3a:61:e8:d8:b6:31:dc:e3:b1:43:48:fb:63:ee: c0:de:ea:60:75:8d:67:83:dc:14:a8:da:27:63:99:ab:78:6b: dd:9c:d5:80:e9:74:34:64:f6:1d:81:6c:ff:04:d0:3d:b2:b7: f5:62:98:85:79:6f:20:74:69:01:04:82:7a:e8:ec:e0:31:fb: e7:ec:22:f3:05:76:ce:0b:bd:c1:ae:32:79:a6:05:46:d6:f7: 2e:20:c7:de:5b:32:ec:76:e7:ba:28:9e:33:20:3b:5f:82:57: ba:49:12:ab:ff:e0:87:fd:5b:77:b4:39:f2:a7:f3:1e:39:03: 35:5f:b7:f5:b3:0d:2e:d8:bf:59:9e:dd:c3:2c:81:cd:c1:7b: d0:45:52:17:44:5a:9d:df:d1:af:1c:94:63:e2:7e:5d:8f:d1: 99:f7:c5:28:ea:3c:67:7a:cc:cc:31:8d:81:21:82:79:73:b4: 2f:38:c7:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjUxMjA1MDIwOTIzWhcNMjUxMjEyMDIwOTIzWjAYMRYwFAYD VQQDEw02OTMyM2VkMy03OGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxao56aWhIbQOktZfoi8bb1pTRO9Fg+UUr7S9zmKuB2stYyWjkXz23bEhqJ61 ClnwBrh0I0KDEIPT2Qr2Bd49BrZExtvK8g5f1+lmfd4V8XdGUipLQxcBkfzg2ted b8b/5jcnEz8fTCY9xK497d+91GjaVqE135f5+52H8/zbTSNxG+iwpJYluaur3Z15 RdbJJdWdrZtpA6Gip4Tbo1IrDFBOAwmzTeCNIwApR+vfhz8y/c961uDMbMOp4qzN Ar33yonEW9rLGtamQ/EILEHBqeT9HC2v09zzeracaGev8Vd0o5+w8nMfEvWE5Twm xxJXMS3T9mp8/aJFWIPrWQeq5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBI98YyL m5vEP6U2LT1PxhQUG7ORMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZtGv8TrK5TA4ySmEF+A6YpK+lYR++fBT7Gaobko2XGiDFgEptn701 iQpZgaJ0RogZwYcX/MzrDMNsmmvT/DCekkSjmDFsSlLKY9wgOmHo2LYx3OOxQ0j7 Y+7A3upgdY1ng9wUqNonY5mreGvdnNWA6XQ0ZPYdgWz/BNA9srf1YpiFeW8gdGkB BIJ66OzgMfvn7CLzBXbOC73BrjJ5pgVG1vcuIMfeWzLsdue6KJ4zIDtfgle6SRKr /+CH/Vt3tDnyp/MeOQM1X7f1sw0u2L9Znt3DLIHNwXvQRVIXRFqd39GvHJRj4n5d j9GZ98Uo6jxneszMMY2BIYJ5c7QvOMdc -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:35 2025 by rpki-client