This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: Ld2etGsCOTPsfIMIK46DbfP3npVB2xZdfRCyZKMOxH0= Subject key identifier: BC:CD:63:38:CB:1A:BF:F7:6E:51:C1:31:E9:40:18:52:35:3F:31:5F Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 010C Signing time: Fri 05 Dec 2025 03:01:35 +0000 Manifest this update: Fri 05 Dec 2025 03:01:34 +0000 Manifest next update: Fri 12 Dec 2025 03:01:34 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: jiew1Lqnmio98LgOScFtFO4I+dVS6KhkeowtkVibSno=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: RU5OhSVcdir8OrT3E9J1urB5y05ack2UMndknf/XUMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Dec 5 03:01:34 2025 GMT Not After : Dec 12 03:01:34 2025 GMT Subject: CN=69324b0f-eea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:37:59:06:e4:74:71:45:85:5c:59:8a:c6:38: 76:67:54:b7:79:25:43:65:ca:9c:bc:e4:10:f0:38: d7:20:4b:36:2d:08:5a:3e:53:68:56:bf:1b:67:8a: 0d:71:43:7e:59:ec:b3:49:c2:a0:8d:54:ed:e6:d9: 24:55:92:1d:b0:5c:9c:b1:0c:c9:22:e6:16:c8:42: 2f:fb:4a:d9:eb:aa:69:d8:db:1d:ba:ea:f9:9d:f2: be:dd:45:b0:51:aa:41:04:4c:4b:43:9b:f5:92:e9: b7:2f:56:53:45:3d:a7:77:78:4b:d2:6e:c7:9f:a5: 26:ff:a4:78:47:9f:48:af:b3:24:a3:a9:0e:c5:68: 37:c3:49:21:bb:fb:b5:eb:71:1c:f7:2b:30:b5:18: a3:31:3c:5b:89:3e:f0:a0:97:f9:4b:cd:72:01:68: 26:cb:4a:e9:b5:0b:a6:c9:4a:70:38:be:3c:be:41: b2:63:1a:4b:06:a0:80:ee:99:8e:3d:47:97:06:b1: b3:f8:36:53:46:30:8a:92:22:6c:b9:fd:c2:da:6a: 9f:fa:a9:bc:37:e6:9e:e3:17:a4:c3:c4:27:f5:42: 8c:b0:88:b8:ac:19:09:b6:cc:f2:95:82:fb:ce:4c: 00:be:bf:63:ca:00:32:9e:6b:9a:49:ad:0b:29:ad: 97:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:CD:63:38:CB:1A:BF:F7:6E:51:C1:31:E9:40:18:52:35:3F:31:5F X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:5c:38:05:dc:fc:79:a9:1d:02:84:20:d8:df:42:c7:6f:da: 94:ca:23:26:e1:81:cf:f0:0b:6e:74:4a:b0:da:a4:10:dd:3c: 02:0b:2f:fc:7b:dd:46:d7:d9:af:f4:08:d0:4d:ae:66:e9:70: 3f:3f:8a:ff:05:e5:95:74:5d:4f:d2:10:90:10:79:7e:7b:83: 32:70:ed:16:d1:7e:3f:41:17:cc:d2:4a:98:1d:02:04:66:3c: dc:56:0a:84:a4:8e:06:e1:a7:88:37:61:ae:04:70:42:f1:53: e4:e5:d1:44:13:97:fc:f1:c3:b7:ee:a4:cf:6c:fd:53:fa:24: 82:0c:34:9b:fc:dc:74:33:74:61:bd:ef:7d:d7:b9:1d:7a:50: f1:46:85:51:81:e5:5c:90:ad:76:4e:6a:5d:9c:bf:ea:f1:cb: e6:33:26:a8:ff:6a:93:db:df:f5:4c:8d:55:20:f9:26:33:c2: 67:88:7c:2a:ba:38:3e:25:c6:b8:8a:53:bc:0f:05:1e:90:58: 47:a3:4b:e3:61:66:c1:97:d7:12:17:16:de:9b:5c:0a:59:c1: 94:82:a9:61:74:e1:74:d2:29:a4:62:b0:66:0a:8a:ff:b0:4f: 48:5a:83:2d:17:27:ed:ce:e4:5f:3a:b9:d5:a2:2b:f5:0e:13: 99:fe:43:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUxMjA1MDMwMTM0WhcNMjUxMjEyMDMwMTM0WjAYMRYwFAYD VQQDEw02OTMyNGIwZi1lZWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDdZBuR0cUWFXFmKxjh2Z1S3eSVDZcqcvOQQ8DjXIEs2LQhaPlNoVr8bZ4oN cUN+WeyzScKgjVTt5tkkVZIdsFycsQzJIuYWyEIv+0rZ66pp2Nsduur5nfK+3UWw UapBBExLQ5v1kum3L1ZTRT2nd3hL0m7Hn6Um/6R4R59Ir7Mko6kOxWg3w0khu/u1 63Ec9yswtRijMTxbiT7woJf5S81yAWgmy0rptQumyUpwOL48vkGyYxpLBqCA7pmO PUeXBrGz+DZTRjCKkiJsuf3C2mqf+qm8N+ae4xekw8Qn9UKMsIi4rBkJtszylYL7 zkwAvr9jygAynmuaSa0LKa2XNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzNYzjL Gr/3blHBMelAGFI1PzFfMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOXDgF3Px5qR0ChCDY30LHb9qUyiMm4YHP8AtudEqw2qQQ3TwCCy/8 e91G19mv9AjQTa5m6XA/P4r/BeWVdF1P0hCQEHl+e4MycO0W0X4/QRfM0kqYHQIE ZjzcVgqEpI4G4aeIN2GuBHBC8VPk5dFEE5f88cO37qTPbP1T+iSCDDSb/Nx0M3Rh ve9917kdelDxRoVRgeVckK12TmpdnL/q8cvmMyao/2qT29/1TI1VIPkmM8JniHwq ujg+Jca4ilO8DwUekFhHo0vjYWbBl9cSFxbem1wKWcGUgqlhdOF00imkYrBmCor/ sE9IWoMtFyftzuRfOrnVoiv1DhOZ/kPJ -----END CERTIFICATE-----Generated at Sun Dec 7 03:43:13 2025 by rpki-client