This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: py5AAE5IKGn1Q1CQtEH0jQ3uEA5dDfpJ7ZLPrq8Kcrw= Subject key identifier: 87:E2:01:66:C5:2C:DD:BE:68:4E:F2:66:29:2D:2F:4B:CD:0F:E3:DB Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01FD Signing time: Fri 05 Dec 2025 01:24:18 +0000 Manifest this update: Fri 05 Dec 2025 01:24:18 +0000 Manifest next update: Fri 12 Dec 2025 01:24:18 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: 4YYGjtCN4GTZy9251EoLXPdTWqKXGjTzM5ckNoRwNCM=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: MOCyDx3MMCgJ0iKiHYJPId15Yf0kFHcGhSay9PLqfd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Dec 5 01:24:18 2025 GMT Not After : Dec 12 01:24:18 2025 GMT Subject: CN=69323442-1b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:65:e2:a3:1b:cb:90:d3:27:32:d2:e2:37:c8: e2:2f:55:4d:0c:4c:58:a0:cd:43:54:34:bf:ea:55: af:98:28:0e:ca:c8:a3:7e:c1:46:64:91:b5:29:c0: 63:4f:4c:c6:54:16:69:14:ba:a0:25:d9:3a:8a:b3: 13:2e:9e:36:4d:c5:90:c5:5e:7b:ea:db:05:2c:03: 9c:4b:95:95:50:48:e1:9d:1b:0f:5f:1d:5c:cb:d1: a0:ac:fa:46:e3:a6:68:a0:89:20:2a:04:a1:25:8b: 46:04:43:e4:80:15:7d:a6:3d:45:50:39:8a:aa:bf: e0:b4:03:51:b6:ca:a3:12:e9:cd:5b:11:03:6f:a3: f0:08:9b:4f:fd:bf:5d:27:94:9a:23:78:7c:2d:8e: 0c:19:2c:0f:85:f5:1e:2c:f9:2f:9a:0c:6a:b8:ec: 20:a2:80:df:ac:b5:b9:d6:02:3b:15:be:59:f1:48: ba:1a:96:bb:89:ba:21:03:8f:56:23:c0:60:77:74: 56:9a:71:61:04:cb:f5:83:4f:46:59:8d:e7:fd:05: fb:ca:87:01:a5:04:01:70:29:a2:c2:67:de:9c:f6: a2:4f:a1:ce:45:7a:80:a8:2c:d0:e4:94:7b:b6:1c: 1b:f9:20:88:f8:5c:18:34:41:69:32:90:8a:a4:10: de:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E2:01:66:C5:2C:DD:BE:68:4E:F2:66:29:2D:2F:4B:CD:0F:E3:DB X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:0e:c1:66:8d:c4:25:24:2d:b5:be:42:bf:ba:63:b0:9d:c5: b1:9f:c8:07:15:6c:81:73:e8:6a:de:43:ed:02:33:58:b3:0a: f0:ad:aa:96:83:d2:19:97:67:b2:68:19:39:4f:50:08:02:21: 54:f9:b4:ca:6d:55:b3:c4:26:69:1a:82:fd:fb:ca:b9:84:8c: 1e:b7:8e:42:40:91:76:b6:3f:52:73:15:39:b0:d0:7a:5f:d9: 4f:0c:9a:ec:c6:1c:69:12:d2:30:5a:34:fb:69:d4:cd:b7:7f: 1a:dd:e7:82:94:fc:cf:59:2b:b4:15:45:90:cc:56:f5:e3:5e: 60:62:71:4e:05:88:07:c0:31:8f:71:c1:68:f1:98:62:0b:f9: f8:a1:08:82:ec:65:da:3e:4e:82:b5:75:21:19:19:b0:6c:1e: 58:66:04:b3:43:00:f5:d1:e1:a4:ee:ef:55:97:62:eb:59:81: dd:61:1a:4a:30:7a:d1:27:80:18:f2:13:6c:cf:42:32:0e:48: 7f:5a:12:e3:5e:e1:57:c2:87:44:f8:d1:ca:cc:33:c4:93:be: 5c:1e:6d:46:3f:47:91:7f:19:57:06:c8:50:33:fe:ff:92:86: 45:15:17:f7:4c:2e:df:c4:84:cb:12:37:c3:59:81:c0:a9:99: e9:aa:7d:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUxMjA1MDEyNDE4WhcNMjUxMjEyMDEyNDE4WjAYMRYwFAYD VQQDEw02OTMyMzQ0Mi0xYjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WXioxvLkNMnMtLiN8jiL1VNDExYoM1DVDS/6lWvmCgOysijfsFGZJG1KcBj T0zGVBZpFLqgJdk6irMTLp42TcWQxV576tsFLAOcS5WVUEjhnRsPXx1cy9GgrPpG 46ZooIkgKgShJYtGBEPkgBV9pj1FUDmKqr/gtANRtsqjEunNWxEDb6PwCJtP/b9d J5SaI3h8LY4MGSwPhfUeLPkvmgxquOwgooDfrLW51gI7Fb5Z8Ui6Gpa7ibohA49W I8Bgd3RWmnFhBMv1g09GWY3n/QX7yocBpQQBcCmiwmfenPaiT6HORXqAqCzQ5JR7 thwb+SCI+FwYNEFpMpCKpBDeYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfiAWbF LN2+aE7yZiktL0vND+PbMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCDsFmjcQlJC21vkK/umOwncWxn8gHFWyBc+hq3kPtAjNYswrwraqW g9IZl2eyaBk5T1AIAiFU+bTKbVWzxCZpGoL9+8q5hIwet45CQJF2tj9ScxU5sNB6 X9lPDJrsxhxpEtIwWjT7adTNt38a3eeClPzPWSu0FUWQzFb1415gYnFOBYgHwDGP ccFo8ZhiC/n4oQiC7GXaPk6CtXUhGRmwbB5YZgSzQwD10eGk7u9Vl2LrWYHdYRpK MHrRJ4AY8hNsz0IyDkh/WhLjXuFXwodE+NHKzDPEk75cHm1GP0eRfxlXBshQM/7/ koZFFRf3TC7fxITLEjfDWYHAqZnpqn1l -----END CERTIFICATE-----Generated at Sat Dec 6 13:03:28 2025 by rpki-client