This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft File: 5CnUKeZreXs9ihy-JJFXetw4pI4.mft (raw, json) Hash identifier: VhmlQEp7KfwD4zbaWFAwLHejcgD+LRN48A7tcBuoV74= Subject key identifier: 16:44:C4:83:B8:3C:6D:61:62:03:26:E4:58:CC:EA:AE:2D:6F:78:78 Authority key identifier: E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E Certificate issuer: /CN=A91CC711/serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft Manifest number: 0140 Signing time: Fri 05 Dec 2025 02:51:09 +0000 Manifest this update: Fri 05 Dec 2025 02:51:08 +0000 Manifest next update: Fri 12 Dec 2025 02:51:08 +0000 Files and hashes: 1: 5CnUKeZreXs9ihy-JJFXetw4pI4.crl (hash: GKffVl2Q+SLAmGM90oxZ+KcUbkNhMIFR/CWA5fSdQBg=) 2: 06FA65A81F2711EF98DA2926C4F9AE02.roa (hash: oS4PRK+VFwkVhFqqmzFtlUlVZ/0tESve4AVvdpaS7tg=) 3: 25ED44B41EE411EFA62B1335C4F9AE02.roa (hash: zb91MkoqcDkuzuZwD7VYBRLCNDf9oSeL0ikN94ozVn8=) 4: A7FC5DEE8D0411EFBD7A0057C4F9AE02.roa (hash: TGsIq74Qma+U6c7Ey8qeEz04VjG5STVU5SpvAS46Q6U=) 5: 359CBDB28D0D11EF90882959C4F9AE02.roa (hash: qdwbcsIyL1f3wI2tO7dwB6BR0n7SfSV/G7xRpNDHqtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC711, serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Validity Not Before: Dec 5 02:51:08 2025 GMT Not After : Dec 12 02:51:08 2025 GMT Subject: CN=6932489d-aec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:66:61:36:64:db:de:8f:46:95:e4:61:1b:a1: 39:74:d7:70:ca:2d:af:67:ea:47:12:a9:52:df:46: 7e:b6:74:32:d4:9e:e9:41:88:85:9a:22:7f:dc:b2: 19:52:b0:bf:ea:b0:d9:24:b6:31:2b:fa:21:12:07: 1b:3e:d4:c9:78:c6:ae:8f:3f:e3:ab:93:61:80:29: bc:6a:8c:6c:c9:24:d7:b6:1a:dc:75:2c:bf:38:74: 55:33:60:cc:b1:91:5f:5b:96:a3:32:35:08:f3:49: d5:0d:bd:86:18:84:9d:24:84:8e:00:2c:aa:ec:cc: c9:86:fd:87:ec:ea:3f:8f:fe:6a:29:36:58:6d:42: b9:20:5c:6c:90:86:30:ef:00:17:78:38:6e:11:57: 7f:32:a9:9d:e0:27:5d:91:43:1c:84:b1:3e:fa:e5: c3:59:df:bb:fd:1f:55:29:af:15:7e:9a:f3:93:15: 03:35:6b:b5:50:b6:06:b2:ab:0d:9a:2f:22:1e:d9: f5:9d:13:3d:cd:2c:16:d2:56:98:8c:0c:90:2f:d7: 69:5f:b9:b4:55:26:61:f2:9d:6a:9e:33:67:e2:02: 32:4a:08:a7:25:c4:58:f1:2e:8c:f1:29:69:48:d9: 50:44:59:72:e1:29:99:3e:67:a6:9d:32:7f:db:e3: c5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:44:C4:83:B8:3C:6D:61:62:03:26:E4:58:CC:EA:AE:2D:6F:78:78 X509v3 Authority Key Identifier: keyid:E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c6:ea:13:18:71:95:71:a9:fe:36:ff:6a:e5:de:e3:e7:24: 1b:0b:52:0f:2c:c5:59:54:7b:5f:af:e2:05:e8:aa:f8:0f:a2: be:59:86:28:08:fb:23:20:a6:7a:31:8b:4d:89:f6:f6:d4:8d: 9a:8d:e3:72:e7:71:b1:7a:e8:db:76:47:21:3b:38:ee:79:cb: 10:3c:a8:59:10:1e:c0:a4:f2:58:a2:2d:9f:9d:86:2c:78:9f: 73:04:4b:db:34:ca:f2:4b:75:6c:ea:2d:f3:a1:16:04:ba:87: fd:00:66:c3:25:f0:c4:d7:a6:9e:eb:b2:15:7e:fc:9e:82:46: dd:2f:61:84:54:7f:07:70:74:7f:bd:21:90:81:6a:44:0d:07: 6d:34:f5:14:7e:27:8f:53:e0:2b:ee:e2:a5:92:1e:62:f5:bd: 54:b1:92:41:b3:76:fe:7f:2c:4b:e8:09:e6:29:1a:0f:25:53: f0:44:38:77:b9:61:7a:76:c2:7b:03:d9:ba:a8:16:8a:88:8d: dc:0e:d5:09:22:f2:5c:18:f2:d0:ad:92:32:f9:70:89:58:3b: f0:9e:0f:14:e3:00:1d:da:2d:ef:86:ca:24:e2:f2:30:b3:7b: 8f:17:7d:cb:b2:b6:da:74:3f:9e:85:31:f7:de:2c:b1:e1:8f: 3f:49:c5:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M3MTExMTAvBgNVBAUTKEU0MjlENDI5RTY2Qjc5N0IzRDhBMUNCRTI0OTE1NzdB REMzOEE0OEUwHhcNMjUxMjA1MDI1MTA4WhcNMjUxMjEyMDI1MTA4WjAYMRYwFAYD VQQDEw02OTMyNDg5ZC1hZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmZhNmTb3o9GleRhG6E5dNdwyi2vZ+pHEqlS30Z+tnQy1J7pQYiFmiJ/3LIZ UrC/6rDZJLYxK/ohEgcbPtTJeMaujz/jq5NhgCm8aoxsySTXthrcdSy/OHRVM2DM sZFfW5ajMjUI80nVDb2GGISdJISOACyq7MzJhv2H7Oo/j/5qKTZYbUK5IFxskIYw 7wAXeDhuEVd/Mqmd4CddkUMchLE++uXDWd+7/R9VKa8VfprzkxUDNWu1ULYGsqsN mi8iHtn1nRM9zSwW0laYjAyQL9dpX7m0VSZh8p1qnjNn4gIySginJcRY8S6M8Slp SNlQRFly4SmZPmemnTJ/2+PF8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZExIO4 PG1hYgMm5FjM6q4tb3h4MB8GA1UdIwQYMBaAFOQp1Cnma3l7PYocviSRV3rcOKSO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzcxMS9DN0QxQjA1NDFF RTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVYczlpaHktSkpGWGV0dzRw STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDblVLZVpyZVhzOWloeS1KSkZYZXR3NHBJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzcxMS9DN0QxQjA1NDFFRTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVY czlpaHktSkpGWGV0dzRwSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoxuoTGHGVcan+Nv9q5d7j5yQbC1IPLMVZVHtfr+IF6Kr4D6K+WYYo CPsjIKZ6MYtNifb21I2ajeNy53GxeujbdkchOzjuecsQPKhZEB7ApPJYoi2fnYYs eJ9zBEvbNMryS3Vs6i3zoRYEuof9AGbDJfDE16ae67IVfvyegkbdL2GEVH8HcHR/ vSGQgWpEDQdtNPUUfiePU+Ar7uKlkh5i9b1UsZJBs3b+fyxL6AnmKRoPJVPwRDh3 uWF6dsJ7A9m6qBaKiI3cDtUJIvJcGPLQrZIy+XCJWDvwng8U4wAd2i3vhsok4vIw s3uPF33LsrbadD+ehTH33iyx4Y8/ScVa -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:46 2025 by rpki-client