This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: edINpvVajpJe+iIzs5qyhZYMxyqdj+6oMYOsPnDW9IA= Subject key identifier: FC:20:D8:9A:C7:E4:C3:6F:D8:C3:D7:5C:6C:2D:8F:D8:AE:21:94:1E Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 35A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 3543 Signing time: Sat 06 Dec 2025 14:46:50 +0000 Manifest this update: Sat 06 Dec 2025 14:46:50 +0000 Manifest next update: Sat 13 Dec 2025 14:46:50 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: oAkJXmaKkvMApIko7BD8kJd3BpNOWQF66mi4warqFaI=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13736 (0x35a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Dec 6 14:46:50 2025 GMT Not After : Dec 13 14:46:50 2025 GMT Subject: CN=693441da-93b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:6e:77:23:69:c5:30:be:94:ef:b2:35:a1: 84:b3:f1:f6:c3:fa:1f:e3:61:a0:05:ec:da:57:b8: db:a9:78:9e:3c:4a:36:aa:c5:10:41:fe:14:da:80: 29:91:ba:41:dd:2d:16:9b:28:eb:a4:f8:ba:dc:1f: f2:4b:5d:c0:16:ba:af:4b:68:ad:77:75:0a:64:44: 43:62:68:df:29:ff:77:15:32:02:cd:2a:60:22:2a: aa:8d:03:a8:7e:37:4d:cc:9f:be:da:c3:f2:14:26: 27:51:21:5f:1e:26:df:d0:fc:67:94:e8:c7:10:90: 35:2d:08:a5:54:08:e7:75:b8:ce:91:e1:26:ee:67: 12:7e:dd:c5:55:e7:45:08:f0:07:2c:40:01:ba:b7: 21:c2:1a:b1:1f:18:ae:64:69:db:c6:28:14:0d:97: 28:9a:f3:00:95:50:e6:84:2d:b0:f6:88:d3:52:48: 1c:74:ed:e8:55:99:a8:3f:e5:45:44:2a:58:2d:aa: 5e:d6:b0:d8:2c:b3:02:d4:4b:f1:5f:14:cd:bd:2d: ce:a3:a5:f0:89:80:15:5d:05:e0:12:d2:e9:69:5b: 3e:6e:22:3e:18:f5:7e:df:54:36:5e:6d:5a:05:59: 1b:98:32:4f:ba:7f:9f:4f:53:1d:d9:23:15:58:75: 06:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:20:D8:9A:C7:E4:C3:6F:D8:C3:D7:5C:6C:2D:8F:D8:AE:21:94:1E X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:59:82:2b:45:81:8f:d1:02:f6:b0:bb:25:33:fc:7b:60:bb: 61:5f:e9:35:ec:d3:f8:93:46:1d:a7:28:07:85:44:ee:02:a7: 30:f9:64:22:f7:84:df:83:6d:09:7e:c2:f7:46:6f:fe:41:18: 96:08:0f:ae:b7:8b:1f:b0:8b:0f:2e:21:c1:a4:fe:d0:a3:9a: fb:77:68:cb:ea:e1:84:e3:dd:98:8d:05:ed:d0:40:ae:fb:bd: 69:a6:3a:c6:1e:df:45:ee:d5:2c:2d:44:b5:ca:75:32:5e:d8: 39:5b:ce:c1:11:1c:d5:f5:4b:85:48:e4:40:5e:03:78:12:76: 8f:23:b9:e8:cb:8c:ee:79:4d:42:40:34:56:91:7a:ca:af:a7: d0:69:1e:79:21:39:da:3e:f4:ca:f4:a8:93:f2:03:77:09:74: 0b:36:8a:44:ac:fd:00:ee:54:45:68:f2:45:14:31:e4:a5:6f: 61:d4:87:34:81:5b:c1:6f:5f:d5:f3:ed:ea:39:d1:8f:06:51: 31:7b:4a:17:d7:c4:3a:c9:b1:e5:6c:c3:7b:a4:e6:f8:e7:18: 2c:c3:7f:07:64:e0:bc:01:06:06:0e:3b:e1:41:24:9f:e5:1c: d1:19:59:92:d2:f2:d7:9c:27:a4:4b:53:a6:28:0d:c3:50:a8: 34:2f:2a:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUxMjA2MTQ0NjUwWhcNMjUxMjEzMTQ0NjUwWjAYMRYwFAYD VQQDEw02OTM0NDFkYS05M2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/9udyNpxTC+lO+yNaGEs/H2w/of42GgBezaV7jbqXiePEo2qsUQQf4U2oAp kbpB3S0WmyjrpPi63B/yS13AFrqvS2itd3UKZERDYmjfKf93FTICzSpgIiqqjQOo fjdNzJ++2sPyFCYnUSFfHibf0PxnlOjHEJA1LQilVAjndbjOkeEm7mcSft3FVedF CPAHLEABurchwhqxHxiuZGnbxigUDZcomvMAlVDmhC2w9ojTUkgcdO3oVZmoP+VF RCpYLape1rDYLLMC1EvxXxTNvS3Oo6XwiYAVXQXgEtLpaVs+biI+GPV+31Q2Xm1a BVkbmDJPun+fT1Md2SMVWHUGOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwg2JrH 5MNv2MPXXGwtj9iuIZQeMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTWYIrRYGP0QL2sLslM/x7YLthX+k17NP4k0YdpygHhUTuAqcw+WQi 94Tfg20JfsL3Rm/+QRiWCA+ut4sfsIsPLiHBpP7Qo5r7d2jL6uGE492YjQXt0ECu +71ppjrGHt9F7tUsLUS1ynUyXtg5W87BERzV9UuFSORAXgN4EnaPI7noy4zueU1C QDRWkXrKr6fQaR55ITnaPvTK9KiT8gN3CXQLNopErP0A7lRFaPJFFDHkpW9h1Ic0 gVvBb1/V8+3qOdGPBlExe0oX18Q6ybHlbMN7pOb45xgsw38HZOC8AQYGDjvhQSSf 5RzRGVmS0vLXnCekS1OmKA3DUKg0Lyr4 -----END CERTIFICATE-----Generated at Sun Dec 7 04:56:03 2025 by rpki-client