This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: cDPhvN+hcs12ZMz0E6gmMLVA//bJGcUME2swfp3Sdso= Subject key identifier: 39:C7:38:F6:CB:79:CC:49:31:10:64:FF:C7:8B:2E:FA:DF:48:9C:60 Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 045B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 0456 Signing time: Thu 04 Dec 2025 22:40:45 +0000 Manifest this update: Thu 04 Dec 2025 22:40:44 +0000 Manifest next update: Thu 11 Dec 2025 22:40:44 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: U8+uAmBmsxJ8z5k11KvY5QOSWsZcecr1CdvGsfzjlcM=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: X0bJVDOuH3hxzxDqtFhaGE8zyPysnrk6jtT4gfdw6QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1115 (0x45b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Dec 4 22:40:44 2025 GMT Not After : Dec 11 22:40:44 2025 GMT Subject: CN=69320ded-cf48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:93:89:7c:b6:b3:3a:ad:1c:e3:71:c4:b9:82: e2:20:3e:96:69:42:88:82:00:e3:00:3c:92:73:4b: 17:53:35:ed:07:5a:42:f1:18:30:cf:fe:2d:b1:bd: 6f:15:af:73:f0:ab:fb:fb:34:65:82:be:16:a6:3e: ec:87:cc:69:32:b7:d0:3e:89:22:a2:44:01:db:8c: ad:96:ab:30:b6:5d:0c:65:86:ad:94:ea:9c:31:8a: 89:ed:2f:49:fa:93:4a:d9:e1:7c:1d:77:d4:62:f1: e6:1e:ec:b9:3c:64:d0:7b:87:de:1c:cf:0f:17:83: 4d:b4:b9:80:c1:69:af:df:fb:a1:cf:e2:50:f3:33: 79:5c:14:03:f8:56:91:d4:f2:39:63:db:52:42:60: 4c:4a:95:d3:36:5a:fe:d1:d4:85:a3:cb:72:00:35: 18:3d:f8:43:47:7e:60:ae:e0:3b:cb:cc:30:43:0c: 2c:84:6e:1f:9b:5c:40:b3:88:18:f5:ab:a7:bd:3e: 65:c2:6f:cb:66:10:84:f9:66:1e:4d:24:36:dd:be: af:c5:a8:1f:9f:07:98:8f:7e:25:ff:ee:56:b3:5f: a4:e8:a6:b3:2a:b5:3d:03:d7:50:19:23:34:f8:10: f1:bf:71:55:0a:3f:03:17:3d:ca:b6:d9:d3:79:6b: 04:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C7:38:F6:CB:79:CC:49:31:10:64:FF:C7:8B:2E:FA:DF:48:9C:60 X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:06:36:f9:cd:a0:8d:64:6c:0b:4a:22:fb:2a:5c:54:49:67: fa:04:20:a5:81:87:ea:40:04:91:a0:15:38:7a:cb:ea:a8:93: e2:0a:19:98:b5:1c:bf:b9:d5:c7:fd:68:a4:e9:84:bd:27:5f: b1:23:c3:8b:e4:55:a3:4e:df:d7:36:54:e7:f5:b3:ea:dd:38: c0:bf:77:78:95:10:69:87:5f:33:13:c8:65:17:f3:ea:27:de: ce:da:03:23:aa:f3:5a:9b:8b:6e:50:80:25:25:95:4d:ef:43: e8:41:80:77:d6:f8:ae:31:58:6b:95:ab:33:d6:87:5f:73:a9: 91:d8:09:02:0a:4d:a5:0a:59:4d:bd:81:9e:00:96:f4:32:b8: 30:fb:56:99:68:55:05:29:0e:39:55:c9:71:b8:31:22:bf:4b: 41:58:4e:d5:9d:9e:a7:db:2b:7b:8c:93:2b:13:fb:75:bf:45: 06:76:5c:f3:07:7e:be:81:79:e4:d1:61:f9:fb:b1:c9:08:06: 86:c0:96:01:34:31:c4:77:64:12:d8:09:bc:f5:df:d5:e0:8c: ae:1e:31:28:cf:f1:9d:66:ba:81:fa:b9:70:fb:ff:4f:53:b2: 20:79:3d:8f:28:fe:9e:3f:7d:ab:5a:6d:d1:5b:69:84:f4:8a: 84:d1:02:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjUxMjA0MjI0MDQ0WhcNMjUxMjExMjI0MDQ0WjAYMRYwFAYD VQQDEw02OTMyMGRlZC1jZjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZOJfLazOq0c43HEuYLiID6WaUKIggDjADySc0sXUzXtB1pC8Rgwz/4tsb1v Fa9z8Kv7+zRlgr4Wpj7sh8xpMrfQPokiokQB24ytlqswtl0MZYatlOqcMYqJ7S9J +pNK2eF8HXfUYvHmHuy5PGTQe4feHM8PF4NNtLmAwWmv3/uhz+JQ8zN5XBQD+FaR 1PI5Y9tSQmBMSpXTNlr+0dSFo8tyADUYPfhDR35gruA7y8wwQwwshG4fm1xAs4gY 9aunvT5lwm/LZhCE+WYeTSQ23b6vxagfnweYj34l/+5Ws1+k6KazKrU9A9dQGSM0 +BDxv3FVCj8DFz3KttnTeWsE5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnHOPbL ecxJMRBk/8eLLvrfSJxgMB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjBjb5zaCNZGwLSiL7KlxUSWf6BCClgYfqQASRoBU4esvqqJPiChmY tRy/udXH/Wik6YS9J1+xI8OL5FWjTt/XNlTn9bPq3TjAv3d4lRBph18zE8hlF/Pq J97O2gMjqvNam4tuUIAlJZVN70PoQYB31viuMVhrlasz1odfc6mR2AkCCk2lCllN vYGeAJb0Mrgw+1aZaFUFKQ45VclxuDEiv0tBWE7VnZ6n2yt7jJMrE/t1v0UGdlzz B36+gXnk0WH5+7HJCAaGwJYBNDHEd2QS2Am89d/V4IyuHjEoz/GdZrqB+rlw+/9P U7IgeT2PKP6eP32rWm3RW2mE9IqE0QKP -----END CERTIFICATE-----Generated at Sat Dec 6 18:50:05 2025 by rpki-client