This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft File: 5JdLhBatO5ndEfOwQFbwx5m3ocs.mft (raw, json) Hash identifier: jgSCZQke7Johmi/FVIPQUc6kcahuSQ3vXBMwze43+0A= Subject key identifier: 40:F8:DE:5A:97:4C:85:7B:29:15:5E:02:8C:32:77:D2:52:AA:17:87 Authority key identifier: E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB Certificate issuer: /CN=A91D9CA8/serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft Manifest number: 99 Signing time: Fri 05 Dec 2025 04:20:40 +0000 Manifest this update: Fri 05 Dec 2025 04:20:40 +0000 Manifest next update: Fri 12 Dec 2025 04:20:40 +0000 Files and hashes: 1: 5JdLhBatO5ndEfOwQFbwx5m3ocs.crl (hash: b4xA7EsBqNfoFFgeSUJ8XnP0NpicsnCZXmH9wp/HfKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Validity Not Before: Dec 5 04:20:40 2025 GMT Not After : Dec 12 04:20:40 2025 GMT Subject: CN=69325d98-0fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:de:aa:57:fa:d8:10:e1:f6:ff:ea:9a:fc:70: b8:5b:a4:8b:3f:eb:86:05:bf:b5:66:fb:4c:16:cd: 4d:a9:4e:20:40:11:03:ac:d4:1c:49:95:ac:b4:a9: 49:91:0a:41:8e:1a:d1:eb:58:4a:b8:57:b5:06:56: 5c:f2:9d:f8:72:c2:8e:6b:41:57:26:4c:88:71:36: 51:aa:61:2a:d9:0b:cc:e4:a8:2f:1e:dc:27:ac:f2: ab:f0:3a:d1:2b:16:57:01:cf:2c:c3:b3:c8:db:3d: 32:a1:09:89:13:00:8b:0b:20:fd:bb:64:98:b6:a1: 64:69:fc:94:a4:cd:95:7c:95:5f:5f:ac:27:3e:f9: 0f:92:44:29:9c:13:18:59:20:94:cb:fc:0c:b5:cb: 27:f8:eb:e1:04:07:d3:6e:10:06:3f:3d:2a:5a:f5: 4a:53:85:13:48:01:68:5c:b9:7d:05:b2:5c:12:2f: 9e:ec:c9:6f:ae:df:9d:58:25:a2:16:d5:40:df:3e: e4:cd:59:bb:43:aa:27:0f:3f:a5:2d:5a:81:05:77: 23:0e:fa:30:f9:2d:fa:c2:89:78:a7:f3:d3:40:18: 9f:a8:0c:6d:9b:5b:c8:f5:6d:9b:73:72:6c:87:c4: d8:98:90:63:17:50:ae:86:65:52:d4:e7:8a:d7:5c: e9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F8:DE:5A:97:4C:85:7B:29:15:5E:02:8C:32:77:D2:52:AA:17:87 X509v3 Authority Key Identifier: keyid:E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:72:c4:f3:6c:18:00:8b:1c:17:20:61:dc:d2:6c:0d:78:c3: e0:f8:d0:05:bb:61:4d:2d:4e:a2:5c:df:00:52:b8:a1:e5:08: 46:02:d2:fe:f5:2c:9c:dd:45:e7:f8:eb:aa:97:39:32:65:20: 87:b9:2d:aa:56:95:84:ce:b1:95:73:c6:78:e9:50:ff:fc:73: 3c:df:df:10:de:e7:27:8d:d2:93:82:43:59:21:23:16:33:50: 01:98:64:67:09:f0:e1:f0:70:02:f6:7d:db:90:8c:2a:c0:a2: 2d:e2:a2:5f:b8:cd:72:fc:a5:e1:dd:5a:ab:4c:50:06:9b:11: 9d:d6:09:d0:57:77:dd:0f:c2:32:bd:02:08:39:3c:dc:43:ff: 06:2c:10:4d:45:5d:81:c6:6f:e2:0d:4b:c0:52:b1:83:71:4e: 27:e9:cf:8c:71:18:e8:bc:70:6e:8a:bf:16:a8:68:30:87:78: 26:9d:f0:5f:cb:84:d9:8d:d3:bd:64:6e:99:1e:98:98:f1:7e: 0a:56:09:5c:d5:ba:9b:48:41:10:f4:43:fd:d1:15:b2:ec:24: 6a:c4:91:07:08:d1:42:83:91:19:d4:a2:4a:02:7e:d2:27:0c: 2b:0e:ee:6d:19:ae:01:f8:0a:6d:31:04:e1:15:81:ac:21:4c: b9:87:e5:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKEU0OTc0Qjg0MTZBRDNCOTlERDExRjNCMDQwNTZGMEM3 OTlCN0ExQ0IwHhcNMjUxMjA1MDQyMDQwWhcNMjUxMjEyMDQyMDQwWjAYMRYwFAYD VQQDEw02OTMyNWQ5OC0wZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt96qV/rYEOH2/+qa/HC4W6SLP+uGBb+1ZvtMFs1NqU4gQBEDrNQcSZWstKlJ kQpBjhrR61hKuFe1BlZc8p34csKOa0FXJkyIcTZRqmEq2QvM5KgvHtwnrPKr8DrR KxZXAc8sw7PI2z0yoQmJEwCLCyD9u2SYtqFkafyUpM2VfJVfX6wnPvkPkkQpnBMY WSCUy/wMtcsn+OvhBAfTbhAGPz0qWvVKU4UTSAFoXLl9BbJcEi+e7Mlvrt+dWCWi FtVA3z7kzVm7Q6onDz+lLVqBBXcjDvow+S36wol4p/PTQBifqAxtm1vI9W2bc3Js h8TYmJBjF1CuhmVS1OeK11zpCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFED43lqX TIV7KRVeAowyd9JSqheHMB8GA1UdIwQYMBaAFOSXS4QWrTuZ3RHzsEBW8MeZt6HL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yOTMyQzU4OEU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi81SmRMaEJhdE81bmRFZk93UUZid3g1bTNv Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVKZExoQmF0TzVuZEVmT3dRRmJ3eDVtM29jcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yOTMyQzU4OEU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi81SmRMaEJhdE81 bmRFZk93UUZid3g1bTNvY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwcsTzbBgAixwXIGHc0mwNeMPg+NAFu2FNLU6iXN8AUrih5QhGAtL+ 9Syc3UXn+OuqlzkyZSCHuS2qVpWEzrGVc8Z46VD//HM8398Q3ucnjdKTgkNZISMW M1ABmGRnCfDh8HAC9n3bkIwqwKIt4qJfuM1y/KXh3VqrTFAGmxGd1gnQV3fdD8Iy vQIIOTzcQ/8GLBBNRV2Bxm/iDUvAUrGDcU4n6c+McRjovHBuir8WqGgwh3gmnfBf y4TZjdO9ZG6ZHpiY8X4KVglc1bqbSEEQ9EP90RWy7CRqxJEHCNFCg5EZ1KJKAn7S JwwrDu5tGa4B+AptMQThFYGsIUy5h+WH -----END CERTIFICATE-----Generated at Sat Dec 6 23:43:50 2025 by rpki-client