This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft File: rg5L7FaP5v7kkvcuTTrLko2cHk8.mft (raw, json) Hash identifier: 5IGCQbcHruDBXLcWjkcbyYTtBsx3Q+kOn+Uqb3xTTYg= Subject key identifier: 43:12:00:C4:2A:AF:4B:BA:55:99:C4:B2:A7:CF:FA:22:83:1C:10:73 Authority key identifier: AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F Certificate issuer: /CN=A91DBF0C/serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft Manifest number: D9 Signing time: Fri 05 Dec 2025 03:39:36 +0000 Manifest this update: Fri 05 Dec 2025 03:39:35 +0000 Manifest next update: Fri 12 Dec 2025 03:39:35 +0000 Files and hashes: 1: rg5L7FaP5v7kkvcuTTrLko2cHk8.crl (hash: uQno6cJVNjaxC/nI78dF6SR4lY5HQ6NGig0jLpLSzKI=) 2: 9E4987668C7F11EFB4290976C4F9AE02.roa (hash: p2gyBS69XXDIgLCd40czO4O+CF2ezvi2SVAYuyIvCP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C, serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Validity Not Before: Dec 5 03:39:35 2025 GMT Not After : Dec 12 03:39:35 2025 GMT Subject: CN=693253f8-429a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ac:e9:fb:c4:aa:ad:83:65:dd:10:ed:a8:85: 52:d8:7e:40:10:09:a6:44:c3:55:57:b1:2a:87:e3: 17:71:93:e6:44:20:2c:76:c6:60:74:71:59:dd:0f: 4e:db:db:b9:a7:94:27:9e:fe:96:25:a7:a4:7e:8e: f8:e6:a5:b9:56:0b:5d:df:37:02:cb:4a:c5:8e:f6: 15:d7:16:30:d7:5d:ae:26:10:20:cb:70:95:5c:61: 04:7c:0f:e2:43:b8:c0:ca:5a:24:30:09:51:b8:15: 88:80:8d:87:c6:bf:df:0f:c6:5a:6e:90:ee:5d:72: 92:98:7d:24:97:17:81:9d:c5:88:80:fe:9e:e2:b9: 48:63:fc:04:94:95:0d:6f:c6:72:bb:dd:01:61:17: 0d:67:f6:2e:89:4a:57:0d:7b:5a:d5:bb:db:c8:bd: 04:90:41:55:4c:09:66:d7:41:e7:5b:2a:cd:39:f7: 91:d1:24:4a:31:38:e6:60:df:39:39:0e:4c:7d:12: c0:13:2d:42:d2:8f:bd:08:96:6b:43:11:e8:4e:82: 43:85:11:4f:e3:86:c6:d2:04:5d:b8:91:a7:f2:40: e2:44:cb:ea:0f:6b:30:ed:e0:2e:1b:10:bf:ae:23: bf:18:78:e0:80:7e:9a:1c:19:56:2e:c3:57:a8:78: b9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:12:00:C4:2A:AF:4B:BA:55:99:C4:B2:A7:CF:FA:22:83:1C:10:73 X509v3 Authority Key Identifier: keyid:AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:71:0d:ba:81:9b:34:94:a0:6f:7b:66:37:47:ce:f7:31:61: ae:db:4b:3a:98:ab:18:9d:52:21:aa:50:f4:57:19:0e:18:3f: 10:41:86:7e:d8:5f:28:9f:e9:8c:05:29:00:14:d3:ff:aa:7c: f3:c2:7f:f2:22:54:5a:9b:64:ed:61:8c:f6:b5:da:ef:dd:a3: 77:ca:dc:47:7d:d0:d5:48:18:cc:75:12:f2:f7:d6:e5:d6:6b: aa:79:9e:fe:1b:22:1e:b0:b9:62:c8:4d:db:d5:f4:d5:63:94: 24:6c:69:ad:8d:19:47:04:04:ce:fa:43:ad:85:49:ba:01:a7: b4:c2:f6:b5:fc:07:a4:b9:7e:e2:b9:60:a2:37:b6:96:b7:b1: fb:79:db:f8:8a:aa:90:91:19:92:f6:ea:bc:16:4b:01:d2:4b: b0:dd:8e:9a:8c:75:01:51:a6:cf:46:ea:f6:b6:7a:61:e5:64: 7f:b4:74:c3:00:7f:c7:10:17:db:8d:01:24:8a:20:a6:47:f6: 71:bd:61:ef:31:ba:ea:bc:18:81:d3:27:e9:bb:60:d4:17:d5: 05:d9:67:49:0e:3f:b4:ca:54:1a:5f:71:bf:6b:f4:7c:68:82: 04:74:51:86:da:50:6a:8e:2e:ef:ee:8e:a1:3b:7c:fe:19:46: 8c:b8:1f:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEMxMTAvBgNVBAUTKEFFMEU0QkVDNTY4RkU2RkVFNDkyRjcyRTREM0FDQjky OEQ5QzFFNEYwHhcNMjUxMjA1MDMzOTM1WhcNMjUxMjEyMDMzOTM1WjAYMRYwFAYD VQQDEw02OTMyNTNmOC00MjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyazp+8SqrYNl3RDtqIVS2H5AEAmmRMNVV7Eqh+MXcZPmRCAsdsZgdHFZ3Q9O 29u5p5Qnnv6WJaekfo745qW5Vgtd3zcCy0rFjvYV1xYw112uJhAgy3CVXGEEfA/i Q7jAylokMAlRuBWIgI2Hxr/fD8ZabpDuXXKSmH0klxeBncWIgP6e4rlIY/wElJUN b8Zyu90BYRcNZ/YuiUpXDXta1bvbyL0EkEFVTAlm10HnWyrNOfeR0SRKMTjmYN85 OQ5MfRLAEy1C0o+9CJZrQxHoToJDhRFP44bG0gRduJGn8kDiRMvqD2sw7eAuGxC/ riO/GHjggH6aHBlWLsNXqHi5eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMSAMQq r0u6VZnEsqfP+iKDHBBzMB8GA1UdIwQYMBaAFK4OS+xWj+b+5JL3Lk06y5KNnB5P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwQy80MTQ4NTA3MDhD NUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2N2trdmN1VFRyTGtvMmNI azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JnNUw3RmFQNXY3a2t2Y3VUVHJMa28yY0hrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwQy80MTQ4NTA3MDhDNUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2 N2trdmN1VFRyTGtvMmNIazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjcQ26gZs0lKBve2Y3R873MWGu20s6mKsYnVIhqlD0VxkOGD8QQYZ+ 2F8on+mMBSkAFNP/qnzzwn/yIlRam2TtYYz2tdrv3aN3ytxHfdDVSBjMdRLy99bl 1muqeZ7+GyIesLliyE3b1fTVY5QkbGmtjRlHBATO+kOthUm6Aae0wva1/AekuX7i uWCiN7aWt7H7edv4iqqQkRmS9uq8FksB0kuw3Y6ajHUBUabPRur2tnph5WR/tHTD AH/HEBfbjQEkiiCmR/ZxvWHvMbrqvBiB0yfpu2DUF9UF2WdJDj+0ylQaX3G/a/R8 aIIEdFGG2lBqji7v7o6hO3z+GUaMuB+O -----END CERTIFICATE-----Generated at Sat Dec 6 18:28:27 2025 by rpki-client