This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: j8CbyZFhcwAaHWKchFYPRL7PEYN7jpkzzb+vfLh+7+U= Subject key identifier: DE:44:FB:F4:72:AC:BA:75:82:06:C5:D7:3A:DD:2B:19:3C:08:E2:CD Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 05EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 05E0 Signing time: Thu 04 Dec 2025 21:42:15 +0000 Manifest this update: Thu 04 Dec 2025 21:42:14 +0000 Manifest next update: Thu 11 Dec 2025 21:42:14 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: hnCfzlYei/LxdOlLwDfF+sMAhQZ/hemwJK+3cViO7eI=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1514 (0x5ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Dec 4 21:42:14 2025 GMT Not After : Dec 11 21:42:14 2025 GMT Subject: CN=69320036-91a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d5:68:87:0b:20:05:8a:3e:14:70:55:0a:12: 01:d3:77:00:e6:8b:3c:f5:4a:87:43:8f:44:f8:9d: 85:38:a9:09:db:b6:4b:20:1b:ec:2b:8b:68:c5:ee: 75:56:0a:52:91:67:e9:ef:64:54:97:d8:df:18:8b: be:de:8f:4e:58:26:60:5a:ed:17:ee:38:04:70:15: 86:8b:cb:49:0f:e4:53:e7:45:6e:71:18:66:2b:8c: 1f:45:7b:45:b4:b7:b3:19:63:aa:3c:fd:8d:dd:2f: fd:2b:0a:33:bf:b8:9b:b4:bc:4c:1e:80:8b:b1:39: 80:88:55:78:57:72:d5:9b:18:bc:48:56:14:9c:79: 89:ce:a0:fe:35:74:dc:9d:df:05:c0:d8:77:9b:15: 3f:db:76:c2:7c:00:35:c7:3d:3d:2b:ca:29:3e:d7: c7:40:3b:98:15:45:15:a1:c1:a5:54:05:ef:df:84: fc:9d:90:79:eb:e9:2c:93:be:3a:53:4b:19:1b:b6: 6f:28:4e:35:68:6e:9d:f0:a9:42:5f:f3:7a:ba:0f: 52:4c:01:f3:d3:0d:20:09:60:38:29:e5:0a:05:06: 43:1b:97:a6:f8:d4:91:20:65:68:b6:5c:f8:a1:ad: 45:a3:3f:f9:0f:f0:c2:19:2c:73:71:9a:87:16:06: 2b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:44:FB:F4:72:AC:BA:75:82:06:C5:D7:3A:DD:2B:19:3C:08:E2:CD X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:c1:f0:83:6d:8a:73:51:38:47:87:0f:8e:52:c0:58:3e:58: 93:40:ec:0a:05:19:7b:78:c2:48:1f:10:1c:f2:99:49:a8:d0: 54:08:f5:21:d7:0f:a9:9f:ef:bb:1c:7d:08:6c:e1:d8:c1:bd: 4a:18:8c:4e:de:25:b9:06:b3:ec:a0:7c:7a:75:8b:2d:cb:e3: be:be:33:35:6b:12:7d:f4:1c:c7:ad:a9:12:06:04:9b:97:79: 75:e7:f1:96:33:66:13:35:af:3c:48:7f:ba:0e:e5:fd:34:4d: 01:f2:e8:a8:f7:a5:5a:d3:86:6d:55:47:b8:eb:14:b7:3a:2b: 6c:5e:94:e8:9b:af:06:18:6c:12:a6:ee:5b:af:72:8c:49:84: 15:7b:d2:44:87:61:ca:7d:1e:74:81:19:8a:13:cd:64:55:ab: a9:5c:bb:35:56:9a:41:bd:33:e5:30:61:30:52:2a:0b:75:88: ad:0f:09:49:d1:01:51:12:ff:f7:cd:89:59:de:c0:70:d8:ce: 49:02:9b:48:f5:d9:4d:11:82:bb:40:42:d9:6d:44:8e:01:45: 5f:92:8c:b3:bb:1e:c1:31:a1:7a:d9:c5:87:7d:e1:88:0b:f5: fd:ba:16:40:c4:4d:45:b4:1f:36:dc:70:71:7c:25:60:6c:4f: f2:a2:b5:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUxMjA0MjE0MjE0WhcNMjUxMjExMjE0MjE0WjAYMRYwFAYD VQQDEw02OTMyMDAzNi05MWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdVohwsgBYo+FHBVChIB03cA5os89UqHQ49E+J2FOKkJ27ZLIBvsK4toxe51 VgpSkWfp72RUl9jfGIu+3o9OWCZgWu0X7jgEcBWGi8tJD+RT50VucRhmK4wfRXtF tLezGWOqPP2N3S/9Kwozv7ibtLxMHoCLsTmAiFV4V3LVmxi8SFYUnHmJzqD+NXTc nd8FwNh3mxU/23bCfAA1xz09K8opPtfHQDuYFUUVocGlVAXv34T8nZB56+ksk746 U0sZG7ZvKE41aG6d8KlCX/N6ug9STAHz0w0gCWA4KeUKBQZDG5em+NSRIGVotlz4 oa1Foz/5D/DCGSxzcZqHFgYrEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5E+/Ry rLp1ggbF1zrdKxk8COLNMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1wfCDbYpzUThHhw+OUsBYPliTQOwKBRl7eMJIHxAc8plJqNBUCPUh 1w+pn++7HH0IbOHYwb1KGIxO3iW5BrPsoHx6dYsty+O+vjM1axJ99BzHrakSBgSb l3l15/GWM2YTNa88SH+6DuX9NE0B8uio96Va04ZtVUe46xS3OitsXpTom68GGGwS pu5br3KMSYQVe9JEh2HKfR50gRmKE81kVaupXLs1VppBvTPlMGEwUioLdYitDwlJ 0QFREv/3zYlZ3sBw2M5JAptI9dlNEYK7QELZbUSOAUVfkoyzux7BMaF62cWHfeGI C/X9uhZAxE1FtB823HBxfCVgbE/yorXS -----END CERTIFICATE-----Generated at Sat Dec 6 18:52:35 2025 by rpki-client