This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft File: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft (raw, json) Hash identifier: k3S2Y2FnwSCoxIc77Wo3GkhpS+m+p764Ps4iQujN2Qk= Subject key identifier: 29:98:36:A2:73:39:1A:CF:F3:11:BD:E4:62:0F:CD:CF:EC:1F:6E:40 Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 1275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft Manifest number: 1253 Signing time: Sat 06 Dec 2025 16:39:08 +0000 Manifest this update: Sat 06 Dec 2025 16:39:08 +0000 Manifest next update: Sat 13 Dec 2025 16:39:08 +0000 Files and hashes: 1: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl (hash: Z7GZfyquKpnKYLA3dCDrnSIn+3Wi2jj4p3jOI+Na6Yk=) 2: D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa (hash: IlsMtwiQzSq4LTeLK5xGeprYL7keFREC86Udlg/108c=) 3: 29ED0D46839011EE946C5E63C4F9AE02.roa (hash: Ra6HDO1XoeogbYK2SKPiF6ZGlKvyMdWPBrFkbBpAK0o=) 4: 4551BE2CD19D11EAA120EE14C4F9AE02.roa (hash: hm02D0CoN1wXYmBN20AJ0Eit445l76gPSN2cqsUGYq0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4725 (0x1275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33, serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: Dec 6 16:39:08 2025 GMT Not After : Dec 13 16:39:08 2025 GMT Subject: CN=69345c2c-5036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ff:ee:e8:d8:2f:fa:88:8f:01:04:eb:f7:ed: 51:fa:b0:65:b1:38:38:f3:8c:b2:88:56:05:92:eb: 32:9c:3a:ae:32:d7:cd:ac:64:ff:ba:dc:5f:a9:51: d3:aa:b8:fa:b1:e9:b8:d7:6a:40:71:1d:bf:d9:49: c6:3f:9c:04:a5:e5:ca:18:21:7f:7c:bf:10:65:81: 9a:9d:53:e4:0c:58:49:91:52:4c:0c:a3:20:76:ad: 80:d9:17:7d:7c:e9:6b:47:b9:d0:ce:8b:47:4c:f3: 66:89:d8:c6:f3:3a:e8:e3:2e:af:37:c4:bd:a9:ba: 48:0e:34:f0:7b:8f:4f:9b:ba:60:7a:de:ed:a1:99: 93:cf:8d:0d:51:0d:8b:8b:e4:51:40:0f:c9:a4:e2: 78:83:e9:6d:c6:cd:9a:44:e8:0e:b1:45:71:ee:e6: c0:f7:e2:00:31:cd:89:33:76:75:dc:7a:47:99:45: 3b:2c:87:33:8f:dd:61:16:c0:f7:45:2f:53:29:0c: 33:5f:2c:4c:7b:59:a1:dd:c1:6a:cc:2f:a3:f1:72: 22:60:7c:c3:28:d1:08:93:b6:fd:47:aa:06:98:cf: e5:7c:ed:b8:32:74:ed:86:e3:f6:1b:b5:e4:98:1b: 27:fc:e0:cc:5a:39:5b:c5:29:d0:79:54:96:51:98: f1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:98:36:A2:73:39:1A:CF:F3:11:BD:E4:62:0F:CD:CF:EC:1F:6E:40 X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:c8:5e:06:10:38:de:ef:e6:b3:2f:c8:1e:e8:d1:66:1d:f8: e5:b7:79:4a:89:ea:a4:a0:10:f0:5d:31:ec:b7:e2:68:b0:50: f4:f2:8b:9f:1d:3c:8e:b2:7a:64:19:87:5a:01:d6:5d:ab:dc: 76:dc:36:71:65:22:16:d8:28:21:7d:56:ea:9b:28:e4:df:8a: f7:5d:f9:70:1d:b8:33:ac:63:6b:88:d3:82:35:0e:6c:51:6f: 26:a7:fa:6f:69:db:35:2e:cc:98:dd:1f:c7:d5:3e:a7:c1:46: e3:19:34:17:e4:2b:92:09:d0:8e:a0:84:76:09:e6:ec:e9:a1: e2:5b:71:c2:09:24:b1:b6:65:e8:7a:38:be:6a:2c:d1:c1:01: 8e:69:2b:30:a0:1a:2f:74:c6:2a:70:81:c4:bd:4e:16:1d:1a: 12:9a:b6:42:b9:ab:d5:e7:71:bd:64:89:71:4a:b7:e1:f0:2e: 23:d7:06:bd:47:03:87:38:13:d6:0d:1f:68:0b:48:ff:b5:f9: bf:b2:d2:40:52:7a:e5:30:9c:80:6f:9c:02:de:fa:b1:5f:f9: a6:a4:62:c8:07:48:2f:a4:5f:3f:38:61:f8:03:23:b2:94:20: 6e:c4:f4:b5:8b:ac:67:3d:56:c1:80:71:68:7b:15:94:e9:68: 07:2a:0f:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjUxMjA2MTYzOTA4WhcNMjUxMjEzMTYzOTA4WjAYMRYwFAYD VQQDEw02OTM0NWMyYy01MDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6P/u6Ngv+oiPAQTr9+1R+rBlsTg484yyiFYFkusynDquMtfNrGT/utxfqVHT qrj6sem412pAcR2/2UnGP5wEpeXKGCF/fL8QZYGanVPkDFhJkVJMDKMgdq2A2Rd9 fOlrR7nQzotHTPNmidjG8zro4y6vN8S9qbpIDjTwe49Pm7pget7toZmTz40NUQ2L i+RRQA/JpOJ4g+ltxs2aROgOsUVx7ubA9+IAMc2JM3Z13HpHmUU7LIczj91hFsD3 RS9TKQwzXyxMe1mh3cFqzC+j8XIiYHzDKNEIk7b9R6oGmM/lfO24MnTthuP2G7Xk mBsn/ODMWjlbxSnQeVSWUZjxfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmYNqJz ORrP8xG95GIPzc/sH25AMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UzMy84NzdBNzlCNkU5RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0Vp TUtxWGk3R3FqSGtPY0daNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkyF4GEDje7+azL8ge6NFmHfjlt3lKieqkoBDwXTHst+JosFD08ouf HTyOsnpkGYdaAdZdq9x23DZxZSIW2CghfVbqmyjk34r3XflwHbgzrGNriNOCNQ5s UW8mp/pvads1LsyY3R/H1T6nwUbjGTQX5CuSCdCOoIR2Cebs6aHiW3HCCSSxtmXo eji+aizRwQGOaSswoBovdMYqcIHEvU4WHRoSmrZCuavV53G9ZIlxSrfh8C4j1wa9 RwOHOBPWDR9oC0j/tfm/stJAUnrlMJyAb5wC3vqxX/mmpGLIB0gvpF8/OGH4AyOy lCBuxPS1i6xnPVbBgHFoexWU6WgHKg8p -----END CERTIFICATE-----Generated at Sat Dec 6 20:27:14 2025 by rpki-client