This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: uplIE0gdz3E94Nzoa7DrUccdWskikd3PvbY6p2KjSTw= Subject key identifier: 17:00:9D:0B:75:A1:5E:F6:E2:6A:E0:01:09:4C:20:82:2A:64:5E:9F Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: A5 Signing time: Fri 05 Dec 2025 04:14:41 +0000 Manifest this update: Fri 05 Dec 2025 04:14:41 +0000 Manifest next update: Fri 12 Dec 2025 04:14:41 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: LR6CJmQD617oFpxWsvsYZ+/LaTfOir7cDugn6LTeesI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: Dec 5 04:14:41 2025 GMT Not After : Dec 12 04:14:41 2025 GMT Subject: CN=69325c31-8675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e7:80:bc:d9:c4:66:a4:b4:11:c8:75:9b:24: a0:ea:bf:89:34:85:fa:4b:01:da:d3:29:db:e7:0f: a8:89:d8:9f:df:c3:3a:e8:0c:d6:9b:ab:75:17:d3: af:59:f4:e4:57:0e:c6:2d:26:85:89:b9:6e:eb:15: db:28:18:73:55:c0:04:5b:43:1f:6c:f3:19:50:ce: e0:38:f7:ac:e8:1b:22:91:cd:65:37:7c:56:66:b0: a0:75:26:0a:1a:10:65:5c:88:d2:3f:9d:5e:69:fb: cd:6d:7c:47:a0:9f:0d:86:89:ed:c8:4b:fd:54:d3: 10:3b:f5:2b:b5:1e:28:e3:e8:3c:21:a1:ce:31:36: f8:e4:b2:ab:ff:15:99:be:79:bf:1f:32:db:2a:9e: 03:d9:00:72:44:e1:41:d4:65:c4:b5:1b:a2:97:fa: b8:98:61:d7:95:04:69:2e:f3:7f:1e:e5:17:ab:8f: 12:a5:31:96:b9:eb:76:14:b2:97:ab:a4:78:2a:46: 4a:7e:56:55:a4:92:c6:6f:34:a5:a0:c1:50:29:97: 87:6f:3e:f2:d4:63:08:ca:99:11:a1:0b:4b:f5:14: a2:8d:70:63:80:b2:5e:3c:a3:34:d5:3a:57:11:4e: 28:4e:59:59:e2:ee:70:1d:b2:81:d1:83:7d:c6:2a: 26:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:00:9D:0B:75:A1:5E:F6:E2:6A:E0:01:09:4C:20:82:2A:64:5E:9F X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:24:a2:22:e2:a1:a3:4c:f2:f4:6b:8f:f8:75:e7:3c:22:a0: f1:60:a6:98:c9:31:33:0b:2b:cc:b6:92:2e:8c:b6:9e:ec:35: 86:3a:b9:1c:f2:d9:45:74:e2:12:35:8b:f7:c2:a6:fe:6c:5b: 90:26:5a:b1:40:50:c3:58:80:03:31:ac:06:71:6d:19:a1:56: c2:ac:2d:b2:c5:75:c5:8f:86:30:65:e6:80:72:6d:7c:40:9f: 6a:b3:2a:cc:63:f0:6b:09:32:ec:b5:7d:a4:4c:01:9f:b9:8a: c5:40:b9:56:f8:e4:a3:d5:f3:34:ae:fe:9c:18:08:04:e5:2d: 17:6f:1d:26:e3:41:13:83:ce:47:fc:86:9b:f1:0d:f5:88:12: 23:e7:1e:5d:06:87:29:f8:6f:b3:5f:2c:a3:76:6a:85:73:ae: 45:ef:b2:f5:f7:6b:a9:9f:64:8b:25:ab:43:36:e6:a7:f3:dc: eb:ee:c4:95:db:16:b1:6d:1c:2b:3c:96:ab:d0:ad:5b:a0:b2: 03:6a:5f:4d:fb:3d:35:ae:27:9b:bb:39:3a:ce:19:92:99:61: 7b:b7:e0:b0:22:1d:bb:e8:71:7f:45:c5:b1:f1:40:e5:41:fa: 7b:23:88:d1:17:c7:38:34:9a:32:a4:9c:62:5c:96:ea:b9:71: d0:f8:f0:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVFRUExMTAvBgNVBAUTKDg1Nzc5MDRDNDNDMkE5QkUxMThGRERENUJBN0JCOEI2 MDQ0MzgwRkUwHhcNMjUxMjA1MDQxNDQxWhcNMjUxMjEyMDQxNDQxWjAYMRYwFAYD VQQDEw02OTMyNWMzMS04Njc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwueAvNnEZqS0Ech1mySg6r+JNIX6SwHa0ynb5w+oidif38M66AzWm6t1F9Ov WfTkVw7GLSaFiblu6xXbKBhzVcAEW0MfbPMZUM7gOPes6Bsikc1lN3xWZrCgdSYK GhBlXIjSP51eafvNbXxHoJ8NhontyEv9VNMQO/UrtR4o4+g8IaHOMTb45LKr/xWZ vnm/HzLbKp4D2QByROFB1GXEtRuil/q4mGHXlQRpLvN/HuUXq48SpTGWuet2FLKX q6R4KkZKflZVpJLGbzSloMFQKZeHbz7y1GMIypkRoQtL9RSijXBjgLJePKM01TpX EU4oTllZ4u5wHbKB0YN9xiombQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcAnQt1 oV724mrgAQlMIIIqZF6fMB8GA1UdIwQYMBaAFIV3kExDwqm+EY/d1bp7uLYEQ4D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUVFQS9FQ0EyQzdENkQ0 Q0YxMUVGOThERjk4MkJDNEY5QUUwMi9oWGVRVEVQQ3FiNFJqOTNWdW51NHRnUkRn UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUVFQS9FQ0EyQzdENkQ0Q0YxMUVGOThERjk4MkJDNEY5QUUwMi9oWGVRVEVQQ3Fi NFJqOTNWdW51NHRnUkRnUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxJKIi4qGjTPL0a4/4dec8IqDxYKaYyTEzCyvMtpIujLae7DWGOrkc 8tlFdOISNYv3wqb+bFuQJlqxQFDDWIADMawGcW0ZoVbCrC2yxXXFj4YwZeaAcm18 QJ9qsyrMY/BrCTLstX2kTAGfuYrFQLlW+OSj1fM0rv6cGAgE5S0Xbx0m40ETg85H /Iab8Q31iBIj5x5dBocp+G+zXyyjdmqFc65F77L192upn2SLJatDNuan89zr7sSV 2xaxbRwrPJar0K1boLIDal9N+z01riebuzk6zhmSmWF7t+CwIh276HF/RcWx8UDl Qfp7I4jRF8c4NJoypJxiXJbquXHQ+PDP -----END CERTIFICATE-----Generated at Sat Dec 6 19:11:36 2025 by rpki-client