This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft File: 5OTCQkd4XDQv81kH9-EcSrs5i4M.mft (raw, json) Hash identifier: qlpYhGgkgs8DWoprLo9vCQQIaQ8z6JOHc5A0eqzVd1g= Subject key identifier: 40:D7:9C:D4:65:E0:D5:5A:6B:3B:D8:D5:4C:D1:69:E0:67:42:12:F5 Authority key identifier: E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 Certificate issuer: /CN=A91E85F1/serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft Manifest number: 84 Signing time: Fri 05 Dec 2025 04:38:45 +0000 Manifest this update: Fri 05 Dec 2025 04:38:45 +0000 Manifest next update: Fri 12 Dec 2025 04:38:45 +0000 Files and hashes: 1: 5OTCQkd4XDQv81kH9-EcSrs5i4M.crl (hash: YBNbFyqPrhrpBEGdXTxWn+BYs9eoMQwh03XJCYbrIg4=) 2: 212E0B520DFE11F0B266963AC4F9AE02.roa (hash: dDhbAceYPTZoJoEOB7Q4AGN3lBigI7VE7UVJ4rk45bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Validity Not Before: Dec 5 04:38:45 2025 GMT Not After : Dec 12 04:38:45 2025 GMT Subject: CN=693261d5-c85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:61:a5:51:60:cb:13:cf:1d:70:98:f4:0a:79: 3e:aa:a0:ba:3e:34:f7:8e:0a:8d:ac:a2:0b:b2:00: c9:dd:d7:79:7e:a5:e7:2d:6a:4e:ca:ae:5f:f8:96: b3:0e:d5:8a:e5:d7:58:70:25:9b:a0:d7:78:b2:04: ac:fd:a5:ac:49:35:75:ef:bb:57:f5:83:3b:54:77: 0d:a2:0b:91:cc:81:c7:c0:aa:ad:82:a5:f0:3a:ff: f0:09:7d:c1:29:22:93:14:f9:99:52:f8:c9:34:89: f6:9f:90:5a:ce:fd:a4:cf:5a:33:cf:85:37:f9:7e: 85:80:ae:93:59:d1:e1:8a:30:3d:98:a1:29:a7:45: c8:af:32:36:07:29:c9:a5:dc:85:67:c3:18:5a:28: a3:ca:aa:1e:54:9a:64:e1:27:f8:93:6b:a0:50:4c: 89:dd:1a:9d:5d:45:92:da:0a:34:07:b2:aa:54:51: ac:c2:ef:41:fb:5b:6a:4b:b5:2a:7b:db:23:65:3d: b0:b0:e5:0b:c4:27:da:4e:97:09:b7:b5:72:4f:71: d6:f5:63:16:a2:c4:9c:4b:a1:48:3f:2e:9f:df:4d: 5d:41:72:87:23:4c:c7:e2:0a:00:31:c8:70:12:e0: 50:83:fc:26:62:f2:d6:97:0f:9c:59:9e:3f:42:f7: 78:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D7:9C:D4:65:E0:D5:5A:6B:3B:D8:D5:4C:D1:69:E0:67:42:12:F5 X509v3 Authority Key Identifier: keyid:E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:45:f4:c6:9d:ad:71:5f:78:83:c7:6f:67:19:b5:c6:39:18: 0f:c0:b3:1d:61:60:60:81:39:c0:33:dc:c6:37:41:4d:3c:c4: 36:84:38:65:26:5e:57:44:d5:81:68:72:9a:5d:9f:89:22:ba: 0d:80:4d:b2:73:68:9a:0b:b7:24:ec:f5:16:35:25:1e:02:9b: ee:c7:12:a9:df:d0:0d:d9:a2:56:8a:68:dc:a4:f2:40:da:14: 93:84:61:c2:95:41:b6:e0:7a:45:54:1b:dc:df:11:8e:e8:d8: 0b:41:58:5b:bb:e6:fa:7d:03:9c:3c:f2:59:9f:ac:3d:bc:bf: e4:96:a5:f4:3b:72:9b:28:9c:6c:62:30:8e:ee:97:f9:d6:e3: dd:f3:4f:0b:94:14:ed:ec:c1:02:55:02:b4:3d:7b:54:5a:36: 16:fb:e5:0e:8c:f3:c3:2e:8b:dc:b5:55:0e:97:d4:a2:bc:a6: bf:aa:5b:f8:71:72:03:b7:23:55:ee:7b:eb:7f:0e:07:de:b9: 72:40:ba:35:e0:53:1e:c2:ac:43:11:30:69:af:70:08:31:c4: 28:30:6a:23:ff:74:41:af:f5:40:0a:c6:28:d2:d0:e4:7a:3f: 30:72:43:8b:43:07:44:ff:18:f9:82:06:1a:8b:82:2d:b5:94: 4f:ed:c2:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1RjExMTAvBgNVBAUTKEU0RTRDMjQyNDc3ODVDMzQyRkYzNTkwN0Y3RTExQzRB QkIzOThCODMwHhcNMjUxMjA1MDQzODQ1WhcNMjUxMjEyMDQzODQ1WjAYMRYwFAYD VQQDEw02OTMyNjFkNS1jODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GGlUWDLE88dcJj0Cnk+qqC6PjT3jgqNrKILsgDJ3dd5fqXnLWpOyq5f+Jaz DtWK5ddYcCWboNd4sgSs/aWsSTV177tX9YM7VHcNoguRzIHHwKqtgqXwOv/wCX3B KSKTFPmZUvjJNIn2n5Bazv2kz1ozz4U3+X6FgK6TWdHhijA9mKEpp0XIrzI2BynJ pdyFZ8MYWiijyqoeVJpk4Sf4k2ugUEyJ3RqdXUWS2go0B7KqVFGswu9B+1tqS7Uq e9sjZT2wsOULxCfaTpcJt7VyT3HW9WMWosScS6FIPy6f301dQXKHI0zH4goAMchw EuBQg/wmYvLWlw+cWZ4/Qvd4AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDXnNRl 4NVaazvY1UzRaeBnQhL1MB8GA1UdIwQYMBaAFOTkwkJHeFw0L/NZB/fhHEq7OYuD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVGMS82MjIwNjMzQzBE RkMxMUYwQTFEOTgwNTNDNEY5QUUwMi81T1RDUWtkNFhEUXY4MWtIOS1FY1NyczVp NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVPVENRa2Q0WERRdjgxa0g5LUVjU3JzNWk0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVGMS82MjIwNjMzQzBERkMxMUYwQTFEOTgwNTNDNEY5QUUwMi81T1RDUWtkNFhE UXY4MWtIOS1FY1NyczVpNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+RfTGna1xX3iDx29nGbXGORgPwLMdYWBggTnAM9zGN0FNPMQ2hDhl Jl5XRNWBaHKaXZ+JIroNgE2yc2iaC7ck7PUWNSUeApvuxxKp39AN2aJWimjcpPJA 2hSThGHClUG24HpFVBvc3xGO6NgLQVhbu+b6fQOcPPJZn6w9vL/klqX0O3KbKJxs YjCO7pf51uPd808LlBTt7MECVQK0PXtUWjYW++UOjPPDLovctVUOl9SivKa/qlv4 cXIDtyNV7nvrfw4H3rlyQLo14FMewqxDETBpr3AIMcQoMGoj/3RBr/VACsYo0tDk ej8wckOLQwdE/xj5ggYai4IttZRP7cI7 -----END CERTIFICATE-----Generated at Sun Dec 7 04:46:00 2025 by rpki-client