This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: TggEskbQrzPK/xFKo64OTUqFZBYuaoHN80kv0trcyqs= Subject key identifier: 99:A3:94:CA:30:BB:AA:9F:BF:8C:1B:55:52:57:F3:EB:7E:53:57:5C Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 535AF9B444EB946C2C199DBF0D5C57D850F51DAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 01E2 Signing time: Sat 06 Dec 2025 01:10:19 +0000 Manifest this update: Sat 06 Dec 2025 01:05:19 +0000 Manifest next update: Sun 07 Dec 2025 04:37:19 +0000 Files and hashes: 1: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 2: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (hash: 2pHYFNhpresl2Qe+bmQCdeuqTmZNLu6JpjLmSUgR1DM=) 3: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: jv3ETc3K+YpRn7fbzuH0THxWUnBaAroTFppP3vjfXe0=) 4: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 5: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 6: 34332e3235322e32302e302f32342d3234203d3e203134363138.roa (hash: POeaLZ7jyGbDhNwka17vD8hm5iiL/jnjTj3d8a5jHPw=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 04:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:5a:f9:b4:44:eb:94:6c:2c:19:9d:bf:0d:5c:57:d8:50:f5:1d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Dec 6 01:05:19 2025 GMT Not After : Dec 7 04:37:19 2025 GMT Subject: CN=99A394CA30BBAA9FBF8C1B555257F3EB7E53575C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:79:6f:f5:22:06:7a:b5:f9:ec:42:72:dd:a3: 7b:20:ee:21:71:3f:21:29:0d:b6:24:c8:7b:eb:35: 5c:0c:de:23:9c:00:60:56:7f:8d:4a:dc:ad:c4:3a: e9:b7:0c:fc:67:e5:db:f7:c3:7e:12:a2:33:d4:44: 79:9f:8b:be:f5:9f:29:20:91:ee:cb:c7:7c:fa:20: 40:a9:4f:61:31:a9:d0:e9:ba:36:35:90:88:3c:f0: ec:ee:6f:c9:f2:5c:bd:27:9e:11:2d:26:3c:44:32: 02:b9:c1:56:56:4e:98:d0:fc:c1:bb:0f:11:e6:b1: 4d:f2:07:81:a1:c3:23:d5:06:af:bc:8e:99:ab:6d: 15:20:e0:2d:bc:3e:b5:42:86:54:00:42:dc:9f:19: ae:3b:fb:5c:a7:09:6a:3b:7c:95:0a:7e:ae:58:23: 5b:05:21:e6:82:a1:e9:24:37:c1:dc:51:1c:ba:0d: 75:49:e5:c2:5b:e6:f4:e8:15:e0:3e:72:99:a8:15: 66:ce:33:bb:36:58:70:01:0c:ab:6b:3e:b7:6e:e1: 34:8a:e9:8b:0a:9b:65:85:90:d1:d2:a9:fa:27:f7: 1d:1d:8b:29:65:9c:6d:75:e3:5d:7b:29:d0:84:35: 8d:af:4e:23:b6:e1:05:51:3a:4a:ee:d6:a4:be:6b: 78:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A3:94:CA:30:BB:AA:9F:BF:8C:1B:55:52:57:F3:EB:7E:53:57:5C X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:3c:2b:ea:99:32:91:84:c2:6a:68:27:a1:af:0a:62:71:71: 36:1a:a1:08:b0:2e:8e:96:2f:62:90:9c:b5:7f:0b:36:70:24: 82:c7:65:89:b7:a4:5b:f2:6f:46:03:be:6f:28:e0:90:de:79: 2d:e3:ad:7f:34:36:06:a9:d2:30:31:c5:dc:8d:d6:3e:36:38: a2:23:82:9c:09:72:e1:7d:33:4f:ab:ce:b5:33:c9:bd:3d:0a: 87:19:dc:10:15:c2:4c:63:85:97:74:d1:5c:86:db:f1:dd:5a: 3f:ea:27:30:e7:ac:73:2b:43:3c:2a:f0:e7:b4:04:2f:53:da: 95:61:88:4e:dc:fa:c0:1e:51:a1:8a:9d:17:52:47:a8:80:18: 8c:a0:9d:a5:01:54:a2:01:c8:52:ab:d3:f1:09:a8:ef:10:15: f9:d3:88:42:47:0e:dc:91:56:c9:9e:15:40:66:17:f6:8d:c0: f5:eb:e7:9e:66:fc:ff:92:1b:c8:61:3e:61:d9:68:0d:21:5c: 10:ee:50:78:49:9e:7f:5b:0a:c6:65:dd:39:d7:df:7e:fc:8e: 79:5b:93:3f:83:1b:4d:b4:29:8a:3f:63:4a:a0:e2:85:f7:cf: 35:0c:ec:8d:79:aa:25:d2:b1:e8:60:94:2f:75:ac:50:a2:05: 51:c3:5f:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU1r5tETrlGwsGZ2/DVxX2FD1Ha0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MTIwNjAxMDUxOVoX DTI1MTIwNzA0MzcxOVowMzExMC8GA1UEAxMoOTlBMzk0Q0EzMEJCQUE5RkJGOEMx QjU1NTI1N0YzRUI3RTUzNTc1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJl5b/UiBnq1+exCct2jeyDuIXE/ISkNtiTIe+s1XAzeI5wAYFZ/jUrcrcQ6 6bcM/Gfl2/fDfhKiM9REeZ+LvvWfKSCR7svHfPogQKlPYTGp0Om6NjWQiDzw7O5v yfJcvSeeES0mPEQyArnBVlZOmND8wbsPEeaxTfIHgaHDI9UGr7yOmattFSDgLbw+ tUKGVABC3J8Zrjv7XKcJajt8lQp+rlgjWwUh5oKh6SQ3wdxRHLoNdUnlwlvm9OgV 4D5ymagVZs4zuzZYcAEMq2s+t27hNIrpiwqbZYWQ0dKp+if3HR2LKWWcbXXjXXsp 0IQ1ja9OI7bhBVE6Su7WpL5reBMCAwEAAaOCAhswggIXMB0GA1UdDgQWBBSZo5TK MLuqn7+MG1VSV/PrflNXXDAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEANDwr6pkykYTCamgnoa8KYnFxNhqhCLAujpYvYpCctX8LNnAk gsdlibekW/JvRgO+byjgkN55LeOtfzQ2BqnSMDHF3I3WPjY4oiOCnAly4X0zT6vO tTPJvT0KhxncEBXCTGOFl3TRXIbb8d1aP+onMOescytDPCrw57QEL1PalWGITtz6 wB5RoYqdF1JHqIAYjKCdpQFUogHIUqvT8Qmo7xAV+dOIQkcO3JFWyZ4VQGYX9o3A 9evnnmb8/5IbyGE+YdloDSFcEO5QeEmef1sKxmXdOdfffvyOeVuTP4MbTbQpij9j SqDihffPNQzsjXmqJdKx6GCUL3WsUKIFUcNf6A== -----END CERTIFICATE-----Generated at Sat Dec 6 16:06:09 2025 by rpki-client