This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft File: hEIqhfpOTNTW7plGMaPQ8OboLTo.mft (raw, json) Hash identifier: 45QzDcMUHOIQv0n4crzyY7Tl9+UGHb7Ru4CXxVEmp1Q= Subject key identifier: 47:B6:3B:25:38:C1:3F:14:C5:62:AA:D2:C6:24:27:9E:60:7C:DC:8A Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 03BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft Manifest number: 03B8 Signing time: Thu 04 Dec 2025 23:06:26 +0000 Manifest this update: Thu 04 Dec 2025 23:06:25 +0000 Manifest next update: Thu 11 Dec 2025 23:06:25 +0000 Files and hashes: 1: hEIqhfpOTNTW7plGMaPQ8OboLTo.crl (hash: T4Wm+KEl7gca/1XTsEgh/xM3GwxtofU62e303Z3/A4g=) 2: 214E0454B58A11ECAF32FE29C4F9AE02.roa (hash: m/bIsnc72f+GKlsPAyrWqEs82wNRpWBNpwKZDStdnM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 957 (0x3bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Dec 4 23:06:25 2025 GMT Not After : Dec 11 23:06:25 2025 GMT Subject: CN=693213f1-ef50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:1f:37:44:c5:e4:b3:43:6f:08:5e:3d:38:e5: 18:b6:86:5d:a9:96:d8:f0:f1:8f:9f:9d:1d:b8:68: 3f:bf:93:32:ec:35:0b:b7:7a:46:e4:ed:ea:3d:a6: 78:de:a0:ee:04:5b:4c:76:94:05:75:c0:85:33:11: 9b:98:17:3b:7d:09:48:33:01:10:d6:02:dc:cc:99: 10:a1:0e:36:cd:04:9d:24:bc:1a:b2:e7:87:7e:a2: 3c:f3:36:37:98:75:6a:8a:cd:53:8a:4f:5f:56:5d: 21:cc:1f:25:be:2d:eb:66:43:ee:a5:d5:e2:d0:30: 6d:d4:7f:ee:77:5c:ad:8b:06:c4:a3:98:ea:75:df: 0f:7a:f0:c6:b8:88:e2:d0:76:70:b2:91:29:bf:5e: 16:2b:90:71:99:1a:77:2e:d4:53:b5:5c:de:15:29: 87:43:f5:2d:c1:1e:b9:35:f5:a0:d6:13:b0:4d:ba: 82:b1:67:f4:26:02:dc:04:f3:1d:95:71:66:79:be: 41:91:e4:3b:41:75:d8:8c:72:2c:af:40:3d:f9:48: 8a:e7:04:e0:77:cc:43:a0:d3:21:32:85:26:b5:dd: ec:27:3e:0d:c8:fb:55:7b:e6:28:ea:83:f6:4f:67: ad:90:63:10:c6:a9:1b:99:ec:17:e3:46:e5:e2:cd: bf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B6:3B:25:38:C1:3F:14:C5:62:AA:D2:C6:24:27:9E:60:7C:DC:8A X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:05:e8:1e:b4:55:7b:75:f0:df:91:0a:64:37:6b:7c:e8:ad: dc:64:e9:54:6a:db:ee:fe:48:54:98:af:b5:cd:cb:1e:c0:1f: 18:7e:c0:1c:5d:25:cc:13:46:b6:da:be:be:a3:fc:88:56:e5: 4a:c8:b5:1c:63:b5:28:e7:66:04:e5:43:49:c9:a5:de:19:e1: f8:ab:0d:9e:a7:59:47:27:80:96:60:cd:5c:52:98:2b:d1:9b: 32:90:53:d4:e0:5a:e5:99:fb:7c:09:c6:8f:e9:5a:fc:37:76: 2c:65:51:4d:38:12:d5:cb:c4:fe:cc:31:98:43:0c:4f:63:b5: 74:ce:c6:88:dd:76:b5:09:d1:c4:cd:a6:e9:f1:ee:a1:d3:81: 20:40:bf:f8:0e:db:c9:fb:dd:91:ac:c4:04:d9:55:10:eb:dc: bd:7b:41:d1:7e:53:8d:14:6d:1e:7a:cf:63:4e:be:07:fe:8b: ed:f2:72:16:8b:67:eb:85:52:fd:16:b8:fa:f8:f1:77:fa:15: 5d:4c:12:89:82:a1:3e:b7:4e:c0:c4:6a:99:d1:ee:81:0a:92: 7d:17:c3:30:75:5d:36:14:7f:38:5e:69:82:47:fc:6e:1c:bc: 13:0b:a4:ba:ef:33:7e:27:15:9b:fa:72:ed:96:e2:5b:fb:91: 73:c0:21:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjUxMjA0MjMwNjI1WhcNMjUxMjExMjMwNjI1WjAYMRYwFAYD VQQDEw02OTMyMTNmMS1lZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9B83RMXks0NvCF49OOUYtoZdqZbY8PGPn50duGg/v5My7DULt3pG5O3qPaZ4 3qDuBFtMdpQFdcCFMxGbmBc7fQlIMwEQ1gLczJkQoQ42zQSdJLwasueHfqI88zY3 mHVqis1Tik9fVl0hzB8lvi3rZkPupdXi0DBt1H/ud1ytiwbEo5jqdd8PevDGuIji 0HZwspEpv14WK5BxmRp3LtRTtVzeFSmHQ/UtwR65NfWg1hOwTbqCsWf0JgLcBPMd lXFmeb5BkeQ7QXXYjHIsr0A9+UiK5wTgd8xDoNMhMoUmtd3sJz4NyPtVe+Yo6oP2 T2etkGMQxqkbmewX40bl4s2/IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEe2OyU4 wT8UxWKq0sYkJ55gfNyKMB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzYxQy8yQTcwOTBGQUI1ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1RO VFc3cGxHTWFQUThPYm9MVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFBegetFV7dfDfkQpkN2t86K3cZOlUatvu/khUmK+1zcsewB8YfsAc XSXME0a22r6+o/yIVuVKyLUcY7Uo52YE5UNJyaXeGeH4qw2ep1lHJ4CWYM1cUpgr 0ZsykFPU4Frlmft8CcaP6Vr8N3YsZVFNOBLVy8T+zDGYQwxPY7V0zsaI3Xa1CdHE zabp8e6h04EgQL/4DtvJ+92RrMQE2VUQ69y9e0HRflONFG0ees9jTr4H/ovt8nIW i2frhVL9Frj6+PF3+hVdTBKJgqE+t07AxGqZ0e6BCpJ9F8MwdV02FH84XmmCR/xu HLwTC6S67zN+JxWb+nLtluJb+5FzwCH8 -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:50 2025 by rpki-client