This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: B4x/U9toev95SVUmKUIAdUlJMeRy8rbpz6+M3q8jwv8= Subject key identifier: 19:9A:30:6F:71:64:00:BF:D6:F1:69:F7:41:42:42:82:7F:B2:C5:E8 Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 019E Signing time: Sun 07 Dec 2025 01:47:54 +0000 Manifest this update: Sun 07 Dec 2025 01:47:53 +0000 Manifest next update: Sun 14 Dec 2025 01:47:53 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: Ri2J16JAoJ7I+bAV9n7DcJid6Ltr/zghbotdTAc0Ad8=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: jSX8BBXcDhKRO02h61flDcL9PRKVJzf27mu274wCdhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Dec 7 01:47:53 2025 GMT Not After : Dec 14 01:47:53 2025 GMT Subject: CN=6934dcca-9103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:42:ef:52:b4:d2:25:9a:7c:e6:7a:8f:e5: b5:54:c7:4a:6b:1c:2f:b6:08:5e:4a:af:b5:87:17: c0:91:e3:59:65:6b:0c:5e:1a:0f:5f:32:38:0e:fa: 7f:73:90:52:63:a1:2c:2f:a9:64:d6:9e:5d:97:b0: dd:8c:74:ce:f8:0f:79:42:90:16:2b:2d:d9:51:2b: 16:fe:46:ab:6b:fb:9e:42:c5:b3:73:79:32:38:a4: 9a:c6:26:71:74:a0:45:e2:d3:87:14:1b:a8:af:67: 5b:b5:81:cf:39:0d:b6:5a:2e:80:45:a5:08:9b:36: 67:7b:49:ef:87:f7:42:b1:6f:97:1b:33:11:1b:fb: ec:75:28:64:e9:81:50:7b:89:71:b4:8a:0c:0c:d8: e2:b5:59:27:1b:55:7f:80:8e:03:b3:fc:3b:4b:c8: b0:1a:a5:00:e5:0a:b9:7d:5b:71:26:61:92:2f:a7: 93:7f:f4:e5:07:f2:e9:6c:20:33:36:d4:fa:1e:39: a1:6e:fa:54:b0:3d:e2:3f:c4:f5:fc:f0:9e:94:da: 8e:bf:9c:18:2a:53:bc:84:ae:6b:c5:42:75:39:03: 1f:4b:cf:0e:0a:fc:21:2f:4f:f8:72:58:0d:b5:19: 11:bc:c1:69:32:a9:38:4b:44:81:46:87:4d:a2:6d: a6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:9A:30:6F:71:64:00:BF:D6:F1:69:F7:41:42:42:82:7F:B2:C5:E8 X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:7f:80:09:11:cd:85:2e:d9:08:40:32:c7:24:d3:d0:7b:e7: 75:2d:6a:89:a1:b6:43:a7:a1:9d:f3:15:b5:ec:15:4b:72:bf: 02:cf:16:e5:d2:9a:8c:d3:ba:f0:5d:af:4d:41:ad:56:cc:48: 28:0f:f0:a2:7c:d2:ff:e7:fc:5d:86:02:cb:a5:90:25:50:b5: 62:cc:eb:42:4d:28:a5:52:e1:89:2c:36:4f:b3:39:ae:73:a5: d2:63:7b:f4:6b:5a:a9:f5:d8:80:94:bc:df:60:23:98:d2:e8: 1f:0a:90:c9:e6:95:69:75:21:d8:f4:6f:c2:c5:ac:12:3d:4e: 77:b0:bb:b0:3e:41:69:83:02:8a:1b:c1:29:81:d4:17:34:d8: 3d:59:15:c6:eb:49:15:44:5f:03:34:0c:4c:47:aa:54:43:5d: 62:d5:d2:a3:1f:6f:5b:8b:a7:39:c3:d5:e9:12:f9:1f:42:90: 4f:46:aa:e3:53:8b:c3:1f:f6:22:49:b1:ce:35:ce:bc:f9:b6: 00:f7:a0:55:16:2b:a1:88:a7:d0:d4:5f:c7:26:20:bc:e4:77: 60:ba:c1:87:fc:fc:cb:e4:bb:f5:03:de:03:74:1f:a9:6f:b5: 8d:91:c8:c7:8a:56:8b:57:6d:13:3c:98:c1:fd:a0:1b:89:a0: 37:5a:50:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjUxMjA3MDE0NzUzWhcNMjUxMjE0MDE0NzUzWjAYMRYwFAYD VQQDEw02OTM0ZGNjYS05MTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7BC71K00iWafOZ6j+W1VMdKaxwvtgheSq+1hxfAkeNZZWsMXhoPXzI4Dvp/ c5BSY6EsL6lk1p5dl7DdjHTO+A95QpAWKy3ZUSsW/kara/ueQsWzc3kyOKSaxiZx dKBF4tOHFBuor2dbtYHPOQ22Wi6ARaUImzZne0nvh/dCsW+XGzMRG/vsdShk6YFQ e4lxtIoMDNjitVknG1V/gI4Ds/w7S8iwGqUA5Qq5fVtxJmGSL6eTf/TlB/LpbCAz NtT6HjmhbvpUsD3iP8T1/PCelNqOv5wYKlO8hK5rxUJ1OQMfS88OCvwhL0/4clgN tRkRvMFpMqk4S0SBRodNom2mVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmaMG9x ZAC/1vFp90FCQoJ/ssXoMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDf4AJEc2FLtkIQDLHJNPQe+d1LWqJobZDp6Gd8xW17BVLcr8Czxbl 0pqM07rwXa9NQa1WzEgoD/CifNL/5/xdhgLLpZAlULVizOtCTSilUuGJLDZPszmu c6XSY3v0a1qp9diAlLzfYCOY0ugfCpDJ5pVpdSHY9G/CxawSPU53sLuwPkFpgwKK G8EpgdQXNNg9WRXG60kVRF8DNAxMR6pUQ11i1dKjH29bi6c5w9XpEvkfQpBPRqrj U4vDH/YiSbHONc68+bYA96BVFiuhiKfQ1F/HJiC85HdgusGH/PzL5Lv1A94DdB+p b7WNkcjHilaLV20TPJjB/aAbiaA3WlAd -----END CERTIFICATE-----Generated at Sun Dec 7 05:53:18 2025 by rpki-client