This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: 1ivT0DsK1jIiCgYRBVMDp+iudGEJ0ycvTkRiUrKDM0U= Subject key identifier: 6F:81:C8:29:C4:0F:88:47:D8:35:01:EC:0C:86:42:99:4B:92:CC:35 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 06D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 06CB Signing time: Sat 06 Dec 2025 21:05:06 +0000 Manifest this update: Sat 06 Dec 2025 21:05:05 +0000 Manifest next update: Sat 13 Dec 2025 21:05:05 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: 6C4I0yCay4KCN9dfYg3iPdfyS4NZm8606kzf33B4StY=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: nQ2JLGKaP47ih5m9qTo7j8aG05in8F4XWfknPmuOpgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1745 (0x6d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Dec 6 21:05:05 2025 GMT Not After : Dec 13 21:05:05 2025 GMT Subject: CN=69349a82-4779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:77:4d:25:67:7b:ce:19:6a:67:0f:d6:4c:44: a0:cf:cb:74:11:cc:57:5a:e3:9a:ba:cd:f9:af:0e: 72:8a:79:cb:d6:9c:1b:ec:fa:0e:f6:4e:06:4f:99: 39:84:8a:4f:a3:2f:39:c5:db:7b:b1:dd:da:c3:60: 54:ad:5e:37:90:18:1c:dc:29:a3:9f:61:6b:25:f1: 80:12:66:4c:61:8c:4f:1f:68:bb:17:43:2b:06:56: 02:1f:8a:e3:d5:b2:1f:08:a8:6e:05:21:82:60:e2: ad:b9:7b:b9:f0:ac:fe:08:c2:52:48:3e:c7:36:01: 11:ba:c2:db:1a:b2:af:e1:39:95:d6:24:fb:99:d5: 9a:5d:89:74:17:52:9a:04:88:0e:31:e9:08:a5:7c: 1a:93:d5:df:a2:d6:c8:7a:91:58:01:26:9d:b9:bb: 10:47:4a:46:5e:b7:09:fc:e8:f3:6b:97:bb:4c:b1: 6c:fc:04:d5:53:d7:a0:be:2e:3c:3e:4e:b5:29:c3: f4:df:1a:70:ed:7a:ca:7c:bf:5a:11:a0:d0:fd:06: bd:c4:71:d9:f6:64:69:14:95:fe:23:ab:9f:53:b6: c4:52:ef:af:82:20:08:4f:b0:9c:29:f8:fd:85:78: 61:90:02:5d:b2:3f:32:5e:09:c0:91:e1:8c:60:ed: 96:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:81:C8:29:C4:0F:88:47:D8:35:01:EC:0C:86:42:99:4B:92:CC:35 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:be:1c:f3:38:a5:7b:e3:a2:f6:2b:66:96:d2:8a:5d:5f:93: 82:71:2c:91:58:c9:7b:6d:bd:9f:46:f7:fc:32:66:ce:b3:1c: f2:8d:8f:bf:fe:7b:17:3a:58:6f:04:d0:e2:fa:fd:e4:76:3c: ac:1c:62:bc:ce:c8:53:1d:80:a6:51:76:7a:46:23:57:d0:03: 97:56:8f:bc:70:fe:d2:2c:40:3e:bd:b5:5b:f4:6c:a9:f9:5c: 58:09:6e:49:28:03:ba:da:41:6c:cb:78:13:0f:8c:27:0b:0d: 09:b5:28:b8:78:f9:c2:ee:83:0f:e2:3b:f5:23:2c:e7:f0:85: e9:73:14:2c:f5:c3:fa:fd:87:9a:ce:1c:32:ef:1a:00:76:ba: 94:47:0a:30:f8:57:52:71:7f:75:31:63:ff:5f:c8:a5:ee:bb: 4e:c2:e3:ad:df:d8:9f:c5:c5:0c:a1:c0:a2:6b:25:d4:ac:11: 38:7f:a7:11:a3:df:52:e8:21:c2:a3:9d:8d:21:24:f1:11:02: 03:2e:2b:77:b9:11:10:6f:98:27:9c:e7:28:17:38:6f:41:5c: a4:ba:d3:01:ad:81:73:33:ee:61:c9:1a:5f:57:b4:a3:82:b0: 4c:3f:7d:2f:d9:1b:38:32:2e:35:3e:3f:83:d8:68:2c:22:21: 8c:8f:a5:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjUxMjA2MjEwNTA1WhcNMjUxMjEzMjEwNTA1WjAYMRYwFAYD VQQDEw02OTM0OWE4Mi00Nzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43dNJWd7zhlqZw/WTESgz8t0EcxXWuOaus35rw5yinnL1pwb7PoO9k4GT5k5 hIpPoy85xdt7sd3aw2BUrV43kBgc3Cmjn2FrJfGAEmZMYYxPH2i7F0MrBlYCH4rj 1bIfCKhuBSGCYOKtuXu58Kz+CMJSSD7HNgERusLbGrKv4TmV1iT7mdWaXYl0F1Ka BIgOMekIpXwak9XfotbIepFYASadubsQR0pGXrcJ/Ojza5e7TLFs/ATVU9egvi48 Pk61KcP03xpw7XrKfL9aEaDQ/Qa9xHHZ9mRpFJX+I6ufU7bEUu+vgiAIT7CcKfj9 hXhhkAJdsj8yXgnAkeGMYO2WBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+ByCnE D4hH2DUB7AyGQplLksw1MB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQvhzzOKV746L2K2aW0opdX5OCcSyRWMl7bb2fRvf8MmbOsxzyjY+/ /nsXOlhvBNDi+v3kdjysHGK8zshTHYCmUXZ6RiNX0AOXVo+8cP7SLEA+vbVb9Gyp +VxYCW5JKAO62kFsy3gTD4wnCw0JtSi4ePnC7oMP4jv1Iyzn8IXpcxQs9cP6/Yea zhwy7xoAdrqURwow+FdScX91MWP/X8il7rtOwuOt39ifxcUMocCiayXUrBE4f6cR o99S6CHCo52NISTxEQIDLit3uREQb5gnnOcoFzhvQVykutMBrYFzM+5hyRpfV7Sj grBMP30v2Rs4Mi41Pj+D2GgsIiGMj6Wu -----END CERTIFICATE-----Generated at Sun Dec 7 01:57:11 2025 by rpki-client