This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: gjzonl6CPi/ycZEJ4aztt0LTfECLQcafpSYxgP5xu/Y= Subject key identifier: 3F:9E:24:66:77:B5:FF:A3:1E:8B:55:E7:87:DD:8D:13:04:14:13:22 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 040A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 03F8 Signing time: Thu 04 Dec 2025 23:01:23 +0000 Manifest this update: Thu 04 Dec 2025 23:01:22 +0000 Manifest next update: Thu 11 Dec 2025 23:01:22 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: 5SsCdGJDum/akchksp0Qcf4svm7NfJOF5OUBAKdkBts=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: kpBK3OXshYOskuLSoO3uUhN6W4dairHEsqEKAKksIS4=) 4: F570D764773F11F09FC02036C4F9AE02.roa (hash: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1034 (0x40a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Dec 4 23:01:22 2025 GMT Not After : Dec 11 23:01:22 2025 GMT Subject: CN=693212c3-29ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4e:38:c7:11:2f:10:a1:cb:ed:bd:02:ee:4c: 64:55:10:c3:4d:fd:fb:c2:ef:9e:60:ed:62:af:e5: 6f:b5:5b:f9:71:ff:2e:4b:fb:fd:36:95:b2:01:92: a6:09:80:2f:63:85:ff:21:ef:fc:1c:1d:59:63:ed: 5f:eb:ab:03:4d:8f:e2:46:29:c3:b5:7c:b5:b7:d1: c7:f9:1d:cb:c2:c1:17:95:51:24:98:61:2b:82:9d: 38:cb:4d:9b:f3:b8:c0:77:7a:5e:63:39:d3:35:c3: 2c:4e:e2:90:68:42:d9:a8:bf:c3:d4:06:ee:2e:97: 6c:53:7f:e5:c7:42:38:61:75:a3:e3:52:ed:cf:8e: 8d:d3:6c:37:5c:6d:6d:2a:23:74:ce:13:25:20:7b: 27:8c:a6:04:d0:06:92:9e:34:dc:d3:66:47:80:52: 4a:8c:85:37:7d:eb:3c:2e:ba:ee:43:86:96:70:56: 1e:db:b9:44:d5:d8:7c:43:15:ee:c0:22:4a:7a:58: c1:44:e6:1d:c8:cc:18:6f:f5:35:77:05:4d:ce:a1: 89:2b:27:dd:36:76:01:d6:3e:dd:61:0e:25:95:6e: 7b:9c:69:d1:ee:3a:b1:4d:9f:56:60:eb:56:9e:d4: 59:75:78:58:7d:6e:dc:67:a4:f9:51:42:d2:f2:37: 78:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9E:24:66:77:B5:FF:A3:1E:8B:55:E7:87:DD:8D:13:04:14:13:22 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e2:81:ab:04:08:e3:90:3a:27:28:5a:fa:14:45:b8:16:32: c3:8f:02:8c:36:e6:0d:b8:8b:ef:bf:0a:a6:48:51:66:f3:df: 9e:e7:db:72:b6:b7:cd:92:d8:ba:d2:b9:45:ff:3e:4f:ac:e6: 86:11:92:45:25:74:9b:1a:3f:42:d3:f1:0d:6b:78:aa:f8:51: 91:7f:5e:9f:c3:ec:8d:f2:13:3d:07:0b:45:6f:00:65:9e:aa: 97:75:0f:9c:41:3b:9b:ee:db:61:fe:a5:e5:67:12:d0:8c:bb: f3:f1:82:78:86:ef:86:40:c5:4c:7f:8f:54:56:4b:ba:4b:3a: 77:57:34:2d:f3:62:b0:69:6d:ed:a4:16:4f:1c:8f:ea:97:5d: 5a:e5:69:50:26:1e:18:4d:1f:9e:e0:fc:8b:e9:82:bf:56:cc: 4f:df:f6:2d:54:b7:00:82:93:09:49:b7:e0:45:bb:c6:b6:ad: ac:3c:75:50:78:1e:4b:96:f1:87:d9:a5:80:0e:a1:35:03:bb: dc:e9:e2:a8:ba:04:73:d7:3c:5d:95:94:31:ea:16:84:7f:a4: ed:15:b5:1c:c3:d6:07:4a:9c:04:db:5b:44:cb:f4:d8:21:95: 31:17:38:aa:8b:7f:29:52:26:36:8c:69:cb:22:e7:d7:4f:34: 80:4a:8f:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUxMjA0MjMwMTIyWhcNMjUxMjExMjMwMTIyWjAYMRYwFAYD VQQDEw02OTMyMTJjMy0yOWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqE44xxEvEKHL7b0C7kxkVRDDTf37wu+eYO1ir+VvtVv5cf8uS/v9NpWyAZKm CYAvY4X/Ie/8HB1ZY+1f66sDTY/iRinDtXy1t9HH+R3LwsEXlVEkmGErgp04y02b 87jAd3peYznTNcMsTuKQaELZqL/D1AbuLpdsU3/lx0I4YXWj41Ltz46N02w3XG1t KiN0zhMlIHsnjKYE0AaSnjTc02ZHgFJKjIU3fes8LrruQ4aWcFYe27lE1dh8QxXu wCJKeljBROYdyMwYb/U1dwVNzqGJKyfdNnYB1j7dYQ4llW57nGnR7jqxTZ9WYOtW ntRZdXhYfW7cZ6T5UULS8jd4GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+eJGZ3 tf+jHotV54fdjRMEFBMiMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy4oGrBAjjkDonKFr6FEW4FjLDjwKMNuYNuIvvvwqmSFFm89+e59ty trfNkti60rlF/z5PrOaGEZJFJXSbGj9C0/ENa3iq+FGRf16fw+yN8hM9BwtFbwBl nqqXdQ+cQTub7tth/qXlZxLQjLvz8YJ4hu+GQMVMf49UVku6Szp3VzQt82KwaW3t pBZPHI/ql11a5WlQJh4YTR+e4PyL6YK/VsxP3/YtVLcAgpMJSbfgRbvGtq2sPHVQ eB5LlvGH2aWADqE1A7vc6eKougRz1zxdlZQx6haEf6TtFbUcw9YHSpwE21tEy/TY IZUxFziqi38pUiY2jGnLIufXTzSASo9Q -----END CERTIFICATE-----Generated at Sat Dec 6 19:34:58 2025 by rpki-client