This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: 8C04a2LHrYUc1W5sfHamUd4XwPq6U4ZlFPORa6H1ZV8= Subject key identifier: 00:26:F5:3B:97:9F:11:10:98:2C:93:7B:5D:8C:A3:CF:A1:6E:04:9D Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 0400 Signing time: Sat 20 Dec 2025 23:47:28 +0000 Manifest this update: Sat 20 Dec 2025 23:47:28 +0000 Manifest next update: Sat 27 Dec 2025 23:47:28 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: QUGinZwM6FWhH8bB+OZZJKppDktkutLGYFjzlKRIxao=) 2: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: kpBK3OXshYOskuLSoO3uUhN6W4dairHEsqEKAKksIS4=) 3: F570D764773F11F09FC02036C4F9AE02.roa (hash: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0=) 4: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Dec 20 23:47:28 2025 GMT Not After : Dec 27 23:47:28 2025 GMT Subject: CN=69473590-5e29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:47:f0:68:1d:7e:bc:3d:e5:31:13:11:d4:6f: b2:6e:ac:a8:fa:c3:23:ef:c9:4e:63:fc:5b:62:98: dd:f9:72:05:b7:9e:4b:b0:c7:8f:ec:a2:60:ed:79: 46:a4:4f:1e:22:1f:58:9d:58:c9:78:22:e3:74:88: f8:a1:90:8a:69:e2:eb:48:b5:d8:d9:ea:2f:b0:06: e7:41:2a:de:de:3a:7a:9e:f8:22:08:6d:0e:01:94: 3f:8d:b6:e4:60:13:9a:7c:0e:6f:23:a9:a1:5a:dd: 18:64:d9:66:a3:4b:23:e2:5c:e5:b9:e5:f2:40:d1: a8:8c:01:3d:1e:92:5e:f1:cc:46:39:57:dc:8b:2d: dd:5b:f4:f3:40:43:d2:d7:d3:e6:5d:7d:78:a0:08: 1b:fa:f4:3b:92:ea:6f:01:1d:f7:59:44:c2:8c:a8: 42:0c:02:d3:32:55:ce:91:a2:ce:fa:ad:e1:4f:66: 6d:e9:d8:25:7c:2f:3f:53:bd:81:dd:25:e0:94:a4: ea:6e:c7:66:e4:76:f4:28:9d:cd:f3:40:11:29:f7: c2:be:8a:1e:2a:9d:fc:70:e0:06:b7:3a:3a:1c:33: 0c:f7:7b:2c:b3:a8:39:26:64:63:c5:63:21:3f:fa: 5a:3c:d9:fc:69:a2:83:bc:0c:74:f1:8c:8d:ca:53: 05:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:26:F5:3B:97:9F:11:10:98:2C:93:7B:5D:8C:A3:CF:A1:6E:04:9D X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:98:b9:b8:0b:3f:29:3b:de:13:01:fd:1d:45:d1:1b:d4:af: 89:18:d1:41:3c:87:3a:47:e8:c7:df:6f:f6:2e:f2:c7:7b:5b: 82:ef:b5:bb:07:20:bc:5e:c9:05:f8:c6:fd:f1:ff:a9:4b:84: 96:c9:36:1d:ee:ef:d2:fc:8f:00:ef:49:1a:6c:ca:41:b9:f7: 73:42:bc:5e:5f:d1:52:28:c4:d3:51:91:c6:b1:99:b7:0d:5a: 33:d3:5f:f1:80:2b:b6:36:f5:93:9f:3a:2c:e6:8b:55:16:21: 7a:e1:6a:e6:c8:e3:0a:14:75:bf:b2:92:ed:7c:39:b0:99:81: d4:72:3c:d0:86:6d:26:0b:13:c2:e4:bd:ce:90:45:3a:b6:4d: fa:2c:08:b9:eb:23:01:3b:fd:30:a2:12:43:8f:7a:34:49:ec: dc:95:2f:80:df:0b:2c:84:4c:41:da:f7:0c:bf:12:ae:5d:b1: 0a:2e:db:c4:9c:23:f9:c0:51:ca:65:38:a1:1b:99:87:36:85: 07:40:6b:06:d1:f7:e5:2f:b8:67:8b:e7:7e:42:26:45:ca:33: 3f:02:22:72:4b:4d:de:9b:e9:f4:14:22:be:4d:a6:80:22:25: 3d:a0:cb:01:45:de:23:32:23:96:21:a2:59:a0:e6:63:90:2f: 91:a4:96:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUxMjIwMjM0NzI4WhcNMjUxMjI3MjM0NzI4WjAYMRYwFAYD VQQDDA02OTQ3MzU5MC01ZTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkkfwaB1+vD3lMRMR1G+ybqyo+sMj78lOY/xbYpjd+XIFt55LsMeP7KJg7XlG pE8eIh9YnVjJeCLjdIj4oZCKaeLrSLXY2eovsAbnQSre3jp6nvgiCG0OAZQ/jbbk YBOafA5vI6mhWt0YZNlmo0sj4lzlueXyQNGojAE9HpJe8cxGOVfciy3dW/TzQEPS 19PmXX14oAgb+vQ7kupvAR33WUTCjKhCDALTMlXOkaLO+q3hT2Zt6dglfC8/U72B 3SXglKTqbsdm5Hb0KJ3N80ARKffCvooeKp38cOAGtzo6HDMM93sss6g5JmRjxWMh P/paPNn8aaKDvAx08YyNylMFawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAm9TuX nxEQmCyTe12Mo8+hbgSdMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCimLm4Cz8pO94TAf0dRdEb1K+JGNFBPIc6R+jH32/2LvLHe1uC77W7 ByC8XskF+Mb98f+pS4SWyTYd7u/S/I8A70kabMpBufdzQrxeX9FSKMTTUZHGsZm3 DVoz01/xgCu2NvWTnzos5otVFiF64WrmyOMKFHW/spLtfDmwmYHUcjzQhm0mCxPC 5L3OkEU6tk36LAi56yMBO/0wohJDj3o0SezclS+A3wsshExB2vcMvxKuXbEKLtvE nCP5wFHKZTihG5mHNoUHQGsG0fflL7hni+d+QiZFyjM/AiJyS03em+n0FCK+TaaA IiU9oMsBRd4jMiOWIaJZoOZjkC+RpJZ7 -----END CERTIFICATE-----Generated at Sun Dec 21 02:24:12 2025 by rpki-client