This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: fKKWntNSo15KSBLHoLB/JCEyRMcmViNLWMr2kGgs8N8= Subject key identifier: 0B:73:D3:78:F8:E8:B8:70:2B:B3:3F:59:7C:D8:44:84:83:50:3A:C7 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 0932 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 092C Signing time: Sat 06 Dec 2025 19:24:44 +0000 Manifest this update: Sat 06 Dec 2025 19:24:43 +0000 Manifest next update: Sat 13 Dec 2025 19:24:43 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: ppv9aE20CAh95h8NVx1M1wHaDXFPdFXD/K5585xzz5g=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:24:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2354 (0x932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Dec 6 19:24:43 2025 GMT Not After : Dec 13 19:24:43 2025 GMT Subject: CN=693482fc-e1c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:62:14:3e:87:54:d1:56:e2:95:0a:ed:48:41: 29:08:b6:7f:fd:70:c2:d9:c3:ef:17:35:82:7f:42: fe:99:23:2d:82:99:1c:b4:f2:3f:fa:f8:e1:5d:e9: ac:4c:45:e1:64:3c:d5:86:51:cd:a4:b5:c7:80:f0: c5:c4:5d:a1:55:08:94:ef:8d:dc:94:7e:e0:4d:c3: 52:f6:1e:06:d8:2d:2e:e9:08:a6:d6:29:c3:b4:0a: 87:64:4a:e6:19:6f:98:08:d4:59:0b:81:f5:df:8f: 05:74:29:cf:1c:8d:ae:93:c9:26:f9:fd:f5:a2:5e: 3d:b5:1f:5a:43:e6:fd:5f:9d:fe:dd:8a:d3:71:d8: 93:07:0d:9d:50:53:7e:c5:23:71:5b:0d:a3:62:59: b2:12:57:a2:b6:e7:2a:ac:7c:84:33:79:76:90:20: 97:ea:cb:ff:00:59:ee:b2:19:31:8f:68:51:5c:51: 70:a2:20:ca:b6:17:a1:bd:6e:c2:99:d8:f1:05:6d: 93:fa:51:d1:6c:fc:a0:7e:8c:0b:bd:57:cc:8e:04: 4f:e8:79:1b:d5:f2:b7:67:c3:72:1c:90:23:a5:11: 9d:2a:1c:f5:f1:f0:b7:61:a3:43:c1:11:fe:ae:15: 3d:0e:f6:7d:bf:65:c2:c6:79:2a:ef:79:9c:38:59: 40:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:73:D3:78:F8:E8:B8:70:2B:B3:3F:59:7C:D8:44:84:83:50:3A:C7 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:9a:1e:7d:90:66:18:cc:43:0a:bf:b4:3c:02:02:58:ce:ef: 38:93:bc:71:7a:9a:cc:cd:b2:41:59:14:ba:29:2d:90:93:08: 5a:ca:cb:f2:1b:4e:69:d5:03:b7:a1:85:04:7d:fe:71:c1:c4: b5:21:b4:dd:ef:d6:63:51:51:75:0f:31:4a:0b:5a:00:09:82: 65:10:5a:18:6a:17:64:7f:58:b2:73:64:06:a3:24:85:03:bc: d7:a6:a0:a1:c7:f9:ff:d1:5c:82:75:72:5e:5b:fa:71:7c:28: c8:e1:b7:99:86:89:a5:f3:b7:0d:dc:f4:ef:c2:d9:4e:b8:eb: 2e:60:ec:21:9d:07:44:f3:3b:d8:b3:f1:b9:7e:5a:a5:07:8f: 84:1e:c8:0d:6b:20:25:fe:94:6e:d1:15:e3:a3:3c:39:a7:23: ea:77:b1:fd:c6:1f:8c:ca:28:d0:61:01:1e:f9:1f:62:2c:06: 33:97:b9:e2:61:1e:0e:01:74:30:a6:14:e7:55:74:3c:00:84: 42:bc:c6:17:99:93:6d:af:38:d9:5a:23:83:02:30:78:65:14: 12:50:ca:92:fe:e0:1c:b3:2d:a1:15:bc:84:01:af:dd:cc:41: e8:44:20:c8:d9:a9:8b:88:7a:2b:18:50:47:aa:93:0c:ce:db: 81:c4:7d:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUxMjA2MTkyNDQzWhcNMjUxMjEzMTkyNDQzWjAYMRYwFAYD VQQDEw02OTM0ODJmYy1lMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmIUPodU0VbilQrtSEEpCLZ//XDC2cPvFzWCf0L+mSMtgpkctPI/+vjhXems TEXhZDzVhlHNpLXHgPDFxF2hVQiU743clH7gTcNS9h4G2C0u6Qim1inDtAqHZErm GW+YCNRZC4H1348FdCnPHI2uk8km+f31ol49tR9aQ+b9X53+3YrTcdiTBw2dUFN+ xSNxWw2jYlmyEleitucqrHyEM3l2kCCX6sv/AFnushkxj2hRXFFwoiDKthehvW7C mdjxBW2T+lHRbPygfowLvVfMjgRP6Hkb1fK3Z8NyHJAjpRGdKhz18fC3YaNDwRH+ rhU9DvZ9v2XCxnkq73mcOFlAVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtz03j4 6LhwK7M/WXzYRISDUDrHMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXmh59kGYYzEMKv7Q8AgJYzu84k7xxeprMzbJBWRS6KS2Qkwhaysvy G05p1QO3oYUEff5xwcS1IbTd79ZjUVF1DzFKC1oACYJlEFoYahdkf1iyc2QGoySF A7zXpqChx/n/0VyCdXJeW/pxfCjI4beZhoml87cN3PTvwtlOuOsuYOwhnQdE8zvY s/G5flqlB4+EHsgNayAl/pRu0RXjozw5pyPqd7H9xh+MyijQYQEe+R9iLAYzl7ni YR4OAXQwphTnVXQ8AIRCvMYXmZNtrzjZWiODAjB4ZRQSUMqS/uAcsy2hFbyEAa/d zEHoRCDI2amLiHorGFBHqpMMztuBxH29 -----END CERTIFICATE-----Generated at Sun Dec 7 00:59:08 2025 by rpki-client