This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: NR5XgLV9myraJmrM2HmLYcfIP/z1jT8sq6zsegYb+gk= Subject key identifier: B0:E9:BE:97:0B:9A:67:DD:E9:9B:3B:1B:1D:00:97:34:63:D7:6B:AE Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 094B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 093C Signing time: Thu 04 Dec 2025 19:25:25 +0000 Manifest this update: Thu 04 Dec 2025 19:25:25 +0000 Manifest next update: Thu 11 Dec 2025 19:25:25 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: oguP0NKfFhBDXWp3PaM2hj1Kh0QgzRnFur9R5NHxnyk=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: hGeojJHl+slEu//W2T6Ztco0llWjDMzL1tIeaK2rSYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2379 (0x94b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Dec 4 19:25:25 2025 GMT Not After : Dec 11 19:25:25 2025 GMT Subject: CN=6931e025-00c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c9:b4:48:52:ab:bd:50:8c:6e:49:25:31:4c: 75:40:ab:db:34:09:ef:a2:18:b0:85:48:96:67:11: a6:24:6f:13:e1:ac:7a:8d:20:94:3f:6f:ae:7b:b2: 51:24:7a:b9:73:21:5d:63:1e:05:41:d3:a0:54:ea: f9:df:27:d5:5b:d6:54:9a:f3:11:c0:50:0c:37:6e: e8:c1:49:b5:d9:42:81:db:e4:d5:cb:07:78:c6:b9: d0:f9:93:4c:c6:b2:d4:44:ef:ad:55:ec:37:f1:c4: c2:65:33:3c:75:bf:38:2f:37:94:fd:5f:b1:10:24: 77:b4:41:81:bb:55:e8:b8:8b:af:89:4d:00:23:0b: b5:6b:b1:a5:7c:49:1a:04:44:78:86:c0:4f:9c:b5: 80:67:32:c7:55:69:0a:1f:dc:47:f1:e2:b1:3a:51: fe:58:04:80:eb:c7:8c:2a:3f:7c:33:96:16:a8:14: c3:26:b4:48:e8:6b:5a:29:3c:e6:c5:4f:fd:93:fb: af:ca:1f:5c:e5:bc:a7:03:83:fd:b0:bc:a3:e2:1d: 26:6a:04:24:d4:82:1c:b0:a7:cb:cb:03:50:b9:99: b4:47:3c:12:96:2b:29:57:72:c1:9a:91:90:f5:a8: 79:98:57:21:36:5f:c9:50:1b:a3:d3:e0:4e:9a:fe: a4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E9:BE:97:0B:9A:67:DD:E9:9B:3B:1B:1D:00:97:34:63:D7:6B:AE X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:20:6a:84:61:31:67:54:11:1d:44:1e:ed:7c:da:1c:6d:36: 5d:40:6b:ec:8b:3e:92:fd:64:0d:42:67:f9:1f:97:45:dc:c0: fd:75:8d:13:a2:6f:85:0e:9c:eb:f4:fa:61:c0:ef:80:29:dc: 8a:1f:f8:2e:1b:24:af:85:c2:46:55:34:5a:5c:84:4c:43:01: e2:d0:58:49:ca:c1:40:fa:6b:96:e3:44:18:d8:df:58:6d:5c: 1e:ef:a9:62:08:86:3c:ee:0e:de:50:c2:09:dd:ee:30:29:8a: af:34:7b:a1:49:83:8c:2b:5a:43:7b:53:fe:34:20:ab:6d:69: 64:89:6c:f9:bd:c1:1d:29:38:04:b7:a9:bb:fe:3f:a1:db:35: d8:2b:e0:26:9e:71:60:50:5b:fb:79:c9:50:61:aa:ab:26:20: 7e:00:3d:74:41:73:01:db:7e:cd:fc:f9:55:c0:16:d3:ed:0f: 05:e8:26:ed:28:28:c6:ac:95:6b:03:bb:41:94:3f:91:f5:83: 05:49:d9:74:4a:c8:d8:f9:7c:9d:90:14:5d:4f:64:72:57:4d: 4c:85:d3:6c:ed:76:c2:16:85:65:7b:6e:ac:55:f5:23:b4:35: b0:65:28:1d:e5:fd:21:81:43:cb:ca:17:df:42:ea:9c:01:41: 91:f0:89:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUxMjA0MTkyNTI1WhcNMjUxMjExMTkyNTI1WjAYMRYwFAYD VQQDEw02OTMxZTAyNS0wMGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsm0SFKrvVCMbkklMUx1QKvbNAnvohiwhUiWZxGmJG8T4ax6jSCUP2+ue7JR JHq5cyFdYx4FQdOgVOr53yfVW9ZUmvMRwFAMN27owUm12UKB2+TVywd4xrnQ+ZNM xrLURO+tVew38cTCZTM8db84LzeU/V+xECR3tEGBu1XouIuviU0AIwu1a7GlfEka BER4hsBPnLWAZzLHVWkKH9xH8eKxOlH+WASA68eMKj98M5YWqBTDJrRI6GtaKTzm xU/9k/uvyh9c5bynA4P9sLyj4h0magQk1IIcsKfLywNQuZm0RzwSlispV3LBmpGQ 9ah5mFchNl/JUBuj0+BOmv6kbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDpvpcL mmfd6Zs7Gx0AlzRj12uuMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNIGqEYTFnVBEdRB7tfNocbTZdQGvsiz6S/WQNQmf5H5dF3MD9dY0T om+FDpzr9PphwO+AKdyKH/guGySvhcJGVTRaXIRMQwHi0FhJysFA+muW40QY2N9Y bVwe76liCIY87g7eUMIJ3e4wKYqvNHuhSYOMK1pDe1P+NCCrbWlkiWz5vcEdKTgE t6m7/j+h2zXYK+AmnnFgUFv7eclQYaqrJiB+AD10QXMB237N/PlVwBbT7Q8F6Cbt KCjGrJVrA7tBlD+R9YMFSdl0SsjY+XydkBRdT2RyV01MhdNs7XbCFoVle26sVfUj tDWwZSgd5f0hgUPLyhffQuqcAUGR8In4 -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:53 2025 by rpki-client