This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: Z8y1Mx0j7eLdp/eSxwTcbyjbcVS9de/7Sw+ZbxYLkQE= Subject key identifier: 1E:4F:3A:8B:C6:6F:29:65:70:46:77:55:64:CB:E3:A3:2F:5A:72:4D Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: 0101 Signing time: Fri 05 Dec 2025 03:08:11 +0000 Manifest this update: Fri 05 Dec 2025 03:08:11 +0000 Manifest next update: Fri 12 Dec 2025 03:08:11 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: PYSnv6FrO9J07P+uOu7Bh5enIAZmDUuvR5p6mpbyKH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Dec 5 03:08:11 2025 GMT Not After : Dec 12 03:08:11 2025 GMT Subject: CN=69324c9b-deeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:40:d2:31:9b:93:a9:d0:d8:19:bc:b1:f2: 01:52:59:1a:a5:c5:c9:10:a3:6a:b1:73:f7:3c:2c: 56:14:59:7a:f5:18:02:8d:e8:a6:89:6c:35:1c:25: 90:ef:96:f3:c1:18:f7:e5:d1:31:80:62:69:df:4a: f4:91:14:f4:c2:c1:b5:06:99:39:be:a4:7b:1f:28: 5b:93:3c:f5:1d:8b:80:60:6e:64:5f:ed:82:f9:97: 2d:db:48:fb:d6:dd:f0:d0:73:c1:5f:6a:2d:27:02: 1e:05:fa:92:d8:dc:b9:1e:75:78:ab:8c:36:50:38: 9b:dc:2d:3d:2c:4c:d7:3b:ab:b7:4a:5e:de:ea:2c: eb:72:44:07:05:d1:e6:97:3a:f1:f6:09:8d:3a:43: 50:c0:1b:6f:fa:9e:34:7d:74:cd:72:05:cb:87:7a: d4:16:d1:b7:71:ea:c6:8e:ee:58:f6:2d:df:6d:1f: bf:2e:68:61:52:6f:b9:ae:1d:bd:0c:46:ad:bf:11: ae:65:e8:9e:74:28:3d:b5:b5:b4:f3:f8:7c:02:cc: af:64:b8:ea:ff:de:b3:d9:30:e8:9c:de:b1:45:73: fc:82:46:da:09:4c:a2:34:a8:a9:9e:ab:60:15:df: 15:b8:c4:aa:13:26:5b:bb:86:c0:62:23:78:da:5b: bc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:4F:3A:8B:C6:6F:29:65:70:46:77:55:64:CB:E3:A3:2F:5A:72:4D X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:f0:7f:ab:61:a8:f8:63:f2:8b:20:98:01:a0:2a:e8:3b:84: fc:90:60:58:9b:32:2c:f2:a1:eb:20:bd:d8:ad:a6:79:99:78: c7:58:60:28:9a:b9:3e:0b:1b:42:43:de:b2:f0:25:03:03:22: 85:bf:20:1d:d9:fb:da:8b:31:41:06:53:1d:f5:8d:41:69:5d: 28:64:91:17:46:3b:9e:0b:ce:e2:5f:d7:cf:98:1a:f6:7d:8d: fd:df:35:0b:0b:2a:e5:31:31:94:b9:ee:c2:69:e4:78:50:bc: 8e:97:f5:81:d9:38:0c:c0:63:e8:59:2f:90:5a:61:f8:10:d9: ce:ca:c6:15:d5:ff:ea:e7:03:54:49:3c:0f:65:4c:b0:07:89: 1e:9a:d8:16:0f:bb:e2:2a:13:7d:b7:f4:f4:0a:71:f4:a0:c9: f5:a9:dc:7c:39:6a:c6:45:4c:17:ac:de:ba:42:a0:38:45:2c: 92:74:5b:8e:5b:d2:b3:3f:46:ba:8c:8b:36:20:56:33:04:e9: 63:e4:24:4f:f3:2f:c0:ca:cc:9b:d1:da:be:5d:8a:8e:61:1a: a2:7a:1e:3c:e6:70:a2:7f:9d:4b:bf:18:18:95:3d:1a:39:70: ac:86:23:c2:5f:b5:e3:5b:65:00:64:0d:93:a3:07:3f:5d:1b: 19:0b:ab:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUxMjA1MDMwODExWhcNMjUxMjEyMDMwODExWjAYMRYwFAYD VQQDEw02OTMyNGM5Yi1kZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pZA0jGbk6nQ2Bm8sfIBUlkapcXJEKNqsXP3PCxWFFl69RgCjeimiWw1HCWQ 75bzwRj35dExgGJp30r0kRT0wsG1Bpk5vqR7Hyhbkzz1HYuAYG5kX+2C+Zct20j7 1t3w0HPBX2otJwIeBfqS2Ny5HnV4q4w2UDib3C09LEzXO6u3Sl7e6izrckQHBdHm lzrx9gmNOkNQwBtv+p40fXTNcgXLh3rUFtG3cerGju5Y9i3fbR+/LmhhUm+5rh29 DEatvxGuZeiedCg9tbW08/h8AsyvZLjq/96z2TDonN6xRXP8gkbaCUyiNKipnqtg Fd8VuMSqEyZbu4bAYiN42lu8PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5POovG byllcEZ3VWTL46MvWnJNMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj8H+rYaj4Y/KLIJgBoCroO4T8kGBYmzIs8qHrIL3YraZ5mXjHWGAo mrk+CxtCQ96y8CUDAyKFvyAd2fvaizFBBlMd9Y1BaV0oZJEXRjueC87iX9fPmBr2 fY393zULCyrlMTGUue7CaeR4ULyOl/WB2TgMwGPoWS+QWmH4ENnOysYV1f/q5wNU STwPZUywB4kemtgWD7viKhN9t/T0CnH0oMn1qdx8OWrGRUwXrN66QqA4RSySdFuO W9KzP0a6jIs2IFYzBOlj5CRP8y/Aysyb0dq+XYqOYRqieh485nCif51LvxgYlT0a OXCshiPCX7XjW2UAZA2Towc/XRsZC6uU -----END CERTIFICATE-----Generated at Sat Dec 6 16:44:18 2025 by rpki-client