This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: gNbcPmY+wy52k2+guyyKfq9TzGc8BVZG5iMR+Bjxd4A= Subject key identifier: 95:53:82:25:B4:B6:22:9C:E7:E4:99:BA:40:71:DB:26:8C:56:34:74 Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 34E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 34E7 Signing time: Sat 06 Dec 2025 14:31:36 +0000 Manifest this update: Sat 06 Dec 2025 14:31:36 +0000 Manifest next update: Sat 13 Dec 2025 14:31:36 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: HTJt1YREukTkF9BbJdp7kClfv7igpV3a+/MwVlx1Lg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Dec 6 14:31:36 2025 GMT Not After : Dec 13 14:31:36 2025 GMT Subject: CN=69343e48-44e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a9:a4:28:0e:ce:cb:27:60:a1:04:ec:da:7a: 3f:0c:37:da:84:f3:ae:15:cf:f1:13:bd:66:ad:ff: be:16:1b:66:3a:a4:c8:99:53:51:2f:7f:93:e9:55: df:75:64:12:ce:29:fa:35:21:3f:fb:d0:1c:81:11: 07:ff:3c:e9:6a:4c:31:c9:54:54:5b:35:60:a4:9a: 0c:1c:f1:88:a4:08:3f:78:79:1a:31:69:f8:4f:fe: 9a:de:a6:db:19:e2:f8:10:c9:3a:84:38:6f:4d:5b: a5:ae:6c:d5:2d:1e:3e:5e:0c:ec:08:a3:85:cd:29: a0:02:3d:f8:c7:09:a0:f8:b1:69:a1:8a:07:b6:b1: 77:a1:e5:1e:2b:12:f3:1f:57:0a:38:b0:31:d0:0f: 4b:e3:a7:c7:1e:f6:db:33:5f:d9:29:fc:3e:2f:11: 6a:73:4d:7a:08:07:fc:9b:a0:dc:2c:83:fe:df:32: 7a:14:13:12:17:17:3d:17:ad:ba:9a:b1:42:9b:05: 92:2d:da:f6:71:69:14:e4:07:ec:c7:38:0b:d3:23: 63:11:c3:04:c3:f4:3c:74:5d:5c:20:5f:cd:e5:54: 97:58:6a:6b:24:f9:7d:46:aa:b3:25:77:99:e6:04: d5:9c:d1:bb:8b:a9:be:8e:db:2f:2b:f0:f6:e9:5d: b2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:53:82:25:B4:B6:22:9C:E7:E4:99:BA:40:71:DB:26:8C:56:34:74 X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e8:23:a0:cc:db:64:4c:0a:84:9e:74:51:6c:92:d4:f5:20: 49:f7:1e:92:28:ab:17:40:21:3a:13:e6:8c:22:38:fe:6c:5d: bc:00:93:4e:80:75:90:14:0a:6f:5e:42:0e:7e:3a:c9:41:ea: 0d:f1:14:87:50:18:bd:32:b1:73:31:30:da:46:af:23:cb:53: a9:d4:94:e5:e1:c3:10:54:93:29:91:9b:81:56:df:ca:7c:87: 32:10:fb:ce:49:db:df:ea:ef:b1:fd:4c:1f:52:bf:d5:48:46: 1d:ef:14:4f:f4:a3:98:f0:92:24:4a:f9:da:a6:98:df:a6:03: 0a:22:b9:a4:76:35:ae:2b:01:36:59:e6:bb:b7:d2:c0:b1:20: f6:d1:e6:6c:2c:73:f3:21:6f:35:bc:aa:5d:99:ce:f8:8c:fb: 75:11:85:5b:cf:94:4a:ac:f6:cf:00:f3:ca:03:32:6a:74:62: b1:08:b6:68:8e:fc:4b:59:99:25:b1:79:0d:84:06:8e:f3:23: 6e:43:23:c1:a9:9a:eb:07:af:b7:30:86:2c:8d:32:e4:59:21: a1:f5:e0:06:0c:f9:47:e9:99:51:88:96:66:cb:98:71:68:f2: 14:df:85:6a:ed:6e:09:52:a9:8a:49:b2:99:2d:15:cd:83:f0: da:53:98:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjUxMjA2MTQzMTM2WhcNMjUxMjEzMTQzMTM2WjAYMRYwFAYD VQQDEw02OTM0M2U0OC00NGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76mkKA7OyydgoQTs2no/DDfahPOuFc/xE71mrf++FhtmOqTImVNRL3+T6VXf dWQSzin6NSE/+9AcgREH/zzpakwxyVRUWzVgpJoMHPGIpAg/eHkaMWn4T/6a3qbb GeL4EMk6hDhvTVulrmzVLR4+XgzsCKOFzSmgAj34xwmg+LFpoYoHtrF3oeUeKxLz H1cKOLAx0A9L46fHHvbbM1/ZKfw+LxFqc016CAf8m6DcLIP+3zJ6FBMSFxc9F626 mrFCmwWSLdr2cWkU5AfsxzgL0yNjEcMEw/Q8dF1cIF/N5VSXWGprJPl9RqqzJXeZ 5gTVnNG7i6m+jtsvK/D26V2yBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVTgiW0 tiKc5+SZukBx2yaMVjR0MB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB76COgzNtkTAqEnnRRbJLU9SBJ9x6SKKsXQCE6E+aMIjj+bF28AJNO gHWQFApvXkIOfjrJQeoN8RSHUBi9MrFzMTDaRq8jy1Op1JTl4cMQVJMpkZuBVt/K fIcyEPvOSdvf6u+x/UwfUr/VSEYd7xRP9KOY8JIkSvnappjfpgMKIrmkdjWuKwE2 Wea7t9LAsSD20eZsLHPzIW81vKpdmc74jPt1EYVbz5RKrPbPAPPKAzJqdGKxCLZo jvxLWZklsXkNhAaO8yNuQyPBqZrrB6+3MIYsjTLkWSGh9eAGDPlH6ZlRiJZmy5hx aPIU34Vq7W4JUqmKSbKZLRXNg/DaU5je -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:08 2025 by rpki-client