This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: eaA6gVV7fQYVD/8F72QLQiZdy0kFEbtkqX4yPGjgvVA= Subject key identifier: AD:8D:94:EC:28:AF:D3:99:A4:9E:C7:B1:64:E1:DC:35:C4:B9:35:A4 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B70 Signing time: Sat 06 Dec 2025 18:22:05 +0000 Manifest this update: Sat 06 Dec 2025 18:22:04 +0000 Manifest next update: Sat 13 Dec 2025 18:22:04 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: /VOYKqVMfoC3pU2d/FVtqoLd8qJVgV2jFkruOiRIaOI=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: m3vliiEgyQOK9cLamk8Seg9r2MS0Thb0iCeLTBZTTaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2935 (0xb77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Dec 6 18:22:04 2025 GMT Not After : Dec 13 18:22:04 2025 GMT Subject: CN=6934744d-ecf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:95:ee:fd:5a:5f:a5:41:e5:53:f0:06:74:21: 3d:96:cf:85:b5:2e:3c:ae:97:25:00:85:70:d2:27: 53:33:e8:48:c7:4b:c3:a6:de:75:b6:18:48:9a:29: 99:27:4d:0a:5a:62:58:3c:a1:6e:26:3c:54:32:1a: 5d:bd:2b:76:41:16:15:a1:ed:1a:ad:56:c1:00:c7: 7c:85:b4:ef:50:6f:7d:33:a8:36:c2:77:f6:46:84: 20:3a:63:1b:ba:d3:48:b0:5e:3d:39:3e:29:b9:92: 64:02:b8:c6:8a:b0:49:4b:41:52:ff:05:56:f5:e7: 22:3c:24:a6:a3:94:30:79:3b:40:5b:f2:4f:ce:f2: 40:cf:80:11:14:bb:80:55:d6:8b:28:14:d7:ce:da: 6f:a4:3b:c7:c4:04:b8:99:0d:67:7c:b9:aa:dd:f8: 00:64:47:41:bb:78:bf:d9:49:7b:b8:fb:1e:c3:48: 54:ac:e5:24:c8:5f:0c:09:da:8d:93:b6:83:57:74: 7e:89:c8:a9:46:44:61:a3:fb:6e:f4:56:7b:57:42: 0b:4e:a4:6a:b9:24:2d:8f:df:e6:d0:90:ba:b4:21: 00:db:b5:ff:6c:f8:08:c5:0d:ef:07:e4:18:f2:41: 38:57:43:33:9b:a3:9b:54:0a:41:b0:b4:36:c1:3d: 6b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8D:94:EC:28:AF:D3:99:A4:9E:C7:B1:64:E1:DC:35:C4:B9:35:A4 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:7d:1a:4a:fa:6c:6a:08:00:e7:b4:e8:23:96:b4:ac:78:54: 84:09:1f:e4:d6:3f:24:3f:f9:c6:aa:79:ff:35:4a:9e:27:7d: 9b:53:db:c7:ee:0e:2a:99:3d:ec:69:75:7f:a0:e3:6e:d9:b4: a1:81:34:20:5f:3b:47:76:2b:11:a2:3c:91:aa:29:81:66:58: 21:84:d1:73:4a:de:c9:3b:bc:ac:02:f1:13:a6:a1:d1:14:7b: 16:e2:6b:62:d6:95:7d:c0:10:a6:0c:97:09:28:cc:eb:af:f7: f6:6e:42:ef:28:3a:bb:1d:5c:86:20:e5:81:85:8a:dd:40:f0: a0:27:1b:6d:7c:7f:4d:9e:e1:54:52:50:f9:96:09:72:12:31: 3c:62:f4:dd:82:32:07:a2:76:55:5e:d4:43:9b:5e:b6:86:0b: 31:16:69:ce:fe:70:2c:b8:df:0c:de:8f:75:3f:fe:43:76:e4: 29:a2:cc:da:4d:c0:5b:8d:25:56:6d:5a:de:8a:ec:fa:11:81: 78:87:35:28:71:74:c8:be:22:58:9b:96:37:3d:f9:a0:ed:22: 1f:ad:21:34:bf:da:a9:7b:4a:50:68:b8:13:f9:72:cb:87:84: c7:79:9a:db:d2:bc:af:ea:c4:22:4f:0c:94:c1:4b:93:48:36: 7d:8d:2c:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUxMjA2MTgyMjA0WhcNMjUxMjEzMTgyMjA0WjAYMRYwFAYD VQQDEw02OTM0NzQ0ZC1lY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZXu/VpfpUHlU/AGdCE9ls+FtS48rpclAIVw0idTM+hIx0vDpt51thhImimZ J00KWmJYPKFuJjxUMhpdvSt2QRYVoe0arVbBAMd8hbTvUG99M6g2wnf2RoQgOmMb utNIsF49OT4puZJkArjGirBJS0FS/wVW9eciPCSmo5QweTtAW/JPzvJAz4ARFLuA VdaLKBTXztpvpDvHxAS4mQ1nfLmq3fgAZEdBu3i/2Ul7uPsew0hUrOUkyF8MCdqN k7aDV3R+icipRkRho/tu9FZ7V0ILTqRquSQtj9/m0JC6tCEA27X/bPgIxQ3vB+QY 8kE4V0Mzm6ObVApBsLQ2wT1rQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2NlOwo r9OZpJ7HsWTh3DXEuTWkMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJfRpK+mxqCADntOgjlrSseFSECR/k1j8kP/nGqnn/NUqeJ32bU9vH 7g4qmT3saXV/oONu2bShgTQgXztHdisRojyRqimBZlghhNFzSt7JO7ysAvETpqHR FHsW4mti1pV9wBCmDJcJKMzrr/f2bkLvKDq7HVyGIOWBhYrdQPCgJxttfH9NnuFU UlD5lglyEjE8YvTdgjIHonZVXtRDm162hgsxFmnO/nAsuN8M3o91P/5DduQposza TcBbjSVWbVreiuz6EYF4hzUocXTIviJYm5Y3Pfmg7SIfrSE0v9qpe0pQaLgT+XLL h4THeZrb0ryv6sQiTwyUwUuTSDZ9jSxx -----END CERTIFICATE-----Generated at Sat Dec 6 21:40:37 2025 by rpki-client