This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft File: H3amlEQsq0PX0XzW_fmpfgt_qo4.mft (raw, json) Hash identifier: 2Z5dbPZ+rn/rMUnnMvoaNmpztKG7t2FYBuNcKvCo8ak= Subject key identifier: 2E:BA:6A:E3:85:D8:8F:B4:E9:53:B7:FB:74:34:01:D4:7F:93:71:B5 Authority key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E Certificate issuer: /CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft Manifest number: 067E Signing time: Sat 06 Dec 2025 21:23:23 +0000 Manifest this update: Sat 06 Dec 2025 21:23:22 +0000 Manifest next update: Sat 13 Dec 2025 21:23:22 +0000 Files and hashes: 1: H3amlEQsq0PX0XzW_fmpfgt_qo4.crl (hash: 7KAyT8nO6TYzvyDxGPKVOj1030ypPxOLLBxzt7C0co8=) 2: 702A62CE9CC311EBA5A7A47BC4F9AE02.roa (hash: casLvQjbiWmoUm1zZDsT8rFqITbKKo8QIpvIUSskW7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Validity Not Before: Dec 6 21:23:22 2025 GMT Not After : Dec 13 21:23:22 2025 GMT Subject: CN=69349ecb-b0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:71:b1:07:1a:fb:82:7c:78:b3:c7:2d:4d:ef: 1a:91:50:e9:d7:7e:e3:e9:6b:80:96:6e:73:61:8c: 39:f3:d7:e6:2f:6c:18:b8:26:fc:51:e4:18:86:11: b1:2f:40:75:e8:0a:51:59:3d:e8:cf:ab:ba:be:1a: 67:dd:53:73:ce:57:a4:80:f8:02:ae:0f:87:06:75: 25:e5:d4:4a:8d:83:be:25:32:26:ce:f1:0c:7a:34: 0a:d2:dc:c7:cb:ff:ad:dc:59:9a:35:b3:ea:80:64: aa:3b:c1:12:ed:34:1f:74:8b:5d:62:3d:43:e4:be: 18:c1:fc:81:5d:7f:60:d1:01:17:80:7a:22:2c:9c: 59:9b:34:ab:73:20:42:ac:a6:36:1b:94:36:13:7a: 8b:b9:e3:d1:cd:9d:13:98:c1:bd:17:61:2f:67:8c: 77:b6:2d:d7:41:04:84:97:ce:1b:42:d4:45:e2:52: ae:aa:82:ad:25:9b:e3:22:1a:28:29:76:d9:75:c9: 81:87:11:6d:ee:cd:b0:3e:b0:7a:30:32:5a:8a:a3: fc:2d:58:5b:16:1f:5c:e1:3c:f4:c4:e9:8d:3e:af: 29:c5:77:ee:f0:79:3d:c1:34:d5:cd:57:89:e8:c2: f0:90:ca:62:7d:d2:4c:d2:47:42:b3:40:88:5f:98: a8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BA:6A:E3:85:D8:8F:B4:E9:53:B7:FB:74:34:01:D4:7F:93:71:B5 X509v3 Authority Key Identifier: keyid:1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:fb:33:db:1b:87:9b:60:f0:40:cf:8a:e2:e3:2b:6c:ec:49: 7e:b9:d8:3d:9a:ea:11:82:7f:d5:e7:20:43:88:29:dd:fb:a4: 8d:cb:93:4b:28:66:27:ee:8d:b4:ba:26:c7:ba:24:12:97:c9: 37:3c:91:1c:ee:73:c7:79:8c:ed:11:4c:a4:ba:d6:33:25:5d: ad:cd:bc:6f:43:4e:81:c0:5b:2c:87:67:8c:59:cd:41:5a:89: 2a:62:00:26:80:1d:a9:67:06:42:69:9c:2f:1a:5c:d7:9a:9b: fb:de:71:14:b1:59:87:20:46:b2:74:a7:12:08:79:d1:07:ec: a3:c5:63:25:c8:00:28:21:0d:a5:84:83:8f:24:fd:b9:d6:f7: f7:e2:6c:ce:e8:42:f5:fa:4d:2f:5b:12:df:0c:1e:da:81:da: ef:ca:be:b7:e2:7f:05:36:a2:6a:68:92:cc:55:d8:85:78:88: 92:74:4c:b6:28:78:c8:f4:70:9e:a4:f4:af:83:11:b0:43:9d: 6c:8d:3c:3f:57:55:60:cc:e6:6a:27:36:69:72:a8:15:f3:23: db:61:15:93:69:9c:1f:34:f3:cf:94:59:4d:42:16:c5:36:84: 39:f9:e8:a8:fa:d6:b7:d1:76:89:e2:40:66:0b:76:0e:99:51: 76:f8:00:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NENkZERjlBOTdF MEI3RkFBOEUwHhcNMjUxMjA2MjEyMzIyWhcNMjUxMjEzMjEyMzIyWjAYMRYwFAYD VQQDEw02OTM0OWVjYi1iMGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHGxBxr7gnx4s8ctTe8akVDp137j6WuAlm5zYYw589fmL2wYuCb8UeQYhhGx L0B16ApRWT3oz6u6vhpn3VNzzlekgPgCrg+HBnUl5dRKjYO+JTImzvEMejQK0tzH y/+t3FmaNbPqgGSqO8ES7TQfdItdYj1D5L4YwfyBXX9g0QEXgHoiLJxZmzSrcyBC rKY2G5Q2E3qLuePRzZ0TmMG9F2EvZ4x3ti3XQQSEl84bQtRF4lKuqoKtJZvjIhoo KXbZdcmBhxFt7s2wPrB6MDJaiqP8LVhbFh9c4Tz0xOmNPq8pxXfu8Hk9wTTVzVeJ 6MLwkMpifdJM0kdCs0CIX5ioYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC66auOF 2I+06VO3+3Q0AdR/k3G1MB8GA1UdIwQYMBaAFB92ppRELKtD19F81v35qX4Lf6qO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODA1OS9CQkQ4MURBODlD QzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3EwUFgwWHpXX2ZtcGZndF9x bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gzYW1sRVFzcTBQWDBYeldfZm1wZmd0X3FvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3Ew UFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf+zPbG4ebYPBAz4ri4yts7El+udg9muoRgn/V5yBDiCnd+6SNy5NL KGYn7o20uibHuiQSl8k3PJEc7nPHeYztEUykutYzJV2tzbxvQ06BwFssh2eMWc1B WokqYgAmgB2pZwZCaZwvGlzXmpv73nEUsVmHIEaydKcSCHnRB+yjxWMlyAAoIQ2l hIOPJP251vf34mzO6EL1+k0vWxLfDB7agdrvyr634n8FNqJqaJLMVdiFeIiSdEy2 KHjI9HCepPSvgxGwQ51sjTw/V1VgzOZqJzZpcqgV8yPbYRWTaZwfNPPPlFlNQhbF NoQ5+eio+ta30XaJ4kBmC3YOmVF2+AC5 -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:40 2025 by rpki-client