This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: RruQ0H61CR/Yv30CyxdyaIaTzB7xzUxCEJhn7pEEYRM= Subject key identifier: B8:DB:6F:23:F4:A4:EE:30:B7:AD:A9:4C:07:70:6B:01:4D:41:9A:84 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: C1 Signing time: Fri 05 Dec 2025 03:58:25 +0000 Manifest this update: Fri 05 Dec 2025 03:58:25 +0000 Manifest next update: Fri 12 Dec 2025 03:58:25 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: AHpXaO3wDN/ivV2YS54vvetpG1Posa/RMbEiWnXr3So=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: cRwLsutqQVxWT3ZK97DqtNM6mPPtYnnF8FmbKFlWINg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: wDnirQsBVGr2+TbqtsfsrtJW3jBHzGAZ6azL84nOZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Dec 5 03:58:25 2025 GMT Not After : Dec 12 03:58:25 2025 GMT Subject: CN=69325861-d4c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2d:fa:cd:a2:76:a7:72:30:7a:01:82:64:2d: a6:17:bf:04:96:e6:7a:c8:e2:91:1c:e3:5c:49:ad: 18:ae:8d:9a:bf:da:2d:88:5c:54:6a:1f:7f:66:c4: 6f:7f:0e:d6:21:1f:af:c5:7a:0a:2a:36:a5:46:10: 8c:12:7f:eb:84:54:c9:2a:8e:84:e9:5b:37:c6:92: 21:d6:8f:97:ac:5e:fb:ef:91:e0:7c:3e:16:80:36: 20:ad:76:57:2f:b6:76:5b:44:3b:f2:f5:b2:4d:60: f0:4b:d3:d1:cd:0a:e5:1c:2a:c0:11:6e:36:9f:49: 2b:cb:2b:71:ed:2c:f2:2b:2a:3c:43:d5:59:39:cb: 47:34:7c:5a:0e:53:16:ee:c2:d3:e1:cf:6e:a5:cb: 0b:6c:e4:80:95:7f:d9:fe:7f:db:ab:b4:53:95:e2: ef:18:60:d6:ce:63:6f:41:e8:d2:18:8c:c0:26:82: 84:cb:61:1f:73:8b:ed:02:00:ff:4f:ad:95:38:6f: 73:b5:df:2b:bf:dd:cf:6b:74:e8:3d:24:b2:89:83: 7e:29:99:9f:4d:c8:24:33:c7:3c:c1:11:f0:3d:62: 7f:d3:17:1c:d1:b3:3b:d0:95:b8:3f:26:64:f7:29: 67:b2:38:d7:6b:eb:4c:aa:d7:71:40:d6:e6:e5:8b: c6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DB:6F:23:F4:A4:EE:30:B7:AD:A9:4C:07:70:6B:01:4D:41:9A:84 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:0a:47:de:23:13:b5:3e:a7:9c:05:d7:b6:94:54:82:79:cd: 1b:89:a3:5b:c5:e7:01:18:74:2c:86:39:7a:30:d0:23:01:64: c0:41:c3:4a:b0:e1:27:d2:b1:7a:3d:94:e2:3f:b7:55:7f:9d: d7:1d:62:3f:66:7b:5b:9f:ce:d4:46:b7:4f:ec:c6:9b:19:9f: 4f:b1:92:13:9c:4d:9a:56:95:ab:a7:63:96:4a:b2:a0:08:ef: 3a:b3:54:66:54:ce:5b:01:17:d7:d4:9f:50:7c:bc:5d:88:e8: 77:01:9b:61:d5:d6:89:18:80:52:42:87:78:b3:32:ed:8c:ee: 4d:68:08:95:2e:e9:44:0c:f8:1b:5a:8b:bd:be:e3:74:2d:a7: ed:5e:a3:d0:d0:ce:e9:3b:ae:e4:d7:05:29:86:ce:7a:30:7e: 7c:c9:8d:50:58:72:66:ab:db:85:90:3f:79:90:be:0b:22:2f: 2f:19:ff:f7:fc:52:e9:33:28:c8:33:25:2c:f5:ac:50:a3:69: e0:5b:22:a5:d8:7c:c5:3b:5a:fa:50:4e:e2:c8:22:93:bf:cf: b4:bb:e2:8b:b8:00:3d:17:2e:7e:ad:fe:73:7a:29:5a:85:ac: 72:f6:e5:a5:9c:ea:bb:1d:01:c5:1d:87:54:a4:d6:29:8a:2a: 98:42:79:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0OEQxMTAvBgNVBAUTKDg2NDQ0QTMzNDkxNTEyMTRCNEYyNzExQjJDNURBMENC OTlFNTBGMTMwHhcNMjUxMjA1MDM1ODI1WhcNMjUxMjEyMDM1ODI1WjAYMRYwFAYD VQQDEw02OTMyNTg2MS1kNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArC36zaJ2p3IwegGCZC2mF78EluZ6yOKRHONcSa0Yro2av9otiFxUah9/ZsRv fw7WIR+vxXoKKjalRhCMEn/rhFTJKo6E6Vs3xpIh1o+XrF7775HgfD4WgDYgrXZX L7Z2W0Q78vWyTWDwS9PRzQrlHCrAEW42n0kryytx7SzyKyo8Q9VZOctHNHxaDlMW 7sLT4c9upcsLbOSAlX/Z/n/bq7RTleLvGGDWzmNvQejSGIzAJoKEy2Efc4vtAgD/ T62VOG9ztd8rv93Pa3ToPSSyiYN+KZmfTcgkM8c8wRHwPWJ/0xcc0bM70JW4PyZk 9ylnsjjXa+tMqtdxQNbm5YvGgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjbbyP0 pO4wt62pTAdwawFNQZqEMB8GA1UdIwQYMBaAFIZESjNJFRIUtPJxGyxdoMuZ5Q8T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ4RC8wQzIxNThCMkIy QzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVoUzA4bkViTEYyZ3k1bmxE eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVo UzA4bkViTEYyZ3k1bmxEeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtCkfeIxO1PqecBde2lFSCec0biaNbxecBGHQshjl6MNAjAWTAQcNK sOEn0rF6PZTiP7dVf53XHWI/Zntbn87URrdP7MabGZ9PsZITnE2aVpWrp2OWSrKg CO86s1RmVM5bARfX1J9QfLxdiOh3AZth1daJGIBSQod4szLtjO5NaAiVLulEDPgb Wou9vuN0LaftXqPQ0M7pO67k1wUphs56MH58yY1QWHJmq9uFkD95kL4LIi8vGf/3 /FLpMyjIMyUs9axQo2ngWyKl2HzFO1r6UE7iyCKTv8+0u+KLuAA9Fy5+rf5zeila haxy9uWlnOq7HQHFHYdUpNYpiiqYQnky -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:55 2025 by rpki-client