This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: jsoHXm5bQbsX0N4fc4manCdQVJqNrhSua12jes9TVn0= Subject key identifier: F9:37:47:1F:28:F8:03:10:CF:4C:4B:0F:1C:C7:AE:F4:3F:E8:F7:D6 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 03C1 Signing time: Sat 06 Dec 2025 23:17:01 +0000 Manifest this update: Sat 06 Dec 2025 23:17:00 +0000 Manifest next update: Sat 13 Dec 2025 23:17:00 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: wfdcn04oBlpFKb8tdn41EQivc/EWKnRTqnU8NxnQPAw=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Dec 6 23:17:00 2025 GMT Not After : Dec 13 23:17:00 2025 GMT Subject: CN=6934b96d-3dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:87:c4:3d:c2:9a:99:08:b3:01:dd:d6:c2:fa: 77:45:48:57:f2:bd:9c:96:27:f3:0e:3f:6c:cb:dd: 7e:2a:4e:e5:3c:91:95:8d:26:ed:17:51:d3:eb:32: 4c:64:48:ec:33:b9:d5:5f:b7:88:04:a2:7a:f2:a9: 7d:46:87:44:0b:31:da:29:09:d8:6d:45:07:00:d5: 3f:7f:0a:98:55:38:74:ad:e7:33:35:c3:df:15:b8: 08:ce:d9:9d:fd:7d:93:c8:f3:3a:6c:a7:43:f2:3c: f0:da:d7:c6:5f:3e:02:83:74:05:d0:2a:90:2d:6f: 3a:c5:18:51:ff:2d:fd:be:fa:97:d3:a0:3c:2a:36: 60:a6:27:d1:62:0b:92:26:c2:5d:2f:ba:53:71:59: 83:79:ff:66:5c:97:c9:0c:a1:8f:48:89:00:25:91: c0:df:b5:b5:4c:5f:fe:f7:e1:7a:70:f3:e2:c4:c5: 69:32:a4:9c:b0:49:01:6c:6c:44:49:31:93:cb:53: 6e:f1:af:c3:ca:1e:d6:49:4d:b9:23:41:20:4f:c6: c5:9f:5f:12:6b:2f:42:e4:c2:88:83:3e:60:4a:71: cc:a7:6d:c0:a3:e6:c1:a4:97:ac:f2:a4:9b:2c:2c: ae:1f:2d:cb:b3:8a:f5:85:11:11:7a:2a:77:ac:f6: bd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:37:47:1F:28:F8:03:10:CF:4C:4B:0F:1C:C7:AE:F4:3F:E8:F7:D6 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:51:9f:66:cc:62:d1:7a:13:59:62:0e:92:60:d2:94:1a:9b: 6f:15:e2:cb:80:c6:eb:47:bb:f3:c8:b6:ad:fb:fc:78:73:c3: a0:f2:14:23:20:03:04:63:bf:48:53:09:5f:cc:35:8d:f8:72: 52:b1:3c:a7:81:52:ff:be:ba:c8:8b:9c:69:17:9a:33:d4:40: 8e:b6:b2:c8:b9:8e:d6:a0:ae:36:9d:e5:c7:5a:38:2d:ef:22: 32:b2:2a:1d:67:3e:bb:9a:54:f5:ac:9d:90:fc:c9:f8:77:29: ee:77:e6:f4:af:f6:d3:a6:5c:d7:68:c7:18:bb:2c:30:4c:f4: 01:23:8a:34:57:9e:22:0b:95:e7:01:86:b7:f2:e4:04:68:c5: ba:d6:21:eb:77:03:09:e8:c4:d2:34:18:d1:bd:b5:db:6c:bf: e0:cd:5f:0e:b2:2f:fa:54:21:32:b5:d0:de:7e:41:9f:c1:45: e5:cb:14:e9:05:d6:7d:85:1b:c9:1d:45:61:aa:e1:b3:e2:79: b6:9f:38:eb:82:77:79:6b:52:53:44:94:8b:ef:4d:c9:b7:87: 24:8a:db:e3:10:18:4a:62:62:b6:f6:6b:61:c0:22:e6:37:b1: 5e:b1:80:6c:44:d7:c5:bb:81:3c:37:1c:ee:59:c9:d9:98:39: 72:4b:5c:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUxMjA2MjMxNzAwWhcNMjUxMjEzMjMxNzAwWjAYMRYwFAYD VQQDEw02OTM0Yjk2ZC0zZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YfEPcKamQizAd3Wwvp3RUhX8r2clifzDj9sy91+Kk7lPJGVjSbtF1HT6zJM ZEjsM7nVX7eIBKJ68ql9RodECzHaKQnYbUUHANU/fwqYVTh0reczNcPfFbgIztmd /X2TyPM6bKdD8jzw2tfGXz4Cg3QF0CqQLW86xRhR/y39vvqX06A8KjZgpifRYguS JsJdL7pTcVmDef9mXJfJDKGPSIkAJZHA37W1TF/+9+F6cPPixMVpMqScsEkBbGxE STGTy1Nu8a/Dyh7WSU25I0EgT8bFn18Say9C5MKIgz5gSnHMp23Ao+bBpJes8qSb LCyuHy3Ls4r1hREReip3rPa9HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPk3Rx8o +AMQz0xLDxzHrvQ/6PfWMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqUZ9mzGLRehNZYg6SYNKUGptvFeLLgMbrR7vzyLat+/x4c8Og8hQj IAMEY79IUwlfzDWN+HJSsTyngVL/vrrIi5xpF5oz1ECOtrLIuY7WoK42neXHWjgt 7yIysiodZz67mlT1rJ2Q/Mn4dynud+b0r/bTplzXaMcYuywwTPQBI4o0V54iC5Xn AYa38uQEaMW61iHrdwMJ6MTSNBjRvbXbbL/gzV8Osi/6VCEytdDefkGfwUXlyxTp BdZ9hRvJHUVhquGz4nm2nzjrgnd5a1JTRJSL703Jt4ckitvjEBhKYmK29mthwCLm N7FesYBsRNfFu4E8NxzuWcnZmDlyS1xJ -----END CERTIFICATE-----Generated at Sun Dec 7 03:08:22 2025 by rpki-client