This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft File: hF2I4KIVFF82fZMEvz9xrujrTC0.mft (raw, json) Hash identifier: /pydeyjfmR38gw+OmO9NvEIrjcI9IR17HTUiQFwi02w= Subject key identifier: 73:A4:56:47:03:F0:78:04:FB:45:56:91:3F:9B:E0:91:49:9F:DF:98 Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft Manifest number: 010F Signing time: Fri 05 Dec 2025 03:02:58 +0000 Manifest this update: Fri 05 Dec 2025 03:02:58 +0000 Manifest next update: Fri 12 Dec 2025 03:02:58 +0000 Files and hashes: 1: hF2I4KIVFF82fZMEvz9xrujrTC0.crl (hash: G55TmEhxL7YVSlcU1YDbeuDY0EMYKDJfsNIJxRp4i1M=) 2: CB6840EE3BAC11EF9C334410C4F9AE02.roa (hash: ZyyI/ZozrG5/nhJLIBxR0Bcz7+GF6Q+AWpBF1mK4I18=) 3: 2042987C6C4411EF9B263275C4F9AE02.roa (hash: NjBAV+BZBuGQVA2KV6NfHJRJuvgRL/XOA20W9Q3lchw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2, serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Dec 5 03:02:58 2025 GMT Not After : Dec 12 03:02:58 2025 GMT Subject: CN=69324b62-d9e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:03:18:af:18:6a:e1:ca:11:d6:a2:3c:1d:9c: c3:5b:03:92:48:eb:b3:90:da:7b:51:9a:91:02:8f: 54:d9:22:88:4e:e6:b8:3e:a4:97:5e:4e:59:de:07: 76:10:d5:f8:c3:18:f4:9a:86:70:70:42:07:5b:60: 9f:06:e0:f5:7d:21:ab:90:9f:68:20:22:aa:88:1d: 05:8c:62:d2:d0:9e:83:45:20:71:68:fe:49:33:ac: 05:52:00:9e:b5:7c:c5:3b:6b:6e:4a:00:36:dd:75: 9d:d5:ea:c8:d1:3b:70:a1:82:d7:ac:da:da:f5:19: 33:98:a6:4e:c9:5c:a0:db:2a:b3:60:30:d3:fc:fe: 4f:7e:d8:71:9d:59:ce:05:80:b0:27:11:86:75:7d: b1:21:2c:fa:2d:d9:96:e3:a8:71:33:c5:7b:11:33: d9:97:74:dd:33:52:70:3a:9e:31:5d:9e:0c:ff:59: e7:7c:4a:d8:53:2e:d6:9c:71:2e:7e:5b:7c:37:6c: 7d:64:84:cd:46:ce:44:6b:65:86:05:0f:c4:b8:d8: b0:c6:e5:c3:8d:80:61:da:13:24:60:be:4d:43:49: ff:00:36:fc:01:bd:fc:be:f5:4a:c1:90:68:51:5c: 74:8a:6e:d2:4f:d1:0b:f5:c7:97:9f:29:57:4c:b1: ae:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A4:56:47:03:F0:78:04:FB:45:56:91:3F:9B:E0:91:49:9F:DF:98 X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:46:a5:e5:62:74:0b:8a:68:72:12:2e:61:21:dc:8b:29:53: af:76:8e:6c:3a:5f:bc:f1:dd:a2:22:81:7e:27:a2:0e:3a:ab: 7f:e3:a6:20:0f:b1:75:6d:1f:fc:b3:9e:bc:01:da:69:3c:cb: 61:b0:39:bf:2e:09:01:1d:0d:6d:21:37:f4:b3:d8:f0:dd:cd: 74:c7:4a:d7:19:26:bb:73:24:a1:2c:25:f2:fe:6e:33:a8:f2: 07:04:5d:b9:46:c0:33:a0:10:81:c8:bc:78:1e:b9:f7:9e:89: 40:1e:2b:98:0f:90:54:32:18:38:b8:3b:f9:d7:e4:cf:87:56: 78:6a:7d:f1:32:1b:b1:e4:da:1b:2d:6a:19:5f:f8:e6:3d:a5: 61:12:12:ac:3b:4f:11:97:eb:0a:74:45:e0:57:11:56:00:8b: a9:c5:3b:06:51:53:63:18:1e:bb:96:3c:90:34:dc:14:ee:50: d2:0c:c9:71:33:d1:d0:29:03:1d:5b:17:53:6a:c7:a5:27:8a: 2b:71:11:c5:9c:a2:b1:df:68:51:64:86:7c:53:a4:11:4f:db: 26:32:ff:9c:81:fd:24:cb:e8:3c:ba:8a:c5:eb:14:4d:70:8d: ed:d0:61:86:ef:19:7c:21:4f:b9:ae:30:44:ba:15:5d:43:75: 57:d0:74:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRTIxMTAvBgNVBAUTKDg0NUQ4OEUwQTIxNTE0NUYzNjdEOTMwNEJGM0Y3MUFF RThFQjRDMkQwHhcNMjUxMjA1MDMwMjU4WhcNMjUxMjEyMDMwMjU4WjAYMRYwFAYD VQQDEw02OTMyNGI2Mi1kOWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QMYrxhq4coR1qI8HZzDWwOSSOuzkNp7UZqRAo9U2SKITua4PqSXXk5Z3gd2 ENX4wxj0moZwcEIHW2CfBuD1fSGrkJ9oICKqiB0FjGLS0J6DRSBxaP5JM6wFUgCe tXzFO2tuSgA23XWd1erI0TtwoYLXrNra9RkzmKZOyVyg2yqzYDDT/P5PfthxnVnO BYCwJxGGdX2xISz6LdmW46hxM8V7ETPZl3TdM1JwOp4xXZ4M/1nnfErYUy7WnHEu flt8N2x9ZITNRs5Ea2WGBQ/EuNiwxuXDjYBh2hMkYL5NQ0n/ADb8Ab38vvVKwZBo UVx0im7ST9EL9ceXnylXTLGuGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOkVkcD 8HgE+0VWkT+b4JFJn9+YMB8GA1UdIwQYMBaAFIRdiOCiFRRfNn2TBL8/ca7o60wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFFMi8yNkE2RjQ0QzNC QUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZGODJmWk1Fdno5eHJ1anJU QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEFFMi8yNkE2RjQ0QzNCQUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZG ODJmWk1Fdno5eHJ1anJUQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDRqXlYnQLimhyEi5hIdyLKVOvdo5sOl+88d2iIoF+J6IOOqt/46Yg D7F1bR/8s568AdppPMthsDm/LgkBHQ1tITf0s9jw3c10x0rXGSa7cyShLCXy/m4z qPIHBF25RsAzoBCByLx4Hrn3nolAHiuYD5BUMhg4uDv51+TPh1Z4an3xMhux5Nob LWoZX/jmPaVhEhKsO08Rl+sKdEXgVxFWAIupxTsGUVNjGB67ljyQNNwU7lDSDMlx M9HQKQMdWxdTaselJ4orcRHFnKKx32hRZIZ8U6QRT9smMv+cgf0ky+g8uorF6xRN cI3t0GGG7xl8IU+5rjBEuhVdQ3VX0HTv -----END CERTIFICATE-----Generated at Sat Dec 6 23:22:40 2025 by rpki-client