This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: H4HMkra7ooGRhQKmaf8YoBFJe9cL9tv9LhV6R8L6FV8= Subject key identifier: 7B:68:5C:AC:E5:8F:48:7E:7D:D9:F8:5A:3C:AC:5D:80:9A:1A:E5:2C Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: FF Signing time: Sun 21 Dec 2025 04:19:22 +0000 Manifest this update: Sun 21 Dec 2025 04:19:21 +0000 Manifest next update: Sun 28 Dec 2025 04:19:21 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: TCU8uuaQ0FLwCffyMCyK5WZ9CwoEVOGlq0JMpm/Lpv8=) 2: 13435546ABF211F0BA77FA0DC4F9AE02.roa (hash: q/F51LSqhdUzQ5wuFfu2jC3x+BTiobOoytHd+JzEAJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Dec 21 04:19:21 2025 GMT Not After : Dec 28 04:19:21 2025 GMT Subject: CN=6947754a-e1a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:a0:6b:25:87:ff:ca:d7:dd:49:fb:e6:33: 3e:08:27:81:7b:e5:ed:23:26:de:3e:ff:b1:71:70: 07:8d:23:2e:a1:3c:c1:1c:32:ea:79:ca:a3:3c:43: c1:af:6e:28:5f:9d:c4:36:16:f5:f4:38:cd:ba:0e: f9:ea:72:18:e3:91:9f:ff:e8:6f:a2:b5:2b:8a:01: e6:f4:64:26:22:e2:4d:63:b7:38:43:e5:45:c2:f6: fd:75:07:2b:55:44:c1:7f:15:79:3a:6e:47:50:42: c4:0a:0b:d9:be:8d:44:ec:48:60:b8:15:a2:b4:39: 49:1c:71:3f:55:33:04:05:69:6e:f0:80:80:11:1e: 49:d6:89:30:07:16:52:36:96:39:9d:17:a4:c3:0b: 4e:5d:13:80:f6:f6:06:2a:a8:20:db:ca:58:b5:46: 6d:c9:e5:d4:df:ce:82:e5:30:95:58:86:3d:71:4a: 17:71:24:ad:29:bc:1f:34:f9:29:55:4f:fc:f8:5c: 26:f1:29:b0:ef:fa:76:fc:1f:d9:fa:d5:3b:20:63: 23:f5:0e:f6:23:2f:4b:09:d6:b5:70:24:52:12:c0: c7:37:1a:19:95:e0:12:e3:90:56:bb:b2:f9:97:48: c7:ce:b9:e7:d4:82:0c:6d:75:b4:c7:63:43:25:3c: f5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:68:5C:AC:E5:8F:48:7E:7D:D9:F8:5A:3C:AC:5D:80:9A:1A:E5:2C X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:be:e6:9b:08:55:e8:be:02:6a:b9:1b:bf:0b:47:af:8a:23: 22:a8:07:ec:22:20:bf:48:04:f3:b9:d9:2e:34:1c:35:0c:87: 9c:3e:fb:d6:a9:10:11:34:05:97:7f:2c:df:f6:96:ee:51:59: ec:dd:30:15:37:91:32:13:4f:7f:73:06:d2:d8:23:fe:57:fc: b9:8b:0f:7d:d7:e0:e6:e9:5d:54:d5:ce:99:c0:ff:b2:4e:a3: 88:05:90:88:51:40:0c:1c:0c:27:cd:48:d6:6e:42:26:ff:f9: b3:a6:92:8c:79:08:48:34:ad:c9:40:52:c9:a0:cc:20:9b:37: 66:28:e3:80:f7:61:dd:ea:3a:92:88:13:e3:ac:ed:7b:3d:b7: f3:41:e7:ef:e5:fe:d5:fe:d8:23:05:0e:b5:6b:87:8f:69:8b: 1c:b2:c0:2f:f2:b6:91:97:b5:db:c8:67:26:bd:8d:ff:f6:1d: 7f:97:3c:47:e8:f9:b2:e3:db:81:d7:ff:a9:d2:4f:94:00:a6: c9:dc:3e:82:5d:b8:09:24:af:f5:e4:fb:9b:c6:1f:b5:85:5f: 05:c6:01:18:b5:f0:d1:87:ea:b8:ca:6d:a5:2b:b4:6d:2d:3a: 03:88:2d:fb:01:4c:ff:43:71:27:41:6b:bf:f0:98:8b:b3:e8: e3:48:24:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUxMjIxMDQxOTIxWhcNMjUxMjI4MDQxOTIxWjAYMRYwFAYD VQQDDA02OTQ3NzU0YS1lMWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBCgayWH/8rX3Un75jM+CCeBe+XtIybePv+xcXAHjSMuoTzBHDLqecqjPEPB r24oX53ENhb19DjNug756nIY45Gf/+hvorUrigHm9GQmIuJNY7c4Q+VFwvb9dQcr VUTBfxV5Om5HUELECgvZvo1E7EhguBWitDlJHHE/VTMEBWlu8ICAER5J1okwBxZS NpY5nRekwwtOXROA9vYGKqgg28pYtUZtyeXU386C5TCVWIY9cUoXcSStKbwfNPkp VU/8+Fwm8Smw7/p2/B/Z+tU7IGMj9Q72Iy9LCda1cCRSEsDHNxoZleAS45BWu7L5 l0jHzrnn1IIMbXW0x2NDJTz1pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtoXKzl j0h+fdn4WjysXYCaGuUsMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHvuabCFXovgJquRu/C0eviiMiqAfsIiC/SATzudkuNBw1DIecPvvW qRARNAWXfyzf9pbuUVns3TAVN5EyE09/cwbS2CP+V/y5iw991+Dm6V1U1c6ZwP+y TqOIBZCIUUAMHAwnzUjWbkIm//mzppKMeQhINK3JQFLJoMwgmzdmKOOA92Hd6jqS iBPjrO17PbfzQefv5f7V/tgjBQ61a4ePaYscssAv8raRl7XbyGcmvY3/9h1/lzxH 6Pmy49uB1/+p0k+UAKbJ3D6CXbgJJK/15Pubxh+1hV8FxgEYtfDRh+q4ym2lK7Rt LToDiC37AUz/Q3EnQWu/8JiLs+jjSCS2 -----END CERTIFICATE-----Generated at Mon Dec 22 03:51:23 2025 by rpki-client