This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: 2gEPUSmK3D/2ivCSmlfL08Cogz7O5pGveESBmgjHqpk= Subject key identifier: D9:C7:D2:DC:F5:2C:30:22:9C:EA:5C:79:47:1F:95:4B:1D:BE:DB:EE Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: D9 Signing time: Fri 05 Dec 2025 03:44:56 +0000 Manifest this update: Fri 05 Dec 2025 03:44:56 +0000 Manifest next update: Fri 12 Dec 2025 03:44:55 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: KebSoma7jyULYaNy1T3MCP8p/80K7OZDTkax1I+D65Q=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: kqOdm4mIQ5rtE9W5sQYT9M1D8hmXdIyf47H8prMLi/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Dec 5 03:44:56 2025 GMT Not After : Dec 12 03:44:55 2025 GMT Subject: CN=69325538-828d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:82:d2:90:de:34:17:6e:25:5f:df:f5:1d:78: 30:b0:6a:b5:9a:6f:9d:b1:72:17:8f:f3:51:a5:58: 3f:8d:2e:19:cc:8c:49:e2:ae:2c:ae:0a:3f:08:6c: 10:c5:be:bd:c1:bd:c1:a0:6c:2b:19:fa:8a:97:f7: 5b:9b:ec:6c:2e:76:47:b4:7f:01:3c:fa:48:8b:10: ac:fd:82:46:a4:16:0d:78:41:b7:a5:e9:8b:8b:2c: 5c:b1:8e:d8:e0:1c:4b:de:4b:cc:25:59:02:13:39: 1b:97:6d:ab:e4:0a:ce:99:ed:27:38:20:40:f6:1c: 1f:96:88:ce:a2:2c:c9:2d:d2:9d:5c:19:c1:d2:3e: 5e:2f:50:20:33:01:4c:53:de:08:f2:94:59:6b:59: e8:ac:29:33:9f:b5:df:26:58:47:87:e5:ae:c1:48: 25:b8:15:14:09:70:4e:4d:6d:c6:20:39:01:1e:4c: 4a:14:24:04:42:b0:e3:a4:db:75:00:22:05:87:01: 54:4d:d6:31:5b:28:cb:03:46:ce:a8:75:52:4d:55: 38:e1:4d:ef:9e:37:7c:cf:13:16:8a:88:c6:a2:09: b2:d3:f6:3c:3d:f4:ff:f2:25:e7:d3:f9:21:c9:ae: ae:ea:ea:b3:ec:75:f8:d6:15:e5:2c:57:50:98:ba: 86:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C7:D2:DC:F5:2C:30:22:9C:EA:5C:79:47:1F:95:4B:1D:BE:DB:EE X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:c7:74:f2:21:fe:9d:99:d4:21:fc:ba:f9:6e:e3:21:a5:c4: ae:4f:c9:70:ec:97:33:c7:a2:c2:82:fa:e8:b7:31:c8:92:55: b2:57:2c:48:42:20:a8:db:b6:41:58:4d:b1:54:f5:15:ad:d7: 9a:1d:c3:69:0f:39:23:8b:42:b7:b0:6a:11:11:01:97:ed:64: e8:2b:38:9b:f9:0a:4f:d4:84:32:ed:fa:f6:eb:32:79:aa:72: f9:ce:03:5f:40:52:c7:37:33:d5:23:aa:72:4f:c0:1f:f2:d0: b0:78:24:23:54:5e:70:c9:1a:b7:7e:c4:42:4f:24:2d:72:91: 3f:e8:f1:71:b4:1f:c8:ba:f0:f3:d7:5b:c1:f8:c3:f2:31:8d: ed:78:96:fc:63:c9:35:72:cf:87:00:5d:a1:a9:34:6c:c6:90: b3:1a:11:3d:a6:02:9c:c5:75:29:80:07:1d:eb:75:50:dd:09: 90:2c:6c:19:56:e1:b9:c0:c6:7a:75:31:a5:1c:c8:a1:27:8c: 68:c7:76:22:fe:8b:e4:3e:a4:3b:5b:27:b8:99:ce:cd:22:8d: 82:84:ff:ee:18:24:80:df:02:d3:c0:f9:9b:05:ef:8f:17:9d: c4:2f:b0:2e:65:29:d6:89:d3:01:ff:1d:b4:3e:85:25:a9:be: 66:52:7e:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUxMjA1MDM0NDU2WhcNMjUxMjEyMDM0NDU1WjAYMRYwFAYD VQQDEw02OTMyNTUzOC04MjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oLSkN40F24lX9/1HXgwsGq1mm+dsXIXj/NRpVg/jS4ZzIxJ4q4srgo/CGwQ xb69wb3BoGwrGfqKl/dbm+xsLnZHtH8BPPpIixCs/YJGpBYNeEG3pemLiyxcsY7Y 4BxL3kvMJVkCEzkbl22r5ArOme0nOCBA9hwflojOoizJLdKdXBnB0j5eL1AgMwFM U94I8pRZa1norCkzn7XfJlhHh+WuwUgluBUUCXBOTW3GIDkBHkxKFCQEQrDjpNt1 ACIFhwFUTdYxWyjLA0bOqHVSTVU44U3vnjd8zxMWiojGogmy0/Y8PfT/8iXn0/kh ya6u6uqz7HX41hXlLFdQmLqGCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnH0tz1 LDAinOpceUcflUsdvtvuMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEU5RC85NTY5QURCNDk1REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmta QVBVSzJXQURNVDVSN1dDaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0x3TyIf6dmdQh/Lr5buMhpcSuT8lw7Jczx6LCgvrotzHIklWyVyxI QiCo27ZBWE2xVPUVrdeaHcNpDzkji0K3sGoREQGX7WToKzib+QpP1IQy7fr26zJ5 qnL5zgNfQFLHNzPVI6pyT8Af8tCweCQjVF5wyRq3fsRCTyQtcpE/6PFxtB/IuvDz 11vB+MPyMY3teJb8Y8k1cs+HAF2hqTRsxpCzGhE9pgKcxXUpgAcd63VQ3QmQLGwZ VuG5wMZ6dTGlHMihJ4xox3Yi/ovkPqQ7Wye4mc7NIo2ChP/uGCSA3wLTwPmbBe+P F53EL7AuZSnWidMB/x20PoUlqb5mUn5b -----END CERTIFICATE-----Generated at Sat Dec 6 23:42:46 2025 by rpki-client