This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: 9AgYbTBNW1mF+ytPEgBcr7SOHuRlhN/sTl2Iia75HDg= Subject key identifier: 00:DF:86:D1:F4:06:FE:D4:F7:FB:B9:65:77:FE:55:0D:A5:EE:96:BB Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: A3 Signing time: Fri 05 Dec 2025 04:15:16 +0000 Manifest this update: Fri 05 Dec 2025 04:15:15 +0000 Manifest next update: Fri 12 Dec 2025 04:15:15 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: SkK/xU7kDd25NIhKY5QJl319kUbA9e7WRVD6mRlU0BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Dec 5 04:15:15 2025 GMT Not After : Dec 12 04:15:15 2025 GMT Subject: CN=69325c53-6348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:18:97:f1:40:bc:8f:87:73:f5:05:b3:15:8a: 28:52:fc:a5:70:64:41:e7:1a:54:92:46:81:33:50: b4:e4:99:76:09:3e:17:7f:7a:d9:13:7f:08:40:55: 1c:f1:ed:70:b2:e1:48:3c:5d:6e:30:3f:ba:90:ee: 3c:46:44:d6:dc:65:40:9b:ab:e3:0f:2f:c3:8d:74: cd:12:70:bf:39:a7:c7:37:e2:b2:b6:49:40:b9:a7: 76:2b:0d:4c:5c:f4:ec:6b:28:52:50:a8:4e:ec:4d: c7:ea:d2:ff:a2:1d:a2:16:3d:b7:37:f9:15:38:53: f2:04:ed:15:45:c5:1c:79:ee:53:9a:57:74:86:a9: d0:15:8a:3d:aa:8a:f1:69:eb:fc:be:af:83:b3:bd: 26:11:dc:f1:70:72:1a:2a:05:37:79:a2:81:de:86: 5f:e6:a0:e7:56:34:ec:aa:d0:dc:f6:56:8e:3b:36: cf:da:e8:75:0e:25:f3:28:3b:4c:74:82:4d:97:0d: 35:ba:e0:f6:e6:be:46:40:93:03:82:9e:49:c9:dc: a4:d4:84:f6:44:85:32:05:e4:45:cb:3c:20:a2:10: 67:cd:6a:cf:9f:30:c4:ee:f7:b6:ea:6c:99:49:3b: 6c:02:ca:82:e6:92:dd:11:65:27:af:b8:11:bc:4a: 5a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:DF:86:D1:F4:06:FE:D4:F7:FB:B9:65:77:FE:55:0D:A5:EE:96:BB X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:3b:95:10:86:d6:ea:ea:3b:76:76:d2:50:d5:f9:35:0e:a1: 36:59:c7:39:8d:37:45:74:20:00:2d:bb:fe:a8:d7:76:92:42: d9:ce:62:78:dd:30:7b:af:a5:95:be:3f:ee:a4:d2:1e:3a:73: b8:f6:24:ee:04:0b:56:6c:c4:8b:f1:a6:e3:c9:06:e2:ea:08: 48:d4:f1:f7:41:95:d2:2b:a7:1f:ee:b6:03:8f:06:f6:7b:e2: d7:f1:5f:ce:f1:21:3c:aa:bf:7f:35:55:62:58:43:be:f1:19: b1:aa:db:0a:64:fe:9a:0b:62:a2:84:4a:d2:64:2e:81:84:b5: fc:ee:5f:c7:6b:59:5d:d7:f9:26:61:7f:f5:5c:1b:0f:4f:8e: 25:de:52:6a:95:f2:3e:8d:33:9c:1a:4f:bd:95:20:0e:ed:da: 50:0f:16:d8:44:0e:6e:0d:5e:62:dd:3d:d1:e7:85:7b:d1:39: 5b:67:26:30:ea:90:cf:30:b9:e9:fa:dd:12:07:03:d8:2f:91: 9f:81:7b:3c:33:12:e8:dd:6c:8f:4a:53:fa:68:1b:9d:0b:3b: d3:9b:39:75:6a:5a:0a:23:89:17:89:eb:71:13:35:14:b5:9e: a9:1e:c7:77:40:c2:79:49:ea:af:bc:2d:83:f7:b7:fe:fc:19: 5e:27:88:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDk4N0EyNDAzNUMxNTM5MTcwMjBCNjUxREI5OEYwOTFG MEFBQTMyMjcwHhcNMjUxMjA1MDQxNTE1WhcNMjUxMjEyMDQxNTE1WjAYMRYwFAYD VQQDEw02OTMyNWM1My02MzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxiX8UC8j4dz9QWzFYooUvylcGRB5xpUkkaBM1C05Jl2CT4Xf3rZE38IQFUc 8e1wsuFIPF1uMD+6kO48RkTW3GVAm6vjDy/DjXTNEnC/OafHN+KytklAuad2Kw1M XPTsayhSUKhO7E3H6tL/oh2iFj23N/kVOFPyBO0VRcUcee5Tmld0hqnQFYo9qorx aev8vq+Ds70mEdzxcHIaKgU3eaKB3oZf5qDnVjTsqtDc9laOOzbP2uh1DiXzKDtM dIJNlw01uuD25r5GQJMDgp5Jydyk1IT2RIUyBeRFyzwgohBnzWrPnzDE7ve26myZ STtsAsqC5pLdEWUnr7gRvEpaYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADfhtH0 Bv7U9/u5ZXf+VQ2l7pa7MB8GA1UdIwQYMBaAFJh6JANcFTkXAgtlHbmPCR8KqjIn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BRkRFRkU1NEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9SY0NDMlVkdVk4Skh3cXFN aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BRkRFRkU1NEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9S Y0NDMlVkdVk4Skh3cXFNaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAO5UQhtbq6jt2dtJQ1fk1DqE2Wcc5jTdFdCAALbv+qNd2kkLZzmJ4 3TB7r6WVvj/upNIeOnO49iTuBAtWbMSL8abjyQbi6ghI1PH3QZXSK6cf7rYDjwb2 e+LX8V/O8SE8qr9/NVViWEO+8RmxqtsKZP6aC2KihErSZC6BhLX87l/Ha1ld1/km YX/1XBsPT44l3lJqlfI+jTOcGk+9lSAO7dpQDxbYRA5uDV5i3T3R54V70TlbZyYw 6pDPMLnp+t0SBwPYL5GfgXs8MxLo3WyPSlP6aBudCzvTmzl1aloKI4kXietxEzUU tZ6pHsd3QMJ5SeqvvC2D97f+/BleJ4gW -----END CERTIFICATE-----Generated at Sat Dec 6 11:22:32 2025 by rpki-client