This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: SgIagbycZVSqejZAjNp/8x1+/ZzPchhuzBYd0VLOsVU= Subject key identifier: 0E:BA:4A:83:4A:28:B5:E6:3B:09:1F:31:7F:5A:3B:A5:DE:DB:BF:8C Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 266F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 265B Signing time: Thu 04 Dec 2025 15:30:39 +0000 Manifest this update: Thu 04 Dec 2025 15:30:39 +0000 Manifest next update: Thu 11 Dec 2025 15:30:39 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: NX/y2A0oOlC8fo6cx2hSj4iOr+kGeZXLGJ4AxsMnEIc=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: KC0xcucgFsPCAN+N80I9dtcN0tPHYNAOVU4Hu0w2pjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9839 (0x266f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Dec 4 15:30:39 2025 GMT Not After : Dec 11 15:30:39 2025 GMT Subject: CN=6931a91f-56cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:32:c0:84:68:d9:e9:4d:3e:91:c3:d5:3d: 6e:de:6f:a0:d8:17:67:89:86:22:96:ff:cd:b1:f4: bf:cb:1b:7b:8a:a8:92:55:63:ca:38:d4:94:93:25: 43:b3:fb:c9:77:b5:c4:eb:34:44:81:0b:f3:6e:90: 4d:78:76:b3:26:a5:e4:d8:4b:84:32:dc:9e:dd:7c: fd:fa:b3:e8:83:67:c0:81:76:2f:89:30:5b:9c:e0: 70:95:fb:e5:5e:c5:4e:63:ef:9c:82:5a:b6:9f:8e: 7b:21:34:49:5d:71:c8:26:cf:e6:79:93:d6:ae:38: bd:16:cd:91:32:c5:c9:a9:7e:32:4b:2d:ca:e5:b0: 36:63:b7:5a:59:b6:d8:2b:5a:fa:1f:07:56:09:b7: 79:3a:55:df:9e:54:37:a2:14:fa:56:2a:33:b7:65: b9:f5:46:4b:bf:d7:5c:64:6f:69:c4:90:fe:ab:dc: d7:2b:34:1e:b9:3e:4f:ba:bf:ad:06:5f:cd:26:8d: 7c:7d:19:a6:f3:9c:ce:bf:a0:7c:e2:99:e9:6f:a8: 7f:3e:23:ae:11:bf:05:5c:8a:9e:83:32:4e:85:ba: bf:7b:b9:1d:31:79:58:b3:72:46:4e:27:5f:42:c3: 48:e8:2d:a4:94:17:95:8b:f5:6c:f0:b3:7e:10:61: 17:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BA:4A:83:4A:28:B5:E6:3B:09:1F:31:7F:5A:3B:A5:DE:DB:BF:8C X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:81:43:4d:74:1f:d3:21:83:99:4c:aa:c7:f5:ce:66:3f:f8: d4:e8:88:c7:b0:e6:60:f4:ea:ef:a0:48:bf:69:f6:b3:0f:9a: a6:aa:c8:19:8c:4e:f3:67:a3:f7:10:65:89:64:90:0d:92:da: 06:7e:dc:97:6b:24:69:64:ea:4e:2b:87:0e:ef:83:9a:14:4b: bc:a2:b5:bd:c7:8d:4d:b5:ba:dc:13:f0:53:aa:34:38:1d:d1: 5c:11:a9:a9:5c:1d:63:48:bc:91:82:83:9d:cd:6d:a4:07:47: 6b:7d:e5:1d:1e:f4:66:8a:28:5e:a2:4a:0a:30:a3:8c:e0:68: b0:8f:39:3a:35:18:b5:bf:2e:9d:f4:bb:f3:b0:e6:fd:64:33: 0c:27:10:44:4c:8d:be:c3:7b:b1:38:f2:2e:6d:58:6a:cf:6d: 35:ad:f4:32:92:4b:10:e5:ad:e5:6c:c1:9b:01:ff:a3:df:e5: 77:3e:f9:c9:7b:7d:f9:d7:a1:4b:00:5e:0a:17:6f:da:3c:f5: 7f:72:05:7e:6e:5c:b1:08:27:4a:db:9c:3a:06:35:01:0b:3d: 17:f5:6b:92:23:65:fa:b6:0f:88:e5:e3:25:d2:b0:73:22:10: 9a:b6:29:04:e6:42:48:e7:20:ac:48:4c:93:93:3d:b3:43:ac: 9b:4b:1f:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUxMjA0MTUzMDM5WhcNMjUxMjExMTUzMDM5WjAYMRYwFAYD VQQDEw02OTMxYTkxZi01NmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+EywIRo2elNPpHD1T1u3m+g2BdniYYilv/NsfS/yxt7iqiSVWPKONSUkyVD s/vJd7XE6zREgQvzbpBNeHazJqXk2EuEMtye3Xz9+rPog2fAgXYviTBbnOBwlfvl XsVOY++cglq2n457ITRJXXHIJs/meZPWrji9Fs2RMsXJqX4ySy3K5bA2Y7daWbbY K1r6HwdWCbd5OlXfnlQ3ohT6Viozt2W59UZLv9dcZG9pxJD+q9zXKzQeuT5Pur+t Bl/NJo18fRmm85zOv6B84pnpb6h/PiOuEb8FXIqegzJOhbq/e7kdMXlYs3JGTidf QsNI6C2klBeVi/Vs8LN+EGEXpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA66SoNK KLXmOwkfMX9aO6Xe27+MMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrgUNNdB/TIYOZTKrH9c5mP/jU6IjHsOZg9OrvoEi/afazD5qmqsgZ jE7zZ6P3EGWJZJANktoGftyXayRpZOpOK4cO74OaFEu8orW9x41NtbrcE/BTqjQ4 HdFcEampXB1jSLyRgoOdzW2kB0drfeUdHvRmiiheokoKMKOM4Giwjzk6NRi1vy6d 9LvzsOb9ZDMMJxBETI2+w3uxOPIubVhqz201rfQykksQ5a3lbMGbAf+j3+V3PvnJ e33516FLAF4KF2/aPPV/cgV+blyxCCdK25w6BjUBCz0X9WuSI2X6tg+I5eMl0rBz IhCatikE5kJI5yCsSEyTkz2zQ6ybSx8R -----END CERTIFICATE-----Generated at Sat Dec 6 13:56:25 2025 by rpki-client