This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: XjtufrkKJVaZMQSB2anrovKyKd5514iDmijYmIQmhoc= Subject key identifier: 24:81:5E:00:38:F0:5F:08:D3:4B:A5:0F:2D:98:21:DF:1E:82:E5:CF Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A4E Signing time: Sat 06 Dec 2025 18:55:08 +0000 Manifest this update: Sat 06 Dec 2025 18:55:08 +0000 Manifest next update: Sat 13 Dec 2025 18:55:08 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: Xm2ABMA7Rs0qBe9BVccr8rhegXgbHnuTU8LL5axIzhY=) 2: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: B5buB00YWWO2A2xnD3M5vrisGIi+aFvWdlZltMnylng=) 3: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: S+5qUnemcpQGoSOv79wtTvxOi8xqGPx0E74Y3KFGkhU=) 4: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Dec 6 18:55:08 2025 GMT Not After : Dec 13 18:55:08 2025 GMT Subject: CN=69347c0c-50bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2a:f4:61:3c:11:d2:30:9a:1c:8d:9b:bb:c6: 50:4e:57:9d:2c:5b:10:09:3d:8a:c1:20:0b:81:86: 46:65:18:45:91:54:9f:ed:1a:e7:18:2c:8b:70:8c: 0b:b4:1a:bf:45:8d:7e:8c:df:60:b9:68:6f:ec:fc: 5c:50:70:df:57:9e:55:57:2e:a0:cb:b4:ab:6c:76: b0:a4:74:e3:fa:68:dd:08:07:0a:75:13:07:b2:c6: 6b:ff:86:6f:d3:f0:90:fa:44:00:fa:a5:af:ef:67: 43:88:03:45:6b:4b:80:76:3e:21:c1:b7:4e:b7:6e: fc:3f:7a:7b:82:d4:79:cf:16:eb:cc:f2:07:de:ec: a9:36:1b:9f:e0:09:d7:8b:51:6e:0a:48:bb:c1:59: 35:c4:71:ed:82:4f:ae:c5:b5:6c:26:86:af:47:cc: e8:76:9c:15:eb:7a:81:df:ce:5c:28:38:1c:58:90: 76:2e:60:7b:2f:71:9a:17:9d:a3:ae:a6:cc:0f:63: ea:7b:98:4a:52:98:ff:27:e3:e9:f3:a6:e7:c7:99: 75:18:34:e8:01:64:55:ed:b3:95:70:25:d1:e9:ba: f0:d0:4b:fd:0b:a1:5d:c0:36:97:6d:18:94:d0:04: 85:c3:e5:54:09:c7:25:1b:8b:42:fc:2e:2b:a0:1f: 03:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:81:5E:00:38:F0:5F:08:D3:4B:A5:0F:2D:98:21:DF:1E:82:E5:CF X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:0c:83:83:ce:b1:e8:fd:9b:18:23:9b:0c:1b:07:45:54:b1: 43:3c:b3:82:ac:30:ba:b9:8f:c5:71:9c:7e:68:95:15:35:1e: 20:30:37:3b:b4:2e:2f:5e:05:01:a5:ba:c9:6a:f6:56:e6:d7: 21:00:61:0f:be:e4:88:6f:4c:95:e6:e8:a7:7a:b8:e5:cc:79: 63:ec:b6:05:46:5d:51:ea:a8:df:3b:d6:a1:b6:0f:fd:f5:8c: d9:30:e2:bd:f6:0e:a9:59:8d:f2:05:65:33:7a:fa:18:2b:5e: c3:8f:67:39:e9:12:98:ec:08:fe:c0:ad:ed:48:20:c8:d0:af: 17:c0:a7:41:1d:2d:5b:f5:6a:c9:d9:b1:77:5f:ed:aa:c7:c9: dd:1a:05:23:2d:b4:93:fc:8a:2e:77:2c:91:51:52:a1:96:01: 0b:7a:d0:c9:9c:9c:b8:fa:42:cb:15:f4:72:0d:d5:a7:c6:70: 2e:08:74:72:b5:6e:cb:e7:35:d0:2d:82:36:dc:d3:3a:b9:0a: 06:66:17:39:77:2a:ea:cf:9b:49:27:b9:a4:0e:ef:4c:6d:ad: c6:2c:3c:c2:8a:b9:55:73:e0:30:a0:84:61:50:50:cf:cc:46: f5:1a:10:6e:f6:57:cb:0c:16:09:8d:4a:d1:30:04:5f:94:7d: 60:ee:ea:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUxMjA2MTg1NTA4WhcNMjUxMjEzMTg1NTA4WjAYMRYwFAYD VQQDEw02OTM0N2MwYy01MGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSr0YTwR0jCaHI2bu8ZQTledLFsQCT2KwSALgYZGZRhFkVSf7RrnGCyLcIwL tBq/RY1+jN9guWhv7PxcUHDfV55VVy6gy7SrbHawpHTj+mjdCAcKdRMHssZr/4Zv 0/CQ+kQA+qWv72dDiANFa0uAdj4hwbdOt278P3p7gtR5zxbrzPIH3uypNhuf4AnX i1FuCki7wVk1xHHtgk+uxbVsJoavR8zodpwV63qB385cKDgcWJB2LmB7L3GaF52j rqbMD2Pqe5hKUpj/J+Pp86bnx5l1GDToAWRV7bOVcCXR6brw0Ev9C6FdwDaXbRiU 0ASFw+VUCcclG4tC/C4roB8DCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSBXgA4 8F8I00ulDy2YId8eguXPMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvDIODzrHo/ZsYI5sMGwdFVLFDPLOCrDC6uY/FcZx+aJUVNR4gMDc7 tC4vXgUBpbrJavZW5tchAGEPvuSIb0yV5uinerjlzHlj7LYFRl1R6qjfO9ahtg/9 9YzZMOK99g6pWY3yBWUzevoYK17Dj2c56RKY7Aj+wK3tSCDI0K8XwKdBHS1b9WrJ 2bF3X+2qx8ndGgUjLbST/IoudyyRUVKhlgELetDJnJy4+kLLFfRyDdWnxnAuCHRy tW7L5zXQLYI23NM6uQoGZhc5dyrqz5tJJ7mkDu9Mba3GLDzCirlVc+AwoIRhUFDP zEb1GhBu9lfLDBYJjUrRMARflH1g7uod -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:05 2025 by rpki-client