This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: pzNiuQPYqMZqKzUP2jgS0XzjAUSAIWtneNvJIxbsJUU= Subject key identifier: BB:93:10:15:D0:BE:B1:00:D4:96:EB:6C:D4:CF:88:D4:F5:EE:EC:C2 Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: BA Signing time: Fri 05 Dec 2025 04:02:43 +0000 Manifest this update: Fri 05 Dec 2025 04:02:43 +0000 Manifest next update: Fri 12 Dec 2025 04:02:43 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: OpXreDLFUKNRviHnykpOwMI/3JGAgO46UTbbkEV7N5g=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: ztHcyied63n5u52LWMJ9U0s6jM6YVpsvBanXfX0Gx6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Dec 5 04:02:43 2025 GMT Not After : Dec 12 04:02:43 2025 GMT Subject: CN=69325963-8c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ce:19:d9:ad:b3:6c:b2:0b:d9:26:31:42:35: cd:1e:83:dc:5d:c2:c8:53:f2:b0:46:d8:83:4d:7d: 38:89:7a:6f:2f:00:04:65:9e:6b:81:d2:43:35:81: d2:31:a7:30:b5:53:2a:2a:48:89:58:63:2f:73:b4: f8:65:90:29:f1:2d:af:c1:45:cf:19:cd:7c:f6:40: aa:d9:e5:0a:10:fc:15:a4:78:6d:db:ef:e6:53:e6: 7c:98:64:9c:7a:9c:67:f4:47:c5:04:7f:de:91:05: 49:2d:b1:a6:9d:1a:95:f8:6f:fb:11:d7:bb:e3:2e: 33:49:02:58:55:8e:8d:bf:33:c6:41:76:79:ba:58: 5a:bd:ec:29:04:cc:9a:6d:16:21:a0:2b:31:56:e1: f3:58:22:aa:3e:b8:fa:8b:9e:4c:2b:a1:fe:0a:df: b4:57:0d:dd:cb:5b:e1:c7:9c:c4:7d:c8:99:44:78: 59:ed:a5:b8:9c:80:ed:69:21:4a:d6:28:19:be:e7: 17:eb:c8:4b:15:21:19:32:cf:c0:8c:ba:6b:88:a0: 54:47:0d:82:e2:f2:c7:4f:7e:74:08:bf:ce:a9:d1: 9b:75:aa:ee:19:b2:3b:ea:a9:e6:e8:e3:91:4b:d8: ef:17:16:d2:7d:dc:f9:e9:0f:b8:29:2f:f1:f8:eb: 05:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:93:10:15:D0:BE:B1:00:D4:96:EB:6C:D4:CF:88:D4:F5:EE:EC:C2 X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:ef:c7:58:74:38:90:41:2c:a5:0b:8a:92:34:b6:7a:de:0b: 7e:98:d0:69:05:0a:79:ee:0c:47:b5:52:3e:ad:6a:6d:06:a6: c9:4f:00:0c:0f:bc:c5:51:93:7f:88:bf:50:7b:32:23:a7:f5: 3e:06:c6:a2:99:77:36:1d:34:2a:29:71:8e:d9:8d:79:e9:3e: 76:14:b5:fc:15:06:de:d2:5b:5a:49:9f:cb:43:9b:89:82:f6: 02:7f:87:51:55:b1:64:02:13:55:2d:8a:40:fd:a0:4f:50:78: 1d:6d:cc:2e:95:b4:b1:32:5b:63:d6:c1:2c:22:da:46:ff:68: 3e:ca:da:f0:6f:5f:c5:ba:9e:18:39:0e:f0:0b:b1:05:75:f8: 24:db:bf:aa:d3:52:16:02:c0:84:9b:ad:31:7b:3f:93:71:89: f3:75:ba:8f:76:c5:9b:16:06:7e:84:80:ec:4b:ba:8c:50:79: 0d:f7:ac:a1:32:35:46:fb:23:73:d8:18:e8:cb:88:91:7c:d5: e7:7d:c0:14:88:d0:0b:bc:05:d3:2b:2c:ed:f4:af:56:49:60: 4f:08:a1:15:d9:20:9f:33:a5:77:d8:bc:28:b1:f3:99:22:eb: d4:ea:be:13:14:42:0e:77:b0:42:c6:00:b2:4d:d1:87:73:51: ed:09:93:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjUxMjA1MDQwMjQzWhcNMjUxMjEyMDQwMjQzWjAYMRYwFAYD VQQDEw02OTMyNTk2My04YzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4M4Z2a2zbLIL2SYxQjXNHoPcXcLIU/KwRtiDTX04iXpvLwAEZZ5rgdJDNYHS MacwtVMqKkiJWGMvc7T4ZZAp8S2vwUXPGc189kCq2eUKEPwVpHht2+/mU+Z8mGSc epxn9EfFBH/ekQVJLbGmnRqV+G/7Ede74y4zSQJYVY6NvzPGQXZ5ulhavewpBMya bRYhoCsxVuHzWCKqPrj6i55MK6H+Ct+0Vw3dy1vhx5zEfciZRHhZ7aW4nIDtaSFK 1igZvucX68hLFSEZMs/AjLpriKBURw2C4vLHT350CL/OqdGbdaruGbI76qnm6OOR S9jvFxbSfdz56Q+4KS/x+OsFsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuTEBXQ vrEA1JbrbNTPiNT17uzCMB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR78dYdDiQQSylC4qSNLZ63gt+mNBpBQp57gxHtVI+rWptBqbJTwAM D7zFUZN/iL9QezIjp/U+BsaimXc2HTQqKXGO2Y156T52FLX8FQbe0ltaSZ/LQ5uJ gvYCf4dRVbFkAhNVLYpA/aBPUHgdbcwulbSxMltj1sEsItpG/2g+ytrwb1/Fup4Y OQ7wC7EFdfgk27+q01IWAsCEm60xez+TcYnzdbqPdsWbFgZ+hIDsS7qMUHkN96yh MjVG+yNz2Bjoy4iRfNXnfcAUiNALvAXTKyzt9K9WSWBPCKEV2SCfM6V32LwosfOZ IuvU6r4TFEIOd7BCxgCyTdGHc1HtCZM2 -----END CERTIFICATE-----Generated at Sat Dec 6 12:11:38 2025 by rpki-client