This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: Xux11vNyFbQMKqzqbAvPSTOeoYtEDI0PODhQK9GZZec= Subject key identifier: 0A:20:37:1B:0C:0A:3F:7E:22:95:3F:0A:01:08:75:97:16:3D:2F:C2 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 34 Signing time: Fri 05 Dec 2025 05:28:20 +0000 Manifest this update: Fri 05 Dec 2025 05:28:19 +0000 Manifest next update: Fri 12 Dec 2025 05:28:19 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: rp/F0HI72ev9DQHvVTuINE+cKiu4v1ciZBGKZOtCqek=) 2: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ=) 3: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Tw5k9/cuQwB71OFXRXiv/bwE46v5T5qgIQMcMfV+JV4=) 4: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Dec 5 05:28:19 2025 GMT Not After : Dec 12 05:28:19 2025 GMT Subject: CN=69326d73-b13c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:62:0a:40:7d:a7:36:ed:41:3c:f0:aa:a5:f6: 56:b2:bf:02:1e:3e:e9:a9:28:b5:08:00:cb:e6:23: fb:29:bf:fc:5c:82:87:cf:5f:d9:32:13:fd:f0:9d: 9c:78:0a:32:82:ea:cc:11:b9:91:41:17:62:66:aa: 3f:70:57:e8:74:8a:83:72:3d:98:17:f4:64:73:ed: 75:a7:71:24:d1:b3:a1:d1:4f:94:b1:fe:75:59:1e: 5d:f5:7c:b1:79:ff:46:56:88:77:3c:3b:01:94:8b: 78:f5:e8:74:a4:1c:a1:4d:45:cf:7f:1c:1b:ed:9c: 7e:09:68:66:a3:4f:a7:f4:80:8c:fd:24:0a:41:a6: 4d:c2:1d:6d:63:6c:2b:5f:90:2c:89:83:8a:e0:75: e3:f9:86:50:8d:95:0f:b7:ad:b5:00:7d:ad:3c:49: 1d:74:40:5d:ee:00:a8:0a:1b:c1:ab:40:bc:3b:c5: a1:92:1d:30:56:de:96:08:c9:fc:97:0c:c4:8f:3b: d2:9c:39:64:fa:52:76:49:b7:5e:44:5c:31:e0:17: 4b:55:f4:5c:ae:9a:fa:d7:fc:27:73:1a:07:90:45: 47:c8:e2:41:18:15:40:7f:6b:cc:7e:b7:03:00:b3: 98:d0:fa:7a:6b:24:82:e0:ff:60:bd:b1:ac:28:10: 4b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:20:37:1B:0C:0A:3F:7E:22:95:3F:0A:01:08:75:97:16:3D:2F:C2 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:42:f5:4c:cb:48:c8:dc:00:89:7f:e6:d3:ec:ea:b8:bb:a8: 89:4b:f1:05:82:3b:cf:07:71:66:8b:e3:99:56:35:35:5e:96: 25:39:45:f5:28:7a:7f:4a:c4:0d:74:d6:5d:0b:8f:c4:0a:ef: 7e:63:b6:17:40:ce:f1:e8:cf:ae:a2:d5:6d:f1:45:52:3c:0d: 5e:1c:87:58:f3:da:f1:89:16:90:de:2a:35:a2:1e:80:c3:a0: 17:b3:2d:dd:5d:b7:03:46:50:01:b2:16:ed:72:2c:95:43:e3: d1:17:41:72:d2:4d:b4:96:40:a9:e3:b8:f3:0a:60:cb:1f:b6: 27:6e:35:1e:17:17:59:b6:8d:02:92:61:f2:62:2e:a5:1e:4d: bb:c3:6f:35:d3:ff:37:83:67:2d:04:77:84:65:90:78:ef:57: 32:3e:23:8c:83:b1:20:f2:7e:6e:49:97:18:a2:68:89:f0:06: 8b:2b:71:0a:ae:32:80:d8:b6:39:24:67:0a:e1:ab:2c:16:b4: a4:4b:b0:82:a8:ca:21:80:7a:4a:c2:80:b9:51:60:1d:ab:a6: 84:d8:ae:dc:2f:8f:1d:91:58:b3:30:7e:a4:7f:28:f9:df:0b: 57:cc:4a:e4:3b:29:26:48:e2:53:39:82:23:ca:fd:bd:48:1e: dc:ff:c7:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTEyMDUwNTI4MTlaFw0yNTEyMTIwNTI4MTlaMBgxFjAUBgNV BAMTDTY5MzI2ZDczLWIxM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkYgpAfac27UE88Kql9layvwIePumpKLUIAMvmI/spv/xcgofPX9kyE/3wnZx4 CjKC6swRuZFBF2Jmqj9wV+h0ioNyPZgX9GRz7XWncSTRs6HRT5Sx/nVZHl31fLF5 /0ZWiHc8OwGUi3j16HSkHKFNRc9/HBvtnH4JaGajT6f0gIz9JApBpk3CHW1jbCtf kCyJg4rgdeP5hlCNlQ+3rbUAfa08SR10QF3uAKgKG8GrQLw7xaGSHTBW3pYIyfyX DMSPO9KcOWT6UnZJt15EXDHgF0tV9FyumvrX/CdzGgeQRUfI4kEYFUB/a8x+twMA s5jQ+nprJILg/2C9sawoEEtxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCiA3GwwK P34ilT8KAQh1lxY9L8IwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACJC9UzLSMjcAIl/5tPs6ri7qIlL8QWCO88HcWaL45lWNTVeliU5RfUo en9KxA101l0Lj8QK735jthdAzvHoz66i1W3xRVI8DV4ch1jz2vGJFpDeKjWiHoDD oBezLd1dtwNGUAGyFu1yLJVD49EXQXLSTbSWQKnjuPMKYMsftiduNR4XF1m2jQKS YfJiLqUeTbvDbzXT/zeDZy0Ed4RlkHjvVzI+I4yDsSDyfm5JlxiiaInwBosrcQqu MoDYtjkkZwrhqywWtKRLsIKoyiGAekrCgLlRYB2rpoTYrtwvjx2RWLMwfqR/KPnf C1fMSuQ7KSZI4lM5giPK/b1IHtz/x70= -----END CERTIFICATE-----Generated at Sat Dec 6 22:12:06 2025 by rpki-client