This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: LlxkEFs8cC2/ZHjY7d1XJAKSVRLQqAkIWPRBj9Y/6l0= Subject key identifier: 9E:0B:08:AE:0A:4E:55:DE:96:70:B6:12:2F:8D:B0:B3:C2:B3:0A:FD Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 06F7 Signing time: Sat 06 Dec 2025 20:56:14 +0000 Manifest this update: Sat 06 Dec 2025 20:56:13 +0000 Manifest next update: Sat 13 Dec 2025 20:56:13 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: tpWzvND5sHxO0bWz4kiaXbCx+yBp+jvAsVtqYRmlobQ=) 2: 535436609D0511F0BAF1837CC4F9AE02.roa (hash: 5BOUZnIceKppG/eOWr9McqTQMkFI46F0FXPhmOPQ3MY=) 3: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: Td9ZRXmDLCaOWu5C2VPY0G2nu6GZr9orup/Cn82OpN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Dec 6 20:56:13 2025 GMT Not After : Dec 13 20:56:13 2025 GMT Subject: CN=6934986e-98c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:4b:75:75:0c:01:e7:24:14:d7:ed:ee:78: b6:5f:67:4c:37:51:6f:13:b0:a5:0d:4f:06:77:7b: c9:da:3d:54:f6:70:fc:06:63:72:cb:38:29:91:9b: b8:97:15:0d:c2:0c:fd:26:a8:86:73:49:0c:ef:8b: 44:6d:9d:51:50:dd:cb:78:c5:52:2e:f0:87:54:14: 0c:8e:06:25:37:0a:dd:d0:90:ec:af:9d:05:a0:76: 7b:a1:c1:8b:e8:10:bc:b0:a6:ff:f1:05:97:a0:54: 88:e2:5c:f0:53:f8:ec:2a:a5:02:c4:7a:e4:dc:84: 88:ea:e4:5e:ae:04:34:a0:d2:e8:d3:31:3c:87:ab: 30:95:9f:6f:3e:41:dc:a5:d9:20:87:a9:5f:90:f9: d3:2d:a1:7a:8c:4d:0f:34:db:a0:80:78:8a:d4:4d: 72:59:ef:67:97:54:79:36:0e:8f:fc:15:65:c0:fd: e0:3b:6b:92:80:d2:09:82:4c:9a:78:1e:fc:88:61: 7e:9c:bd:5c:b3:dd:f1:ae:e0:28:cd:39:2b:b5:34: 51:44:44:b3:ae:6b:01:00:bb:af:b2:1d:38:98:e1: a5:44:87:ee:27:35:a1:01:f4:83:50:5d:9c:04:8b: 1e:02:1b:e2:34:1f:f1:83:2e:da:dc:f4:6f:4b:56: 69:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0B:08:AE:0A:4E:55:DE:96:70:B6:12:2F:8D:B0:B3:C2:B3:0A:FD X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:0b:a2:07:86:27:03:2d:4d:cf:e1:cf:c1:9a:9c:ec:eb:81: b0:e8:32:af:ad:55:63:05:52:96:6b:27:4f:7a:d8:da:86:4e: f7:8b:a2:96:c6:b8:29:b3:30:8b:2e:15:f3:46:ad:92:a2:ee: 6e:d7:52:2d:1e:0c:77:11:86:13:b8:d6:8a:32:78:ea:41:7b: e9:07:2d:e3:11:ad:01:55:85:bb:42:51:86:07:38:a5:c0:72: 06:49:ca:ea:14:b9:df:d5:e5:1c:a6:df:67:41:f3:d0:26:7b: 0f:5b:6e:02:95:9d:c5:a7:45:55:08:36:5c:4e:98:d6:f0:1f: e3:b2:62:47:3a:c1:dd:41:23:21:fb:3d:fb:9f:7d:b0:9f:73: 85:51:86:07:61:bf:cb:56:ce:95:38:ed:a2:33:56:c0:c7:a1: 10:4c:16:f9:b2:e6:b4:80:c6:5e:cd:69:d2:05:21:2a:f8:b9: 77:e2:6c:f9:fa:e5:35:a1:14:74:f9:39:65:6a:18:54:08:77: 04:75:47:5d:16:71:6f:0e:12:a7:92:f5:af:09:d4:ec:c6:9b: a0:0f:a9:67:ec:67:12:d8:94:e9:b9:f5:75:37:6d:e9:4c:15: 7b:8d:f6:32:f4:ca:05:9c:e2:2b:a0:58:49:78:53:7d:a9:20: 50:01:3a:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjUxMjA2MjA1NjEzWhcNMjUxMjEzMjA1NjEzWjAYMRYwFAYD VQQDEw02OTM0OTg2ZS05OGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRdLdXUMAeckFNft7ni2X2dMN1FvE7ClDU8Gd3vJ2j1U9nD8BmNyyzgpkZu4 lxUNwgz9JqiGc0kM74tEbZ1RUN3LeMVSLvCHVBQMjgYlNwrd0JDsr50FoHZ7ocGL 6BC8sKb/8QWXoFSI4lzwU/jsKqUCxHrk3ISI6uRergQ0oNLo0zE8h6swlZ9vPkHc pdkgh6lfkPnTLaF6jE0PNNuggHiK1E1yWe9nl1R5Ng6P/BVlwP3gO2uSgNIJgkya eB78iGF+nL1cs93xruAozTkrtTRRRESzrmsBALuvsh04mOGlRIfuJzWhAfSDUF2c BIseAhviNB/xgy7a3PRvS1ZpmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4LCK4K TlXelnC2Ei+NsLPCswr9MB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOC6IHhicDLU3P4c/Bmpzs64Gw6DKvrVVjBVKWaydPetjahk73i6KW xrgpszCLLhXzRq2Sou5u11ItHgx3EYYTuNaKMnjqQXvpBy3jEa0BVYW7QlGGBzil wHIGScrqFLnf1eUcpt9nQfPQJnsPW24ClZ3Fp0VVCDZcTpjW8B/jsmJHOsHdQSMh +z37n32wn3OFUYYHYb/LVs6VOO2iM1bAx6EQTBb5sua0gMZezWnSBSEq+Ll34mz5 +uU1oRR0+TllahhUCHcEdUddFnFvDhKnkvWvCdTsxpugD6ln7GcS2JTpufV1N23p TBV7jfYy9MoFnOIroFhJeFN9qSBQATqR -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:52 2025 by rpki-client