This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: m8TFwwEgommTC7heOTXPdu2ixFvlzl+nmhEUFRNTSfg= Subject key identifier: 5C:C4:56:BF:AF:CF:A7:62:04:4A:3F:E9:F4:23:BC:A8:63:66:E9:0D Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: CF Signing time: Fri 05 Dec 2025 03:44:37 +0000 Manifest this update: Fri 05 Dec 2025 03:44:37 +0000 Manifest next update: Fri 12 Dec 2025 03:44:37 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: /axGdCSQnWFEmZ0wdSPPB06ny9ugQQNW86tC2m10voU=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: Z1yPOrOVBAA0wAoiECPiJ9d5WH/bmXdgM8w0h3GaBUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Dec 5 03:44:37 2025 GMT Not After : Dec 12 03:44:37 2025 GMT Subject: CN=69325525-8335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2a:4c:a9:69:2a:d5:a6:1e:5c:4b:16:9e:bc: 1c:63:3b:1d:6d:52:8a:f6:ee:7a:a3:2b:c5:6c:6b: a8:10:1e:6b:e4:22:f5:ed:06:51:e1:57:aa:a2:16: 88:2f:66:b7:71:90:38:01:ce:c1:73:a1:f3:fe:3f: 6a:3d:ac:d9:19:d2:78:c4:6a:d7:56:e4:f4:1b:2c: 23:86:a7:be:e9:f7:ec:70:f5:92:14:ca:35:74:8b: 5e:e6:9e:8d:c9:8b:ac:66:5d:23:1f:32:7b:78:bc: 3c:d6:8e:1b:7a:43:c1:50:94:49:e7:0b:17:58:2f: 16:da:36:bb:1e:f7:36:d2:be:e1:d1:a0:98:80:dd: 43:13:8c:3d:22:23:22:22:64:a9:7f:6c:d8:e9:74: a7:69:55:79:81:68:b8:d9:c1:93:6d:fd:cf:9e:d2: 35:e4:8d:a0:d1:ba:98:81:43:9f:bd:f6:db:fd:2c: 46:63:10:4b:59:25:49:ec:b8:03:06:4d:6d:5f:cb: 4d:d1:2e:f9:9c:24:fd:37:f8:33:b4:8f:98:29:a0: 83:a8:88:f6:b5:67:e5:cf:8f:3a:b7:a0:06:f5:d3: 1a:3c:7b:77:75:d6:e1:16:33:ee:91:ef:e0:71:54: 0b:9c:73:be:e5:5c:2b:8f:56:e4:34:b0:53:3c:8f: c8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C4:56:BF:AF:CF:A7:62:04:4A:3F:E9:F4:23:BC:A8:63:66:E9:0D X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:36:a2:1f:2d:d3:fe:8d:4f:50:fb:9d:04:1c:64:a2:1f:fa: 32:8f:ce:f7:e3:a2:62:44:8c:b5:36:27:0a:42:e8:55:7b:43: 69:7e:f2:8a:b4:3f:a2:be:f9:b7:f1:b6:4e:89:e2:fb:cb:3d: 8d:34:08:24:76:2e:91:ec:58:af:52:ec:64:0a:a4:29:60:11: 07:ee:16:16:ea:19:16:1f:fd:2a:e6:64:50:74:8e:cc:94:d0: c7:b0:76:6a:4e:92:78:bf:ce:dc:3c:f5:6f:a4:cb:fa:9c:00: ec:63:59:5d:a9:5f:b2:9c:1a:03:3f:b8:9c:0a:92:a6:4a:4e: 53:14:e1:cc:d7:21:91:dc:6b:71:aa:36:7a:4a:cd:f8:4d:31: 6f:53:0b:05:e5:8a:10:0d:7a:06:22:46:9d:b8:59:32:5c:93: 65:c3:67:95:4f:1f:1d:79:aa:a4:ce:28:3a:b2:c4:f4:30:92: 47:18:f4:66:ab:05:21:1f:e6:6a:e2:d9:18:21:fc:96:96:9e: 5a:3a:fb:cd:6f:08:62:73:16:a4:ff:20:fe:29:8c:c5:b4:40: 72:a2:21:11:2d:a6:c5:a9:ab:aa:c2:10:6e:a9:b0:06:ca:1a: 3d:f4:52:93:15:75:0e:34:04:0d:08:9e:f0:8f:2a:d3:b7:6a: 49:37:43:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjUxMjA1MDM0NDM3WhcNMjUxMjEyMDM0NDM3WjAYMRYwFAYD VQQDEw02OTMyNTUyNS04MzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SpMqWkq1aYeXEsWnrwcYzsdbVKK9u56oyvFbGuoEB5r5CL17QZR4VeqohaI L2a3cZA4Ac7Bc6Hz/j9qPazZGdJ4xGrXVuT0Gywjhqe+6ffscPWSFMo1dIte5p6N yYusZl0jHzJ7eLw81o4bekPBUJRJ5wsXWC8W2ja7Hvc20r7h0aCYgN1DE4w9IiMi ImSpf2zY6XSnaVV5gWi42cGTbf3PntI15I2g0bqYgUOfvfbb/SxGYxBLWSVJ7LgD Bk1tX8tN0S75nCT9N/gztI+YKaCDqIj2tWflz486t6AG9dMaPHt3ddbhFjPuke/g cVQLnHO+5Vwrj1bkNLBTPI/IYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzEVr+v z6diBEo/6fQjvKhjZukNMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdNqIfLdP+jU9Q+50EHGSiH/oyj87346JiRIy1NicKQuhVe0NpfvKK tD+ivvm38bZOieL7yz2NNAgkdi6R7FivUuxkCqQpYBEH7hYW6hkWH/0q5mRQdI7M lNDHsHZqTpJ4v87cPPVvpMv6nADsY1ldqV+ynBoDP7icCpKmSk5TFOHM1yGR3Gtx qjZ6Ss34TTFvUwsF5YoQDXoGIkaduFkyXJNlw2eVTx8deaqkzig6ssT0MJJHGPRm qwUhH+Zq4tkYIfyWlp5aOvvNbwhicxak/yD+KYzFtEByoiERLabFqauqwhBuqbAG yho99FKTFXUONAQNCJ7wjyrTt2pJN0M0 -----END CERTIFICATE-----Generated at Sat Dec 6 22:03:13 2025 by rpki-client