This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft File: xHENSLTk8rc1vksbXJDtuI0mmyw.mft (raw, json) Hash identifier: nHIer7pGPbX8uTWcjcnmgVA/Km/0h1oaHx+UcWZGzLY= Subject key identifier: 67:46:B5:CE:18:A2:CB:21:95:AE:7C:19:7E:55:2B:6D:A0:AD:AE:35 Authority key identifier: C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C Certificate issuer: /CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft Manifest number: 0223 Signing time: Fri 05 Dec 2025 00:25:27 +0000 Manifest this update: Fri 05 Dec 2025 00:25:27 +0000 Manifest next update: Fri 12 Dec 2025 00:25:27 +0000 Files and hashes: 1: xHENSLTk8rc1vksbXJDtuI0mmyw.crl (hash: R13VdLkGfdK5Kd3jIgCQA7KyPS5FzN8TE1I546uuTfs=) 2: 0DC2D3EC8D7A11EDBFA7C381C4F9AE02.roa (hash: 7pCgR/cmZIc+p6bdyfOA8oW1wmow9QO2brSMHQOnEk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC2E3, serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Validity Not Before: Dec 5 00:25:27 2025 GMT Not After : Dec 12 00:25:27 2025 GMT Subject: CN=69322677-2c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b9:30:a2:5b:3e:77:01:37:4f:30:d3:42:09: e9:cf:ae:49:0c:a2:f1:75:1b:57:ad:98:b3:e4:e6: 1c:6b:2d:a8:51:ef:fa:89:87:8f:fe:e4:b7:78:4b: ef:3b:12:6c:26:5c:c8:95:0c:d6:e2:13:7e:2a:32: 64:13:8c:69:d7:74:8a:ad:99:5d:be:34:1a:02:72: ff:23:fa:b4:b2:d0:87:09:9d:9c:1d:3b:7b:9f:04: ad:23:ab:45:da:d9:d3:db:6d:e1:8b:72:bc:06:8b: 6f:e7:eb:7d:fb:2f:9c:2d:b7:8a:23:82:98:82:7c: 26:f2:00:22:e2:0f:6b:5c:c6:d4:26:98:8e:3a:ee: 88:a1:ee:72:25:9b:a5:91:82:78:55:20:d7:c5:fa: e7:c4:1d:e5:38:1f:a2:f9:9b:ab:f1:bb:e4:a8:83: 4a:d2:13:c1:13:04:0d:a4:b2:1c:ec:20:cc:bc:89: 01:92:fe:68:ed:89:61:ab:70:a2:2b:55:99:39:a5: 5b:a6:fa:ef:a6:1f:dd:76:f3:d0:47:5b:c0:ac:e0: e3:5e:2b:ef:c2:02:34:ea:63:e2:54:ad:c4:09:fa: 00:f7:a5:71:c3:0d:b0:dd:ca:90:4a:80:81:a1:15: 52:73:bf:40:35:5e:d4:11:bd:86:ba:8a:d1:e2:b3: 32:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:46:B5:CE:18:A2:CB:21:95:AE:7C:19:7E:55:2B:6D:A0:AD:AE:35 X509v3 Authority Key Identifier: keyid:C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:55:fe:13:98:c3:13:a5:68:64:95:db:1f:84:13:c1:d6:d9: 15:46:ca:79:6d:04:e3:af:ff:dd:71:26:a1:a7:4f:88:2b:b0: 67:88:be:50:ae:c7:75:92:15:8f:47:41:37:12:85:d5:6e:aa: c3:bb:1a:64:77:71:50:a4:56:39:2d:60:f9:86:d3:2e:3c:b2: 53:ec:05:5d:76:30:9e:68:62:ab:6c:e0:29:c2:17:37:e1:96: 92:14:37:39:9c:84:89:b1:24:70:70:83:87:cc:08:1d:55:d9: 41:86:f3:fb:30:97:80:c1:f1:ce:31:38:5f:dd:0f:36:0b:4a: 41:97:ce:e0:16:5d:8a:eb:2c:06:7d:b4:b9:8c:f4:d9:e8:03: 14:57:ef:92:87:8e:04:4b:10:0b:cc:b6:71:9d:c0:e4:89:8d: 79:52:4a:1f:a0:51:bf:66:bd:03:92:bf:d2:87:74:88:20:76: e5:28:9d:a4:0c:bf:2f:96:64:46:2a:58:33:3e:c0:f7:4a:cc: 19:45:80:2d:0e:a8:9b:2b:4f:a5:6b:7f:33:02:b7:d8:47:a9: 77:f7:b7:01:81:a3:02:ca:ea:4e:5c:68:89:02:9d:a6:01:8d: 1c:f2:e4:55:42:db:c3:96:26:31:5b:e3:c4:99:7d:78:78:d4: d2:15:ad:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyRTMxMTAvBgNVBAUTKEM0NzEwRDQ4QjRFNEYyQjczNUJFNEIxQjVDOTBFREI4 OEQyNjlCMkMwHhcNMjUxMjA1MDAyNTI3WhcNMjUxMjEyMDAyNTI3WjAYMRYwFAYD VQQDEw02OTMyMjY3Ny0yYzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbkwols+dwE3TzDTQgnpz65JDKLxdRtXrZiz5OYcay2oUe/6iYeP/uS3eEvv OxJsJlzIlQzW4hN+KjJkE4xp13SKrZldvjQaAnL/I/q0stCHCZ2cHTt7nwStI6tF 2tnT223hi3K8Botv5+t9+y+cLbeKI4KYgnwm8gAi4g9rXMbUJpiOOu6Ioe5yJZul kYJ4VSDXxfrnxB3lOB+i+Zur8bvkqINK0hPBEwQNpLIc7CDMvIkBkv5o7Ylhq3Ci K1WZOaVbpvrvph/ddvPQR1vArODjXivvwgI06mPiVK3ECfoA96Vxww2w3cqQSoCB oRVSc79ANV7UEb2GuorR4rMyWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdGtc4Y osshla58GX5VK22gra41MB8GA1UdIwQYMBaAFMRxDUi05PK3Nb5LG1yQ7biNJpss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzJFMy85QjRBNDg5MDg5 QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhyYzF2a3NiWEpEdHVJMG1t eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIRU5TTFRrOHJjMXZrc2JYSkR0dUkwbW15dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzJFMy85QjRBNDg5MDg5QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhy YzF2a3NiWEpEdHVJMG1teXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGVf4TmMMTpWhkldsfhBPB1tkVRsp5bQTjr//dcSahp0+IK7BniL5Q rsd1khWPR0E3EoXVbqrDuxpkd3FQpFY5LWD5htMuPLJT7AVddjCeaGKrbOApwhc3 4ZaSFDc5nISJsSRwcIOHzAgdVdlBhvP7MJeAwfHOMThf3Q82C0pBl87gFl2K6ywG fbS5jPTZ6AMUV++Sh44ESxALzLZxncDkiY15UkofoFG/Zr0Dkr/Sh3SIIHblKJ2k DL8vlmRGKlgzPsD3SswZRYAtDqibK0+la38zArfYR6l397cBgaMCyupOXGiJAp2m AY0c8uRVQtvDliYxW+PEmX14eNTSFa1Z -----END CERTIFICATE-----Generated at Sat Dec 6 13:34:16 2025 by rpki-client