This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft File: H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft (raw, json) Hash identifier: Pjel8KCpihOT4yQ0qm+PuE9Zs1kXaaFZtnR55uH7P0c= Subject key identifier: 04:BA:64:EC:36:DE:A9:D8:51:EA:E9:73:79:67:35:84:8F:1C:AB:7C Authority key identifier: 1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 Certificate issuer: /CN=A91C3ED8/serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft Manifest number: 0232 Signing time: Fri 05 Dec 2025 00:18:38 +0000 Manifest this update: Fri 05 Dec 2025 00:18:38 +0000 Manifest next update: Fri 12 Dec 2025 00:18:38 +0000 Files and hashes: 1: H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl (hash: oCMlKAoR1iuJuN9IlHSMpg6mR8YKSeoFEnz0XKAdTug=) 2: 51CC97DE72D711ED95179B5EC4F9AE02.roa (hash: k1Zwpv5X+PU26A87kFtIjFMNyUjqNWGBGW/MolkeBNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ED8, serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Validity Not Before: Dec 5 00:18:38 2025 GMT Not After : Dec 12 00:18:38 2025 GMT Subject: CN=693224de-d908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:49:6a:e6:2f:95:5c:72:08:73:95:83:59:c4: cc:b4:34:d5:4e:d4:a8:8d:b7:22:59:21:8d:2a:20: 70:a5:d9:d9:df:37:29:66:a6:79:31:59:bf:59:90: 66:f3:be:f5:36:d5:d9:61:bd:1a:46:be:f7:44:dd: 29:fe:c5:98:cf:b0:ed:dd:3e:38:4a:7a:73:ec:01: 91:08:67:c4:70:46:45:5f:57:f6:85:d6:c4:fa:a3: b4:29:6f:9b:e8:6a:75:26:96:93:74:0c:05:2d:1b: 63:c4:1e:86:a5:d4:fc:c2:e4:66:cf:ad:28:45:da: 98:fc:74:a9:40:9e:d9:ca:73:5e:4f:a1:7c:eb:19: 37:e1:f8:a8:88:f7:52:cb:71:15:90:83:a4:f6:32: 8e:cd:d8:14:77:c5:10:9b:cc:05:c1:5a:1c:69:91: 59:96:3e:03:21:01:63:72:05:5d:3b:b5:53:fd:eb: 34:f0:b0:e6:0a:22:30:3a:8d:2c:05:4d:a1:e2:18: 6a:e9:1f:62:18:33:56:0b:6c:4e:ae:2a:17:30:21: c4:9a:45:26:20:a2:ec:5a:31:d4:f7:b2:1b:e4:a7: be:a8:85:f9:e0:88:9c:82:cc:08:26:28:e5:4f:f2: bb:f3:de:ea:14:61:d3:6b:d9:c1:16:e6:38:39:ae: 76:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BA:64:EC:36:DE:A9:D8:51:EA:E9:73:79:67:35:84:8F:1C:AB:7C X509v3 Authority Key Identifier: keyid:1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:43:d3:37:d7:a2:bd:39:5f:26:7f:25:1b:06:27:54:8b:46: 86:3d:98:0e:f8:f9:2a:33:21:26:63:81:b1:6e:04:57:df:de: 58:9a:27:17:d3:40:4f:b3:7c:28:45:c4:4a:b9:e9:be:09:09: d4:23:80:19:2b:3d:1f:5f:ec:36:ee:ca:9e:94:65:84:12:ef: d4:1d:b7:cb:04:45:0a:30:05:69:ee:bb:3c:0a:7a:bf:1f:7c: 9f:fd:22:a7:06:30:39:83:b6:e8:33:64:26:9d:da:77:a0:f0: a6:00:a9:91:68:36:f0:31:8c:a8:23:00:54:80:34:59:f7:d9: 55:77:86:b5:4c:bf:83:aa:fa:cd:06:95:66:a6:83:ad:40:7a: ba:e6:d7:c4:56:2a:ce:db:97:64:cd:4b:f8:cd:ee:04:22:69: 9f:fb:7e:9a:e0:2a:f3:83:9a:5a:07:d3:44:e9:a7:04:ea:cd: 62:d7:4f:2b:c8:64:5a:df:e7:8d:0c:64:cf:12:e5:ae:f1:08: 37:d1:d7:c2:ac:44:38:7e:68:2c:14:4f:a6:6e:5d:54:90:53: c7:81:a3:56:29:49:11:eb:2b:6a:70:45:5f:b6:3e:60:a0:97: e4:31:4d:da:eb:45:25:8f:bb:3d:22:2d:3e:73:f0:02:f6:95: 3d:f5:cb:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNFRDgxMTAvBgNVBAUTKDFGREY4OEIzNTlGNDQ4RUQ0QzcxMkY5RjE1N0QwODND QzIxMTRDMTQwHhcNMjUxMjA1MDAxODM4WhcNMjUxMjEyMDAxODM4WjAYMRYwFAYD VQQDEw02OTMyMjRkZS1kOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApElq5i+VXHIIc5WDWcTMtDTVTtSojbciWSGNKiBwpdnZ3zcpZqZ5MVm/WZBm 8771NtXZYb0aRr73RN0p/sWYz7Dt3T44Snpz7AGRCGfEcEZFX1f2hdbE+qO0KW+b 6Gp1JpaTdAwFLRtjxB6GpdT8wuRmz60oRdqY/HSpQJ7ZynNeT6F86xk34fioiPdS y3EVkIOk9jKOzdgUd8UQm8wFwVocaZFZlj4DIQFjcgVdO7VT/es08LDmCiIwOo0s BU2h4hhq6R9iGDNWC2xOrioXMCHEmkUmIKLsWjHU97Ib5Ke+qIX54IicgswIJijl T/K7897qFGHTa9nBFuY4Oa52xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS6ZOw2 3qnYUerpc3lnNYSPHKt8MB8GA1UdIwQYMBaAFB/fiLNZ9EjtTHEvnxV9CDzCEUwU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0VEOC8zQzU1MzNBRTcy RDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNPMU1jUy1mRlgwSVBNSVJU QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5LUlzMW4wU08xTWNTLWZGWDBJUE1JUlRCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0VEOC8zQzU1MzNBRTcyRDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNP MU1jUy1mRlgwSVBNSVJUQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBQ9M316K9OV8mfyUbBidUi0aGPZgO+PkqMyEmY4GxbgRX395YmicX 00BPs3woRcRKuem+CQnUI4AZKz0fX+w27sqelGWEEu/UHbfLBEUKMAVp7rs8Cnq/ H3yf/SKnBjA5g7boM2Qmndp3oPCmAKmRaDbwMYyoIwBUgDRZ99lVd4a1TL+DqvrN BpVmpoOtQHq65tfEVirO25dkzUv4ze4EImmf+36a4Crzg5paB9NE6acE6s1i108r yGRa3+eNDGTPEuWu8Qg30dfCrEQ4fmgsFE+mbl1UkFPHgaNWKUkR6ytqcEVftj5g oJfkMU3a60Ulj7s9Ii0+c/AC9pU99ctD -----END CERTIFICATE-----Generated at Sat Dec 6 12:37:49 2025 by rpki-client