This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: OaaAGyeN3rbkRsHhQUn7vO6i3LHRJlo6AG+82qu9cXo= Subject key identifier: 2B:FF:B4:4F:44:3B:85:AA:B0:ED:80:37:32:E6:9E:42:11:CF:D5:AC Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0C0A Signing time: Sat 06 Dec 2025 18:08:09 +0000 Manifest this update: Sat 06 Dec 2025 18:08:08 +0000 Manifest next update: Sat 13 Dec 2025 18:08:08 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: HeYlvGypOQhpBXb+5NxJyuiWKbJVnifhN07zQETdNYQ=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3096 (0xc18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Dec 6 18:08:08 2025 GMT Not After : Dec 13 18:08:08 2025 GMT Subject: CN=69347109-a48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:10:f0:00:5e:73:e3:0c:37:c7:00:82:39:c7: 1f:6f:48:7e:59:d4:f5:53:ca:d6:b0:1e:1f:af:e4: cd:41:52:a7:d0:3d:63:1b:9d:1e:d9:c0:59:07:47: 25:15:c2:6b:51:d8:09:3f:1d:0d:c5:2e:22:07:d6: d8:88:e0:db:1a:13:04:19:d1:8a:b5:bb:78:76:02: 12:c7:e7:1e:34:c8:70:60:68:79:7b:97:2c:dd:a5: b7:76:ec:34:70:c9:c0:ca:a5:40:2a:81:96:c8:aa: b9:3a:9b:ca:83:8b:ba:b4:db:33:8f:9f:d9:02:c3: e5:02:ce:e8:3e:b0:1b:9e:7c:05:e1:c6:b8:3f:2c: 8c:11:b2:92:4b:00:cf:b3:f2:c1:25:e7:27:18:c5: 85:be:e6:f9:34:f9:d6:b6:d8:bb:bf:e6:64:83:c6: 2f:48:98:d2:94:e8:62:2d:8d:6c:79:47:2f:9b:e2: 0f:03:e2:2a:4d:bd:30:28:47:60:2e:26:b3:dd:26: d0:c0:19:15:b8:65:31:19:50:73:b5:1c:5c:df:09: 7c:7b:ee:81:c4:83:57:f2:2c:4a:be:fe:be:fa:1b: 63:d3:e8:9d:08:d6:97:9f:3c:ea:76:cc:53:25:46: 6a:59:b4:1d:e9:87:25:7a:a1:8b:fb:60:1d:0f:40: ee:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FF:B4:4F:44:3B:85:AA:B0:ED:80:37:32:E6:9E:42:11:CF:D5:AC X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c9:66:b6:bd:6a:aa:ff:e3:15:bf:f7:0d:92:97:fb:f7:08: 46:c1:10:52:fe:7d:09:9a:4e:b1:8c:f5:2a:e2:ae:b9:37:30: d7:de:0d:c9:91:46:8f:f5:e1:79:1c:59:c0:38:0a:b6:30:54: 3c:57:7c:58:f1:22:00:37:67:48:9b:39:ee:95:ab:c7:2b:b8: fc:75:87:14:04:32:56:57:32:da:2f:a9:8b:07:94:d6:1e:95: 76:65:bf:0f:63:64:f2:6b:92:4d:41:d3:65:36:a0:f4:3a:f6: 11:01:24:89:6b:48:80:06:e9:80:e8:84:a4:3c:6f:73:04:8e: 90:9f:ac:63:a7:9d:11:cd:98:71:f3:66:da:da:30:5f:5b:0e: 0c:51:96:02:fc:c8:50:58:54:b0:dd:bf:ca:ad:c3:f2:a6:0b: e1:80:17:c5:98:e4:75:db:61:2e:9c:eb:53:7b:a6:f7:6f:8d: 2e:ce:59:0c:ae:1e:7a:9f:c2:bf:68:7a:ad:59:d3:44:ff:12: ca:2b:ff:83:04:b8:6d:d2:a3:a2:52:fc:bb:c6:02:10:25:e8: f7:90:93:6d:06:87:6e:5f:44:f3:5d:84:b5:9e:aa:c7:bb:80: 3b:dd:99:10:29:63:bc:c4:fc:98:c0:4e:af:fc:14:15:99:78: 0b:c6:4e:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUxMjA2MTgwODA4WhcNMjUxMjEzMTgwODA4WjAYMRYwFAYD VQQDEw02OTM0NzEwOS1hNDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBDwAF5z4ww3xwCCOccfb0h+WdT1U8rWsB4fr+TNQVKn0D1jG50e2cBZB0cl FcJrUdgJPx0NxS4iB9bYiODbGhMEGdGKtbt4dgISx+ceNMhwYGh5e5cs3aW3duw0 cMnAyqVAKoGWyKq5OpvKg4u6tNszj5/ZAsPlAs7oPrAbnnwF4ca4PyyMEbKSSwDP s/LBJecnGMWFvub5NPnWtti7v+Zkg8YvSJjSlOhiLY1seUcvm+IPA+IqTb0wKEdg Liaz3SbQwBkVuGUxGVBztRxc3wl8e+6BxINX8ixKvv6++htj0+idCNaXnzzqdsxT JUZqWbQd6YcleqGL+2AdD0DuQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCv/tE9E O4WqsO2ANzLmnkIRz9WsMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmyWa2vWqq/+MVv/cNkpf79whGwRBS/n0Jmk6xjPUq4q65NzDX3g3J kUaP9eF5HFnAOAq2MFQ8V3xY8SIAN2dImznulavHK7j8dYcUBDJWVzLaL6mLB5TW HpV2Zb8PY2Tya5JNQdNlNqD0OvYRASSJa0iABumA6ISkPG9zBI6Qn6xjp50RzZhx 82ba2jBfWw4MUZYC/MhQWFSw3b/KrcPypgvhgBfFmOR122EunOtTe6b3b40uzlkM rh56n8K/aHqtWdNE/xLKK/+DBLht0qOiUvy7xgIQJej3kJNtBoduX0TzXYS1nqrH u4A73ZkQKWO8xPyYwE6v/BQVmXgLxk7M -----END CERTIFICATE-----Generated at Sat Dec 6 21:46:16 2025 by rpki-client