This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft File: hXm-LYNFaC8nrucGK71O92ZOVxs.mft (raw, json) Hash identifier: jgLp93Solta+0oBfxI0ITrjSKcXfdSncP8cwLTyaUaI= Subject key identifier: 3B:0F:10:DA:90:FB:9A:32:8A:40:3F:2E:3E:8A:F6:BA:08:B9:EE:22 Authority key identifier: 85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B Certificate issuer: /CN=A91D0B6B/serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft Manifest number: 8C Signing time: Fri 05 Dec 2025 04:32:09 +0000 Manifest this update: Fri 05 Dec 2025 04:32:08 +0000 Manifest next update: Fri 12 Dec 2025 04:32:08 +0000 Files and hashes: 1: hXm-LYNFaC8nrucGK71O92ZOVxs.crl (hash: BBfMDiYsfWaRi7jx5X0/QbXvXS+pHS32cnSQAbiwu+A=) 2: 73DC435A39F511F09F296862C4F9AE02.roa (hash: v8UVd7Qbh3NtEsQhX1pG9Dfe5py3W8ZuLzV2zz17/Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Validity Not Before: Dec 5 04:32:08 2025 GMT Not After : Dec 12 04:32:08 2025 GMT Subject: CN=69326048-636f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:4f:57:b5:a3:f6:fc:21:84:37:55:e3:45: e4:67:69:5c:f8:18:c0:ae:60:0e:0e:a2:dc:d7:4d: ae:57:08:d9:6a:79:84:d9:4d:21:58:f6:94:a3:60: 0b:56:ed:d7:c4:14:1b:6e:bd:94:62:08:e8:10:87: b2:7b:94:5d:f6:c8:22:0f:74:41:8b:09:6c:c8:a5: 41:10:c3:5e:7b:c6:f0:07:e1:bb:c5:28:c8:c8:2f: 91:5b:22:e0:d0:be:52:80:45:cd:34:81:8a:0b:3f: af:03:bd:d1:15:ac:89:c5:6d:98:31:f4:6f:5d:c6: 68:e1:37:13:6f:79:b7:d4:a1:8b:68:5a:69:4b:fb: 4f:0e:c0:53:51:aa:a8:9a:53:9d:cd:ea:9d:e3:26: bc:cd:69:2d:25:b4:5f:8f:4a:18:17:40:3b:07:6c: 91:19:6b:db:f7:04:4f:ce:2c:25:8d:32:17:d4:be: 68:7f:cd:88:97:a7:95:7c:dc:33:37:80:04:7f:eb: e3:12:27:24:dd:ae:1e:26:5a:d9:23:bb:0d:26:30: 18:85:20:0a:bc:c4:aa:79:85:93:15:86:df:66:5c: 77:f4:59:f7:e9:a8:55:e8:22:d4:0f:99:aa:8c:5f: de:3c:44:ab:0a:28:3e:f6:fe:8f:0d:7b:67:bc:d7: 36:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0F:10:DA:90:FB:9A:32:8A:40:3F:2E:3E:8A:F6:BA:08:B9:EE:22 X509v3 Authority Key Identifier: keyid:85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:a5:0c:03:62:78:35:d6:ac:2d:61:1c:01:db:0b:fd:c9:37: a0:66:0a:2e:fe:01:82:15:87:48:7c:ea:e6:79:48:e4:7e:01: a4:6b:c3:e6:3c:75:71:cf:c2:7c:16:ca:45:89:da:4a:cf:73: ed:66:03:c2:86:76:67:69:9d:93:9d:cf:04:25:8d:86:05:72: 0c:9b:c2:a9:b1:ae:53:83:d2:0f:7e:6f:d0:84:e1:8e:f5:69: e3:d8:6d:5e:ca:40:63:c2:b6:ef:47:cd:51:e0:da:7e:d8:13: 64:bc:df:49:99:a9:14:f2:93:eb:60:89:4e:9d:e4:fe:23:5f: c0:df:9f:5a:ba:c1:5b:88:4e:db:a4:08:8a:fe:89:68:dc:9a: ed:93:38:11:fe:05:ee:67:dc:20:af:58:71:df:6c:5a:ae:af: 53:2f:03:9f:92:aa:9a:74:1f:ac:46:bf:53:ba:32:7a:73:92: 20:cd:90:4b:08:a5:e4:02:48:d2:1d:89:f8:23:1f:a6:85:9d: 6c:de:83:97:a3:7f:a7:43:40:ad:18:b9:b7:2d:ab:5a:e3:80: 5e:69:33:07:14:0e:10:dd:59:2a:6b:70:b7:70:e5:38:a3:65: a2:ab:b9:ed:cd:4a:4c:9c:16:4f:05:39:5a:9a:b3:d2:0b:fc: 44:ec:0b:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNkIxMTAvBgNVBAUTKDg1NzlCRTJEODM0NTY4MkYyN0FFRTcwNjJCQkQ0RUY3 NjY0RTU3MUIwHhcNMjUxMjA1MDQzMjA4WhcNMjUxMjEyMDQzMjA4WjAYMRYwFAYD VQQDEw02OTMyNjA0OC02MzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxJPV7Wj9vwhhDdV40XkZ2lc+BjArmAODqLc102uVwjZanmE2U0hWPaUo2AL Vu3XxBQbbr2UYgjoEIeye5Rd9sgiD3RBiwlsyKVBEMNee8bwB+G7xSjIyC+RWyLg 0L5SgEXNNIGKCz+vA73RFayJxW2YMfRvXcZo4TcTb3m31KGLaFppS/tPDsBTUaqo mlOdzeqd4ya8zWktJbRfj0oYF0A7B2yRGWvb9wRPziwljTIX1L5of82Il6eVfNwz N4AEf+vjEick3a4eJlrZI7sNJjAYhSAKvMSqeYWTFYbfZlx39Fn36ahV6CLUD5mq jF/ePESrCig+9v6PDXtnvNc2vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsPENqQ +5oyikA/Lj6K9roIue4iMB8GA1UdIwQYMBaAFIV5vi2DRWgvJ67nBiu9TvdmTlcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI2Qi83RUMwMDc2Q0ZF M0YxMUVGOEZBMjc3NTJDNEY5QUUwMi9oWG0tTFlORmFDOG5ydWNHSzcxTzkyWk9W eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYbS1MWU5GYUM4bnJ1Y0dLNzFPOTJaT1Z4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI2Qi83RUMwMDc2Q0ZFM0YxMUVGOEZBMjc3NTJDNEY5QUUwMi9oWG0tTFlORmFD OG5ydWNHSzcxTzkyWk9WeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/pQwDYng11qwtYRwB2wv9yTegZgou/gGCFYdIfOrmeUjkfgGka8Pm PHVxz8J8FspFidpKz3PtZgPChnZnaZ2Tnc8EJY2GBXIMm8Kpsa5Tg9IPfm/QhOGO 9Wnj2G1eykBjwrbvR81R4Np+2BNkvN9JmakU8pPrYIlOneT+I1/A359ausFbiE7b pAiK/olo3JrtkzgR/gXuZ9wgr1hx32xarq9TLwOfkqqadB+sRr9TujJ6c5IgzZBL CKXkAkjSHYn4Ix+mhZ1s3oOXo3+nQ0CtGLm3Lata44BeaTMHFA4Q3Vkqa3C3cOU4 o2Wiq7ntzUpMnBZPBTlamrPSC/xE7Au/ -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:24 2025 by rpki-client