This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft File: hXm-LYNFaC8nrucGK71O92ZOVxs.mft (raw, json) Hash identifier: d2QaD9GIIJRpCOQ632jpIX6iqIwkmC7apPtePBsBLf8= Subject key identifier: 42:F3:4D:E5:99:78:B8:C6:00:50:5F:DE:85:AC:86:A1:28:56:EF:93 Authority key identifier: 85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B Certificate issuer: /CN=A91D0B6B/serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft Manifest number: 8D Signing time: Sun 07 Dec 2025 04:42:56 +0000 Manifest this update: Sun 07 Dec 2025 04:42:55 +0000 Manifest next update: Sun 14 Dec 2025 04:42:55 +0000 Files and hashes: 1: hXm-LYNFaC8nrucGK71O92ZOVxs.crl (hash: BB9OG7x56TzNPQ2B6Ru4S/xrtBy+E21wLSNi4xEFopY=) 2: 73DC435A39F511F09F296862C4F9AE02.roa (hash: v8UVd7Qbh3NtEsQhX1pG9Dfe5py3W8ZuLzV2zz17/Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Validity Not Before: Dec 7 04:42:55 2025 GMT Not After : Dec 14 04:42:55 2025 GMT Subject: CN=693505d0-bee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:90:9c:50:f7:2f:ca:39:4f:98:19:aa:e6:c2: 89:16:74:0c:f9:bc:ac:9d:7f:d0:f9:de:f2:fe:7d: 0d:50:7c:30:87:d7:2b:00:5b:d1:0a:68:94:4e:8b: 54:d9:55:7d:3a:c8:a9:24:fc:62:9e:7b:86:e8:21: e7:59:8f:97:1f:3d:c7:65:ff:e7:3a:03:4f:72:f9: 56:b4:a8:3c:09:2d:dd:85:8c:42:b9:b3:c9:d7:24: 23:2e:aa:0d:c6:eb:c4:6a:e2:1c:71:cc:02:f1:73: a2:fd:70:55:d6:ed:ae:13:97:93:01:42:39:55:b2: e1:e4:97:65:d5:73:ae:33:cc:47:7d:8e:5a:c4:17: 46:4c:1f:70:ec:c0:c8:c9:b9:9a:62:c1:38:34:39: 26:10:f0:65:42:44:f1:4b:ef:f8:7e:e5:54:19:3c: 06:22:db:b5:b6:4e:3f:14:bb:cf:8a:4b:69:36:c1: 76:5a:de:73:fc:12:6d:c9:e9:32:92:52:ca:38:7d: 82:48:83:86:16:1e:dd:da:44:e7:45:4d:f4:9f:83: 9d:d6:ed:f8:3e:51:8a:14:25:43:b8:c0:8b:b7:8e: 48:de:46:6c:e8:7f:af:b7:e2:b0:53:b3:08:0e:f1: 7c:ce:3b:e4:22:cb:90:29:54:e3:bf:1a:82:0c:5e: 39:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F3:4D:E5:99:78:B8:C6:00:50:5F:DE:85:AC:86:A1:28:56:EF:93 X509v3 Authority Key Identifier: keyid:85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b0:11:01:be:6f:85:3e:15:98:38:c9:30:bf:fd:37:34:dc: 8b:31:05:1b:d4:34:63:ec:56:ae:54:03:16:ed:3a:ba:94:7b: 6a:3f:c6:d5:da:ea:99:45:ee:03:46:ab:dc:fe:c3:c3:ee:cc: f4:52:ef:3c:ec:4a:c9:fb:96:79:d8:bd:b4:65:6a:6d:72:76: 06:a0:aa:d1:11:16:17:98:87:a7:7f:af:5c:65:4a:5a:ee:81: 43:95:6f:fb:ab:b8:75:5b:1c:ef:5a:c9:ba:1c:ef:c4:93:cc: 50:b4:a4:f8:29:85:1c:dc:18:f4:e9:05:54:e1:23:7b:a5:28: 93:63:56:ba:0f:80:3a:45:7a:5b:0c:41:a5:d1:15:01:09:58: 45:4f:a3:17:1f:33:93:84:15:37:db:65:7c:b1:f4:ec:ae:2f: f6:69:ff:c0:74:62:5d:30:68:79:1d:f9:1e:9f:7f:62:38:c1: e9:38:8a:70:47:29:a7:4f:14:ed:4b:48:4e:2d:94:9d:fa:a1: 6d:f8:b1:1a:4e:72:51:d8:99:ac:8c:63:92:d8:9a:40:c2:da: 13:2d:9d:bc:78:3b:42:64:ea:5c:03:9f:20:f4:8d:74:21:75: 23:a3:6f:c4:95:d3:2b:dd:21:35:95:ed:f9:47:9d:ef:e7:cf: 5b:fd:0d:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNkIxMTAvBgNVBAUTKDg1NzlCRTJEODM0NTY4MkYyN0FFRTcwNjJCQkQ0RUY3 NjY0RTU3MUIwHhcNMjUxMjA3MDQ0MjU1WhcNMjUxMjE0MDQ0MjU1WjAYMRYwFAYD VQQDEw02OTM1MDVkMC1iZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZCcUPcvyjlPmBmq5sKJFnQM+bysnX/Q+d7y/n0NUHwwh9crAFvRCmiUTotU 2VV9OsipJPxinnuG6CHnWY+XHz3HZf/nOgNPcvlWtKg8CS3dhYxCubPJ1yQjLqoN xuvEauIcccwC8XOi/XBV1u2uE5eTAUI5VbLh5Jdl1XOuM8xHfY5axBdGTB9w7MDI ybmaYsE4NDkmEPBlQkTxS+/4fuVUGTwGItu1tk4/FLvPiktpNsF2Wt5z/BJtyeky klLKOH2CSIOGFh7d2kTnRU30n4Od1u34PlGKFCVDuMCLt45I3kZs6H+vt+KwU7MI DvF8zjvkIsuQKVTjvxqCDF45YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELzTeWZ eLjGAFBf3oWshqEoVu+TMB8GA1UdIwQYMBaAFIV5vi2DRWgvJ67nBiu9TvdmTlcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI2Qi83RUMwMDc2Q0ZF M0YxMUVGOEZBMjc3NTJDNEY5QUUwMi9oWG0tTFlORmFDOG5ydWNHSzcxTzkyWk9W eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYbS1MWU5GYUM4bnJ1Y0dLNzFPOTJaT1Z4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI2Qi83RUMwMDc2Q0ZFM0YxMUVGOEZBMjc3NTJDNEY5QUUwMi9oWG0tTFlORmFD OG5ydWNHSzcxTzkyWk9WeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3sBEBvm+FPhWYOMkwv/03NNyLMQUb1DRj7FauVAMW7Tq6lHtqP8bV 2uqZRe4DRqvc/sPD7sz0Uu887ErJ+5Z52L20ZWptcnYGoKrRERYXmIenf69cZUpa 7oFDlW/7q7h1WxzvWsm6HO/Ek8xQtKT4KYUc3Bj06QVU4SN7pSiTY1a6D4A6RXpb DEGl0RUBCVhFT6MXHzOThBU322V8sfTsri/2af/AdGJdMGh5Hfken39iOMHpOIpw RymnTxTtS0hOLZSd+qFt+LEaTnJR2JmsjGOS2JpAwtoTLZ28eDtCZOpcA58g9I10 IXUjo2/EldMr3SE1le35R53v589b/Q3I -----END CERTIFICATE-----Generated at Sun Dec 7 07:03:49 2025 by rpki-client