This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: HdVnc3izNxoyiLghBdt4o3cWftrDGxKvGrmYIsOZk5U= Subject key identifier: 5E:4F:82:ED:2C:B8:0A:12:F1:C9:59:C4:FD:B7:DC:A2:3E:6D:81:83 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 01EB Signing time: Fri 05 Dec 2025 01:01:56 +0000 Manifest this update: Fri 05 Dec 2025 01:01:55 +0000 Manifest next update: Fri 12 Dec 2025 01:01:55 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: GU4pkgm7yK9UOUvdLJGTXXFsrYbA/hImUWwKpCCk2bA=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: Aaq+TCQ/KTzVoqOiGqBuyk59qeKatX9nZx11XR64nYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Dec 5 01:01:55 2025 GMT Not After : Dec 12 01:01:55 2025 GMT Subject: CN=69322f04-40a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4d:7f:9d:13:36:81:85:31:3d:88:9f:7d:0b: 9d:22:a3:de:30:e8:bd:44:51:04:df:dc:8e:1e:76: d1:2a:bf:f0:b3:70:e9:ba:8a:26:58:70:59:02:97: 72:d0:3c:d1:d8:60:4b:56:91:a4:6f:64:72:8a:22: e0:2c:f5:45:d7:96:e2:15:35:6e:ce:b8:e4:35:d5: 96:fd:53:a0:5f:7c:78:bf:0d:19:a9:6f:6e:fd:88: f7:e3:ad:a4:a5:3f:0a:f1:41:ed:3c:1b:90:2e:17: cc:17:5e:1c:1b:a0:6b:8c:19:22:15:3d:68:c8:a8: 13:78:4e:89:d0:68:d0:3d:b4:04:d6:54:5c:20:e1: 8f:3d:7c:82:05:81:61:e5:a5:c6:04:5e:80:f7:c0: cf:04:ac:75:aa:7f:f7:7a:10:3f:76:43:23:c5:79: 52:44:61:5b:a4:03:b0:0e:8b:c4:5c:a4:b4:7f:52: 27:86:42:45:00:be:53:36:8f:55:be:57:b7:8a:5b: 47:36:88:fa:6c:6d:6a:26:13:62:42:bf:d5:0a:b6: c9:26:68:55:d7:05:64:69:43:2a:28:db:df:29:65: 63:83:96:7e:50:88:aa:2e:27:aa:1d:c8:01:5a:48: 46:2e:ce:28:7a:4a:19:13:c5:e1:ba:9c:de:b7:43: 4b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4F:82:ED:2C:B8:0A:12:F1:C9:59:C4:FD:B7:DC:A2:3E:6D:81:83 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:f2:35:d7:d9:64:c5:56:30:8c:2b:1e:57:2c:38:85:de:10: ae:83:fc:7b:fc:dd:f2:b8:84:8d:a5:3a:93:ff:1e:6a:25:dd: cc:af:63:6c:db:22:00:dc:bd:1b:36:93:4e:e6:51:1a:40:10: a9:18:17:e2:7d:7a:45:8c:a0:4b:67:64:92:40:0f:9d:13:9f: 02:88:b4:2c:c6:bc:67:28:b0:e9:f8:e1:11:67:95:54:77:9d: 5d:52:24:38:26:7e:9d:98:55:b4:1a:1d:43:87:01:70:0a:80: 19:bd:81:16:83:7b:b2:02:78:5f:37:b9:2a:52:fa:e2:81:64: ce:b7:9a:f5:e4:ca:1e:b7:59:e8:5f:78:6f:5a:86:de:1b:de: 31:75:97:cd:c1:54:7e:a2:d7:ce:33:26:c2:ae:e8:23:89:ce: d2:68:2e:e6:e7:aa:b6:e5:a4:1e:a3:60:7b:8a:9e:06:01:e1: 34:7a:97:6a:27:46:98:1a:3c:5a:b6:1e:0a:6a:e2:ad:b0:5e: f3:f5:e0:95:1b:42:e1:c8:8f:c5:fa:e2:53:4b:f4:33:7e:0c: e7:71:df:f3:21:42:9c:ea:c5:fd:a3:55:60:fd:ad:d7:10:84: 11:75:29:12:7a:be:33:4f:30:5d:5a:94:56:cc:d8:3d:39:bc: b3:a0:99:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUxMjA1MDEwMTU1WhcNMjUxMjEyMDEwMTU1WjAYMRYwFAYD VQQDEw02OTMyMmYwNC00MGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr01/nRM2gYUxPYiffQudIqPeMOi9RFEE39yOHnbRKr/ws3DpuoomWHBZApdy 0DzR2GBLVpGkb2RyiiLgLPVF15biFTVuzrjkNdWW/VOgX3x4vw0ZqW9u/Yj3462k pT8K8UHtPBuQLhfMF14cG6BrjBkiFT1oyKgTeE6J0GjQPbQE1lRcIOGPPXyCBYFh 5aXGBF6A98DPBKx1qn/3ehA/dkMjxXlSRGFbpAOwDovEXKS0f1InhkJFAL5TNo9V vle3iltHNoj6bG1qJhNiQr/VCrbJJmhV1wVkaUMqKNvfKWVjg5Z+UIiqLieqHcgB WkhGLs4oekoZE8Xhupzet0NLnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5Pgu0s uAoS8clZxP233KI+bYGDMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI8jXX2WTFVjCMKx5XLDiF3hCug/x7/N3yuISNpTqT/x5qJd3Mr2Ns 2yIA3L0bNpNO5lEaQBCpGBfifXpFjKBLZ2SSQA+dE58CiLQsxrxnKLDp+OERZ5VU d51dUiQ4Jn6dmFW0Gh1DhwFwCoAZvYEWg3uyAnhfN7kqUvrigWTOt5r15Moet1no X3hvWobeG94xdZfNwVR+otfOMybCrugjic7SaC7m56q25aQeo2B7ip4GAeE0epdq J0aYGjxath4KauKtsF7z9eCVG0LhyI/F+uJTS/Qzfgzncd/zIUKc6sX9o1Vg/a3X EIQRdSkSer4zTzBdWpRWzNg9ObyzoJn6 -----END CERTIFICATE-----Generated at Sat Dec 6 15:07:44 2025 by rpki-client