This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft File: Hhb4PQxAM115a-W6IckMvumXWbw.mft (raw, json) Hash identifier: SxbZGlSTquPyFFpvah8cuVaAhHIoHjjiLlfRJN2g9gU= Subject key identifier: 7B:97:AC:B8:C1:D1:A7:58:01:E7:3D:03:C1:F1:F1:29:22:7C:12:4F Authority key identifier: 1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC Certificate issuer: /CN=A91D5606/serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Certificate serial: 0722 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft Manifest number: 0701 Signing time: Sat 06 Dec 2025 20:55:49 +0000 Manifest this update: Sat 06 Dec 2025 20:55:48 +0000 Manifest next update: Sat 13 Dec 2025 20:55:48 +0000 Files and hashes: 1: Hhb4PQxAM115a-W6IckMvumXWbw.crl (hash: pV0s6KmbueTzgzEMKEGnOzFLVHt7gjwLS1LJYLum584=) 2: 1745A0504D7F11EE8487CA3CC4F9AE02.roa (hash: u+ofbKLYcAYXay4QDo5J92308RfIUZYffrakAkc1/w0=) 3: 7E11B25E632A11EEA4BAF91FC4F9AE02.roa (hash: 00yFzXA+JQ5htpGD8ADiNSIhDTumFOoTTNXL9w2q2PM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5606, serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Validity Not Before: Dec 6 20:55:48 2025 GMT Not After : Dec 13 20:55:48 2025 GMT Subject: CN=69349855-a286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8c:05:4f:21:34:97:b1:bc:f4:ca:df:ef:fe: 98:29:10:5a:9f:e7:e7:8b:03:09:c7:66:90:3c:f0: 7a:2f:02:7f:ee:f2:6d:ee:87:6d:f7:24:0a:c9:a2: 1b:69:6f:0e:65:87:48:33:b1:28:2e:b7:22:c5:70: c7:32:b3:83:72:62:a5:7e:d2:1b:35:d1:eb:ca:c0: d6:da:36:7f:63:2c:7e:46:7b:e8:95:9b:01:a0:d1: 5a:a7:71:73:ee:ab:45:a6:b1:f3:d0:18:fa:a0:b1: e4:a9:5c:15:95:1f:78:ff:20:ed:c3:a2:dc:72:ca: 25:9b:7f:32:37:22:27:1b:f9:e8:41:01:77:fa:2b: dc:17:8f:9b:a5:87:da:c2:27:1e:53:55:0d:24:8c: 31:e2:73:df:70:77:33:18:48:78:a4:02:11:44:86: 57:e3:d1:1e:a4:92:81:ea:af:84:fa:00:39:b0:1e: 5c:5f:db:8f:b8:82:70:5c:65:5b:ae:59:e0:29:79: f1:54:17:98:b0:b1:72:bf:d6:46:67:60:db:a7:53: ff:9b:c9:e2:fa:19:01:aa:7c:59:fe:23:a7:1b:48: e1:4c:e2:1a:c2:be:e4:65:df:c6:a4:43:a0:e2:93: d3:40:b5:bd:e5:1e:c3:53:6c:3d:1b:fa:f5:6a:6d: 27:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:97:AC:B8:C1:D1:A7:58:01:E7:3D:03:C1:F1:F1:29:22:7C:12:4F X509v3 Authority Key Identifier: keyid:1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:4b:0b:3b:b6:50:d0:f4:0d:2a:12:4c:29:eb:e7:9e:08:40: e8:1b:ef:de:41:2a:51:7d:c3:bb:27:c7:1d:f7:5e:61:10:71: 97:43:8a:e1:5d:05:0e:ae:e1:96:e8:e7:65:c5:a3:27:da:82: 01:2e:b9:13:32:9b:69:79:da:01:e5:82:35:bc:e5:2d:24:fa: a1:f1:5b:cd:41:b9:26:8d:51:0e:3a:15:7c:92:6a:df:4f:d5: f5:28:82:01:41:30:37:4e:e8:d4:e4:e6:34:93:c4:5e:81:b5: 6f:80:ec:5d:96:d8:e9:0a:c2:17:e7:28:95:a3:95:60:5d:17: ef:bd:aa:79:6e:41:ef:d1:15:29:69:83:2c:c9:3d:13:1e:8a: 41:38:04:5c:22:fe:4d:e1:b9:ff:e5:4b:64:8f:2e:bc:f2:5c: 74:25:4a:f1:15:9a:a1:d9:7f:c5:ac:1c:f9:e2:18:1b:bd:ac: 14:71:5d:7b:9e:12:f4:70:9c:4d:8c:b8:26:d8:57:66:b1:02: 35:78:57:2e:13:84:64:1d:32:5f:ae:95:08:31:3b:1b:1b:ca: 62:9e:f2:10:f6:33:d8:ea:fa:67:52:8b:01:6f:b6:6f:9e:9f: 48:8b:57:49:8b:28:36:e8:e9:31:78:6e:f0:b5:6a:c7:90:21: 97:57:fd:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2MDYxMTAvBgNVBAUTKDFFMTZGODNEMEM0MDMzNUQ3OTZCRTVCQTIxQzkwQ0JF RTk5NzU5QkMwHhcNMjUxMjA2MjA1NTQ4WhcNMjUxMjEzMjA1NTQ4WjAYMRYwFAYD VQQDEw02OTM0OTg1NS1hMjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3owFTyE0l7G89Mrf7/6YKRBan+fniwMJx2aQPPB6LwJ/7vJt7odt9yQKyaIb aW8OZYdIM7EoLrcixXDHMrODcmKlftIbNdHrysDW2jZ/Yyx+RnvolZsBoNFap3Fz 7qtFprHz0Bj6oLHkqVwVlR94/yDtw6Lccsolm38yNyInG/noQQF3+ivcF4+bpYfa wiceU1UNJIwx4nPfcHczGEh4pAIRRIZX49EepJKB6q+E+gA5sB5cX9uPuIJwXGVb rlngKXnxVBeYsLFyv9ZGZ2Dbp1P/m8ni+hkBqnxZ/iOnG0jhTOIawr7kZd/GpEOg 4pPTQLW95R7DU2w9G/r1am0noQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuXrLjB 0adYAec9A8Hx8SkifBJPMB8GA1UdIwQYMBaAFB4W+D0MQDNdeWvluiHJDL7pl1m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTYwNi85NDBDNUQ5Qzcx MDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0xMTVhLVc2SWNrTXZ1bVhX YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hoYjRQUXhBTTExNWEtVzZJY2tNdnVtWFdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTYwNi85NDBDNUQ5QzcxMDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0x MTVhLVc2SWNrTXZ1bVhXYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYSws7tlDQ9A0qEkwp6+eeCEDoG+/eQSpRfcO7J8cd915hEHGXQ4rh XQUOruGW6OdlxaMn2oIBLrkTMptpedoB5YI1vOUtJPqh8VvNQbkmjVEOOhV8kmrf T9X1KIIBQTA3TujU5OY0k8RegbVvgOxdltjpCsIX5yiVo5VgXRfvvap5bkHv0RUp aYMsyT0THopBOARcIv5N4bn/5Utkjy688lx0JUrxFZqh2X/FrBz54hgbvawUcV17 nhL0cJxNjLgm2FdmsQI1eFcuE4RkHTJfrpUIMTsbG8pinvIQ9jPY6vpnUosBb7Zv np9Ii1dJiyg26OkxeG7wtWrHkCGXV/1h -----END CERTIFICATE-----Generated at Sun Dec 7 00:37:33 2025 by rpki-client