This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft File: hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft (raw, json) Hash identifier: r5jxQGeFYY1BOCJQ5MpB66hsE1meG/z2LOOqhh3qpfc= Subject key identifier: 37:27:DD:9E:65:37:62:6E:F6:D6:75:2F:11:41:92:10:3B:2A:15:D9 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft Manifest number: 0133 Signing time: Fri 05 Dec 2025 02:40:38 +0000 Manifest this update: Fri 05 Dec 2025 02:40:37 +0000 Manifest next update: Fri 12 Dec 2025 02:40:37 +0000 Files and hashes: 1: hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl (hash: 57e7gLuBl94jfhHjKIpe5k6B3wGa2Ie76cZyHtD0xMI=) 2: 61A59876012A11EFB75C350FC4F9AE02.roa (hash: WAA42IzaA5d5k/IY8QrF44XXEAbChLYtWjBVuWwrVBk=) 3: 612992C6012A11EFB75C350FC4F9AE02.roa (hash: FmAu1+agMeZ0VUhV+3w3+uo72UBKyPI2du/6wqmQecc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F, serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Dec 5 02:40:37 2025 GMT Not After : Dec 12 02:40:37 2025 GMT Subject: CN=69324625-9281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:b7:8a:19:6d:2d:48:23:55:f0:b0:aa:37:36: f4:f4:55:14:7c:c5:e0:e1:6f:89:ab:b4:57:0f:cc: 0e:51:c4:a0:e5:00:7e:bd:b0:19:fa:65:1c:4f:da: f5:14:18:73:48:a9:9b:98:dc:6b:3d:74:9e:44:3b: bb:51:df:d2:d6:24:e5:0a:a2:80:11:ab:4b:6a:e9: 3f:28:d0:52:12:ec:b6:14:7c:fc:77:40:b0:ef:07: 0c:84:ec:f4:78:91:56:b5:44:48:61:ad:0a:df:d1: da:1b:8e:cb:6a:b0:4e:ca:4c:32:94:3c:9f:8b:45: 54:92:21:a2:aa:0d:52:fc:71:d0:20:0b:8e:d6:d2: 1e:97:9e:c7:91:57:48:38:f2:64:7d:e5:58:8e:01: 3e:9c:41:11:05:b6:cf:b9:4f:7c:11:0b:77:da:fc: 14:45:42:de:cc:ea:7d:63:6e:17:46:6c:56:d1:0d: 15:a8:64:f0:06:eb:8b:a5:ac:f8:26:1c:bf:54:a2: 6f:96:96:a1:de:d3:8c:53:b5:97:6a:30:af:94:48: 06:2b:55:a5:bf:ed:5d:7d:aa:16:af:eb:ff:9b:f7: c2:1f:d0:d2:8d:fd:6d:fa:3b:05:f5:54:6a:3d:50: ee:c6:52:9c:b4:69:92:a1:7c:6e:80:0e:33:cd:a0: 68:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:27:DD:9E:65:37:62:6E:F6:D6:75:2F:11:41:92:10:3B:2A:15:D9 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:bd:bc:0c:24:8a:96:fb:d6:c6:5e:98:15:59:fc:46:a7:36: de:e9:55:ce:8e:62:50:2f:99:6d:cc:f1:70:8c:2d:a7:52:eb: ee:c6:b7:1b:89:3d:45:ac:04:d6:b2:31:53:85:4a:35:e1:4f: 05:63:7e:a9:df:10:d2:16:1f:c2:c3:60:66:3f:0f:41:05:e9: 75:c2:30:18:e3:33:4c:ef:a1:1a:19:c8:6c:39:95:0c:f9:57: 5b:e7:70:d2:1f:c0:81:fe:fb:63:61:93:84:71:d8:7b:33:07: e0:5b:2f:fe:67:3b:2a:49:64:f7:7d:d1:34:b1:9d:6d:62:08: aa:2c:f1:02:6a:90:28:33:70:c4:39:be:ee:64:44:9b:48:21: 2f:0b:67:67:7c:8c:9e:f4:27:cb:99:ff:20:af:6e:39:b0:88: 62:f2:d2:7e:e9:33:fc:e5:10:e7:bf:5f:f3:86:d7:0c:f5:00: e4:d2:f4:ae:4f:40:6d:02:93:15:18:d5:c1:b6:0b:6a:7a:de: f7:d1:74:31:94:e2:3b:36:94:74:3f:71:eb:9e:51:df:db:9a: ff:72:fc:fc:ba:2a:bc:40:2e:10:da:ad:12:e6:42:3c:c0:6e: d7:c5:8e:1f:52:21:09:2a:51:3c:ef:ee:6c:f3:4e:2f:06:20: e1:5d:6d:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUxMjA1MDI0MDM3WhcNMjUxMjEyMDI0MDM3WjAYMRYwFAYD VQQDEw02OTMyNDYyNS05MjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9beKGW0tSCNV8LCqNzb09FUUfMXg4W+Jq7RXD8wOUcSg5QB+vbAZ+mUcT9r1 FBhzSKmbmNxrPXSeRDu7Ud/S1iTlCqKAEatLauk/KNBSEuy2FHz8d0Cw7wcMhOz0 eJFWtURIYa0K39HaG47LarBOykwylDyfi0VUkiGiqg1S/HHQIAuO1tIel57HkVdI OPJkfeVYjgE+nEERBbbPuU98EQt32vwURULezOp9Y24XRmxW0Q0VqGTwBuuLpaz4 Jhy/VKJvlpah3tOMU7WXajCvlEgGK1Wlv+1dfaoWr+v/m/fCH9DSjf1t+jsF9VRq PVDuxlKctGmSoXxugA4zzaBowwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcn3Z5l N2Ju9tZ1LxFBkhA7KhXZMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFK Z05sLVFiczVIOHlZVVB5M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJvbwMJIqW+9bGXpgVWfxGpzbe6VXOjmJQL5ltzPFwjC2nUuvuxrcb iT1FrATWsjFThUo14U8FY36p3xDSFh/Cw2BmPw9BBel1wjAY4zNM76EaGchsOZUM +Vdb53DSH8CB/vtjYZOEcdh7MwfgWy/+ZzsqSWT3fdE0sZ1tYgiqLPECapAoM3DE Ob7uZESbSCEvC2dnfIye9CfLmf8gr245sIhi8tJ+6TP85RDnv1/zhtcM9QDk0vSu T0BtApMVGNXBtgtqet730XQxlOI7NpR0P3HrnlHf25r/cvz8uiq8QC4Q2q0S5kI8 wG7XxY4fUiEJKlE87+5s804vBiDhXW0l -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:52 2025 by rpki-client