This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: uQn/Wk2gPKDG7SRjk1vvq4Z+p93j0xQ3kV8QkpqyUG0= Subject key identifier: 23:4A:B8:76:90:FD:18:78:88:70:9C:4A:C2:A3:C3:33:E9:70:F2:23 Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 0203 Signing time: Fri 05 Dec 2025 00:42:36 +0000 Manifest this update: Fri 05 Dec 2025 00:42:36 +0000 Manifest next update: Fri 12 Dec 2025 00:42:36 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: neZn6nQFME46jM7RHkqtgXm64SAdapVEcyMo/FTaPM8=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: A4mMoOgqhrpbmnUE3oA6zWgyEjfGMI0KKDHAWWwT+kY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Dec 5 00:42:36 2025 GMT Not After : Dec 12 00:42:36 2025 GMT Subject: CN=69322a7c-d3a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:91:7e:e0:86:2f:12:16:85:41:f8:1f:31:07: 3d:e4:e3:da:bb:c3:13:d4:48:ca:45:31:ef:b2:91: 35:53:4c:de:40:92:fa:ca:e6:1d:fb:23:de:79:38: 9a:22:36:cd:a0:e1:2e:c2:c7:c2:d1:2e:71:ac:be: 4d:05:25:b8:66:b8:de:32:45:be:e5:fa:d5:5e:a1: 1e:23:3f:dd:51:f4:c3:38:2e:f4:5a:fc:3e:24:91: 02:ca:5c:88:4e:14:9a:6e:b3:e6:d1:57:11:5d:99: fe:6a:89:99:a6:6d:2f:70:af:4c:86:59:9f:09:2d: f1:3a:e0:aa:10:2d:a0:46:65:ac:5c:a3:21:67:9d: f4:5c:0d:50:69:23:3e:55:67:d1:68:80:ff:b2:05: 67:d7:3f:32:80:e3:5f:4b:c0:b3:b9:7f:64:bb:b8: 99:18:1f:24:e6:63:ce:31:fc:0f:35:3d:4e:ad:19: 5b:91:77:33:1b:30:14:d4:00:99:5d:db:43:c2:8a: ef:07:95:a5:2e:66:3c:70:bf:f0:f6:5b:74:03:e9: 17:9c:2a:7c:ea:2a:be:1b:62:d7:f5:61:a3:17:5f: 39:ba:00:12:37:ae:a0:67:16:1f:33:1b:c1:f1:6d: cf:46:bc:4b:c5:cc:30:99:08:41:fc:9c:17:b1:4c: ac:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4A:B8:76:90:FD:18:78:88:70:9C:4A:C2:A3:C3:33:E9:70:F2:23 X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:3f:f0:ad:42:93:0b:b8:93:e9:a4:b1:bb:6f:42:9a:be:5f: b4:f9:bc:8e:07:82:21:b2:80:45:35:b5:0a:50:22:7c:6e:9a: 9c:90:cb:07:fe:1c:2b:69:3b:86:bc:4c:c7:cf:e6:eb:90:d1: c5:6f:8b:ae:4d:25:cf:1c:5c:6f:af:4a:b7:1c:f1:b8:0e:1f: 11:05:62:ef:0c:b6:77:e7:8a:ac:77:19:02:d7:2e:be:cb:9b: e2:96:4a:de:4e:3f:a8:7c:32:f4:72:f9:b4:a4:bb:34:5b:34: 63:0c:32:b8:72:9f:db:dc:06:80:2b:8e:00:f1:47:b4:d2:1c: e4:e2:7d:ef:60:81:ce:cd:60:a1:77:88:51:95:e6:ef:9c:c9: 41:36:1b:51:e8:bf:d3:a8:43:d8:5e:10:32:4c:51:d5:0b:5b: d0:05:98:c2:6e:78:90:7b:b7:c1:43:e3:23:fa:18:48:f2:85: 4b:ec:d9:05:11:b8:4d:fa:3f:7d:92:35:69:3b:1a:ad:e1:ad: f2:23:f6:ed:83:f0:0a:aa:f9:f7:31:63:60:13:0e:55:f0:03: b9:55:74:0e:d1:8c:aa:4d:fa:19:55:00:88:b9:d6:26:9b:e7: 13:1d:2e:9c:d7:c4:86:9d:1e:ab:e3:2f:60:05:2d:13:8d:21: 36:95:0e:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUxMjA1MDA0MjM2WhcNMjUxMjEyMDA0MjM2WjAYMRYwFAYD VQQDEw02OTMyMmE3Yy1kM2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5F+4IYvEhaFQfgfMQc95OPau8MT1EjKRTHvspE1U0zeQJL6yuYd+yPeeTia IjbNoOEuwsfC0S5xrL5NBSW4ZrjeMkW+5frVXqEeIz/dUfTDOC70Wvw+JJECylyI ThSabrPm0VcRXZn+aomZpm0vcK9MhlmfCS3xOuCqEC2gRmWsXKMhZ530XA1QaSM+ VWfRaID/sgVn1z8ygONfS8CzuX9ku7iZGB8k5mPOMfwPNT1OrRlbkXczGzAU1ACZ XdtDworvB5WlLmY8cL/w9lt0A+kXnCp86iq+G2LX9WGjF185ugASN66gZxYfMxvB 8W3PRrxLxcwwmQhB/JwXsUysNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNKuHaQ /Rh4iHCcSsKjwzPpcPIjMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkP/CtQpMLuJPppLG7b0Kavl+0+byOB4IhsoBFNbUKUCJ8bpqckMsH /hwraTuGvEzHz+brkNHFb4uuTSXPHFxvr0q3HPG4Dh8RBWLvDLZ354qsdxkC1y6+ y5vilkreTj+ofDL0cvm0pLs0WzRjDDK4cp/b3AaAK44A8Ue00hzk4n3vYIHOzWCh d4hRlebvnMlBNhtR6L/TqEPYXhAyTFHVC1vQBZjCbniQe7fBQ+Mj+hhI8oVL7NkF EbhN+j99kjVpOxqt4a3yI/btg/AKqvn3MWNgEw5V8AO5VXQO0YyqTfoZVQCIudYm m+cTHS6c18SGnR6r4y9gBS0TjSE2lQ7O -----END CERTIFICATE-----Generated at Sat Dec 6 20:22:47 2025 by rpki-client