This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: tfHtltB+Wha7gzoxW1tlGMF/Q/OpYa5CYJfUpHQwFGM= Subject key identifier: DA:C0:D7:E3:B8:5D:37:77:34:8E:55:A0:61:A2:81:F5:F9:8B:13:0F Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 095E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 0955 Signing time: Thu 18 Dec 2025 19:42:17 +0000 Manifest this update: Thu 18 Dec 2025 19:42:17 +0000 Manifest next update: Thu 25 Dec 2025 19:42:17 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: i0tGCTEkuYnTm9ArYBL2CrRqtGBpi4Dk0zbdfEp8eds=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: Do71l71FTiixHCCIPeakkaaBf4R9F2qJdYWGM64Ufb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2398 (0x95e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Dec 18 19:42:17 2025 GMT Not After : Dec 25 19:42:17 2025 GMT Subject: CN=69445919-a05c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:47:cf:01:d1:28:7e:84:ed:d6:1b:2a:13:3a: 12:aa:9c:c7:1d:a6:cb:74:72:33:cf:b4:d7:6f:50: 9a:b7:66:67:9b:34:1c:ac:47:26:38:ad:45:91:92: 40:c9:44:98:26:21:99:eb:ef:b4:44:51:c0:96:0d: d0:25:53:e0:71:19:12:6e:fc:91:4b:55:15:04:b5: 24:f3:e5:3a:31:aa:b1:0e:7f:74:a0:1b:4f:a4:ff: dd:4f:c5:ff:c7:99:5e:63:6d:a9:2c:99:00:e6:fb: 13:74:87:f9:0f:0e:1f:72:57:ef:84:ae:e2:ef:57: 34:b9:0a:ff:6a:b4:19:fb:88:4a:cb:0c:c8:a0:00: 74:51:22:b4:fb:ef:f5:b6:cd:ac:e4:b9:7d:70:bb: ac:25:8d:e4:77:ac:e1:f0:e3:b8:f7:3f:eb:eb:aa: 54:8d:66:5d:c4:b3:ba:9f:3c:e0:d5:ce:ce:de:8f: 1d:b3:30:3d:2c:87:c1:1e:54:d0:f6:85:f5:ad:65: be:48:29:01:b5:a8:bd:c5:4e:7f:28:7c:83:59:2a: 64:05:01:11:6d:2f:9f:e6:66:e5:a5:dd:b2:1c:f9: 1d:e8:a8:1e:9a:70:0e:a3:8f:a6:49:b6:00:8c:2a: 90:5f:59:da:16:7f:c7:e0:5a:b5:d4:1b:96:8b:ba: a6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C0:D7:E3:B8:5D:37:77:34:8E:55:A0:61:A2:81:F5:F9:8B:13:0F X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:a5:37:36:90:a3:c6:6d:4c:76:12:ee:4a:e9:71:79:9b:98: 6b:78:26:4e:95:c7:b0:d2:62:95:b4:b6:70:1d:91:b0:c9:d1: b3:df:57:7d:4f:ea:90:82:d2:ab:88:c2:28:70:b2:cd:48:83: 1f:f0:b6:ea:b6:8c:c5:c5:d8:c7:3f:37:d7:77:7d:ce:9a:36: 43:58:75:09:9f:ec:5b:17:88:1e:57:61:f2:cc:08:26:b6:3a: 80:bc:82:43:06:4e:ad:52:85:ac:72:13:ca:23:23:f2:84:d3: 7d:40:9c:61:67:c8:f7:ab:39:12:1b:86:54:a3:37:60:0b:77: f9:d0:c8:c0:d1:f6:28:60:b3:58:0a:10:8f:20:d3:f3:0e:d5: 9c:60:00:84:ea:25:e5:a2:15:d0:0c:a8:e5:ea:00:45:de:bb: 29:41:a4:1a:b0:27:b0:d5:e6:e4:94:20:9a:f9:4d:d5:97:60: 3f:29:c3:b1:fa:e0:a4:b8:ca:aa:2a:5a:74:2a:89:f5:4c:80: 3c:53:99:2d:80:c4:5d:59:db:a5:b6:6b:fc:20:33:eb:4f:10: a4:77:36:15:27:a1:9f:16:17:25:49:a1:37:9d:9f:70:bc:cc: e3:a9:54:d0:0f:6d:fb:92:1c:80:67:45:d1:5d:98:e0:05:87: 77:41:3f:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjUxMjE4MTk0MjE3WhcNMjUxMjI1MTk0MjE3WjAYMRYwFAYD VQQDDA02OTQ0NTkxOS1hMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0fPAdEofoTt1hsqEzoSqpzHHabLdHIzz7TXb1Cat2ZnmzQcrEcmOK1FkZJA yUSYJiGZ6++0RFHAlg3QJVPgcRkSbvyRS1UVBLUk8+U6MaqxDn90oBtPpP/dT8X/ x5leY22pLJkA5vsTdIf5Dw4fclfvhK7i71c0uQr/arQZ+4hKywzIoAB0USK0++/1 ts2s5Ll9cLusJY3kd6zh8OO49z/r66pUjWZdxLO6nzzg1c7O3o8dszA9LIfBHlTQ 9oX1rWW+SCkBtai9xU5/KHyDWSpkBQERbS+f5mblpd2yHPkd6KgemnAOo4+mSbYA jCqQX1naFn/H4Fq11BuWi7qmFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrA1+O4 XTd3NI5VoGGigfX5ixMPMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBApTc2kKPGbUx2Eu5K6XF5m5hreCZOlcew0mKVtLZwHZGwydGz31d9 T+qQgtKriMIocLLNSIMf8LbqtozFxdjHPzfXd33OmjZDWHUJn+xbF4geV2HyzAgm tjqAvIJDBk6tUoWschPKIyPyhNN9QJxhZ8j3qzkSG4ZUozdgC3f50MjA0fYoYLNY ChCPINPzDtWcYACE6iXlohXQDKjl6gBF3rspQaQasCew1ebklCCa+U3Vl2A/KcOx +uCkuMqqKlp0Kon1TIA8U5ktgMRdWdultmv8IDPrTxCkdzYVJ6GfFhclSaE3nZ9w vMzjqVTQD237khyAZ0XRXZjgBYd3QT99 -----END CERTIFICATE-----Generated at Sat Dec 20 20:27:40 2025 by rpki-client