This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: kkSbN4TyEnw6QIrpgL7cm4CySzCBmA2IHgpjxRwNz8E= Subject key identifier: 53:F5:02:65:4E:01:1A:D5:7A:ED:1A:98:2D:2A:16:7F:5A:3D:FA:BD Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 0957 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 094E Signing time: Thu 04 Dec 2025 19:22:39 +0000 Manifest this update: Thu 04 Dec 2025 19:22:39 +0000 Manifest next update: Thu 11 Dec 2025 19:22:39 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: QSTpO5nvd1/NBxNaELTZWWFeJme+I7ey3AHnVvYIDD8=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: Do71l71FTiixHCCIPeakkaaBf4R9F2qJdYWGM64Ufb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2391 (0x957) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Dec 4 19:22:39 2025 GMT Not After : Dec 11 19:22:39 2025 GMT Subject: CN=6931df7f-e85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:71:33:a4:02:42:5d:5f:8c:30:cf:20:32:13: 11:a1:c8:cb:bb:e4:d0:76:2c:a1:29:b8:ff:cf:b7: 90:b1:d2:20:4c:17:c2:e2:a9:3b:c8:ab:e1:81:15: e1:17:b3:6b:9a:b8:2d:9a:96:cc:be:2a:ed:70:a1: 5a:1e:6c:cd:d7:27:bf:f7:83:95:37:96:f6:3b:6b: b5:3d:1a:19:0a:13:06:57:04:00:a0:05:1c:46:20: 96:05:c6:9a:d0:10:fc:26:2f:71:8f:fe:49:21:5f: 6d:9f:69:36:6c:f1:37:b9:5e:77:29:08:8f:cc:fa: 6f:f2:03:02:7c:a2:ed:b6:50:00:0c:8f:dd:2f:4e: bb:48:66:dc:aa:b3:90:34:3c:b0:51:56:63:bf:d0: a2:a2:99:5a:ea:f1:37:64:a4:64:3d:73:c1:6f:fd: c5:32:e4:26:c3:68:82:fb:4c:5f:a4:40:8c:33:cc: 7a:46:76:bd:d3:02:b4:49:da:15:cf:4d:dc:7a:39: 94:30:19:16:b0:79:cb:58:0a:73:3a:da:f7:a1:06: 35:5d:37:6a:4c:de:53:b3:19:b1:26:46:e6:2a:34: 97:32:15:70:1f:c1:d9:7c:21:fe:1c:b2:6b:0d:32: e0:16:ab:2f:ba:4b:51:92:0f:57:f8:e5:b2:7f:71: b0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F5:02:65:4E:01:1A:D5:7A:ED:1A:98:2D:2A:16:7F:5A:3D:FA:BD X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:01:f0:48:db:34:95:28:90:72:b7:1f:94:d4:e6:de:a6:57: a0:17:e0:ec:f2:f5:50:52:e2:f0:10:48:af:1f:b3:00:d4:d4: 13:da:48:9a:9a:c8:31:f0:7e:c1:60:b9:cc:4f:b6:06:b6:67: e2:fc:0c:f4:0c:3e:86:fc:c5:bc:bb:18:dd:1f:6f:c1:99:b5: 38:9e:7b:a5:79:75:ed:c7:94:90:98:f8:f4:d4:20:99:14:0e: 8c:52:84:bf:06:0f:fb:8c:51:cc:36:fa:b8:d6:13:28:d9:0e: 47:c3:7f:f5:89:60:2b:55:1c:9f:5c:b1:bc:1d:84:74:b2:7e: f5:62:c1:b3:9c:37:c5:94:9c:08:d1:90:67:47:ec:21:3b:4a: 3f:a8:3e:4a:5d:b8:b0:66:2c:22:5f:56:a4:92:3a:d4:69:0a: 39:0a:a4:1d:59:ed:63:c8:fb:35:71:f8:d3:53:b6:6f:d0:c4: c0:1d:e2:b6:b7:89:89:fe:72:7f:0d:fe:02:be:57:cf:5d:47: ce:b5:85:2c:01:9d:a9:b3:b6:d5:9f:62:39:c0:c5:08:82:df: af:f9:72:43:e0:6d:d6:38:0f:ee:73:d5:77:02:1f:26:ea:14: 8d:aa:01:44:c9:2c:da:72:fb:77:c3:ab:a0:a2:a8:96:fc:6c: b3:8a:7a:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjUxMjA0MTkyMjM5WhcNMjUxMjExMTkyMjM5WjAYMRYwFAYD VQQDEw02OTMxZGY3Zi1lODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXEzpAJCXV+MMM8gMhMRocjLu+TQdiyhKbj/z7eQsdIgTBfC4qk7yKvhgRXh F7NrmrgtmpbMvirtcKFaHmzN1ye/94OVN5b2O2u1PRoZChMGVwQAoAUcRiCWBcaa 0BD8Ji9xj/5JIV9tn2k2bPE3uV53KQiPzPpv8gMCfKLttlAADI/dL067SGbcqrOQ NDywUVZjv9Ciopla6vE3ZKRkPXPBb/3FMuQmw2iC+0xfpECMM8x6Rna90wK0SdoV z03cejmUMBkWsHnLWApzOtr3oQY1XTdqTN5TsxmxJkbmKjSXMhVwH8HZfCH+HLJr DTLgFqsvuktRkg9X+OWyf3GwfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFP1AmVO ARrVeu0amC0qFn9aPfq9MB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8AfBI2zSVKJBytx+U1ObeplegF+Ds8vVQUuLwEEivH7MA1NQT2kia msgx8H7BYLnMT7YGtmfi/Az0DD6G/MW8uxjdH2/BmbU4nnuleXXtx5SQmPj01CCZ FA6MUoS/Bg/7jFHMNvq41hMo2Q5Hw3/1iWArVRyfXLG8HYR0sn71YsGznDfFlJwI 0ZBnR+whO0o/qD5KXbiwZiwiX1akkjrUaQo5CqQdWe1jyPs1cfjTU7Zv0MTAHeK2 t4mJ/nJ/Df4CvlfPXUfOtYUsAZ2ps7bVn2I5wMUIgt+v+XJD4G3WOA/uc9V3Ah8m 6hSNqgFEySzacvt3w6ugoqiW/Gyzinr4 -----END CERTIFICATE-----Generated at Sat Dec 6 11:20:38 2025 by rpki-client