This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft File: HmHgACzkS79ZVTyASgrJEub-vzs.mft (raw, json) Hash identifier: BZd3rAdv4bUpMorRCbixjCrJHCWBqDVT9gZupAMx1M4= Subject key identifier: BC:06:68:DD:D6:BD:CB:76:A3:8C:D5:CC:D8:06:F5:11:41:DC:9C:C9 Authority key identifier: 1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B Certificate issuer: /CN=A91EACB9/serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Certificate serial: 02A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft Manifest number: 029B Signing time: Thu 04 Dec 2025 23:52:54 +0000 Manifest this update: Thu 04 Dec 2025 23:52:53 +0000 Manifest next update: Thu 11 Dec 2025 23:52:53 +0000 Files and hashes: 1: HmHgACzkS79ZVTyASgrJEub-vzs.crl (hash: SjGyRYG9gM2YREv2gqAHhRhES/Otrtd2QmFpmeQiI7Y=) 2: 654307DC26CC11EDB395A078C4F9AE02.roa (hash: MHZ2vGsbQCY20I3lKFrbGLCD8ljQ+7RHRVNSOxCSytY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EACB9, serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Validity Not Before: Dec 4 23:52:53 2025 GMT Not After : Dec 11 23:52:53 2025 GMT Subject: CN=69321ed6-1bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a7:61:44:9d:97:a4:a7:59:d5:55:bd:15:49: fc:d8:e7:41:d4:09:97:f7:5b:a8:4a:61:8b:18:d9: e9:fd:9e:2e:81:05:e9:35:69:04:8f:d3:f0:44:fa: 16:0b:26:21:9b:8f:fd:78:c7:c6:c3:3c:e8:76:34: 36:f4:04:f4:60:7c:a2:78:03:b5:ae:1a:7c:bb:b7: e2:95:4a:a9:8e:30:60:27:f9:15:fd:31:9d:f8:70: 03:44:b6:3a:b8:61:48:cf:5b:7c:38:fd:19:79:bc: 7b:30:61:b0:74:7b:89:59:bd:af:e9:8c:49:a6:21: 8d:e9:58:5f:23:e4:23:ba:96:10:4b:ce:6a:86:71: 66:fc:53:a6:7f:cc:9f:1b:16:de:23:01:79:df:80: de:ec:5e:ac:0d:a5:a8:de:9f:5f:f5:34:2c:4c:00: 53:9a:0b:48:07:57:cd:95:76:3c:f6:63:a8:ea:a5: 95:d5:2f:7c:9c:d5:71:fd:fe:c4:4d:24:a7:5a:f4: ca:87:d2:f0:b4:0e:d5:1f:5d:89:9d:a6:08:91:9f: 66:f7:fd:79:6f:ec:30:e6:94:4f:ac:43:2d:21:38: 64:b6:03:a8:ba:73:7b:12:70:44:70:ca:f6:04:47: 05:5c:b6:b6:8f:09:a0:46:22:ac:9d:93:a9:42:8c: 63:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:06:68:DD:D6:BD:CB:76:A3:8C:D5:CC:D8:06:F5:11:41:DC:9C:C9 X509v3 Authority Key Identifier: keyid:1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:a9:63:d3:ef:99:f5:07:44:44:e0:40:d8:b2:47:11:2c:b3: 6b:cf:79:4e:12:d6:df:1a:73:4e:4d:34:35:e3:6a:63:6b:b0: b4:31:0e:32:8a:82:09:06:7b:53:b6:2a:37:1b:78:5d:d7:6f: e7:b1:d5:a8:2a:73:b0:f6:60:1e:b8:70:32:da:29:c5:b5:46: 94:b8:5b:26:07:0e:81:09:0e:25:ff:41:de:0e:d5:d6:31:d6: f0:ce:80:c8:e2:8f:0e:18:53:69:cf:e5:c5:1f:57:a9:6c:2d: ad:f9:2f:00:2c:c1:5d:d3:d8:47:01:51:b7:4d:74:5a:c1:be: e6:01:53:68:19:fe:31:92:d0:00:32:8e:0a:b3:ae:40:c5:3b: 86:22:c9:38:4f:86:79:5a:a3:ba:34:72:d1:85:1f:2d:d8:67: c7:fe:a5:74:a2:37:68:31:73:6a:5e:27:b0:47:f5:ee:da:08: c9:5e:bb:01:ad:94:a4:1d:0a:ae:fc:c6:93:4d:97:99:7f:ec: 62:8d:b4:90:f6:66:f0:db:a6:42:55:0f:ec:43:42:7b:62:eb: 71:78:4e:2b:87:57:9c:10:d6:11:db:2e:00:89:eb:c9:6a:ca: c8:a6:d9:b0:11:a5:48:bd:75:98:0c:a2:4d:4d:b2:f5:50:b3: 74:fb:c6:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDQjkxMTAvBgNVBAUTKDFFNjFFMDAwMkNFNDRCQkY1OTU1M0M4MDRBMEFDOTEy RTZGRUJGM0IwHhcNMjUxMjA0MjM1MjUzWhcNMjUxMjExMjM1MjUzWjAYMRYwFAYD VQQDEw02OTMyMWVkNi0xYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqdhRJ2XpKdZ1VW9FUn82OdB1AmX91uoSmGLGNnp/Z4ugQXpNWkEj9PwRPoW CyYhm4/9eMfGwzzodjQ29AT0YHyieAO1rhp8u7filUqpjjBgJ/kV/TGd+HADRLY6 uGFIz1t8OP0Zebx7MGGwdHuJWb2v6YxJpiGN6VhfI+QjupYQS85qhnFm/FOmf8yf GxbeIwF534De7F6sDaWo3p9f9TQsTABTmgtIB1fNlXY89mOo6qWV1S98nNVx/f7E TSSnWvTKh9LwtA7VH12JnaYIkZ9m9/15b+ww5pRPrEMtIThktgOounN7EnBEcMr2 BEcFXLa2jwmgRiKsnZOpQoxjGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwGaN3W vct2o4zVzNgG9RFB3JzJMB8GA1UdIwQYMBaAFB5h4AAs5Eu/WVU8gEoKyRLm/r87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUNCOS8wQzAwMjBFMDI2 OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3OVpWVHlBU2dySkV1Yi12 enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htSGdBQ3prUzc5WlZUeUFTZ3JKRXViLXZ6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUNCOS8wQzAwMjBFMDI2OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3 OVpWVHlBU2dySkV1Yi12enMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcqWPT75n1B0RE4EDYskcRLLNrz3lOEtbfGnNOTTQ142pja7C0MQ4y ioIJBntTtio3G3hd12/nsdWoKnOw9mAeuHAy2inFtUaUuFsmBw6BCQ4l/0HeDtXW MdbwzoDI4o8OGFNpz+XFH1epbC2t+S8ALMFd09hHAVG3TXRawb7mAVNoGf4xktAA Mo4Ks65AxTuGIsk4T4Z5WqO6NHLRhR8t2GfH/qV0ojdoMXNqXiewR/Xu2gjJXrsB rZSkHQqu/MaTTZeZf+xijbSQ9mbw26ZCVQ/sQ0J7YutxeE4rh1ecENYR2y4AievJ asrIptmwEaVIvXWYDKJNTbL1ULN0+8ZC -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:10 2025 by rpki-client