This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: 5mQe50zAruq1k/4tqgWTFRBF07W1Tccja75Px8Riajs= Subject key identifier: 67:1B:B9:FB:94:7A:81:CB:FD:9A:D4:6A:22:22:0D:2A:4C:4C:96:1E Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 039B Signing time: Thu 04 Dec 2025 23:11:23 +0000 Manifest this update: Thu 04 Dec 2025 23:11:23 +0000 Manifest next update: Thu 11 Dec 2025 23:11:23 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: /OCB1FyDZmcN8VxdXYXEDLoPBl1mU8sMG13hHqHjVwg=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Dec 4 23:11:23 2025 GMT Not After : Dec 11 23:11:23 2025 GMT Subject: CN=6932151b-aa40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:eb:c1:3a:58:59:c1:5c:91:d3:33:c5:f1:fe: c0:9b:e3:87:7f:c1:87:9e:17:6a:8a:91:88:b6:bc: d7:a6:f3:e6:86:50:9e:dc:8b:7c:79:7c:89:ee:d5: 4e:76:48:b0:71:a8:0a:aa:95:8e:d7:1c:ac:79:b7: b5:5c:b0:19:38:5f:01:9a:16:e4:b6:8a:5d:3c:ea: 87:23:f4:7b:f1:d6:30:bf:d1:bc:25:2f:92:18:41: 7b:be:91:ea:05:2a:25:4b:54:fc:50:0b:e8:e0:df: 57:16:a3:4b:30:76:d8:42:46:da:96:88:65:3e:50: 79:78:44:91:d9:1d:1a:aa:0b:ac:e3:18:49:2f:28: a6:bb:36:06:43:83:5b:c0:4e:af:5c:81:89:62:64: 48:07:a9:1d:a3:69:90:a3:3d:25:39:6d:02:d3:1a: e1:c5:12:10:eb:5a:4f:4b:d1:1f:85:49:14:93:ea: 1a:c5:20:c7:0b:db:50:aa:3f:e6:f4:30:a9:f1:54: bb:a4:53:70:ce:18:52:78:2d:3c:1e:d6:6c:20:2b: 54:c8:98:e2:eb:5a:85:53:c6:c8:87:ab:a8:40:3b: db:11:67:b1:a9:59:8c:34:0a:eb:5b:7f:59:68:fb: ae:c0:0e:6f:d7:c0:8b:c1:d4:de:05:5b:fb:77:a6: b3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1B:B9:FB:94:7A:81:CB:FD:9A:D4:6A:22:22:0D:2A:4C:4C:96:1E X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:3b:23:6c:5e:bc:b8:9b:08:7a:77:44:d3:79:4d:36:46:2a: 83:25:8a:9a:e5:49:5e:6d:cb:76:84:bb:9a:3d:f4:e0:28:a8: c7:54:8a:7e:33:e5:de:25:8a:86:db:a9:a3:33:8f:3d:b7:83: e6:a6:51:77:7d:3f:c0:39:92:b7:23:22:4f:ec:f6:97:ce:79: 1a:3a:88:4c:85:e8:ba:a3:a9:d5:20:cd:34:0e:2d:da:2b:1f: 77:f2:71:b6:c1:20:b7:cd:8e:78:be:08:68:0f:10:d1:42:d7: 9f:b7:84:a7:57:83:50:e1:84:16:e0:e5:7d:65:f2:3a:b9:1a: e3:48:a1:66:3b:92:a5:f4:c8:77:b1:e9:75:f2:40:0e:10:ad: 51:2a:1f:d1:40:e4:fe:c1:94:0f:b4:c5:94:d1:42:bd:b8:a0: b4:d4:d2:b7:b0:23:5b:a9:1d:56:70:0e:89:64:c0:85:73:e6: b8:dd:40:fd:a6:48:ce:c6:74:4f:b4:8b:04:38:ee:73:28:dc: 68:82:2e:8d:a0:9a:66:7f:50:d0:7c:99:8f:6c:c5:2a:e2:1d: 77:49:98:d6:6f:42:a0:0f:60:c4:b9:0f:c9:0e:c0:08:c5:20: f5:52:b6:ba:b1:a2:48:70:eb:24:17:c3:1b:c4:7a:50:4f:cd: 44:8e:7c:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUxMjA0MjMxMTIzWhcNMjUxMjExMjMxMTIzWjAYMRYwFAYD VQQDEw02OTMyMTUxYi1hYTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OvBOlhZwVyR0zPF8f7Am+OHf8GHnhdqipGItrzXpvPmhlCe3It8eXyJ7tVO dkiwcagKqpWO1xysebe1XLAZOF8BmhbktopdPOqHI/R78dYwv9G8JS+SGEF7vpHq BSolS1T8UAvo4N9XFqNLMHbYQkbalohlPlB5eESR2R0aqgus4xhJLyimuzYGQ4Nb wE6vXIGJYmRIB6kdo2mQoz0lOW0C0xrhxRIQ61pPS9EfhUkUk+oaxSDHC9tQqj/m 9DCp8VS7pFNwzhhSeC08HtZsICtUyJji61qFU8bIh6uoQDvbEWexqVmMNArrW39Z aPuuwA5v18CLwdTeBVv7d6azTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcbufuU eoHL/ZrUaiIiDSpMTJYeMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGOyNsXry4mwh6d0TTeU02RiqDJYqa5Ulebct2hLuaPfTgKKjHVIp+ M+XeJYqG26mjM489t4PmplF3fT/AOZK3IyJP7PaXznkaOohMhei6o6nVIM00Di3a Kx938nG2wSC3zY54vghoDxDRQteft4SnV4NQ4YQW4OV9ZfI6uRrjSKFmO5Kl9Mh3 sel18kAOEK1RKh/RQOT+wZQPtMWU0UK9uKC01NK3sCNbqR1WcA6JZMCFc+a43UD9 pkjOxnRPtIsEOO5zKNxogi6NoJpmf1DQfJmPbMUq4h13SZjWb0KgD2DEuQ/JDsAI xSD1Ura6saJIcOskF8MbxHpQT81Ejnxo -----END CERTIFICATE-----Generated at Sat Dec 6 21:47:37 2025 by rpki-client