This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: G+d7N1gsYxdHLUolgk/qz91eUV+KMJsfaA3STJ2f7hI= Subject key identifier: F5:19:B5:65:40:FE:DD:1D:6B:A4:DE:AC:BC:2D:82:C8:A0:A2:FB:B4 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1576 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 1565 Signing time: Thu 04 Dec 2025 16:26:36 +0000 Manifest this update: Thu 04 Dec 2025 16:26:35 +0000 Manifest next update: Thu 11 Dec 2025 16:26:35 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: OFwQgH+p3rVuGbYBb3CqaqZeqE0C7UktTTL0LLSHJrw=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5494 (0x1576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Dec 4 16:26:35 2025 GMT Not After : Dec 11 16:26:35 2025 GMT Subject: CN=6931b63c-c13f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bb:69:42:0d:06:08:11:e7:84:4d:d0:8b:44: 25:a6:66:76:7e:30:79:06:41:7f:1c:40:35:7e:6f: 83:d9:ca:65:30:96:22:e1:76:af:98:3e:11:f8:93: e0:c8:22:07:8a:4e:14:df:ba:fe:70:09:e3:e3:44: c0:00:de:ef:84:ee:a9:ad:47:cf:37:2c:8b:81:d9: 42:46:39:69:8f:9b:75:c3:1f:19:dd:f0:f3:20:0b: 7d:da:2b:4d:10:37:a9:e4:00:90:95:bf:6d:d2:ee: a7:bf:0e:9a:d1:f7:43:ee:d1:53:9e:36:27:13:87: 47:49:6c:62:d1:3a:88:0d:a0:20:5c:fc:37:0d:a5: 02:17:30:e3:e4:64:63:df:29:6e:f0:2c:a4:06:e6: d6:12:1f:70:e0:d9:12:00:90:28:04:78:8a:83:53: f1:1c:1e:d1:a5:5b:46:68:dc:f8:c7:64:5c:91:f5: 68:56:eb:bf:92:5d:46:6b:c9:d6:54:52:c9:ea:26: 4e:62:36:6e:ee:d8:e9:f3:94:74:a1:aa:24:f9:bb: 22:f9:4f:d7:2c:a2:cd:e2:c8:6b:a1:ea:65:74:9f: 7e:77:5d:5d:1f:c3:9a:c6:76:e9:7b:ab:63:f4:b0: 70:db:18:94:82:f4:78:27:1c:9d:6f:b6:af:aa:7b: 68:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:19:B5:65:40:FE:DD:1D:6B:A4:DE:AC:BC:2D:82:C8:A0:A2:FB:B4 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:7d:5b:18:d9:bc:aa:e7:5b:4c:17:09:6a:9e:f8:ea:85:4b: 4f:bd:0d:b3:4b:31:fe:28:21:e5:9b:4b:af:b4:d3:ae:7f:20: fc:6e:60:f0:86:2f:27:01:30:f7:f1:47:03:d4:87:30:56:86: 33:47:7d:93:a0:51:af:a3:7f:12:71:fe:8e:26:a0:cc:56:57: 00:dd:17:cb:05:c9:7c:dc:e3:40:29:e2:d3:36:be:51:1a:0a: 7e:7c:96:f0:1b:5c:ac:ca:e1:c8:b6:3d:ca:6c:50:86:80:a9: 0d:cb:35:d7:ef:0d:01:00:f4:9c:7b:b4:e0:b5:9f:3a:4f:2a: d2:38:e6:ee:fc:db:11:14:d4:9f:3c:45:92:39:9e:59:1f:c4: fe:68:65:4c:27:e1:98:7d:2e:c7:e2:49:59:96:3f:41:e3:7a: 8b:a3:72:17:b1:ca:ac:17:f3:89:16:a5:01:44:07:1f:2d:c9: ef:b6:4b:05:a5:40:f7:25:0a:cf:70:29:6b:90:56:80:57:67: 75:0b:0d:6c:ae:a4:b7:82:86:1f:68:62:e7:23:95:2b:72:f9: ec:ec:e0:6b:70:0a:09:12:d4:f3:e3:4f:4a:de:76:67:54:50: d0:ec:3a:6d:83:8f:9c:83:8a:0d:fe:a4:f1:88:6c:bc:e6:e6: e7:f5:f4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUxMjA0MTYyNjM1WhcNMjUxMjExMTYyNjM1WjAYMRYwFAYD VQQDEw02OTMxYjYzYy1jMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrtpQg0GCBHnhE3Qi0QlpmZ2fjB5BkF/HEA1fm+D2cplMJYi4XavmD4R+JPg yCIHik4U37r+cAnj40TAAN7vhO6prUfPNyyLgdlCRjlpj5t1wx8Z3fDzIAt92itN EDep5ACQlb9t0u6nvw6a0fdD7tFTnjYnE4dHSWxi0TqIDaAgXPw3DaUCFzDj5GRj 3ylu8CykBubWEh9w4NkSAJAoBHiKg1PxHB7RpVtGaNz4x2RckfVoVuu/kl1Ga8nW VFLJ6iZOYjZu7tjp85R0oaok+bsi+U/XLKLN4shroepldJ9+d11dH8Oaxnbpe6tj 9LBw2xiUgvR4Jxydb7avqntolwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUZtWVA /t0da6TerLwtgsigovu0MB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcfVsY2byq51tMFwlqnvjqhUtPvQ2zSzH+KCHlm0uvtNOufyD8bmDw hi8nATD38UcD1IcwVoYzR32ToFGvo38Scf6OJqDMVlcA3RfLBcl83ONAKeLTNr5R Ggp+fJbwG1ysyuHItj3KbFCGgKkNyzXX7w0BAPSce7TgtZ86TyrSOObu/NsRFNSf PEWSOZ5ZH8T+aGVMJ+GYfS7H4klZlj9B43qLo3IXscqsF/OJFqUBRAcfLcnvtksF pUD3JQrPcClrkFaAV2d1Cw1srqS3goYfaGLnI5Urcvns7OBrcAoJEtTz409K3nZn VFDQ7Dptg4+cg4oN/qTxiGy85ubn9fS3 -----END CERTIFICATE-----Generated at Sat Dec 6 17:27:06 2025 by rpki-client