This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: XaNOB1JYAb9zuLFqG7COJ40UpNMc8YAg6YN2CiHEuj8= Subject key identifier: 43:0E:8B:D4:7F:1B:0A:B1:26:B2:3C:2F:7F:4A:19:AD:71:7D:38:B8 Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 08D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 1476 Signing time: Sat 06 Dec 2025 18:14:53 +0000 Manifest this update: Sat 06 Dec 2025 18:14:52 +0000 Manifest next update: Sat 13 Dec 2025 18:14:52 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: yOyPdtkLzer76Zq8xhrwajOfLDekvs1/Qg4yTiplyZA=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2257 (0x8d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Dec 6 18:14:52 2025 GMT Not After : Dec 13 18:14:52 2025 GMT Subject: CN=6934729d-eb65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ad:bf:6f:c7:8f:53:db:b1:11:cb:e2:d7:c5: 5e:87:6a:23:03:af:51:75:c5:0b:49:6f:c4:b9:c0: e1:6f:e6:fd:3d:62:e2:ed:ce:29:ef:af:0c:7c:be: 91:55:78:8f:d9:5d:80:ca:39:66:88:9d:b2:bf:a3: 4d:69:18:67:18:2b:83:40:88:6f:47:2b:23:84:c2: 9c:45:f0:5f:32:e1:c3:4e:ef:c7:bf:3f:c7:83:2a: b8:e8:6b:4d:32:99:00:61:45:f9:66:f2:cf:2c:3f: 76:94:78:21:e2:d9:cc:c8:93:25:33:0d:16:7c:aa: 95:68:a4:06:10:84:4e:de:18:dd:41:cc:3e:ea:66: 2e:91:94:d1:83:03:47:25:56:2a:d8:e9:c9:96:fb: 74:b9:88:b7:6f:7a:79:5b:04:61:b0:ff:11:d3:f8: f1:60:aa:52:ce:46:63:ea:e1:5c:8e:00:31:a8:50: a6:59:cc:89:49:89:92:e9:37:4f:16:30:ec:19:b1: fc:a9:58:fc:97:a6:4a:a0:2b:ca:81:18:fc:38:12: fa:04:c8:70:ec:fe:6f:67:26:b0:d9:9b:f2:85:bc: 77:b4:59:38:45:62:aa:89:2a:e2:b6:89:25:dd:27: 77:55:90:0c:03:4f:42:56:e7:fd:b8:8f:b8:39:af: 9e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:0E:8B:D4:7F:1B:0A:B1:26:B2:3C:2F:7F:4A:19:AD:71:7D:38:B8 X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:39:17:4a:7a:cd:a7:77:61:fb:ce:0b:98:05:ba:3a:39:c8: 57:db:77:32:11:61:73:8c:81:8a:78:e2:d5:d2:d3:49:a7:56: b6:03:c9:b4:db:26:8c:52:a6:13:35:d7:c0:cd:59:51:f4:71: a4:29:cf:0a:f1:10:eb:4a:42:d2:f5:ba:cd:07:4c:9d:4a:69: 6a:56:64:97:47:45:81:ad:af:d1:ea:9a:5c:c4:66:60:8f:48: 9e:dc:64:9b:ec:5d:88:79:bf:f1:d4:f3:77:95:0a:9f:7c:ad: 11:02:7e:d5:bb:29:38:4a:6b:a8:23:5a:e7:9f:e8:a1:e3:3e: ad:0c:ce:cb:14:c1:ac:fc:e1:46:25:c7:12:27:ee:d2:70:1b: 74:57:42:29:30:86:74:d3:d7:c3:80:d3:0c:28:ad:c9:6f:84: 8d:60:f9:94:2e:dc:b0:41:cf:a9:a5:f0:35:79:85:ff:3f:ae: 3e:25:f2:be:4b:98:1f:ec:71:cf:30:f9:30:5e:57:43:d7:37: 63:b8:4c:38:e2:0d:1c:47:84:f8:93:20:8a:bd:e3:5e:25:f0: 6d:0e:ed:13:13:aa:c7:5e:4c:d3:de:9d:11:75:22:c9:5b:c5: 11:c5:6c:cd:ce:a4:d7:24:5f:3c:80:f5:d7:de:d2:d8:c9:d9: c7:f2:e2:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjUxMjA2MTgxNDUyWhcNMjUxMjEzMTgxNDUyWjAYMRYwFAYD VQQDEw02OTM0NzI5ZC1lYjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2K2/b8ePU9uxEcvi18Veh2ojA69RdcULSW/EucDhb+b9PWLi7c4p768MfL6R VXiP2V2AyjlmiJ2yv6NNaRhnGCuDQIhvRysjhMKcRfBfMuHDTu/Hvz/Hgyq46GtN MpkAYUX5ZvLPLD92lHgh4tnMyJMlMw0WfKqVaKQGEIRO3hjdQcw+6mYukZTRgwNH JVYq2OnJlvt0uYi3b3p5WwRhsP8R0/jxYKpSzkZj6uFcjgAxqFCmWcyJSYmS6TdP FjDsGbH8qVj8l6ZKoCvKgRj8OBL6BMhw7P5vZyaw2Zvyhbx3tFk4RWKqiSritokl 3Sd3VZAMA09CVuf9uI+4Oa+ebQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMOi9R/ GwqxJrI8L39KGa1xfTi4MB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1ORdKes2nd2H7zguYBbo6OchX23cyEWFzjIGKeOLV0tNJp1a2A8m0 2yaMUqYTNdfAzVlR9HGkKc8K8RDrSkLS9brNB0ydSmlqVmSXR0WBra/R6ppcxGZg j0ie3GSb7F2Ieb/x1PN3lQqffK0RAn7Vuyk4SmuoI1rnn+ih4z6tDM7LFMGs/OFG JccSJ+7ScBt0V0IpMIZ009fDgNMMKK3Jb4SNYPmULtywQc+ppfA1eYX/P64+JfK+ S5gf7HHPMPkwXldD1zdjuEw44g0cR4T4kyCKveNeJfBtDu0TE6rHXkzT3p0RdSLJ W8URxWzNzqTXJF88gPXX3tLYydnH8uJA -----END CERTIFICATE-----Generated at Sat Dec 6 20:07:49 2025 by rpki-client