This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft File: mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft (raw, json) Hash identifier: vCzVcj+6whunDoKeZegCd/+bdvsg1M+dLbnUCgUHdBo= Subject key identifier: E3:EF:68:5B:07:91:83:40:2D:22:BE:24:BE:0D:56:21:44:AD:CD:E4 Authority key identifier: 98:74:E6:D6:1A:60:D8:84:4C:30:1D:81:F3:37:7C:BF:34:F0:D8:BF Certificate issuer: /CN=A9190B12/serialNumber=9874E6D61A60D8844C301D81F3377CBF34F0D8BF Certificate serial: 07DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft Manifest number: 07D9 Signing time: Sat 20 Dec 2025 20:35:15 +0000 Manifest this update: Sat 20 Dec 2025 20:35:15 +0000 Manifest next update: Sat 27 Dec 2025 20:35:15 +0000 Files and hashes: 1: mHTm1hpg2IRMMB2B8zd8vzTw2L8.crl (hash: cOB7qf0h0e7e/M/PTyW1qlN88qStoAY3KHPh4jFarJY=) 2: 0F785ED8171F11EB9D7AD884C4F9AE02.roa (hash: ukxlstcsmIDQXwCApEHhXJnp0Hl8gCal/Oj825qTh9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.crl rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2015 (0x7df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190B12, serialNumber=9874E6D61A60D8844C301D81F3377CBF34F0D8BF Validity Not Before: Dec 20 20:35:15 2025 GMT Not After : Dec 27 20:35:15 2025 GMT Subject: CN=69470883-fde7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:62:09:03:c0:79:09:c9:9d:26:d4:02:3f:17: da:1c:45:59:62:cf:ac:86:80:dc:63:59:2d:61:d1: 6e:1d:79:93:78:25:db:6f:a0:46:c0:d5:5b:2b:41: 56:29:fc:84:ac:cd:86:24:91:c9:32:a8:b0:90:4c: f8:c7:04:f6:46:b3:de:f5:b6:1b:42:dc:2b:72:68: 9e:2b:74:51:f8:99:7b:50:df:45:14:54:6f:35:9e: 35:c7:67:8e:f4:20:24:48:44:e4:4a:c4:41:f2:4c: 19:8a:61:18:59:98:1f:8f:75:2e:2d:ed:fc:f1:cd: 3c:d1:3b:fe:94:fa:bc:a6:17:bd:e4:d2:72:bf:1d: 18:a2:0b:11:d3:57:c1:69:dc:dc:0e:a5:c4:2e:63: 07:38:f9:02:63:c8:6e:5b:3d:8e:cd:08:d8:b7:14: 6a:0c:f2:f5:9b:73:6f:9e:3b:9b:76:3e:55:15:5d: 1c:23:7e:7d:12:0b:47:05:dc:8c:c9:73:7f:42:22: 7a:12:5f:a7:0b:8f:6a:bc:24:e8:2b:b1:aa:61:e9: 25:cd:62:7a:85:8c:83:fb:66:48:e3:e7:7c:f6:fa: 5c:ac:af:ef:6f:47:e3:5d:bc:c3:3c:4e:f4:e5:f8: 08:9d:23:2c:f1:6e:5d:44:47:e8:68:34:16:36:53: 01:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EF:68:5B:07:91:83:40:2D:22:BE:24:BE:0D:56:21:44:AD:CD:E4 X509v3 Authority Key Identifier: keyid:98:74:E6:D6:1A:60:D8:84:4C:30:1D:81:F3:37:7C:BF:34:F0:D8:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:3c:42:e7:14:fa:fe:fd:18:52:96:cb:b2:73:e4:a9:71:2f: 29:a6:06:5e:cb:30:e6:30:bb:ec:ca:99:1e:ba:8c:8a:37:66: 8c:3b:b0:24:24:2f:43:19:9b:c3:f2:49:e1:0b:47:b7:99:49: 1f:5c:51:11:e9:88:bd:13:79:36:6d:19:83:c8:95:bc:d2:e5: de:5f:de:91:0c:28:fc:01:cf:92:1f:02:59:5f:15:eb:b8:97: 60:94:b1:a7:c9:c4:2d:e9:ee:b6:3f:e8:35:3f:85:21:db:75: 26:19:ad:8f:a0:11:af:84:8a:5b:e3:b6:3c:eb:45:28:b1:49: df:9f:b8:28:42:c4:6c:ab:ad:b9:1f:4b:c4:19:0d:2c:bc:3c: ab:98:a8:0b:ae:15:3e:e9:fa:68:79:9a:93:49:85:5e:e8:6e: c4:2b:57:06:ed:e9:ab:24:0e:9e:60:3a:5c:46:f6:16:99:99: c5:c3:09:28:f1:3c:35:b8:97:fb:e0:b0:c2:5e:b1:28:ec:f5: e7:b7:3f:22:bd:95:c6:02:39:2c:64:2c:46:bc:5b:6a:67:12: fc:1f:bb:6b:c8:61:45:d9:1e:08:fb:74:4b:31:47:db:43:3a: d5:a7:2f:65:94:a4:5c:06:f7:56:3f:d8:a6:a5:ab:53:4f:4d: 43:96:e8:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBCMTIxMTAvBgNVBAUTKDk4NzRFNkQ2MUE2MEQ4ODQ0QzMwMUQ4MUYzMzc3Q0JG MzRGMEQ4QkYwHhcNMjUxMjIwMjAzNTE1WhcNMjUxMjI3MjAzNTE1WjAYMRYwFAYD VQQDDA02OTQ3MDg4My1mZGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mIJA8B5CcmdJtQCPxfaHEVZYs+shoDcY1ktYdFuHXmTeCXbb6BGwNVbK0FW KfyErM2GJJHJMqiwkEz4xwT2RrPe9bYbQtwrcmieK3RR+Jl7UN9FFFRvNZ41x2eO 9CAkSETkSsRB8kwZimEYWZgfj3UuLe388c080Tv+lPq8phe95NJyvx0YogsR01fB adzcDqXELmMHOPkCY8huWz2OzQjYtxRqDPL1m3Nvnjubdj5VFV0cI359EgtHBdyM yXN/QiJ6El+nC49qvCToK7GqYeklzWJ6hYyD+2ZI4+d89vpcrK/vb0fjXbzDPE70 5fgInSMs8W5dREfoaDQWNlMBDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPvaFsH kYNALSK+JL4NViFErc3kMB8GA1UdIwQYMBaAFJh05tYaYNiETDAdgfM3fL808Ni/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEIxMi8yNkQzNjI3ODE3 MUQxMUVCODMzRjREODBDNEY5QUUwMi9tSFRtMWhwZzJJUk1NQjJCOHpkOHZ6VHcy TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21IVG0xaHBnMklSTU1CMkI4emQ4dnpUdzJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEIxMi8yNkQzNjI3ODE3MUQxMUVCODMzRjREODBDNEY5QUUwMi9tSFRtMWhwZzJJ Uk1NQjJCOHpkOHZ6VHcyTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5PELnFPr+/RhSlsuyc+SpcS8ppgZeyzDmMLvsypkeuoyKN2aMO7Ak JC9DGZvD8knhC0e3mUkfXFER6Yi9E3k2bRmDyJW80uXeX96RDCj8Ac+SHwJZXxXr uJdglLGnycQt6e62P+g1P4Uh23UmGa2PoBGvhIpb47Y860UosUnfn7goQsRsq625 H0vEGQ0svDyrmKgLrhU+6fpoeZqTSYVe6G7EK1cG7emrJA6eYDpcRvYWmZnFwwko 8Tw1uJf74LDCXrEo7PXntz8ivZXGAjksZCxGvFtqZxL8H7tryGFF2R4I+3RLMUfb QzrVpy9llKRcBvdWP9impatTT01DluhT -----END CERTIFICATE-----Generated at Sun Dec 21 23:01:59 2025 by rpki-client