This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: 19+xZM2mFXppONLQ1D3JdzoV9QOE7xP3dleADn7fYbA= Subject key identifier: 70:19:38:CF:B0:8C:A3:1A:33:62:96:B7:7A:81:5D:CF:8B:D5:EB:E6 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 184A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 1832 Signing time: Mon 22 Dec 2025 16:17:32 +0000 Manifest this update: Mon 22 Dec 2025 16:17:31 +0000 Manifest next update: Mon 29 Dec 2025 16:17:31 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: 1UCGqBfuWAOiL4DqNf93yT7tVU8+RGBqgmF3YIDlLJU=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6218 (0x184a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Dec 22 16:17:31 2025 GMT Not After : Dec 29 16:17:31 2025 GMT Subject: CN=69496f1c-65a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:18:2a:76:8f:91:52:0f:9c:ff:a1:c8:02:c6: d5:f9:20:73:d8:7a:87:68:e6:e5:36:2d:09:e1:1d: c6:1e:a8:58:f2:70:9d:0f:00:ac:1a:fa:57:45:5e: ba:1f:1b:08:47:8f:ff:3b:aa:10:3a:c8:16:ed:91: e0:c9:7f:7a:d2:c0:c7:a4:1d:a8:60:7c:09:aa:c8: ee:50:e9:d2:ed:63:d8:06:19:70:92:a4:ce:5d:4e: 2e:4e:48:6f:87:a8:0f:b7:df:5a:0e:51:a2:7d:48: cf:25:21:d5:3c:50:23:c4:cd:cc:4a:4f:7d:54:11: 56:a9:27:9f:5a:75:7e:63:3f:89:73:6f:96:a3:cb: 03:27:3f:b7:60:e1:72:11:e4:af:38:1c:dc:c2:7c: 99:6c:2c:d3:cd:c2:cd:9f:2d:2a:6c:00:d0:ba:c6: 87:f5:61:fb:c6:aa:42:4e:dc:61:59:1e:e2:e9:3f: da:f8:cd:48:2a:fb:c9:cd:0f:97:f3:26:09:10:e0: 89:57:b9:36:0d:b0:69:ed:e0:26:06:bc:21:5f:49: 3d:47:ce:16:a8:2d:fb:3e:6f:e5:ef:f0:91:0a:af: 4e:d9:78:64:97:92:f2:45:f0:8b:8f:d8:18:52:7b: c4:ec:6a:15:10:8f:a4:22:47:52:84:3d:ea:11:4b: 04:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:19:38:CF:B0:8C:A3:1A:33:62:96:B7:7A:81:5D:CF:8B:D5:EB:E6 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:7c:2a:43:db:50:d2:8e:51:3d:ac:39:40:12:17:a1:f3:46: 22:02:d9:78:75:8b:9a:e2:f5:ae:32:a3:4d:6c:e0:b9:bd:63: 76:1f:e7:69:78:fc:05:fd:88:08:0f:14:1c:52:9a:24:49:7a: 7d:03:0c:8a:af:0e:83:c9:fe:70:78:3a:75:75:b4:52:87:f8: 93:34:88:aa:95:02:cc:23:e9:ab:a2:44:86:e6:81:09:5a:61: 88:af:2a:93:6a:99:8e:20:be:c5:b0:cd:0e:76:46:c8:be:c1: 05:ba:3d:d8:bd:97:da:63:6e:c9:7b:81:4b:ed:86:ac:7d:99: 09:3c:c8:b8:d0:a3:62:57:55:3b:29:ca:cd:a6:4d:e2:7c:48: 2d:fe:71:1d:18:19:38:5d:f1:89:5d:71:84:94:4f:c3:94:9a: 31:d6:bb:35:b8:2d:84:22:23:a7:b6:ef:a7:6c:f6:50:22:0f: 8c:0a:61:3b:0a:4c:5d:fa:e7:7d:81:8d:28:8d:bb:47:67:bb: 8e:28:04:31:3c:c9:3b:25:c6:c6:02:3f:08:d2:e6:70:10:9b: d6:cd:20:65:5b:3e:cd:a4:5a:8e:26:f4:58:94:a1:00:01:64: 42:e8:e7:f7:97:90:fc:07:4d:9e:1e:d8:d9:da:45:9e:b4:1e: 95:3a:aa:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUxMjIyMTYxNzMxWhcNMjUxMjI5MTYxNzMxWjAYMRYwFAYD VQQDDA02OTQ5NmYxYy02NWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRgqdo+RUg+c/6HIAsbV+SBz2HqHaOblNi0J4R3GHqhY8nCdDwCsGvpXRV66 HxsIR4//O6oQOsgW7ZHgyX960sDHpB2oYHwJqsjuUOnS7WPYBhlwkqTOXU4uTkhv h6gPt99aDlGifUjPJSHVPFAjxM3MSk99VBFWqSefWnV+Yz+Jc2+Wo8sDJz+3YOFy EeSvOBzcwnyZbCzTzcLNny0qbADQusaH9WH7xqpCTtxhWR7i6T/a+M1IKvvJzQ+X 8yYJEOCJV7k2DbBp7eAmBrwhX0k9R84WqC37Pm/l7/CRCq9O2Xhkl5LyRfCLj9gY UnvE7GoVEI+kIkdShD3qEUsEBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAZOM+w jKMaM2KWt3qBXc+L1evmMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIfCpD21DSjlE9rDlAEheh80YiAtl4dYua4vWuMqNNbOC5vWN2H+dp ePwF/YgIDxQcUpokSXp9AwyKrw6Dyf5weDp1dbRSh/iTNIiqlQLMI+mrokSG5oEJ WmGIryqTapmOIL7FsM0OdkbIvsEFuj3YvZfaY27Je4FL7YasfZkJPMi40KNiV1U7 KcrNpk3ifEgt/nEdGBk4XfGJXXGElE/DlJox1rs1uC2EIiOntu+nbPZQIg+MCmE7 Ckxd+ud9gY0ojbtHZ7uOKAQxPMk7JcbGAj8I0uZwEJvWzSBlWz7NpFqOJvRYlKEA AWRC6Of3l5D8B02eHtjZ2kWetB6VOqqz -----END CERTIFICATE-----Generated at Wed Dec 24 15:59:03 2025 by rpki-client