This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft File: H7fzr2-da5fjcg7FSsv1iTrGk2g.mft (raw, json) Hash identifier: zihYvXDZQiY2LIpmJaeU8QF01BIjOT4xjbZT8Kfh/zU= Subject key identifier: E4:9D:46:25:74:2D:AB:10:CC:91:3D:41:38:B6:BD:E7:82:9E:D2:B9 Authority key identifier: 1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 Certificate issuer: /CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft Manifest number: 01FC Signing time: Fri 19 Dec 2025 01:40:18 +0000 Manifest this update: Fri 19 Dec 2025 01:40:17 +0000 Manifest next update: Fri 26 Dec 2025 01:40:17 +0000 Files and hashes: 1: H7fzr2-da5fjcg7FSsv1iTrGk2g.crl (hash: piLvtMdQwn23qf2x5YrfkjZwL3Se5+dKz+4DS/Ta1/s=) 2: 2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa (hash: bednLb1aavoMryTZu6a+ZITB3tAwjB8YeG5P5A+FHwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117DD2, serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Validity Not Before: Dec 19 01:40:17 2025 GMT Not After : Dec 26 01:40:17 2025 GMT Subject: CN=6944ad02-1041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:1a:7d:3e:62:62:56:d4:0e:71:88:7f:f3: 49:d0:4d:bf:4d:ea:9c:2e:c8:2c:88:f7:65:51:2e: 58:c9:c5:b1:82:96:5f:26:62:05:91:94:1e:20:17: ad:62:7c:28:cf:88:23:02:51:b9:bd:aa:27:cc:f5: bd:2f:7e:01:78:19:ac:5b:e0:14:6e:dc:53:68:fb: 6e:13:3c:31:4d:4d:4e:ee:d6:83:14:78:fd:de:33: e0:70:5a:d5:4d:7c:06:82:0e:7c:3d:d9:66:12:8e: 17:00:a0:0f:fc:8a:53:95:c1:26:6d:94:1e:b1:ec: db:75:e0:c6:0d:04:e0:6a:f5:41:48:19:58:35:74: 09:0a:1c:b7:0f:08:83:c8:d7:db:0c:58:43:f3:a1: 7b:34:30:40:59:96:fa:79:dd:a1:74:f4:e3:c3:50: 03:1c:0b:71:3a:12:dd:a1:d0:a4:a9:1e:0b:52:74: 8a:b3:74:a3:70:ae:2c:dd:7e:80:7a:92:4d:d3:b8: 3b:c3:8b:03:4e:dd:dc:f1:e0:ee:cd:1e:66:90:c6: b6:8e:16:8d:73:43:d9:75:23:5f:ac:3c:e3:1e:6f: 75:99:51:d6:64:01:b8:fc:d8:94:03:70:01:3c:80: b7:44:06:7e:60:36:52:4f:d6:5e:78:e0:4a:f9:b1: aa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:9D:46:25:74:2D:AB:10:CC:91:3D:41:38:B6:BD:E7:82:9E:D2:B9 X509v3 Authority Key Identifier: keyid:1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:d6:8d:c4:5f:a4:d8:78:72:3b:6e:c3:76:98:6e:5e:87:72: 21:de:2e:35:79:09:08:c7:ae:9b:84:23:e1:e1:2a:a0:68:8b: 39:2a:b6:79:5f:cc:34:ca:a0:3d:02:81:63:b7:7d:35:a4:df: 7b:6f:f1:97:aa:b6:a6:bc:dc:62:d7:3b:20:e1:95:b9:51:14: 3c:86:e7:6d:4c:bd:3f:f5:b2:08:c4:ed:9e:02:74:12:02:18: 70:e7:1c:9f:47:cb:17:e0:e8:d3:29:38:4e:a6:ab:a0:30:b4: a1:44:72:21:c0:75:a9:50:d6:a4:3e:81:9b:ef:23:8f:2b:b6: da:56:f0:ad:48:e1:ef:0d:a6:3f:b6:02:1f:3f:b1:17:82:2f: 7d:0f:9e:b9:f4:3a:6a:ef:0c:4e:4f:2c:35:a5:3a:7a:6d:f4: f3:cc:0e:05:1e:04:f5:00:95:48:66:79:54:4e:c7:e2:c9:26: 65:95:92:be:e9:a4:b9:2a:2a:64:86:b4:ea:43:94:38:3d:26: 23:7f:39:fb:c8:c8:1f:50:96:e6:3f:af:54:1c:ae:0f:e5:74: 90:07:59:60:14:b4:a5:0b:aa:a9:9a:05:d8:58:15:61:71:42: 32:7d:47:f3:cf:9b:b1:85:58:9f:83:83:b0:92:c1:d7:22:54: 20:2f:5f:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdERDIxMTAvBgNVBAUTKDFGQjdGM0FGNkY5RDZCOTdFMzcyMEVDNTRBQ0JGNTg5 M0FDNjkzNjgwHhcNMjUxMjE5MDE0MDE3WhcNMjUxMjI2MDE0MDE3WjAYMRYwFAYD VQQDDA02OTQ0YWQwMi0xMDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucgafT5iYlbUDnGIf/NJ0E2/TeqcLsgsiPdlUS5YycWxgpZfJmIFkZQeIBet Ynwoz4gjAlG5vaonzPW9L34BeBmsW+AUbtxTaPtuEzwxTU1O7taDFHj93jPgcFrV TXwGgg58PdlmEo4XAKAP/IpTlcEmbZQesezbdeDGDQTgavVBSBlYNXQJChy3DwiD yNfbDFhD86F7NDBAWZb6ed2hdPTjw1ADHAtxOhLdodCkqR4LUnSKs3SjcK4s3X6A epJN07g7w4sDTt3c8eDuzR5mkMa2jhaNc0PZdSNfrDzjHm91mVHWZAG4/NiUA3AB PIC3RAZ+YDZST9ZeeOBK+bGqxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSdRiV0 LasQzJE9QTi2veeCntK5MB8GA1UdIwQYMBaAFB+3869vnWuX43IOxUrL9Yk6xpNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0REMi8xMDFFREFFQUQx QzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1ZmpjZzdGU3N2MWlUckdr MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3ZnpyMi1kYTVmamNnN0ZTc3YxaVRyR2syZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0REMi8xMDFFREFFQUQxQzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1 ZmpjZzdGU3N2MWlUckdrMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB91o3EX6TYeHI7bsN2mG5eh3Ih3i41eQkIx66bhCPh4SqgaIs5KrZ5 X8w0yqA9AoFjt301pN97b/GXqramvNxi1zsg4ZW5URQ8hudtTL0/9bIIxO2eAnQS Ahhw5xyfR8sX4OjTKThOpqugMLShRHIhwHWpUNakPoGb7yOPK7baVvCtSOHvDaY/ tgIfP7EXgi99D5659Dpq7wxOTyw1pTp6bfTzzA4FHgT1AJVIZnlUTsfiySZllZK+ 6aS5KipkhrTqQ5Q4PSYjfzn7yMgfUJbmP69UHK4P5XSQB1lgFLSlC6qpmgXYWBVh cUIyfUfzz5uxhVifg4OwksHXIlQgL18V -----END CERTIFICATE-----Generated at Fri Dec 19 22:09:34 2025 by rpki-client