This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft File: H7fzr2-da5fjcg7FSsv1iTrGk2g.mft (raw, json) Hash identifier: 77MECBP9H4YIOTOh9++pZPKoubGcaC9e0zbRJyVvEDc= Subject key identifier: 93:88:17:F8:84:95:20:8F:B4:5D:60:E6:1F:76:3C:C3:2A:23:8C:17 Authority key identifier: 1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 Certificate issuer: /CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft Manifest number: 01F6 Signing time: Sun 07 Dec 2025 01:01:22 +0000 Manifest this update: Sun 07 Dec 2025 01:01:22 +0000 Manifest next update: Sun 14 Dec 2025 01:01:22 +0000 Files and hashes: 1: H7fzr2-da5fjcg7FSsv1iTrGk2g.crl (hash: ojkhGO6G3zvJcSU+OCbAc4+uCPJxXSy5A1cUYi89NfE=) 2: 2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa (hash: bednLb1aavoMryTZu6a+ZITB3tAwjB8YeG5P5A+FHwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117DD2, serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Validity Not Before: Dec 7 01:01:22 2025 GMT Not After : Dec 14 01:01:22 2025 GMT Subject: CN=6934d1e2-3722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:70:0d:fd:75:50:a2:04:45:32:4d:12:70:d5: 32:c2:b0:a5:f1:61:99:86:da:ee:82:16:4d:02:42: c2:aa:17:cd:05:59:03:2b:0f:56:7b:83:86:8f:59: c5:9f:a0:b2:ab:7e:42:1e:76:a2:aa:c3:13:3e:03: 75:1a:1e:9f:82:5a:26:fa:5a:5a:50:68:88:13:75: cc:c4:95:45:f6:31:b1:20:3b:dd:fd:9f:a9:0e:30: ac:5f:0b:ef:41:85:b7:76:35:0a:2f:f4:ae:b2:40: 84:54:d6:cb:a5:22:f7:f0:c4:a4:28:bf:83:04:c8: 1c:80:df:76:db:61:a2:aa:c4:b4:d7:6a:ec:0d:fd: d1:e1:76:cd:d5:ea:02:52:ed:d1:1b:ad:bf:7d:5d: 5b:60:d1:77:ce:04:81:f1:19:ca:1d:85:47:85:83: 14:0d:b2:9c:3d:fb:1f:0c:8c:00:ea:3c:9a:4e:e7: d7:a6:14:b1:01:27:1d:d6:cc:c1:8f:4b:05:6f:a2: 20:32:36:17:0a:0b:b6:69:15:4c:6d:8d:3c:21:d2: bd:3e:50:04:37:fd:ba:dc:0a:1b:43:65:50:39:9d: b9:77:5b:c2:12:86:37:e2:7e:94:75:15:f3:85:d4: f8:49:96:1b:cb:41:86:96:a4:a2:bd:57:22:7e:37: 4a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:88:17:F8:84:95:20:8F:B4:5D:60:E6:1F:76:3C:C3:2A:23:8C:17 X509v3 Authority Key Identifier: keyid:1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:76:1d:d1:73:1c:3e:8a:bc:a9:f0:5d:2b:e8:e4:c4:eb:17: a6:e5:fc:f9:b5:bc:d2:78:c6:3d:a9:e6:86:4d:b3:dc:28:06: 9a:15:32:e6:31:cc:95:51:bb:02:e2:64:db:0c:41:0d:a0:c9: e3:7d:4c:c1:0b:c5:68:2a:8b:37:d2:0b:2a:9c:42:fa:cc:9c: 19:b6:7d:80:4b:f6:0a:ed:bc:29:07:a8:eb:59:5d:c8:85:3b: 4b:91:c3:8e:70:83:2b:d7:18:60:8b:12:e4:48:94:b6:39:49: 5e:89:b8:07:e3:7d:1f:a1:99:79:2b:5e:1a:b0:b2:05:54:bf: fd:f4:b9:e0:cf:e1:31:fd:47:71:0a:8c:97:48:3c:f6:cc:6e: 82:9c:71:e8:96:6f:7a:23:77:bd:d3:b1:f9:cd:08:d8:35:df: 0c:b1:af:43:eb:e0:1e:22:52:cb:cd:64:d6:a2:13:09:12:87: 30:33:4c:62:62:02:a4:f6:d0:64:f5:fc:0b:29:ca:38:21:99: 88:7e:e6:0c:2b:9f:87:d5:be:5f:29:4a:8a:1b:b0:f2:7a:29: f1:fa:35:36:2a:29:6d:90:3a:37:4e:d6:c1:8a:9c:f0:34:d6: fd:a4:6e:9e:86:e7:13:23:8e:fd:d5:07:4d:fe:5d:d3:e6:e3: 5c:0b:39:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdERDIxMTAvBgNVBAUTKDFGQjdGM0FGNkY5RDZCOTdFMzcyMEVDNTRBQ0JGNTg5 M0FDNjkzNjgwHhcNMjUxMjA3MDEwMTIyWhcNMjUxMjE0MDEwMTIyWjAYMRYwFAYD VQQDEw02OTM0ZDFlMi0zNzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXAN/XVQogRFMk0ScNUywrCl8WGZhtrughZNAkLCqhfNBVkDKw9We4OGj1nF n6Cyq35CHnaiqsMTPgN1Gh6fglom+lpaUGiIE3XMxJVF9jGxIDvd/Z+pDjCsXwvv QYW3djUKL/SuskCEVNbLpSL38MSkKL+DBMgcgN9222GiqsS012rsDf3R4XbN1eoC Uu3RG62/fV1bYNF3zgSB8RnKHYVHhYMUDbKcPfsfDIwA6jyaTufXphSxAScd1szB j0sFb6IgMjYXCgu2aRVMbY08IdK9PlAEN/263AobQ2VQOZ25d1vCEoY34n6UdRXz hdT4SZYby0GGlqSivVcifjdK6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOIF/iE lSCPtF1g5h92PMMqI4wXMB8GA1UdIwQYMBaAFB+3869vnWuX43IOxUrL9Yk6xpNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0REMi8xMDFFREFFQUQx QzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1ZmpjZzdGU3N2MWlUckdr MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3ZnpyMi1kYTVmamNnN0ZTc3YxaVRyR2syZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0REMi8xMDFFREFFQUQxQzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1 ZmpjZzdGU3N2MWlUckdrMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVdh3Rcxw+iryp8F0r6OTE6xem5fz5tbzSeMY9qeaGTbPcKAaaFTLm McyVUbsC4mTbDEENoMnjfUzBC8VoKos30gsqnEL6zJwZtn2AS/YK7bwpB6jrWV3I hTtLkcOOcIMr1xhgixLkSJS2OUleibgH430foZl5K14asLIFVL/99Lngz+Ex/Udx CoyXSDz2zG6CnHHolm96I3e907H5zQjYNd8Msa9D6+AeIlLLzWTWohMJEocwM0xi YgKk9tBk9fwLKco4IZmIfuYMK5+H1b5fKUqKG7Dyeinx+jU2KiltkDo3TtbBipzw NNb9pG6ehucTI4791QdN/l3T5uNcCznG -----END CERTIFICATE-----Generated at Mon Dec 8 06:02:10 2025 by rpki-client