This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: F+CGsS3rZEkSva5FpYNaozvuF3R+/87Exelcq4c1RoA= Subject key identifier: C7:0F:41:EA:29:5F:93:95:36:96:E2:37:F2:63:2D:84:C7:BC:0E:4A Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 02A6 Signing time: Tue 23 Dec 2025 02:41:54 +0000 Manifest this update: Tue 23 Dec 2025 02:41:54 +0000 Manifest next update: Tue 30 Dec 2025 02:41:54 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: kzu12MzjpO/GK/qmRKTRt59I9Kw/U+KH7pf/RNKei4k=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: V5GXfj7MVmj/bsrh8ZK5BOMK+sTslcHA1M5O9HLWM8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Dec 23 02:41:54 2025 GMT Not After : Dec 30 02:41:54 2025 GMT Subject: CN=694a0172-e5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1d:c5:81:54:5e:be:00:3e:86:6e:d8:54:78: f6:5e:36:2c:f9:42:aa:b1:26:15:65:86:57:93:45: 74:0b:0c:fc:78:28:3f:b8:2e:e0:26:d5:44:2e:63: 14:5a:1d:57:7f:fb:d6:0f:45:c2:bf:02:40:a6:30: 6b:34:29:12:00:b0:80:f2:c3:4d:42:25:89:a2:34: 51:58:fa:54:c2:1b:d3:ea:8d:6f:ce:33:c4:37:bc: 8d:52:50:1a:b6:cc:c6:f1:4f:e4:78:7e:32:84:43: d8:ed:0b:0b:0f:92:1c:02:20:77:d1:e0:69:27:9d: 53:80:8c:9e:72:11:a1:ba:fa:4d:52:27:7b:27:5d: e5:41:55:6c:4a:0e:a1:f4:f0:08:90:ba:6e:76:22: 7a:87:59:bd:8b:bb:98:a5:c5:4d:9e:ff:af:f5:89: 53:43:27:fc:c6:97:06:f1:53:97:1a:60:ab:a1:32: ed:45:65:07:fd:b0:b8:2e:62:df:2b:a7:dc:56:74: eb:ca:2a:17:9c:cc:ea:8d:58:55:d7:fe:27:89:a3: ff:bc:62:15:b6:af:d3:5a:c5:7a:6e:0b:f7:47:55: 91:30:5e:4f:29:55:26:67:66:27:ad:be:0d:13:be: f2:2d:dc:78:b8:1f:b9:26:bc:c3:2a:ef:b8:d0:31: 48:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0F:41:EA:29:5F:93:95:36:96:E2:37:F2:63:2D:84:C7:BC:0E:4A X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:0a:c9:e3:fe:8d:f3:50:00:3e:56:8d:45:15:16:bb:15:ac: bd:e0:a7:e9:80:5d:82:e4:d6:fa:2f:a6:ff:1b:b0:67:f8:e9: 8f:88:01:a8:77:93:ae:ac:56:9a:2b:6e:8c:7e:70:e5:30:9b: 1b:ab:f7:22:2a:09:c2:59:d2:cb:71:be:4e:ba:4d:5f:31:0a: 5a:00:2e:1d:ac:10:ba:e3:b5:92:a9:f5:60:fb:20:bf:dc:55: a5:5c:4d:f7:c9:69:de:ef:e7:0c:3a:21:64:11:01:70:ea:0c: 84:74:28:3e:d4:f7:e5:c7:d9:27:96:14:ef:aa:ab:b7:2e:31: 88:8f:cb:57:d0:02:1a:02:98:ff:a6:d3:3c:49:1e:9e:ee:91: 0b:bb:b5:1a:02:bf:89:d9:1f:1f:24:69:19:bf:ae:c6:9d:c6: 5f:8c:78:25:d5:4c:42:d5:bb:af:8a:91:1f:75:9e:15:ef:cc: 6b:bc:9c:3d:82:fc:89:1a:2c:a0:54:6a:a8:39:31:5e:5f:e6: 68:db:0d:d9:c9:93:3a:c4:84:bc:1d:d5:e7:7c:ff:5c:43:b1: 94:a2:ed:fd:b0:bd:11:05:ea:10:73:91:85:f9:b9:ff:2a:a2: 27:4e:a8:ee:b8:1f:56:7b:49:57:7f:aa:5a:be:fe:df:71:60: 1d:99:60:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjUxMjIzMDI0MTU0WhcNMjUxMjMwMDI0MTU0WjAYMRYwFAYD VQQDDA02OTRhMDE3Mi1lNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6x3FgVRevgA+hm7YVHj2XjYs+UKqsSYVZYZXk0V0Cwz8eCg/uC7gJtVELmMU Wh1Xf/vWD0XCvwJApjBrNCkSALCA8sNNQiWJojRRWPpUwhvT6o1vzjPEN7yNUlAa tszG8U/keH4yhEPY7QsLD5IcAiB30eBpJ51TgIyechGhuvpNUid7J13lQVVsSg6h 9PAIkLpudiJ6h1m9i7uYpcVNnv+v9YlTQyf8xpcG8VOXGmCroTLtRWUH/bC4LmLf K6fcVnTryioXnMzqjVhV1/4niaP/vGIVtq/TWsV6bgv3R1WRMF5PKVUmZ2Ynrb4N E77yLdx4uB+5JrzDKu+40DFITQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcPQeop X5OVNpbiN/JjLYTHvA5KMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbCsnj/o3zUAA+Vo1FFRa7Fay94KfpgF2C5Nb6L6b/G7Bn+OmPiAGo d5OurFaaK26MfnDlMJsbq/ciKgnCWdLLcb5Ouk1fMQpaAC4drBC647WSqfVg+yC/ 3FWlXE33yWne7+cMOiFkEQFw6gyEdCg+1Pflx9knlhTvqqu3LjGIj8tX0AIaApj/ ptM8SR6e7pELu7UaAr+J2R8fJGkZv67GncZfjHgl1UxC1buvipEfdZ4V78xrvJw9 gvyJGiygVGqoOTFeX+Zo2w3ZyZM6xIS8HdXnfP9cQ7GUou39sL0RBeoQc5GF+bn/ KqInTqjuuB9We0lXf6pavv7fcWAdmWDt -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:54 2025 by rpki-client