This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: hySmCwaRqsHECoGpct+BPTxKaB+at7vRgwQe3mcfSFg= Subject key identifier: BA:CF:A5:AD:4A:C7:7D:D0:95:9B:EB:4A:1D:CA:8A:59:A5:65:43:8F Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: 0140 Signing time: Tue 23 Dec 2025 03:30:22 +0000 Manifest this update: Tue 23 Dec 2025 03:30:21 +0000 Manifest next update: Tue 30 Dec 2025 03:30:21 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: 8eCkBZzc2evCf5j5UaduC5ruQgVRxR0Rw9BpIc4SZ6Y=) 2: 35274C3080AF11F0BAFC1E65C4F9AE02.roa (hash: 7HONP22Ru+ZwbPqR0qZD9dpRS6n+36hJIPSSh9b77BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE, serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: Dec 23 03:30:21 2025 GMT Not After : Dec 30 03:30:21 2025 GMT Subject: CN=694a0cce-70fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:09:dc:75:3e:d4:b0:9c:08:09:5c:a9:56:c8: 88:cf:64:9f:42:96:c2:cc:6c:47:eb:3f:c1:48:7d: 6d:af:61:cc:4f:72:42:0c:a6:04:ea:be:8b:85:04: 3e:bd:ef:49:cc:e1:d0:cc:a6:5c:5f:01:b2:09:b1: 13:da:04:d7:69:1f:1e:a3:43:32:ec:98:4c:28:68: f1:95:33:f5:52:ec:2a:db:fb:0e:8a:19:f0:38:cf: 7b:87:64:1f:b9:b7:96:49:88:63:b2:33:cf:bb:b9: a7:2e:f8:7c:3f:3c:36:30:8f:36:e6:fd:c0:69:a0: 9a:9f:cf:82:8c:81:91:e5:c2:27:70:58:b7:cf:dc: c2:23:11:91:11:a6:c4:6e:86:fc:9d:3a:6f:a9:75: 42:4a:9b:70:f3:68:02:1a:1c:41:07:7e:1f:d9:bd: 2a:22:18:61:b5:08:7c:be:a9:90:f5:f8:f4:ac:a7: bb:da:0d:9c:87:e3:a7:ff:f9:c0:01:ab:ca:f9:e1: 42:1d:a9:40:e6:f4:86:5d:9c:4d:d4:3e:a3:f2:11: 37:93:22:d9:08:b8:87:87:60:8b:2f:10:0f:ea:63: 63:4e:e6:a2:3f:d0:dd:65:19:17:db:ae:6e:d8:37: 9c:a7:6c:57:31:65:31:03:bb:58:7d:f4:19:6d:48: d0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:CF:A5:AD:4A:C7:7D:D0:95:9B:EB:4A:1D:CA:8A:59:A5:65:43:8F X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:44:fe:02:99:54:8c:3b:71:c4:c9:05:eb:ce:ec:bf:65:e7: 03:00:fc:f7:b3:68:71:d1:f4:a8:75:eb:0a:73:9f:a8:82:6d: bd:68:46:57:c2:2a:28:47:01:a6:6e:0a:c4:67:c9:fd:81:72: ca:61:d7:9f:75:19:5b:0b:7c:f6:f2:c6:4d:c1:c5:5d:1e:6e: d0:e5:2d:9c:48:a8:f3:53:ec:d4:f1:c3:53:c5:f9:8b:b2:45: 53:d3:b2:0b:f8:ff:25:d2:0e:09:42:4c:61:89:7b:1c:20:61: a2:01:44:71:1d:c0:68:93:bc:18:74:03:2a:f8:ab:23:62:4d: 79:2c:e6:81:a4:81:72:6c:81:4b:5b:f0:7d:17:bc:08:c2:dd: b9:f3:ff:db:c6:5f:03:c2:25:b2:cd:8c:c9:71:d3:77:02:ef: 92:b0:4a:d6:a6:0b:43:ef:fe:e6:e1:23:cf:30:6c:78:88:af: fa:cc:13:0b:d4:b4:e3:3a:bb:68:1c:96:0e:8b:7c:d8:43:7d: ca:92:7e:7f:c0:e8:c6:87:87:2d:7a:c4:27:f3:36:aa:ad:6f: 66:eb:07:20:cb:d2:b6:b5:52:b9:dd:30:75:0d:78:49:a4:ba: c7:b7:25:63:06:0d:91:a7:7d:de:fa:57:98:41:6f:36:cd:93: d8:46:46:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGQ0UxMTAvBgNVBAUTKDg2NkU3OEQxQTQ1RThGRDEyNjgwOEFGRjdDRUE0RkMw OEU3RDkyQTgwHhcNMjUxMjIzMDMzMDIxWhcNMjUxMjMwMDMzMDIxWjAYMRYwFAYD VQQDDA02OTRhMGNjZS03MGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQncdT7UsJwICVypVsiIz2SfQpbCzGxH6z/BSH1tr2HMT3JCDKYE6r6LhQQ+ ve9JzOHQzKZcXwGyCbET2gTXaR8eo0My7JhMKGjxlTP1Uuwq2/sOihnwOM97h2Qf ubeWSYhjsjPPu7mnLvh8Pzw2MI825v3AaaCan8+CjIGR5cIncFi3z9zCIxGREabE bob8nTpvqXVCSptw82gCGhxBB34f2b0qIhhhtQh8vqmQ9fj0rKe72g2ch+On//nA AavK+eFCHalA5vSGXZxN1D6j8hE3kyLZCLiHh2CLLxAP6mNjTuaiP9DdZRkX265u 2Decp2xXMWUxA7tYffQZbUjQEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrPpa1K x33QlZvrSh3KilmlZUOPMB8GA1UdIwQYMBaAFIZueNGkXo/RJoCK/3zqT8COfZKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0ZDRS9FMEJFMzZBQzAy M0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5RW1nSXJfZk9wUHdJNTlr cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0ZDRS9FMEJFMzZBQzAyM0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5 RW1nSXJfZk9wUHdJNTlrcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3RP4CmVSMO3HEyQXrzuy/ZecDAPz3s2hx0fSodesKc5+ogm29aEZX wiooRwGmbgrEZ8n9gXLKYdefdRlbC3z28sZNwcVdHm7Q5S2cSKjzU+zU8cNTxfmL skVT07IL+P8l0g4JQkxhiXscIGGiAURxHcBok7wYdAMq+KsjYk15LOaBpIFybIFL W/B9F7wIwt258//bxl8DwiWyzYzJcdN3Au+SsErWpgtD7/7m4SPPMGx4iK/6zBML 1LTjOrtoHJYOi3zYQ33Kkn5/wOjGh4ctesQn8zaqrW9m6wcgy9K2tVK53TB1DXhJ pLrHtyVjBg2Rp33e+leYQW82zZPYRkbj -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:26 2025 by rpki-client