This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: OlJdMITikdVxYr8heFmlSEGkangnWRCQq6WQpKPOl0A= Subject key identifier: A9:7C:6A:EF:75:73:AB:74:CB:15:95:A4:0A:40:32:20:F6:01:C1:F5 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: C6 Signing time: Thu 04 Dec 2025 18:44:57 +0000 Manifest this update: Thu 04 Dec 2025 18:44:56 +0000 Manifest next update: Thu 11 Dec 2025 18:44:56 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: ndqSwxEYgPEtwhs2FTp8DE5JX1ekSpE1suhiHb66mVo=) 2: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: vf/Qz1zNWab4GZKpZSQw8SUPGRrLV9FUb2vcsaGOSLY=) 3: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: 0lZOVOfd15vpeG++w5mAWXS/YLQjKe0BETzMm0Ic6h8=) 4: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: ebzMyTtJaZgd5qEdDD8H3gUyuweRz4YwhdGqKlk2YpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Dec 4 18:44:56 2025 GMT Not After : Dec 11 18:44:56 2025 GMT Subject: CN=6931d6a9-5586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ee:2c:6f:8f:9d:1b:58:e6:f4:51:7c:16:ce: a8:23:0a:bb:0c:4f:b2:79:8a:c6:2d:49:58:71:fe: 00:c0:dd:eb:53:ec:58:d0:8a:cb:4f:4f:55:17:9c: 86:9b:37:6b:db:cb:c7:07:e5:ae:a7:7a:ff:ec:7f: 0d:17:7b:ce:28:ad:c3:74:10:3b:b7:16:f1:58:97: 13:b2:1b:af:f6:92:c8:62:9f:c9:e2:33:20:a6:8f: 76:21:3e:b2:77:61:22:d5:df:49:ee:f0:b8:ed:b0: fa:08:1e:44:2e:7f:3c:69:38:f3:0c:49:0f:41:15: fb:9c:6b:e1:97:6a:25:4d:35:f1:32:00:2a:08:fc: f8:c4:bf:a1:18:70:f7:c4:7e:3a:d2:5c:bc:c9:d7: 3a:50:e2:01:ea:73:a3:5d:c7:65:db:0f:14:5a:6d: 25:a2:f3:5e:47:88:1d:71:2a:3b:7b:53:96:43:93: af:73:8c:53:bd:bb:8c:10:33:40:04:07:da:6d:96: dd:c8:ac:41:fd:32:28:91:b5:81:c0:f3:8a:b8:34: 8d:fd:e9:f1:23:1c:af:59:4d:8e:9f:ca:3c:39:a2: 11:10:b8:d2:ee:40:50:89:79:de:6f:e1:76:9d:c1: b9:68:65:62:8d:4a:20:09:e4:82:71:ab:75:b3:40: de:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:7C:6A:EF:75:73:AB:74:CB:15:95:A4:0A:40:32:20:F6:01:C1:F5 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:4b:c4:73:0d:96:49:d0:2f:de:5a:fc:7a:bc:8c:bd:c2:b7: 6b:d8:f1:0d:1e:0b:ed:1c:30:d9:28:03:53:54:6e:45:3b:d7: a4:e2:75:1c:15:f4:77:0f:2e:e6:b5:e5:ff:78:c2:41:d3:f7: 7c:be:1e:5e:54:ec:06:30:73:66:c1:1e:0d:9f:9d:ee:d3:c3: 0e:77:7e:08:24:59:08:0d:fa:9d:90:9c:59:95:db:9f:f7:0c: 48:e5:8d:3c:62:25:9e:26:52:bd:be:aa:71:69:fb:f5:62:37: e5:e0:8e:99:4f:f7:7d:77:7f:dd:e3:a8:5f:88:3c:8e:fd:ef: 70:58:44:1e:25:a4:f3:b1:9a:89:2a:b7:da:97:03:f2:8b:5a: 9a:0e:f3:c6:a7:c9:f4:68:94:82:36:a0:75:84:ef:25:51:12: 69:6e:df:1c:c8:2a:13:87:63:57:c2:0a:5c:00:4f:1a:8c:a0: ca:05:55:8f:ed:c4:82:5b:a6:48:9d:72:2a:e4:88:7f:00:91: c4:a6:19:77:5e:ea:df:a0:6a:34:a2:2b:1a:1a:44:7a:8b:92: 02:f7:ec:4c:af:96:22:aa:60:fe:8d:d4:17:38:18:dc:cb:f1: fc:a8:9d:97:a5:7e:43:b6:ff:52:2e:da:5d:2e:37:27:8c:9e: bb:aa:cc:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjUxMjA0MTg0NDU2WhcNMjUxMjExMTg0NDU2WjAYMRYwFAYD VQQDEw02OTMxZDZhOS01NTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+4sb4+dG1jm9FF8Fs6oIwq7DE+yeYrGLUlYcf4AwN3rU+xY0IrLT09VF5yG mzdr28vHB+Wup3r/7H8NF3vOKK3DdBA7txbxWJcTshuv9pLIYp/J4jMgpo92IT6y d2Ei1d9J7vC47bD6CB5ELn88aTjzDEkPQRX7nGvhl2olTTXxMgAqCPz4xL+hGHD3 xH460ly8ydc6UOIB6nOjXcdl2w8UWm0lovNeR4gdcSo7e1OWQ5Ovc4xTvbuMEDNA BAfabZbdyKxB/TIokbWBwPOKuDSN/enxIxyvWU2On8o8OaIRELjS7kBQiXneb+F2 ncG5aGVijUogCeSCcat1s0De/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKl8au91 c6t0yxWVpApAMiD2AcH1MB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVS8RzDZZJ0C/eWvx6vIy9wrdr2PENHgvtHDDZKANTVG5FO9ek4nUc FfR3Dy7mteX/eMJB0/d8vh5eVOwGMHNmwR4Nn53u08MOd34IJFkIDfqdkJxZlduf 9wxI5Y08YiWeJlK9vqpxafv1Yjfl4I6ZT/d9d3/d46hfiDyO/e9wWEQeJaTzsZqJ KrfalwPyi1qaDvPGp8n0aJSCNqB1hO8lURJpbt8cyCoTh2NXwgpcAE8ajKDKBVWP 7cSCW6ZInXIq5Ih/AJHEphl3XurfoGo0oisaGkR6i5IC9+xMr5YiqmD+jdQXOBjc y/H8qJ2XpX5Dtv9SLtpdLjcnjJ67qsxC -----END CERTIFICATE-----Generated at Fri Dec 5 02:27:54 2025 by rpki-client