This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: +sjG34d9+2dj/42YQ3D7LMVAufJ0I1ac5p8EgkRqc38= Subject key identifier: 4B:5A:4C:AB:83:C2:3D:23:3A:21:63:D2:D0:6D:30:D9:73:FF:AA:BF Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 040B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 03F9 Signing time: Sat 06 Dec 2025 23:12:36 +0000 Manifest this update: Sat 06 Dec 2025 23:12:35 +0000 Manifest next update: Sat 13 Dec 2025 23:12:35 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: 9SBwOhwQlg68o4Ehft4OK8kfxt5GQ/o7XyTi/plNotE=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: kpBK3OXshYOskuLSoO3uUhN6W4dairHEsqEKAKksIS4=) 4: F570D764773F11F09FC02036C4F9AE02.roa (hash: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Dec 6 23:12:35 2025 GMT Not After : Dec 13 23:12:35 2025 GMT Subject: CN=6934b864-931d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a3:d5:e8:54:13:34:3f:c5:66:f5:14:c7:b8: 9b:83:42:49:0f:b8:53:d8:93:4d:d0:45:6c:99:e9: e7:01:81:a3:20:a6:d5:54:f0:d0:56:7f:12:de:15: ef:ea:b5:ec:75:8a:82:3e:c9:5b:1d:e2:02:73:af: 19:52:64:df:ee:6e:6a:86:b7:9f:9c:c6:3f:2e:f5: 02:e4:4e:7e:ab:39:00:72:3c:f8:b5:85:45:42:d2: 24:5b:7f:b4:e2:d9:3b:41:ac:8f:83:1c:bd:d0:06: a8:94:86:3b:38:cc:22:b5:05:ee:df:a6:7c:5e:9f: d5:2d:81:7a:e0:22:2a:af:4f:50:59:19:78:86:9e: a3:a4:4e:f4:10:6d:73:7b:ac:a4:7d:73:4d:bf:86: 16:d8:cd:84:94:73:ae:44:ad:d5:95:16:bd:cb:c5: ad:91:5b:e6:18:13:2f:52:fb:fb:e2:f8:4b:62:d5: 9b:31:de:00:49:93:f9:e0:f0:94:19:7d:23:2e:d3: 1c:b6:6a:da:0c:f5:3f:a2:68:d4:35:7c:4d:52:b7: 4d:a1:a1:e7:9b:3d:ff:d8:74:c9:51:75:70:44:43: a9:28:a8:a7:35:d1:ce:e7:69:f5:84:b7:65:39:25: f0:13:83:da:48:55:a6:7b:07:da:41:db:f2:42:ed: d3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5A:4C:AB:83:C2:3D:23:3A:21:63:D2:D0:6D:30:D9:73:FF:AA:BF X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:64:71:aa:ac:fd:4e:2d:8c:13:cc:22:be:53:b7:7a:4b:24: 5a:6e:ed:d4:9c:c0:18:43:b0:eb:88:8f:93:16:3b:03:69:ea: a4:55:06:06:53:81:73:7c:57:79:c3:40:fa:50:8c:6c:32:8d: 96:5b:eb:7b:e3:d8:6c:89:cd:fd:e5:d9:3e:ab:f2:59:25:2c: 90:8d:03:48:70:b7:58:51:66:b5:bd:45:2c:da:ae:a9:ba:24: 6b:7a:5b:85:d7:02:8d:8c:0e:44:6e:fa:8a:f5:90:9a:61:7a: d7:eb:00:d2:c8:b2:ea:6a:b8:9f:5a:35:4e:28:54:25:ca:65: c0:30:f7:ee:5d:c0:6a:f8:96:6f:06:86:73:b0:30:ef:1c:f8: fa:bc:3d:fc:39:8f:23:86:de:30:28:b6:f9:dd:cc:83:ab:5e: 25:26:62:a4:16:47:d4:11:4b:1e:05:70:83:62:4c:06:cb:4e: 6b:14:3d:51:0e:81:df:b5:23:c1:38:17:ee:f4:42:f6:5a:6f: 72:56:56:96:00:15:20:f5:a5:4c:4d:48:a8:57:cb:be:c2:14: 7f:a6:8f:0e:22:e9:91:8d:8e:54:dd:f8:b5:74:97:b3:a9:aa: 4a:84:41:73:78:84:9c:d4:35:7c:c0:f7:b8:31:da:b2:c0:01: 14:05:f3:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUxMjA2MjMxMjM1WhcNMjUxMjEzMjMxMjM1WjAYMRYwFAYD VQQDEw02OTM0Yjg2NC05MzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaPV6FQTND/FZvUUx7ibg0JJD7hT2JNN0EVsmennAYGjIKbVVPDQVn8S3hXv 6rXsdYqCPslbHeICc68ZUmTf7m5qhrefnMY/LvUC5E5+qzkAcjz4tYVFQtIkW3+0 4tk7QayPgxy90AaolIY7OMwitQXu36Z8Xp/VLYF64CIqr09QWRl4hp6jpE70EG1z e6ykfXNNv4YW2M2ElHOuRK3VlRa9y8WtkVvmGBMvUvv74vhLYtWbMd4ASZP54PCU GX0jLtMctmraDPU/omjUNXxNUrdNoaHnmz3/2HTJUXVwREOpKKinNdHO52n1hLdl OSXwE4PaSFWmewfaQdvyQu3TywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtaTKuD wj0jOiFj0tBtMNlz/6q/MB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ZHGqrP1OLYwTzCK+U7d6SyRabu3UnMAYQ7DriI+TFjsDaeqkVQYG U4FzfFd5w0D6UIxsMo2WW+t749hsic395dk+q/JZJSyQjQNIcLdYUWa1vUUs2q6p uiRreluF1wKNjA5EbvqK9ZCaYXrX6wDSyLLqarifWjVOKFQlymXAMPfuXcBq+JZv BoZzsDDvHPj6vD38OY8jht4wKLb53cyDq14lJmKkFkfUEUseBXCDYkwGy05rFD1R DoHftSPBOBfu9EL2Wm9yVlaWABUg9aVMTUioV8u+whR/po8OIumRjY5U3fi1dJez qapKhEFzeISc1DV8wPe4MdqywAEUBfOV -----END CERTIFICATE-----Generated at Mon Dec 8 04:27:24 2025 by rpki-client