This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: /PPr2X0kEYOHoJUEGBsVCxpF3Om8qTCCpTEjJP4iHbU= Subject key identifier: DC:EC:40:88:D8:FD:44:8A:BE:9A:D4:73:1F:EA:37:30:38:CD:FE:15 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 093A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 0934 Signing time: Mon 22 Dec 2025 19:35:55 +0000 Manifest this update: Mon 22 Dec 2025 19:35:55 +0000 Manifest next update: Mon 29 Dec 2025 19:35:55 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: Q6Ja7fSnM1pOmp+t4cB0KoexPFH9GNRW1PqY0+D1zW4=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: KFIHw6tMuHLxcRTo8fAv1CEG7OYhkgzMk8UZPi5UKvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2362 (0x93a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Dec 22 19:35:55 2025 GMT Not After : Dec 29 19:35:55 2025 GMT Subject: CN=69499d9b-9486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:f6:14:8a:ca:a1:60:0d:25:6e:6b:5e:09: e5:9a:1c:f6:7f:3b:b8:c7:1c:d9:e0:82:cd:74:16: 1b:fd:0a:2e:eb:5b:de:f5:79:99:10:55:68:47:cf: 59:a2:75:ab:ab:e7:53:58:c5:25:57:82:83:9f:e3: 9e:f3:9b:f6:e1:2b:a4:8c:65:be:db:2e:e8:e0:10: 20:b1:ec:37:71:ca:5a:e3:f0:01:c1:28:33:ed:f2: 2a:d7:4e:e8:e4:b3:0e:02:fa:6d:20:91:2e:22:7c: 36:37:b9:c1:50:c2:e7:05:83:f9:ed:9e:c0:5e:09: 00:35:cf:05:a1:19:2b:64:85:1a:5a:ab:09:80:c5: 52:18:8d:fc:cd:00:f2:4c:5d:6d:d3:c9:de:4b:76: 53:d7:2f:d7:7e:80:47:bd:9f:67:f5:4d:cb:51:ac: 98:93:63:6c:09:ad:2d:9a:3d:0d:10:5b:88:f7:ec: f7:85:5f:97:e1:7d:ec:53:3b:d3:0f:9b:63:e3:fb: 24:8a:07:9a:02:14:9c:d1:44:62:b5:64:bc:48:02: 8b:66:ed:93:ab:c1:18:ab:91:3d:24:4f:47:7d:1d: 7d:07:86:aa:76:b1:54:69:b9:47:a7:01:27:9d:c1: de:32:6a:c5:af:c1:f5:34:29:ff:0c:44:ec:4e:33: 94:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EC:40:88:D8:FD:44:8A:BE:9A:D4:73:1F:EA:37:30:38:CD:FE:15 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:c2:0f:de:60:9d:39:9a:55:38:3a:10:df:31:5b:0e:20:f1: cd:07:44:46:92:95:72:99:07:e2:49:46:43:2e:96:b3:02:0c: d1:42:78:2d:13:b7:51:82:80:01:e6:43:fc:19:3b:47:4a:6f: 93:f0:8c:d6:db:55:fc:22:55:0e:c0:ed:15:fe:51:f6:77:73: 76:ff:f1:38:c7:8a:d5:52:80:40:9c:36:06:1b:9d:26:a7:69: 6d:c5:cb:c7:0a:b1:a4:f4:aa:23:d7:a1:8e:e7:51:db:58:1f: 91:e5:53:00:b6:76:87:95:47:de:82:99:2c:de:7d:c3:fb:cd: 27:d4:18:f4:de:59:82:e8:08:9e:4b:0d:63:3a:df:77:97:85: 8b:19:29:91:1b:b0:57:67:bf:c7:7a:7f:a6:39:15:8f:13:4e: 47:35:e7:0f:12:21:2f:69:df:dc:05:ec:f3:1f:11:9a:b2:73: 5f:4f:d5:0c:b6:d9:5b:4d:48:4b:44:9e:17:d6:12:a1:bb:fa: 6a:1a:6d:68:df:13:4b:d3:5c:2e:a4:5e:d9:20:23:34:49:d1: ea:47:46:e8:ad:51:33:d3:ce:a2:dd:83:0c:49:8f:29:ae:e1: 0a:80:d0:30:ba:9a:b0:42:77:60:05:05:45:0d:f9:c2:27:6c: 64:59:43:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUxMjIyMTkzNTU1WhcNMjUxMjI5MTkzNTU1WjAYMRYwFAYD VQQDDA02OTQ5OWQ5Yi05NDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf72FIrKoWANJW5rXgnlmhz2fzu4xxzZ4ILNdBYb/Qou61ve9XmZEFVoR89Z onWrq+dTWMUlV4KDn+Oe85v24SukjGW+2y7o4BAgsew3ccpa4/ABwSgz7fIq107o 5LMOAvptIJEuInw2N7nBUMLnBYP57Z7AXgkANc8FoRkrZIUaWqsJgMVSGI38zQDy TF1t08neS3ZT1y/XfoBHvZ9n9U3LUayYk2NsCa0tmj0NEFuI9+z3hV+X4X3sUzvT D5tj4/skigeaAhSc0URitWS8SAKLZu2Tq8EYq5E9JE9HfR19B4aqdrFUablHpwEn ncHeMmrFr8H1NCn/DETsTjOUIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzsQIjY /USKvprUcx/qNzA4zf4VMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwwg/eYJ05mlU4OhDfMVsOIPHNB0RGkpVymQfiSUZDLpazAgzRQngt E7dRgoAB5kP8GTtHSm+T8IzW21X8IlUOwO0V/lH2d3N2//E4x4rVUoBAnDYGG50m p2ltxcvHCrGk9Koj16GO51HbWB+R5VMAtnaHlUfegpks3n3D+80n1Bj03lmC6Aie Sw1jOt93l4WLGSmRG7BXZ7/Hen+mORWPE05HNecPEiEvad/cBezzHxGasnNfT9UM ttlbTUhLRJ4X1hKhu/pqGm1o3xNL01wupF7ZICM0SdHqR0borVEz086i3YMMSY8p ruEKgNAwupqwQndgBQVFDfnCJ2xkWUOF -----END CERTIFICATE-----Generated at Tue Dec 23 22:28:06 2025 by rpki-client