This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: 33V5ymvT4gwDL9+PIcxPezj7+mHxXUtFjOhnA4b33Wo= Subject key identifier: C0:A6:1C:7B:66:9A:BA:56:6C:62:72:62:C7:32:BE:FE:1E:A6:CA:D0 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B78 Signing time: Mon 22 Dec 2025 18:34:42 +0000 Manifest this update: Mon 22 Dec 2025 18:34:42 +0000 Manifest next update: Mon 29 Dec 2025 18:34:42 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: bj2CI6js/nA473ZIsZRqCPa7XBwYA8EAcNvKMkgUtVw=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: m3vliiEgyQOK9cLamk8Seg9r2MS0Thb0iCeLTBZTTaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2943 (0xb7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Dec 22 18:34:42 2025 GMT Not After : Dec 29 18:34:42 2025 GMT Subject: CN=69498f42-2328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a9:79:64:f3:22:2b:53:eb:1d:59:af:74:b0: 6a:a6:4c:e4:92:d2:30:b7:ee:80:11:1c:55:e9:c2: 5f:42:f9:0a:43:8a:55:f9:4b:4a:fe:32:ff:00:e9: e2:ba:54:97:2a:8a:87:2f:4d:b8:92:68:95:05:d6: 85:f4:ff:8c:c5:dc:1f:35:36:58:ed:04:62:b7:a7: 0a:8e:b6:56:a9:1f:41:a6:b3:67:83:d7:5c:99:29: 17:d1:ac:08:2d:c4:f0:67:93:20:39:11:95:0a:69: d5:12:ec:7c:b7:f4:a2:cb:bd:93:2b:f1:6d:0d:af: 85:19:f7:6a:54:5f:26:cb:d6:59:5a:f6:20:2b:f4: 52:49:a9:c1:1f:7e:58:46:b4:eb:f2:92:d1:bc:09: bf:93:aa:27:38:40:65:06:e3:d8:bb:b5:b0:03:08: 92:cc:bf:70:bf:71:81:93:36:ce:3a:4f:89:03:2d: 01:8b:19:50:d7:05:a7:e0:02:8f:f4:46:f9:9c:3a: 0e:62:fc:60:b1:58:d5:25:15:9f:de:f7:86:f4:e0: 14:2c:94:cf:6a:b5:69:8a:f4:16:c4:7c:b4:24:74: a0:7e:18:aa:32:48:16:94:7b:30:52:c1:3a:ee:2e: 06:4f:ef:1b:32:b0:c9:9d:cf:08:4a:de:74:3c:ee: ce:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A6:1C:7B:66:9A:BA:56:6C:62:72:62:C7:32:BE:FE:1E:A6:CA:D0 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:8a:55:05:7f:df:46:23:df:62:06:98:29:c7:fa:c8:19:22: d1:ac:8c:d0:f3:1a:20:11:2b:25:77:ea:db:eb:67:63:04:2e: f2:a7:84:08:7f:04:5e:f6:37:8e:44:9f:2e:bc:ee:0c:f2:76: 5f:81:b0:ca:68:8a:2c:59:a0:3a:58:e2:1e:a2:20:43:31:98: b3:83:4a:56:7e:ea:e7:61:b5:b2:cc:20:8d:d7:8d:9b:37:be: 56:0c:f5:81:a6:43:d9:2b:01:63:2d:16:04:86:d8:37:1d:d4: 92:a1:95:e4:f0:2b:5e:48:1e:85:27:80:f6:77:9f:8d:76:00: 7a:a8:27:6c:70:2f:64:21:56:b1:48:6d:48:18:e6:fa:db:4a: 27:d6:c5:ca:c2:15:c0:16:e7:ec:f7:70:a9:c1:4e:4c:8f:a5: ab:ad:57:b5:19:69:b7:5d:f8:57:95:29:19:e7:7d:12:ca:9f: a6:78:e9:e5:37:6c:ab:c6:b4:a3:ce:5e:ce:fc:c8:d2:56:e0: 97:ab:84:99:68:a6:18:8d:a2:3c:23:4e:c7:09:c1:e1:23:cd: 8a:1d:3c:e6:8a:2f:fc:d5:64:2e:12:b7:57:e3:0a:ea:ce:12: 13:08:7a:b1:7e:d3:0b:f5:36:7a:7c:4d:ba:c6:9b:7b:e2:29: 79:4b:a6:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUxMjIyMTgzNDQyWhcNMjUxMjI5MTgzNDQyWjAYMRYwFAYD VQQDDA02OTQ5OGY0Mi0yMzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk6l5ZPMiK1PrHVmvdLBqpkzkktIwt+6AERxV6cJfQvkKQ4pV+UtK/jL/AOni ulSXKoqHL024kmiVBdaF9P+MxdwfNTZY7QRit6cKjrZWqR9BprNng9dcmSkX0awI LcTwZ5MgORGVCmnVEux8t/Siy72TK/FtDa+FGfdqVF8my9ZZWvYgK/RSSanBH35Y RrTr8pLRvAm/k6onOEBlBuPYu7WwAwiSzL9wv3GBkzbOOk+JAy0BixlQ1wWn4AKP 9Eb5nDoOYvxgsVjVJRWf3veG9OAULJTParVpivQWxHy0JHSgfhiqMkgWlHswUsE6 7i4GT+8bMrDJnc8ISt50PO7OswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCmHHtm mrpWbGJyYscyvv4epsrQMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiilUFf99GI99iBpgpx/rIGSLRrIzQ8xogESsld+rb62djBC7yp4QI fwRe9jeORJ8uvO4M8nZfgbDKaIosWaA6WOIeoiBDMZizg0pWfurnYbWyzCCN142b N75WDPWBpkPZKwFjLRYEhtg3HdSSoZXk8CteSB6FJ4D2d5+NdgB6qCdscC9kIVax SG1IGOb620on1sXKwhXAFufs93CpwU5Mj6WrrVe1GWm3XfhXlSkZ530Syp+meOnl N2yrxrSjzl7O/MjSVuCXq4SZaKYYjaI8I07HCcHhI82KHTzmii/81WQuErdX4wrq zhITCHqxftML9TZ6fE26xpt74il5S6Ye -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:35 2025 by rpki-client