This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft File: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft (raw, json) Hash identifier: pAj57nyif5jrhn9MvT7gMb3Ug/B6a/b0GdgTkGivn54= Subject key identifier: CD:F7:E1:43:3B:73:45:EA:FC:00:C8:60:F1:A3:62:E9:D3:0F:83:38 Authority key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 Certificate issuer: /CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft Manifest number: 0777 Signing time: Mon 22 Dec 2025 20:53:23 +0000 Manifest this update: Mon 22 Dec 2025 20:53:23 +0000 Manifest next update: Mon 29 Dec 2025 20:53:23 +0000 Files and hashes: 1: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl (hash: 4pgu9glrbCRyj54DXmJzgprk+dCMFad7PU8A9/NCp2k=) 2: A2C94D9C3F0F11EB80256B25C4F9AE02.roa (hash: VsARmmeViDsi1FVlV4Qtd1FMCrKISqOnhPnZTXsK7F8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B232, serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Validity Not Before: Dec 22 20:53:23 2025 GMT Not After : Dec 29 20:53:23 2025 GMT Subject: CN=6949afc3-8bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:64:63:ef:2b:e4:cc:a4:fc:79:f5:9c:68:36: bb:63:eb:ab:15:a0:1b:e3:45:f9:de:14:d0:01:97: 29:a1:6a:47:c1:8f:2c:6b:43:21:5b:77:32:4d:fc: 05:b6:f1:f6:1a:09:33:8a:97:d0:86:17:54:3f:62: 4d:f4:61:68:fd:9e:0d:cc:5c:b4:94:a1:b9:52:5a: 9f:eb:54:9c:7b:7c:46:b4:cc:2b:77:56:23:c3:d6: 14:97:62:01:8b:7c:36:a2:87:f4:09:13:d3:6d:d4: 72:e9:be:dd:65:e1:7b:27:bc:50:af:d0:13:b9:5f: bf:da:5d:47:74:aa:ec:1f:65:dc:92:15:06:bf:c8: da:9b:12:3f:44:05:03:fa:aa:95:43:46:63:c2:fb: af:d4:f1:60:96:1a:30:e5:2e:4f:e3:2a:06:26:2b: c2:6b:fe:8c:40:c0:2e:3a:c0:f9:ca:40:ed:a2:f4: fe:d5:80:99:28:7f:67:88:27:0b:2e:f9:18:1a:97: b4:21:d8:28:e2:48:e3:88:b0:e2:1b:3e:d2:59:82: d2:59:e0:44:36:7a:11:d2:53:56:81:8a:f9:5b:ff: f8:0e:55:8f:37:63:c9:68:5a:75:3d:3e:19:37:db: 75:d4:69:9a:27:2d:b4:fa:3f:c7:70:33:7d:f3:7e: 1f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F7:E1:43:3B:73:45:EA:FC:00:C8:60:F1:A3:62:E9:D3:0F:83:38 X509v3 Authority Key Identifier: keyid:6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:e1:41:d9:ec:ce:28:49:28:2d:93:54:c5:13:2f:27:92:c0: 20:42:db:eb:3e:5a:a1:e5:70:2e:b1:38:0a:e1:25:90:65:4d: 0e:5d:c1:89:ee:e1:ad:29:99:9f:22:9f:ab:a6:73:0f:cf:9c: 92:8b:76:c0:e3:9e:9d:11:81:a6:3a:3b:f6:4f:7d:d1:d1:ca: d2:3e:36:d1:7b:00:37:81:37:d6:84:6b:65:65:a0:4c:da:12: bf:dd:01:3e:c6:a5:f2:9a:06:e1:a7:03:27:69:86:af:43:1c: 9b:27:8d:1d:70:88:7c:d7:3a:f4:f0:0c:36:4a:7a:1b:7c:6d: d2:7b:c0:31:8c:0d:06:68:41:ec:4f:09:c9:fd:aa:ec:e5:af: 5f:85:2b:f4:93:bf:4a:2c:cb:de:3b:d8:a5:c5:2e:35:80:77: b8:6f:ac:0b:af:bf:f7:7d:fe:8e:b3:e2:f6:a9:a8:3a:3e:82: 42:b1:d8:6f:bd:36:b6:f3:dc:b2:a2:18:48:3d:a7:7b:4e:65: 57:93:1d:ca:01:40:59:e1:72:05:e8:2d:98:83:d8:bb:b1:af: 94:91:06:c7:56:ab:c6:95:0d:8e:60:db:42:99:ff:4b:c6:46: 85:a4:dc:55:1b:b8:82:7e:69:4c:b8:c6:64:99:bb:99:5a:3d: f6:28:7f:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyMzIxMTAvBgNVBAUTKDZFMTg0QkUxNDYxMkQ1QTJCNTNDNDk4NzY4NDQ1MDg1 MERCMDJDNzQwHhcNMjUxMjIyMjA1MzIzWhcNMjUxMjI5MjA1MzIzWjAYMRYwFAYD VQQDDA02OTQ5YWZjMy04YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWRj7yvkzKT8efWcaDa7Y+urFaAb40X53hTQAZcpoWpHwY8sa0MhW3cyTfwF tvH2GgkzipfQhhdUP2JN9GFo/Z4NzFy0lKG5Ulqf61Sce3xGtMwrd1Yjw9YUl2IB i3w2oof0CRPTbdRy6b7dZeF7J7xQr9ATuV+/2l1HdKrsH2XckhUGv8jamxI/RAUD +qqVQ0Zjwvuv1PFglhow5S5P4yoGJivCa/6MQMAuOsD5ykDtovT+1YCZKH9niCcL LvkYGpe0Idgo4kjjiLDiGz7SWYLSWeBENnoR0lNWgYr5W//4DlWPN2PJaFp1PT4Z N9t11GmaJy20+j/HcDN9834fNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM334UM7 c0Xq/ADIYPGjYunTD4M4MB8GA1UdIwQYMBaAFG4YS+FGEtWitTxJh2hEUIUNsCx0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjIzMi85NEQ0Qzc0MDNG MEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFhSzFQRW1IYUVSUWhRMndM SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoaEw0VVlTMWFLMVBFbUhhRVJRaFEyd0xIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjIzMi85NEQ0Qzc0MDNGMEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFh SzFQRW1IYUVSUWhRMndMSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF4UHZ7M4oSSgtk1TFEy8nksAgQtvrPlqh5XAusTgK4SWQZU0OXcGJ 7uGtKZmfIp+rpnMPz5ySi3bA456dEYGmOjv2T33R0crSPjbRewA3gTfWhGtlZaBM 2hK/3QE+xqXymgbhpwMnaYavQxybJ40dcIh81zr08Aw2SnobfG3Se8AxjA0GaEHs TwnJ/ars5a9fhSv0k79KLMveO9ilxS41gHe4b6wLr7/3ff6Os+L2qag6PoJCsdhv vTa289yyohhIPad7TmVXkx3KAUBZ4XIF6C2Yg9i7sa+UkQbHVqvGlQ2OYNtCmf9L xkaFpNxVG7iCfmlMuMZkmbuZWj32KH+E -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:26 2025 by rpki-client