This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: iKsaVTY0h7vng+bfIuP2vMn2B6mNOm7aR1FlmyQVzKw= Subject key identifier: F3:8C:96:90:1F:EF:8C:F7:04:FB:E0:76:82:0E:1D:C7:D7:D6:BB:01 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 8A Signing time: Tue 09 Dec 2025 04:30:52 +0000 Manifest this update: Tue 09 Dec 2025 04:30:51 +0000 Manifest next update: Tue 16 Dec 2025 04:30:51 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: V3/KaJdGXz/3J9/6KcREegutt6LSWk+U3v9yv7XSDt0=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 04:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Dec 9 04:30:51 2025 GMT Not After : Dec 16 04:30:51 2025 GMT Subject: CN=6937a5fb-e355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b6:3a:c5:0e:07:36:8c:30:4a:47:d5:d0:1b: 5d:38:93:45:ed:9d:a4:3e:6f:b1:30:88:70:c0:4f: c8:11:80:63:d6:3d:10:27:a6:c9:72:3e:01:c9:aa: fd:6b:17:d2:d5:8e:73:b9:7f:a7:c0:84:9d:6c:3a: a9:ab:de:ad:c0:62:a7:19:bc:3e:08:b5:d6:e0:5a: b3:73:fa:32:83:6d:c1:3f:61:72:4c:b0:32:d7:95: 23:25:38:54:17:16:d2:5b:7b:0a:82:65:59:1c:66: 1c:06:ef:34:1a:95:81:70:b9:a8:ca:51:92:55:b7: ea:e5:a9:8b:65:f7:fc:39:90:e9:64:9c:ec:ab:52: d8:61:1b:a5:2a:95:34:0f:85:ae:e0:dd:0a:a2:87: 2b:ca:90:d7:9e:d1:94:6f:2f:40:09:d1:a7:59:09: d7:de:91:57:a6:8f:e9:7c:0e:e0:49:1b:ca:de:3b: a9:d1:c7:34:5d:19:92:21:27:89:a8:e6:e9:e2:d9: d8:ac:7e:58:e1:23:1f:30:40:30:3b:97:4e:cd:5f: 8d:fb:03:74:75:8f:74:97:5b:b5:b2:8b:f8:13:8f: 2b:b1:5b:2e:ad:89:6a:b9:79:49:cf:f4:80:18:1c: c0:ed:73:48:22:ab:29:3f:bc:b1:fa:f3:b2:92:df: 27:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8C:96:90:1F:EF:8C:F7:04:FB:E0:76:82:0E:1D:C7:D7:D6:BB:01 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:b6:3a:f5:23:56:5a:1c:64:2f:d3:4e:53:55:be:2b:eb:49: 89:71:84:5d:85:2a:99:cf:d9:1c:d2:9f:b7:1a:44:8a:41:80: b9:a7:47:e5:ad:9f:8a:aa:99:ec:20:91:f0:45:27:58:18:ec: 34:8d:95:95:a8:28:24:ad:35:e8:6f:4c:a3:82:6f:93:05:d3: 74:2b:64:2d:1c:91:24:aa:eb:4e:1c:6a:d6:c8:be:f0:cb:49: fc:9f:09:ba:8b:5b:e7:37:b6:f8:d9:5f:28:6a:f1:1a:28:08: 04:6a:5e:d2:10:42:35:04:ae:4a:13:78:04:35:b6:f6:af:b6: 04:90:ce:89:17:e7:80:a2:1a:82:db:9b:44:ea:27:6c:2a:53: d2:96:94:18:38:e7:d8:55:86:37:81:32:b6:9f:b3:a0:1a:64: a8:fb:0e:d9:59:74:fc:41:71:88:9b:f3:5d:97:38:c1:88:6e: 1d:ae:9b:c6:7b:58:56:fe:b7:db:a8:fa:d9:a8:d0:0c:21:85: ae:37:d6:fb:0f:d9:92:5e:d8:9b:0c:d6:3c:0a:13:31:81:85: 41:37:e2:4f:aa:6e:3f:c4:e0:f4:f2:bc:a0:26:5b:1b:97:ba: 1d:7e:47:4a:69:83:6f:27:c8:61:f8:ab:22:aa:71:db:09:14: 22:bc:a6:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3RkMxMTAvBgNVBAUTKDg1NzUwN0YxRDhCMzkxNUM5NTEwRDUwNDcwMEVDRTg5 MEIwNjY4NUYwHhcNMjUxMjA5MDQzMDUxWhcNMjUxMjE2MDQzMDUxWjAYMRYwFAYD VQQDEw02OTM3YTVmYi1lMzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7Y6xQ4HNowwSkfV0BtdOJNF7Z2kPm+xMIhwwE/IEYBj1j0QJ6bJcj4Byar9 axfS1Y5zuX+nwISdbDqpq96twGKnGbw+CLXW4Fqzc/oyg23BP2FyTLAy15UjJThU FxbSW3sKgmVZHGYcBu80GpWBcLmoylGSVbfq5amLZff8OZDpZJzsq1LYYRulKpU0 D4Wu4N0KoocrypDXntGUby9ACdGnWQnX3pFXpo/pfA7gSRvK3jup0cc0XRmSISeJ qObp4tnYrH5Y4SMfMEAwO5dOzV+N+wN0dY90l1u1sov4E48rsVsurYlquXlJz/SA GBzA7XNIIqspP7yx+vOykt8nzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOMlpAf 74z3BPvgdoIOHcfX1rsBMB8GA1UdIwQYMBaAFIV1B/HYs5FclRDVBHAOzokLBmhf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdGQy9DNzNCQTE2NDAz QTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtWeVZFTlVFY0E3T2lRc0dh RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdGQy9DNzNCQTE2NDAzQTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtW eVZFTlVFY0E3T2lRc0dhRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXtjr1I1ZaHGQv005TVb4r60mJcYRdhSqZz9kc0p+3GkSKQYC5p0fl rZ+KqpnsIJHwRSdYGOw0jZWVqCgkrTXob0yjgm+TBdN0K2QtHJEkqutOHGrWyL7w y0n8nwm6i1vnN7b42V8oavEaKAgEal7SEEI1BK5KE3gENbb2r7YEkM6JF+eAohqC 25tE6idsKlPSlpQYOOfYVYY3gTK2n7OgGmSo+w7ZWXT8QXGIm/NdlzjBiG4drpvG e1hW/rfbqPrZqNAMIYWuN9b7D9mSXtibDNY8ChMxgYVBN+JPqm4/xOD08rygJlsb l7odfkdKaYNvJ8hh+KsiqnHbCRQivKb3 -----END CERTIFICATE-----Generated at Thu Dec 11 15:23:25 2025 by rpki-client