This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: aWi4cDu8kuXXiOVSipTK0xCVqN7RzbV8Co55XfQTeqw= Subject key identifier: 62:8C:08:67:A2:7E:B5:6F:BB:2D:A0:B9:D7:5F:7F:FD:19:75:D2:7A Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 039E Signing time: Sat 20 Dec 2025 23:57:49 +0000 Manifest this update: Sat 20 Dec 2025 23:57:48 +0000 Manifest next update: Sat 27 Dec 2025 23:57:48 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: kXlxciQuxYwsVCIG8RZq0N90nGRqUgQrCd3MbZ6zKqI=) 2: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) 3: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Dec 20 23:57:48 2025 GMT Not After : Dec 27 23:57:48 2025 GMT Subject: CN=694737fd-f396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9e:8c:0b:b8:72:57:9b:3a:03:3d:c6:42:dd: 07:58:48:44:a0:9a:de:1d:48:2f:7c:5f:94:3f:66: 7c:f7:82:36:c1:a9:ad:60:67:70:e5:84:47:da:c9: 0e:f8:e2:c8:79:34:48:4d:80:4b:93:de:80:00:7a: c4:19:6e:e0:b1:93:ea:ed:74:b5:24:3e:fa:f9:df: 7d:f0:be:a2:e3:7b:2a:44:42:40:c4:ea:76:68:e4: 80:30:0c:c0:9e:de:46:9d:50:84:03:d8:1e:6f:3f: df:e2:5b:3c:fc:7b:12:4b:d7:db:06:cc:94:ee:09: 61:a3:a0:2d:ba:17:4d:78:ea:08:7b:61:ee:36:89: a0:14:eb:c1:f8:51:6f:80:2d:16:be:5a:a9:30:4f: 48:18:85:ca:74:09:ed:60:72:39:95:5e:96:73:5a: a1:eb:18:31:4c:ff:69:7d:30:15:b3:7b:21:f2:e1: 7c:75:b4:48:08:58:0c:41:e6:7b:69:31:cc:cc:97: c8:69:2f:d9:e2:cb:a6:32:b4:9e:92:25:bd:df:f7: ad:db:77:14:8d:d4:a0:80:ea:10:0a:ce:09:e5:dd: 0c:94:24:85:21:0e:e2:82:9f:c9:1e:27:3c:9c:17: b3:3d:65:d2:a6:d0:8f:67:71:f6:e8:d5:98:e1:33: 62:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8C:08:67:A2:7E:B5:6F:BB:2D:A0:B9:D7:5F:7F:FD:19:75:D2:7A X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:89:84:7b:85:07:e5:7e:23:fd:66:47:9c:26:75:94:da:71: eb:f3:9c:56:e1:55:8a:8f:49:01:35:b7:60:ef:92:10:02:76: 1b:f2:d3:dc:9b:20:f5:7a:46:04:a2:81:51:e8:0e:34:e8:f6: 50:81:86:c3:93:f6:38:96:8b:b6:12:1a:c0:c8:de:9a:ff:a3: be:b0:bc:70:e2:79:3b:0c:4a:be:55:b3:c4:7c:94:25:43:26: cd:28:2d:3b:db:94:04:4a:2f:0e:d9:2f:8a:e3:20:99:3d:5d: 46:11:29:1e:d1:f6:1e:a6:4a:e6:13:02:65:29:21:5a:4d:b8: 45:71:19:0d:20:c8:1b:f5:5c:66:f3:7b:ab:fb:07:d6:63:cf: 71:88:f2:21:63:2b:3f:ec:f5:0d:eb:e2:8f:10:91:88:54:78: bd:47:26:b2:e5:bd:54:30:e0:78:6a:40:6e:22:78:18:50:d3: 61:bf:ef:4c:f8:02:5b:e2:f6:bd:69:8a:8e:56:b7:14:b8:b3: b8:ba:2c:11:aa:1e:c4:78:6c:24:91:8a:e4:65:7a:27:6c:d2: 3b:be:6a:28:52:bf:18:ed:9e:a5:a0:3e:d8:24:ab:fe:b8:94: e7:19:e8:8a:bd:dc:a0:1c:49:48:04:cf:55:ee:84:39:66:6e: 1b:7e:45:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUxMjIwMjM1NzQ4WhcNMjUxMjI3MjM1NzQ4WjAYMRYwFAYD VQQDDA02OTQ3MzdmZC1mMzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz56MC7hyV5s6Az3GQt0HWEhEoJreHUgvfF+UP2Z894I2wamtYGdw5YRH2skO +OLIeTRITYBLk96AAHrEGW7gsZPq7XS1JD76+d998L6i43sqREJAxOp2aOSAMAzA nt5GnVCEA9gebz/f4ls8/HsSS9fbBsyU7glho6AtuhdNeOoIe2HuNomgFOvB+FFv gC0WvlqpME9IGIXKdAntYHI5lV6Wc1qh6xgxTP9pfTAVs3sh8uF8dbRICFgMQeZ7 aTHMzJfIaS/Z4sumMrSekiW93/et23cUjdSggOoQCs4J5d0MlCSFIQ7igp/JHic8 nBezPWXSptCPZ3H26NWY4TNiWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKMCGei frVvuy2guddff/0ZddJ6MB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6iYR7hQflfiP9ZkecJnWU2nHr85xW4VWKj0kBNbdg75IQAnYb8tPc myD1ekYEooFR6A406PZQgYbDk/Y4lou2EhrAyN6a/6O+sLxw4nk7DEq+VbPEfJQl QybNKC0725QESi8O2S+K4yCZPV1GESke0fYepkrmEwJlKSFaTbhFcRkNIMgb9Vxm 83ur+wfWY89xiPIhYys/7PUN6+KPEJGIVHi9Ryay5b1UMOB4akBuIngYUNNhv+9M +AJb4va9aYqOVrcUuLO4uiwRqh7EeGwkkYrkZXonbNI7vmooUr8Y7Z6loD7YJKv+ uJTnGeiKvdygHElIBM9V7oQ5Zm4bfkUz -----END CERTIFICATE-----Generated at Sun Dec 21 11:30:22 2025 by rpki-client