This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: U9gOltl6HyhbJx4KroQdswknCWF6oa96m9NcZrInXJY= Subject key identifier: C2:FB:94:2C:10:E1:EF:B7:F1:8A:EF:14:95:E8:7B:27:26:09:C3:BD Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 03D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 03C9 Signing time: Mon 22 Dec 2025 23:39:53 +0000 Manifest this update: Mon 22 Dec 2025 23:39:53 +0000 Manifest next update: Mon 29 Dec 2025 23:39:53 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: DCe+zDXSRgKnPRXVgpiu73CLLaQXuMNXwcL7zzJ1lck=) 2: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: u3mehOty6gVz9qRridn7xauePsp938KB+uM0lLKTBHU=) 3: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: OvtIBWIONkhrTQi/ko/Qtu38pVg+GOOY2iprHCNF2R8=) 4: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: fxFlUsOaGScQkl9QgTozAWohlmX4iM9s7uV5Ua++ETg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 984 (0x3d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Dec 22 23:39:53 2025 GMT Not After : Dec 29 23:39:53 2025 GMT Subject: CN=6949d6c9-e559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:74:66:c1:38:a8:11:46:13:ea:b6:94:24:53: 98:74:1a:09:d1:e8:84:4e:30:e5:8a:5d:fd:f6:31: 72:92:0e:da:eb:0f:62:6d:4b:fd:ef:4e:26:de:84: cc:a6:76:b5:1f:99:a1:69:11:4c:62:4b:0f:00:51: e9:c4:7f:2a:ee:36:0d:b0:b2:88:c1:2d:53:ba:c6: 50:1f:80:a3:0f:4b:b2:4d:16:7f:d6:46:52:97:d7: 4c:c7:d5:a8:49:78:c6:ab:07:12:c8:c7:63:39:56: b7:70:62:96:a4:09:90:09:be:72:d8:19:85:0a:65: 70:61:f8:18:34:7b:6a:60:72:d4:6e:3a:6e:60:ec: 34:bf:73:2c:e4:25:fd:ba:10:ae:31:24:cd:a9:3a: c6:e0:2c:5e:69:93:86:eb:d1:1f:3d:1b:2b:d5:99: 23:9e:f1:42:37:15:b5:dc:e5:ee:8b:6c:de:af:80: c5:52:87:c2:54:05:a4:db:a3:e5:4d:bd:1d:87:bf: 94:ab:ad:2f:cb:c2:78:55:f5:13:29:07:be:79:a1: 68:1f:57:66:bd:95:5b:52:04:0a:90:69:2f:82:20: 60:a8:39:52:9c:52:61:3a:0f:98:13:6f:c7:58:67: 6a:8a:10:0e:2d:66:41:e3:bc:45:75:17:42:c4:4a: ea:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FB:94:2C:10:E1:EF:B7:F1:8A:EF:14:95:E8:7B:27:26:09:C3:BD X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:9c:6b:f2:b6:5e:12:9f:72:81:16:b7:55:e8:50:cb:b7:bd: 5f:8d:19:d0:55:52:c3:5f:3f:b9:21:e2:f3:66:4d:6b:76:16: 66:50:26:20:32:63:55:45:19:f7:fc:55:47:1f:32:f3:9b:15: 6a:6f:ec:ea:48:cb:6a:27:48:fb:01:fb:86:74:af:4d:84:b6: 98:f4:ac:c4:57:4d:f3:ce:77:d7:af:bc:2b:02:84:9e:8e:e8: 67:bf:ed:34:4b:ef:c4:40:70:f9:e1:20:1c:f9:52:2b:93:92: c4:e4:de:3a:8b:2c:bb:9c:73:6d:0a:56:69:2b:34:f3:07:45: e4:0e:bb:7c:56:5f:a2:dd:df:c9:03:9c:09:e9:c7:2f:db:e8: 0f:5e:1b:50:02:fa:f4:a1:64:3a:0b:90:87:e0:97:f9:17:78: e6:12:72:1c:af:a1:6a:60:68:f7:86:a7:24:6c:11:21:8c:40: 4a:cc:56:9c:01:52:6f:52:82:07:b6:a9:b9:af:e5:be:79:7d: 72:61:83:1a:7e:f0:65:69:d5:73:3e:f0:88:2b:5c:0c:35:3e: 51:c5:2e:93:10:12:31:32:03:ed:bd:04:fd:fa:37:da:ce:c0: ee:48:44:41:a1:f0:38:b9:2a:41:27:a8:4b:59:7b:0f:36:ef: fd:25:8a:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjUxMjIyMjMzOTUzWhcNMjUxMjI5MjMzOTUzWjAYMRYwFAYD VQQDDA02OTQ5ZDZjOS1lNTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnRmwTioEUYT6raUJFOYdBoJ0eiETjDlil399jFykg7a6w9ibUv9704m3oTM pna1H5mhaRFMYksPAFHpxH8q7jYNsLKIwS1TusZQH4CjD0uyTRZ/1kZSl9dMx9Wo SXjGqwcSyMdjOVa3cGKWpAmQCb5y2BmFCmVwYfgYNHtqYHLUbjpuYOw0v3Ms5CX9 uhCuMSTNqTrG4CxeaZOG69EfPRsr1ZkjnvFCNxW13OXui2zer4DFUofCVAWk26Pl Tb0dh7+Uq60vy8J4VfUTKQe+eaFoH1dmvZVbUgQKkGkvgiBgqDlSnFJhOg+YE2/H WGdqihAOLWZB47xFdRdCxErqEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFML7lCwQ 4e+38YrvFJXoeycmCcO9MB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9nGvytl4Sn3KBFrdV6FDLt71fjRnQVVLDXz+5IeLzZk1rdhZmUCYg MmNVRRn3/FVHHzLzmxVqb+zqSMtqJ0j7AfuGdK9NhLaY9KzEV03zznfXr7wrAoSe juhnv+00S+/EQHD54SAc+VIrk5LE5N46iyy7nHNtClZpKzTzB0XkDrt8Vl+i3d/J A5wJ6ccv2+gPXhtQAvr0oWQ6C5CH4Jf5F3jmEnIcr6FqYGj3hqckbBEhjEBKzFac AVJvUoIHtqm5r+W+eX1yYYMafvBladVzPvCIK1wMNT5RxS6TEBIxMgPtvQT9+jfa zsDuSERBofA4uSpBJ6hLWXsPNu/9JYpv -----END CERTIFICATE-----Generated at Tue Dec 23 08:00:20 2025 by rpki-client