This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: 8suAn1s9tNAiaL1ksxyp8QVszgd5qVcxjX53BptNmgA= Subject key identifier: 92:47:83:09:38:50:38:9F:B9:5A:F2:96:8C:EC:AD:D8:7F:DC:8B:12 Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: E2 Signing time: Tue 23 Dec 2025 04:36:08 +0000 Manifest this update: Tue 23 Dec 2025 04:36:07 +0000 Manifest next update: Tue 30 Dec 2025 04:36:07 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: DxOCUdSfRZEbmvPblASHb3QYuavPrPWXUWd7Q5X9GWw=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: kqOdm4mIQ5rtE9W5sQYT9M1D8hmXdIyf47H8prMLi/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Dec 23 04:36:07 2025 GMT Not After : Dec 30 04:36:07 2025 GMT Subject: CN=694a1c37-c7e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:5e:08:08:75:e0:05:db:cb:67:df:9c:e1: 84:90:b2:15:9e:6d:a9:3c:31:1d:a0:a4:9a:34:82: 5b:26:b8:35:f3:21:76:8a:c2:93:ca:eb:b7:3b:87: 10:d1:40:b8:c9:ff:c3:1a:e1:69:81:40:c7:16:02: f5:45:34:1f:87:1c:1a:29:5b:36:fe:7d:89:fc:ac: cb:79:e3:04:fc:47:45:0d:44:7f:53:85:45:c7:cf: 2f:a9:7c:c0:cb:65:e0:a9:a7:87:5f:ad:86:f0:22: 71:df:2e:ea:a2:ba:60:6a:c1:07:cc:ac:b0:34:9f: 2b:11:6a:be:ee:5d:5b:f4:16:10:b1:b2:b9:af:e2: 66:8e:fd:d9:77:4a:57:50:7d:72:e9:98:f8:22:cb: cb:9c:01:ba:e5:0a:50:8b:05:fe:26:87:4f:c1:14: f3:22:88:ff:ec:8c:c3:49:1e:b6:86:57:26:04:a6: c6:3d:04:c8:2a:a6:06:37:47:a1:8f:5c:1b:86:09: 91:77:80:2a:30:8c:7a:d6:66:ad:55:4b:92:f5:01: 2d:da:06:08:77:34:25:45:80:f5:34:15:9e:27:aa: 79:02:86:e3:f9:ff:42:26:e2:b1:54:c9:04:85:d2: 17:ae:60:cc:d4:c9:6c:61:c6:0c:d5:2e:d0:46:e8: e6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:47:83:09:38:50:38:9F:B9:5A:F2:96:8C:EC:AD:D8:7F:DC:8B:12 X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:5a:f4:59:05:d5:43:c7:2f:06:34:6d:25:44:73:2f:fc:ed: 34:be:d8:90:bd:9d:48:24:98:b1:3e:a5:d7:cf:1a:c7:91:fc: cd:a9:af:89:94:1d:da:2c:e6:f3:fa:cb:b1:43:c1:2c:54:dc: 85:e0:83:2f:ea:e1:1c:7a:e0:3e:0d:76:dc:e0:ec:03:f7:30: d1:77:0d:e2:3e:20:f1:e2:b3:cc:54:68:1b:c9:6e:37:e2:63: 13:7b:1e:42:f0:73:0d:2a:25:b5:88:b9:3e:21:7a:92:92:ac: b0:36:6d:0a:2d:15:8a:88:a1:b6:24:42:c8:d2:76:15:ad:b6: 99:0d:22:b5:17:e1:5c:57:ec:cc:be:a0:55:23:0e:c8:ae:7c: 85:3e:3b:ec:d9:87:ae:ca:f2:d3:84:82:4e:88:51:e9:6e:ff: 66:d0:85:92:95:ce:6f:e6:36:54:33:58:29:6d:9a:e5:50:6a: 82:db:b5:55:5f:da:60:f0:54:fb:1d:a1:ca:1a:cc:88:68:cb: 0c:5f:ea:50:cd:bc:27:87:a9:b1:75:da:6d:94:73:68:6e:4a: 62:aa:59:b6:d7:3e:b4:fa:b3:06:8f:ed:87:cd:b9:47:93:e0: 34:6e:47:32:1f:30:52:56:00:3e:50:fb:3d:ee:c3:ef:66:82: 53:5d:87:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUxMjIzMDQzNjA3WhcNMjUxMjMwMDQzNjA3WjAYMRYwFAYD VQQDDA02OTRhMWMzNy1jN2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBteCAh14AXby2ffnOGEkLIVnm2pPDEdoKSaNIJbJrg18yF2isKTyuu3O4cQ 0UC4yf/DGuFpgUDHFgL1RTQfhxwaKVs2/n2J/KzLeeME/EdFDUR/U4VFx88vqXzA y2XgqaeHX62G8CJx3y7qorpgasEHzKywNJ8rEWq+7l1b9BYQsbK5r+Jmjv3Zd0pX UH1y6Zj4IsvLnAG65QpQiwX+JodPwRTzIoj/7IzDSR62hlcmBKbGPQTIKqYGN0eh j1wbhgmRd4AqMIx61matVUuS9QEt2gYIdzQlRYD1NBWeJ6p5Aobj+f9CJuKxVMkE hdIXrmDM1MlsYcYM1S7QRujmXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJHgwk4 UDifuVrylozsrdh/3IsSMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEU5RC85NTY5QURCNDk1REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmta QVBVSzJXQURNVDVSN1dDaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQWvRZBdVDxy8GNG0lRHMv/O00vtiQvZ1IJJixPqXXzxrHkfzNqa+J lB3aLObz+suxQ8EsVNyF4IMv6uEceuA+DXbc4OwD9zDRdw3iPiDx4rPMVGgbyW43 4mMTex5C8HMNKiW1iLk+IXqSkqywNm0KLRWKiKG2JELI0nYVrbaZDSK1F+FcV+zM vqBVIw7IrnyFPjvs2YeuyvLThIJOiFHpbv9m0IWSlc5v5jZUM1gpbZrlUGqC27VV X9pg8FT7HaHKGsyIaMsMX+pQzbwnh6mxddptlHNobkpiqlm21z60+rMGj+2HzblH k+A0bkcyHzBSVgA+UPs97sPvZoJTXYfi -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:37 2025 by rpki-client