This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: yyd/VM1veVWIEbjlIia71vc97DPs6io8halmoZ1dtHg= Subject key identifier: 0C:79:E0:AD:31:CF:EE:46:45:D6:3C:F6:A4:96:6D:0A:DA:74:43:96 Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: 0170 Signing time: Fri 19 Dec 2025 03:04:57 +0000 Manifest this update: Fri 19 Dec 2025 03:04:56 +0000 Manifest next update: Fri 26 Dec 2025 03:04:56 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: MI1pRTIs6rfuYOMq8DtlkB3KMpETomwXKfQ2/RbvRG0=) 2: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: y81/Bm4goLn9P37Big7/CzEV9a1Uz1uENuSDaA4pS5U=) 3: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: MOWmFDpIkvE9ZXw3XjwL/Gz8uOZnXK7NosAmPb+jAAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1, serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Dec 19 03:04:56 2025 GMT Not After : Dec 26 03:04:56 2025 GMT Subject: CN=6944c0d9-07dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:b4:05:71:e6:1e:ea:e4:d1:85:c8:34:56:1f: c7:31:1a:af:e6:73:e4:03:53:a7:f0:0f:01:19:e5: 67:94:32:1b:90:56:15:13:47:44:13:3a:ad:47:b3: 8c:40:10:06:b1:d2:af:2a:78:fd:27:90:cb:7d:21: 46:24:79:3a:97:c2:b1:9d:9c:c5:d8:be:13:29:90: 06:28:e0:c3:bb:59:15:5e:14:cd:7e:58:63:70:1b: d1:bf:a0:10:ca:d8:b6:fd:57:cb:da:9a:3d:41:b6: c7:85:fa:61:01:76:72:95:45:04:5b:61:f4:3a:95: b4:f4:e0:06:c3:c4:0c:4f:d7:e8:e3:83:da:95:c8: 43:12:8a:9f:4a:b9:ad:73:de:0b:6d:32:21:ba:bd: d2:30:18:b0:13:93:82:75:17:cb:f4:7d:21:0e:a1: 3c:6d:b8:58:78:8e:c3:ac:4f:95:9d:38:7e:87:8b: 97:23:dd:35:3d:65:5c:1d:31:cb:da:f1:d6:dd:e2: ea:56:97:46:68:df:84:8b:db:af:d2:33:94:c3:a8: b9:ab:1a:9e:59:2b:8f:1c:50:97:bb:eb:e7:06:a7: 60:ea:e6:fc:7b:47:8e:d7:bd:b2:a6:88:36:25:9c: f8:eb:fd:a5:c5:2b:42:95:fd:e2:4d:0e:f2:57:ef: ee:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:79:E0:AD:31:CF:EE:46:45:D6:3C:F6:A4:96:6D:0A:DA:74:43:96 X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:63:37:73:dd:ce:c0:dc:1f:c7:6c:18:4c:bb:8d:5a:50:02: b4:88:e7:b2:8a:c7:da:a8:be:da:3b:73:fb:2f:40:80:8b:71: 6e:8d:c6:c3:13:fa:df:0d:b3:42:08:19:dd:ea:07:e5:fe:ea: e9:f2:78:ac:fe:7d:2a:5c:51:01:05:f0:55:c5:ac:e7:be:36: 64:ce:d4:a4:59:e3:50:97:b8:d3:74:b3:97:70:8d:8d:f2:61: e4:38:c4:fc:0c:c5:b7:2f:42:ba:e2:e4:2b:48:60:04:99:17: 9b:b3:32:7f:43:61:01:33:3f:0f:0a:c0:b5:c0:ce:29:04:f5: 47:bf:a2:cc:24:10:cd:5d:93:73:ec:9c:03:77:21:43:83:46: c6:61:fd:e7:da:e6:da:89:cc:92:b1:a9:f3:27:f6:33:6d:13: e5:ac:18:1d:fd:c8:30:f2:8d:13:ac:59:c7:55:a7:e0:18:ca: 58:99:74:3a:13:5b:57:28:19:37:89:cf:4e:c8:81:59:0b:c9: 7c:b0:68:be:c5:1d:2d:f7:3d:f7:b4:35:31:8f:82:f1:f3:5a: 45:18:12:27:69:ce:5b:9b:98:be:34:69:ce:62:7a:9b:0e:e7: f7:89:bb:73:8c:88:92:c0:70:3c:6c:ce:d4:d3:6b:b9:6c:31: 83:7a:04:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjUxMjE5MDMwNDU2WhcNMjUxMjI2MDMwNDU2WjAYMRYwFAYD VQQDDA02OTQ0YzBkOS0wN2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkLQFceYe6uTRhcg0Vh/HMRqv5nPkA1On8A8BGeVnlDIbkFYVE0dEEzqtR7OM QBAGsdKvKnj9J5DLfSFGJHk6l8KxnZzF2L4TKZAGKODDu1kVXhTNflhjcBvRv6AQ yti2/VfL2po9QbbHhfphAXZylUUEW2H0OpW09OAGw8QMT9fo44PalchDEoqfSrmt c94LbTIhur3SMBiwE5OCdRfL9H0hDqE8bbhYeI7DrE+VnTh+h4uXI901PWVcHTHL 2vHW3eLqVpdGaN+Ei9uv0jOUw6i5qxqeWSuPHFCXu+vnBqdg6ub8e0eO172ypog2 JZz46/2lxStClf3iTQ7yV+/uYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAx54K0x z+5GRdY89qSWbQradEOWMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3 RDRMQWV4WEU4Q255WnlTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/Yzdz3c7A3B/HbBhMu41aUAK0iOeyisfaqL7aO3P7L0CAi3FujcbD E/rfDbNCCBnd6gfl/urp8nis/n0qXFEBBfBVxaznvjZkztSkWeNQl7jTdLOXcI2N 8mHkOMT8DMW3L0K64uQrSGAEmRebszJ/Q2EBMz8PCsC1wM4pBPVHv6LMJBDNXZNz 7JwDdyFDg0bGYf3n2ubaicySsanzJ/YzbRPlrBgd/cgw8o0TrFnHVafgGMpYmXQ6 E1tXKBk3ic9OyIFZC8l8sGi+xR0t9z33tDUxj4Lx81pFGBInac5bm5i+NGnOYnqb Duf3ibtzjIiSwHA8bM7U02u5bDGDegQi -----END CERTIFICATE-----Generated at Fri Dec 19 10:25:55 2025 by rpki-client