This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: 3Vahk/nI9awfagi7V3jhdj+FUbeHJ9rkSZ9xp5k50gI= Subject key identifier: B8:B6:AD:EC:05:EB:66:B9:49:CC:7F:92:77:FE:30:A4:C8:B2:00:AF Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: AC Signing time: Tue 23 Dec 2025 05:06:15 +0000 Manifest this update: Tue 23 Dec 2025 05:06:14 +0000 Manifest next update: Tue 30 Dec 2025 05:06:14 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: 9R/mvcd2b4A1MlFWWUxsLWmiFZ158DN3makDgQg8PJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Dec 23 05:06:14 2025 GMT Not After : Dec 30 05:06:14 2025 GMT Subject: CN=694a2346-7161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a8:29:df:0e:d6:34:cc:77:be:94:9f:a6:0f: 98:88:c0:2a:69:f5:ad:31:99:0f:d7:ad:75:6f:d9: dd:e8:db:23:cc:9f:16:7c:03:80:2b:47:9f:36:d4: f2:13:d1:ea:6c:ca:fd:8e:b4:1e:b6:7c:a6:72:21: 51:b2:fa:8e:b8:bd:2c:c5:c6:2b:48:27:c8:9f:3d: 5d:a8:4f:14:43:20:99:60:80:3d:7e:22:c2:6f:b1: 17:7b:22:44:99:80:c2:fa:0a:0a:d9:cd:e0:05:bd: cf:82:af:c9:13:02:71:67:54:13:8d:65:f3:b1:0d: 8c:13:ca:b5:b7:92:84:6b:a5:c9:6e:1c:5a:bd:c2: 9d:ac:08:f2:3e:96:fe:49:dd:7e:90:e5:19:98:9a: ce:1d:a1:29:fe:f1:19:a1:20:37:ca:05:e7:49:84: 14:ff:b7:bc:61:0a:54:ca:2e:17:13:38:c1:34:e7: 96:69:1a:55:93:b9:4e:8e:27:01:78:ac:63:7f:2a: 20:02:8b:94:11:38:df:69:06:20:fd:54:e9:57:da: 1e:dc:29:5d:01:a3:27:8e:99:c0:2b:ea:e7:54:14: 9b:af:b7:42:15:46:23:38:5f:0d:f4:5b:92:47:e9: 98:12:b9:5e:89:52:54:e8:17:66:25:14:bc:2f:cf: 91:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B6:AD:EC:05:EB:66:B9:49:CC:7F:92:77:FE:30:A4:C8:B2:00:AF X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e5:a9:60:75:3c:81:c9:81:f6:14:2d:e7:b0:ed:13:8b:37: 64:a8:18:8b:74:1e:87:6a:b7:31:ca:ab:d4:a8:85:ad:56:c8: cd:26:0f:7f:36:c0:73:23:96:41:a9:d2:72:17:3e:f7:ba:13: bb:1d:c3:5c:8f:a1:d5:59:26:e8:e7:36:93:b6:1b:b2:e4:18: 90:ab:6c:2f:35:50:72:06:56:b9:19:32:a9:49:8c:9a:69:bf: 26:69:39:09:c3:c9:da:3f:c7:0e:71:f0:2d:62:ae:89:eb:c6: 30:f5:ce:c2:d5:d8:8e:3c:c6:97:8d:30:98:97:4f:d7:49:0c: 2b:f6:6d:cc:d9:63:37:ad:9f:62:ab:ef:71:ec:bb:8d:72:e0: 37:18:58:3c:1b:16:8d:b1:cb:58:fa:bb:8c:1b:60:2a:a8:8d: 22:ee:b0:82:7d:97:52:86:75:0b:86:c4:63:df:b6:fc:99:8c: 1a:62:32:f0:86:ec:b6:58:b9:72:8c:a6:1f:14:4a:dd:7e:79: c9:8e:00:89:f7:4c:ba:5b:a3:a6:ec:43:97:82:51:20:78:36: e7:64:0b:82:e8:02:58:ee:b0:00:77:b0:6d:b8:34:ca:95:40: 3e:a6:02:ea:6c:ec:2a:ed:29:51:0b:27:07:c3:65:65:4e:57: 4f:b1:33:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDk4N0EyNDAzNUMxNTM5MTcwMjBCNjUxREI5OEYwOTFG MEFBQTMyMjcwHhcNMjUxMjIzMDUwNjE0WhcNMjUxMjMwMDUwNjE0WjAYMRYwFAYD VQQDDA02OTRhMjM0Ni03MTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqgp3w7WNMx3vpSfpg+YiMAqafWtMZkP1611b9nd6NsjzJ8WfAOAK0efNtTy E9HqbMr9jrQetnymciFRsvqOuL0sxcYrSCfInz1dqE8UQyCZYIA9fiLCb7EXeyJE mYDC+goK2c3gBb3Pgq/JEwJxZ1QTjWXzsQ2ME8q1t5KEa6XJbhxavcKdrAjyPpb+ Sd1+kOUZmJrOHaEp/vEZoSA3ygXnSYQU/7e8YQpUyi4XEzjBNOeWaRpVk7lOjicB eKxjfyogAouUETjfaQYg/VTpV9oe3CldAaMnjpnAK+rnVBSbr7dCFUYjOF8N9FuS R+mYErleiVJU6BdmJRS8L8+RqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLi2rewF 62a5Scx/knf+MKTIsgCvMB8GA1UdIwQYMBaAFJh6JANcFTkXAgtlHbmPCR8KqjIn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BRkRFRkU1NEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9SY0NDMlVkdVk4Skh3cXFN aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BRkRFRkU1NEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9S Y0NDMlVkdVk4Skh3cXFNaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP5algdTyByYH2FC3nsO0TizdkqBiLdB6HarcxyqvUqIWtVsjNJg9/ NsBzI5ZBqdJyFz73uhO7HcNcj6HVWSbo5zaTthuy5BiQq2wvNVByBla5GTKpSYya ab8maTkJw8naP8cOcfAtYq6J68Yw9c7C1diOPMaXjTCYl0/XSQwr9m3M2WM3rZ9i q+9x7LuNcuA3GFg8GxaNsctY+ruMG2AqqI0i7rCCfZdShnULhsRj37b8mYwaYjLw huy2WLlyjKYfFErdfnnJjgCJ90y6W6Om7EOXglEgeDbnZAuC6AJY7rAAd7BtuDTK lUA+pgLqbOwq7SlRCycHw2VlTldPsTOv -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:29 2025 by rpki-client