This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: 4HRgQHhZmMTyDlI2OhGnTg1M5MF5mscd9GoRydpCMTE= Subject key identifier: 50:3F:A6:76:A8:FF:EE:18:AB:36:C4:A1:30:A8:27:56:C4:94:53:07 Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 2677 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 2663 Signing time: Sat 20 Dec 2025 15:33:42 +0000 Manifest this update: Sat 20 Dec 2025 15:33:42 +0000 Manifest next update: Sat 27 Dec 2025 15:33:42 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: jUtkETtnn0Chvy30MhL4Z3ljEiSXntr+0bQGi1rZHr8=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: KC0xcucgFsPCAN+N80I9dtcN0tPHYNAOVU4Hu0w2pjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9847 (0x2677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Dec 20 15:33:42 2025 GMT Not After : Dec 27 15:33:42 2025 GMT Subject: CN=6946c1d6-8f97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:75:5a:c5:00:87:25:6b:98:00:09:9a:07:c5: c7:b4:2c:db:b3:21:21:5e:f3:2e:64:9d:13:81:76: 37:ce:ff:55:cf:87:4d:ac:92:67:db:1b:d8:73:39: 48:f4:ff:01:95:a2:31:51:58:c1:89:a1:0e:cc:8d: fb:da:ec:0b:06:bd:81:a5:2e:69:71:be:20:6e:fc: a1:77:d4:ba:10:c3:e4:d3:f0:fd:85:25:21:18:33: 68:1e:9c:14:7e:d0:4f:4c:75:e3:d2:52:69:b6:7a: 26:23:78:48:09:67:ae:ff:e0:9d:a4:0b:ba:70:f6: 62:10:8b:9b:40:69:81:0d:f3:d7:2f:98:7c:0b:bf: 2e:8c:7f:61:92:d3:29:8a:ac:0c:09:e0:7b:b7:34: 84:50:d5:35:97:9f:3b:27:6e:22:92:10:5a:14:e2: e5:a2:fb:7e:2d:dd:f7:12:5a:30:27:7b:00:00:20: c9:65:e0:3a:c8:04:3a:ae:e8:3a:09:aa:f5:9f:3a: 62:0e:8d:7c:4c:76:02:75:5f:d0:c7:e2:46:67:e9: 67:da:ac:38:3d:ac:5f:9e:1c:bf:5c:e3:f4:d5:ed: 11:43:d4:bc:90:b9:d2:cc:d9:30:17:10:22:df:c8: ac:50:04:c8:1d:1e:79:a7:00:d5:11:41:38:00:82: 55:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3F:A6:76:A8:FF:EE:18:AB:36:C4:A1:30:A8:27:56:C4:94:53:07 X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:38:0e:65:10:76:02:64:ef:65:ad:23:0b:57:39:c3:15:f3: 8c:cc:9c:c1:e9:fd:2b:f8:45:a4:a5:b2:ec:ca:66:04:b9:3c: de:f8:09:15:a0:bf:59:9b:9e:5c:63:a1:66:e7:5b:bd:a5:c2: ec:6d:61:6c:c5:c8:a6:d7:dd:43:f5:59:c4:57:69:db:68:3d: 7e:5e:9c:42:0d:a2:b2:78:c7:5f:76:40:da:c1:4b:cf:c5:02: 19:e1:4e:53:12:b9:6e:50:fc:51:34:64:5b:a8:a3:65:3b:11: 57:f3:2d:8a:40:5d:33:d3:19:59:50:26:f6:aa:fa:18:96:e6: 1e:d6:0c:db:9b:02:bf:63:fd:d2:62:bf:8e:14:ee:bf:c0:91: 28:5f:3c:d4:95:aa:90:85:ce:e4:8b:52:f3:9a:4d:6c:91:81: f4:7a:64:56:58:9a:63:98:fa:c5:18:ff:e2:61:a1:17:d5:45: 2e:e4:b2:45:c6:7d:b9:fc:10:65:3e:51:12:46:78:53:73:dd: be:f1:b0:50:25:3d:bd:b1:df:3d:49:76:b7:57:e2:56:95:9e: b4:2b:9b:b3:50:cf:a7:f9:a6:de:8f:8a:2e:6e:7c:b2:80:13: 63:c4:c6:ab:b2:5d:d0:f1:b7:cd:9a:5f:3b:a2:0e:14:4c:bf: 32:37:22:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUxMjIwMTUzMzQyWhcNMjUxMjI3MTUzMzQyWjAYMRYwFAYD VQQDDA02OTQ2YzFkNi04Zjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonVaxQCHJWuYAAmaB8XHtCzbsyEhXvMuZJ0TgXY3zv9Vz4dNrJJn2xvYczlI 9P8BlaIxUVjBiaEOzI372uwLBr2BpS5pcb4gbvyhd9S6EMPk0/D9hSUhGDNoHpwU ftBPTHXj0lJptnomI3hICWeu/+CdpAu6cPZiEIubQGmBDfPXL5h8C78ujH9hktMp iqwMCeB7tzSEUNU1l587J24ikhBaFOLlovt+Ld33ElowJ3sAACDJZeA6yAQ6rug6 Car1nzpiDo18THYCdV/Qx+JGZ+ln2qw4Paxfnhy/XOP01e0RQ9S8kLnSzNkwFxAi 38isUATIHR55pwDVEUE4AIJVnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFA/pnao /+4YqzbEoTCoJ1bElFMHMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZOA5lEHYCZO9lrSMLVznDFfOMzJzB6f0r+EWkpbLsymYEuTze+AkV oL9Zm55cY6Fm51u9pcLsbWFsxcim191D9VnEV2nbaD1+XpxCDaKyeMdfdkDawUvP xQIZ4U5TErluUPxRNGRbqKNlOxFX8y2KQF0z0xlZUCb2qvoYluYe1gzbmwK/Y/3S Yr+OFO6/wJEoXzzUlaqQhc7ki1Lzmk1skYH0emRWWJpjmPrFGP/iYaEX1UUu5LJF xn25/BBlPlESRnhTc92+8bBQJT29sd89SXa3V+JWlZ60K5uzUM+n+abej4oubnyy gBNjxMarsl3Q8bfNml87og4UTL8yNyJ7 -----END CERTIFICATE-----Generated at Mon Dec 22 04:00:09 2025 by rpki-client