This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: KtrnYG4j2QLC8Od6aBTy5RZdxl13VJ90OST5aCTOUiQ= Subject key identifier: 9C:38:51:C1:C6:4D:BE:63:21:2B:3F:D4:4F:D3:2D:84:3A:9E:38:2D Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A54 Signing time: Thu 18 Dec 2025 19:16:05 +0000 Manifest this update: Thu 18 Dec 2025 19:16:05 +0000 Manifest next update: Thu 25 Dec 2025 19:16:05 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: j1OkiV6wIRlVeSQwIdyduF0nhNxF9Bp7Gg26lBVAldY=) 2: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) 3: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: B5buB00YWWO2A2xnD3M5vrisGIi+aFvWdlZltMnylng=) 4: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: S+5qUnemcpQGoSOv79wtTvxOi8xqGPx0E74Y3KFGkhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Dec 18 19:16:05 2025 GMT Not After : Dec 25 19:16:05 2025 GMT Subject: CN=694452f5-43a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:d7:2b:e9:f6:40:9b:12:6b:be:32:9c:70:56: 53:49:36:43:a5:e2:86:68:95:af:23:8a:96:8a:40: 59:59:04:e7:8e:a5:bf:e4:ae:da:f0:bb:ad:34:2f: f4:49:09:65:80:3c:a2:5a:5f:ee:41:2d:39:9d:25: 5c:db:e5:c7:19:e9:a4:03:ee:98:d6:6f:f8:6e:8d: 3b:8e:3f:2f:b3:57:d6:d7:a9:77:76:a0:09:f5:25: d8:2d:f4:84:57:01:79:50:21:d1:f0:cb:5a:7f:61: cc:02:54:ac:35:b7:17:b2:d5:98:ac:ee:9a:31:91: 00:27:9b:02:90:fd:11:db:23:2c:5c:3a:89:3f:d8: 95:c3:cd:00:62:e2:40:b5:a0:01:20:af:c1:c3:88: f7:2b:08:4a:c6:70:f2:fe:f0:9d:3c:9a:a4:63:af: f7:4e:17:2b:7c:06:4e:49:2c:36:28:5e:e7:ec:94: 6c:d0:f3:9b:36:9f:8b:33:b1:3a:44:5f:cc:56:79: cb:50:05:9a:41:21:bc:11:e6:94:fd:9d:83:c0:8b: 46:b5:b6:32:96:5f:f4:6f:57:ba:b4:33:50:80:7a: 35:5a:27:40:28:fb:c6:fa:fe:0f:3d:b2:21:81:34: 26:bc:c2:d3:20:2d:f0:b5:00:33:07:05:69:10:68: 2c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:38:51:C1:C6:4D:BE:63:21:2B:3F:D4:4F:D3:2D:84:3A:9E:38:2D X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:21:f7:17:c0:7c:85:29:62:a0:15:03:8d:0f:cb:cb:45:53: 6f:26:06:83:4e:d5:9b:b0:c4:02:3f:75:4f:ae:dc:0b:ad:52: 21:6f:ac:9f:12:76:35:91:5f:6c:ff:9c:40:a0:59:9e:ab:55: 77:8c:d5:ac:7e:f6:bf:9d:c0:d9:45:a8:d4:65:b4:9c:e9:7d: 65:6b:95:ab:de:bd:5d:a4:62:b7:d3:6d:42:ea:8c:9f:2e:07: ef:ab:ba:91:18:2d:b6:b6:3d:6a:e8:ab:48:5e:2a:c2:a9:38: 2d:c2:1c:e9:f3:64:0b:ad:1a:0c:ff:55:38:d0:40:3a:b4:15: 58:d4:1e:4e:a0:32:a6:e3:a4:21:85:bd:33:2e:95:9a:fb:8d: 1d:5e:0f:24:78:14:c9:73:2a:88:7b:72:99:4b:b5:53:8a:fe: 84:db:ba:d4:61:4e:56:1f:3e:17:5e:39:c1:f6:73:03:42:01: 74:ae:c0:2e:6b:fc:e5:50:f2:fb:e3:e5:b0:6a:f9:52:81:64: 70:c4:04:79:1c:af:cb:ed:f1:b2:95:20:16:e3:6b:66:62:b5: b7:87:33:e4:1e:7f:2f:f1:9c:04:e5:17:58:9d:a1:b8:36:1b: 5a:f6:ce:16:b6:62:80:06:04:1e:09:fd:20:c5:61:4c:d9:d4: 6e:97:ee:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUxMjE4MTkxNjA1WhcNMjUxMjI1MTkxNjA1WjAYMRYwFAYD VQQDDA02OTQ0NTJmNS00M2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhNcr6fZAmxJrvjKccFZTSTZDpeKGaJWvI4qWikBZWQTnjqW/5K7a8LutNC/0 SQllgDyiWl/uQS05nSVc2+XHGemkA+6Y1m/4bo07jj8vs1fW16l3dqAJ9SXYLfSE VwF5UCHR8Mtaf2HMAlSsNbcXstWYrO6aMZEAJ5sCkP0R2yMsXDqJP9iVw80AYuJA taABIK/Bw4j3KwhKxnDy/vCdPJqkY6/3ThcrfAZOSSw2KF7n7JRs0PObNp+LM7E6 RF/MVnnLUAWaQSG8EeaU/Z2DwItGtbYyll/0b1e6tDNQgHo1WidAKPvG+v4PPbIh gTQmvMLTIC3wtQAzBwVpEGgsYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJw4UcHG Tb5jISs/1E/TLYQ6njgtMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGIfcXwHyFKWKgFQOND8vLRVNvJgaDTtWbsMQCP3VPrtwLrVIhb6yf EnY1kV9s/5xAoFmeq1V3jNWsfva/ncDZRajUZbSc6X1la5Wr3r1dpGK3021C6oyf Lgfvq7qRGC22tj1q6KtIXirCqTgtwhzp82QLrRoM/1U40EA6tBVY1B5OoDKm46Qh hb0zLpWa+40dXg8keBTJcyqIe3KZS7VTiv6E27rUYU5WHz4XXjnB9nMDQgF0rsAu a/zlUPL74+WwavlSgWRwxAR5HK/L7fGylSAW42tmYrW3hzPkHn8v8ZwE5RdYnaG4 Nhta9s4WtmKABgQeCf0gxWFM2dRul+4r -----END CERTIFICATE-----Generated at Fri Dec 19 18:15:59 2025 by rpki-client