This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: WD7DSnKITr/pJeCHhrmnujcDmg/R9kT7s7HUVW0D6Ew= Subject key identifier: 00:3C:CB:FA:26:87:69:69:6C:62:B5:33:36:30:F0:90:75:C5:03:24 Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: B2 Signing time: Tue 23 Dec 2025 05:00:45 +0000 Manifest this update: Tue 23 Dec 2025 05:00:45 +0000 Manifest next update: Tue 30 Dec 2025 05:00:45 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: RYSmqm2QU6+aZnn5Bf+AOHAiHIhvp+YHwWNjrZ0+lCM=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: Dec 23 05:00:45 2025 GMT Not After : Dec 30 05:00:45 2025 GMT Subject: CN=694a21fd-f06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:19:e7:bf:82:29:7c:eb:bc:ee:43:79:f4:b4: a3:5a:1c:54:c4:11:8d:dc:a2:69:87:ab:d2:62:63: 1e:3f:a1:00:08:ba:39:85:d2:94:22:83:88:63:77: 25:61:d1:ad:4e:03:ff:f7:d0:63:11:3b:f5:a0:93: e2:d7:54:28:87:36:db:82:f3:8a:3b:18:95:ea:5f: 4b:a5:e8:c9:d1:0b:a6:1f:f5:a9:67:b1:dc:30:e1: 56:c9:e6:06:e4:7a:6f:9e:21:13:24:c1:76:9b:04: 07:a9:b9:81:2e:cd:b7:03:8f:50:e4:c1:8d:35:e3: e2:f1:fc:85:b5:19:ea:a8:7e:0d:01:d8:b8:df:81: 7f:f3:39:a4:b1:b6:e6:47:93:fb:54:83:f7:54:99: 1f:1a:57:78:41:ac:e5:96:1d:65:07:e2:1f:23:ba: 60:3e:fc:3d:7a:dc:c5:cc:97:81:44:7b:3f:3f:50: 88:d3:93:a6:ff:a8:5b:61:16:b2:a8:27:cc:c8:83: 3e:34:ca:66:8f:f1:fe:24:a2:60:64:d8:57:4e:96: 36:a4:88:8b:04:f6:7b:78:cc:ca:13:46:a4:6a:30: 2d:8e:7f:2e:18:ba:06:2d:1a:f6:60:c2:be:56:86: b5:b7:a2:91:f8:45:d2:a1:24:eb:af:da:7b:97:d8: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:3C:CB:FA:26:87:69:69:6C:62:B5:33:36:30:F0:90:75:C5:03:24 X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:4c:f0:71:59:cf:a2:91:5c:5d:9d:96:d8:f9:32:46:27:88: e6:c6:bc:c0:db:ef:23:61:e6:5b:56:c3:e6:81:6b:73:f2:4c: 74:5c:2d:14:76:c3:29:8e:16:2d:e4:5b:73:0e:dc:11:13:12: 82:3c:b7:0c:fd:f8:99:33:f3:a9:2d:89:02:16:03:7d:27:7c: 26:91:58:56:cc:65:82:ce:75:5b:fc:e4:e8:57:16:f7:07:af: 27:8e:a3:1e:7d:7b:1d:82:35:76:34:c8:66:6f:1d:6f:39:f7: 67:4e:55:27:f1:f8:93:e1:0d:de:2d:15:d1:7e:24:08:1a:56: 03:0f:0b:92:c7:e2:2b:6b:7e:9e:58:10:43:ae:5e:5e:18:87: 58:d2:ee:e8:f2:c3:89:aa:ee:31:51:98:0e:6c:06:ca:34:ee: 1a:be:9f:76:ee:f6:9d:a7:68:f0:1c:f2:ab:39:cc:13:7d:2c: 13:6c:bc:58:29:04:f1:ea:5d:b4:21:82:c5:ee:0e:f9:5e:af: 98:0a:5d:36:23:2f:f0:51:35:f0:67:9d:62:8b:70:75:2b:30: 23:06:36:7c:45:30:38:0c:78:b7:46:7e:ec:c3:fc:15:75:c8: f6:01:ef:a9:19:ee:66:f7:e8:55:98:81:3d:f7:eb:9f:ae:44: be:0a:95:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDNEIxMTAvBgNVBAUTKDg1MjA0NjkxNTE4NUY4NTVFMDlFQjM0NDc4ODEzOTQz MEU3NDBGMDcwHhcNMjUxMjIzMDUwMDQ1WhcNMjUxMjMwMDUwMDQ1WjAYMRYwFAYD VQQDDA02OTRhMjFmZC1mMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Bnnv4IpfOu87kN59LSjWhxUxBGN3KJph6vSYmMeP6EACLo5hdKUIoOIY3cl YdGtTgP/99BjETv1oJPi11QohzbbgvOKOxiV6l9LpejJ0QumH/WpZ7HcMOFWyeYG 5HpvniETJMF2mwQHqbmBLs23A49Q5MGNNePi8fyFtRnqqH4NAdi434F/8zmksbbm R5P7VIP3VJkfGld4Qazllh1lB+IfI7pgPvw9etzFzJeBRHs/P1CI05Om/6hbYRay qCfMyIM+NMpmj/H+JKJgZNhXTpY2pIiLBPZ7eMzKE0akajAtjn8uGLoGLRr2YMK+ Voa1t6KR+EXSoSTrr9p7l9ijHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAA8y/om h2lpbGK1MzYw8JB1xQMkMB8GA1UdIwQYMBaAFIUgRpFRhfhV4J6zRHiBOUMOdA8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9FNjM1Rjc5NkNE N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi9oU0JHa1ZHRi1GWGduck5FZUlFNVF3NTBE d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUM0Qi9FNjM1Rjc5NkNEN0QxMUVGQUEwNzIzMEFDNEY5QUUwMi9oU0JHa1ZHRi1G WGduck5FZUlFNVF3NTBEd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQTPBxWc+ikVxdnZbY+TJGJ4jmxrzA2+8jYeZbVsPmgWtz8kx0XC0U dsMpjhYt5FtzDtwRExKCPLcM/fiZM/OpLYkCFgN9J3wmkVhWzGWCznVb/OToVxb3 B68njqMefXsdgjV2NMhmbx1vOfdnTlUn8fiT4Q3eLRXRfiQIGlYDDwuSx+Ira36e WBBDrl5eGIdY0u7o8sOJqu4xUZgObAbKNO4avp927vadp2jwHPKrOcwTfSwTbLxY KQTx6l20IYLF7g75Xq+YCl02Iy/wUTXwZ51ii3B1KzAjBjZ8RTA4DHi3Rn7sw/wV dcj2Ae+pGe5m9+hVmIE99+ufrkS+CpVP -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:19 2025 by rpki-client