This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: pVRXRA5pVH7pyQYEEEEtxdvh97SjTT9z/GoxcfAUMck= Subject key identifier: 4C:5A:C8:04:23:8C:37:86:42:E2:C0:58:F5:0F:EA:88:0B:69:6E:A7 Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: C3 Signing time: Tue 23 Dec 2025 04:53:30 +0000 Manifest this update: Tue 23 Dec 2025 04:53:30 +0000 Manifest next update: Tue 30 Dec 2025 04:53:30 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: qJcbQMx8H3C+O81d8h9NUgAJt+UIFym+c9PhL0MON/g=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: ztHcyied63n5u52LWMJ9U0s6jM6YVpsvBanXfX0Gx6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Dec 23 04:53:30 2025 GMT Not After : Dec 30 04:53:30 2025 GMT Subject: CN=694a204a-0a61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:db:dd:96:14:92:d3:b1:92:ae:ba:b3:30:c8: 54:a0:f2:30:e0:64:3f:c0:4b:11:76:31:38:da:b3: 6a:ac:1e:aa:e6:5d:38:e8:fd:bd:d9:60:1a:f0:fa: ec:85:6d:3b:b5:1b:07:76:dd:23:ae:47:37:30:9b: 81:c0:03:66:4d:e8:b1:9d:fb:bd:bc:59:fb:98:63: 52:36:e6:40:7b:d2:04:b5:97:8c:cd:55:10:c4:fd: 50:72:b2:9b:c1:26:8d:11:2d:85:71:88:8f:87:a0: ab:9b:79:5c:06:5d:59:cb:c2:6c:b2:71:6d:1a:4c: 63:b9:1e:00:39:98:51:5b:28:60:ba:e7:e3:74:27: be:d3:ae:0c:ad:84:ed:05:d2:8b:56:ba:80:c9:a3: b2:33:c9:13:ed:c5:e3:7b:38:3d:16:d8:37:91:f4: ff:a1:6a:73:ec:e5:20:e7:24:12:6f:d6:16:a8:d5: af:40:a7:4f:2a:33:dd:76:50:ca:94:1a:85:92:7c: 4b:9a:88:2e:3a:43:71:f1:4d:fb:e2:bb:a4:92:60: 53:da:d6:7e:b0:82:ef:f1:b4:48:01:1b:c0:e8:c9: 41:13:0e:b1:78:76:1a:b3:e8:05:98:12:3e:3a:a7: 1f:49:b6:cc:3f:39:bd:fe:d8:91:74:67:6f:46:b7: dd:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5A:C8:04:23:8C:37:86:42:E2:C0:58:F5:0F:EA:88:0B:69:6E:A7 X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:80:33:7e:0e:74:81:10:6a:1b:e1:75:68:25:2d:b1:f2:78: 16:63:28:15:a7:4b:85:f0:cd:7f:18:e6:66:cb:65:23:ac:a0: 2c:3b:76:af:41:a9:9d:56:d9:84:fd:b3:cf:38:39:98:97:a8: e0:10:16:76:f1:a0:f7:ff:6e:96:0a:7d:d0:91:fc:3e:66:f3: 59:01:67:f3:ed:81:3e:35:13:30:1e:8b:e4:1e:7f:5e:be:fd: 46:59:b1:00:a1:e4:0c:9c:ef:33:2b:6d:86:34:ef:3f:75:65: 7b:93:ad:20:21:c9:f3:a2:08:c3:4c:29:63:48:8d:fa:0a:0e: 8c:89:6b:58:9b:03:92:58:07:80:1a:2f:02:66:f4:d4:7c:99: c3:da:8c:7c:1e:c4:61:ef:97:ed:ae:a6:14:5b:df:b8:f7:1e: 0b:e9:e2:1b:8d:88:fc:78:83:a2:48:7f:dc:42:63:ef:d6:90: 9f:29:29:d6:35:67:38:26:d8:54:2e:fb:53:46:fd:1c:01:cf: 89:94:1d:b3:47:ec:7c:7a:e9:ea:79:36:6e:cc:09:b9:2e:8c: 72:17:be:24:de:5e:3f:ef:55:7f:d9:80:e7:e0:19:95:47:a6: 53:e0:2b:9a:7f:c9:2d:1c:5b:77:e6:64:22:38:4c:d7:e2:b4: 52:2a:cf:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjUxMjIzMDQ1MzMwWhcNMjUxMjMwMDQ1MzMwWjAYMRYwFAYD VQQDDA02OTRhMjA0YS0wYTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhtvdlhSS07GSrrqzMMhUoPIw4GQ/wEsRdjE42rNqrB6q5l046P292WAa8Prs hW07tRsHdt0jrkc3MJuBwANmTeixnfu9vFn7mGNSNuZAe9IEtZeMzVUQxP1QcrKb wSaNES2FcYiPh6Crm3lcBl1Zy8JssnFtGkxjuR4AOZhRWyhguufjdCe+064MrYTt BdKLVrqAyaOyM8kT7cXjezg9Ftg3kfT/oWpz7OUg5yQSb9YWqNWvQKdPKjPddlDK lBqFknxLmoguOkNx8U374rukkmBT2tZ+sILv8bRIARvA6MlBEw6xeHYas+gFmBI+ OqcfSbbMPzm9/tiRdGdvRrfdfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExayAQj jDeGQuLAWPUP6ogLaW6nMB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsgDN+DnSBEGob4XVoJS2x8ngWYygVp0uF8M1/GOZmy2UjrKAsO3av QamdVtmE/bPPODmYl6jgEBZ28aD3/26WCn3Qkfw+ZvNZAWfz7YE+NRMwHovkHn9e vv1GWbEAoeQMnO8zK22GNO8/dWV7k60gIcnzogjDTCljSI36Cg6MiWtYmwOSWAeA Gi8CZvTUfJnD2ox8HsRh75ftrqYUW9+49x4L6eIbjYj8eIOiSH/cQmPv1pCfKSnW NWc4JthULvtTRv0cAc+JlB2zR+x8eunqeTZuzAm5LoxyF74k3l4/71V/2YDn4BmV R6ZT4Cuaf8ktHFt35mQiOEzX4rRSKs+n -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:31 2025 by rpki-client