This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: Bp4O0+oGytA9RmmEd0IetiGOzCHq+Abg73XPHeo9DTw= Subject key identifier: C9:22:A7:F0:22:E7:BE:7F:3D:0D:BF:37:19:A9:C1:24:E4:04:A6:B0 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 3D Signing time: Tue 23 Dec 2025 06:22:43 +0000 Manifest this update: Tue 23 Dec 2025 06:22:43 +0000 Manifest next update: Tue 30 Dec 2025 06:22:43 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: 6uKc1Sx3XFxew+RFnQicS7wDqwt6bBD73uUJGnURJA8=) 2: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw=) 3: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ=) 4: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Tw5k9/cuQwB71OFXRXiv/bwE46v5T5qgIQMcMfV+JV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Dec 23 06:22:43 2025 GMT Not After : Dec 30 06:22:43 2025 GMT Subject: CN=694a3533-b730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:98:1d:b5:6b:c9:b4:01:d2:70:09:70:91:98: fe:8f:5d:f4:c7:fb:59:17:31:4c:d9:4a:dc:fc:aa: eb:67:ce:14:7d:98:d5:19:79:44:1e:18:0c:8a:6d: b1:32:40:20:dc:d0:0f:fc:29:d9:28:90:c9:40:5f: 03:b4:25:06:50:24:ed:34:8c:99:73:00:82:be:c2: da:bf:41:d9:da:4d:f0:9a:64:66:52:be:62:56:78: 60:80:2e:47:e8:94:96:64:47:fa:61:d4:55:8f:19: d3:7b:79:df:c0:e3:f8:0a:f9:1a:be:a2:6b:10:e1: 84:e5:42:ff:be:1d:2e:a1:8a:60:00:b0:3e:7d:15: 2f:42:2d:bb:48:19:e8:b4:b9:e0:c8:b2:d6:c6:cb: c7:78:a0:94:ee:33:70:73:1f:10:c4:f0:6b:45:c9: 5a:82:34:42:17:7f:0b:01:40:0d:f8:48:d1:42:e2: 23:e5:20:22:1c:2c:0d:83:d7:0c:44:5d:5a:93:a9: 1c:60:c8:fd:e9:a1:0a:c8:0f:30:bf:25:a6:74:d4: 83:53:60:13:d7:2c:35:94:fd:37:73:12:04:2a:c2: a8:76:c1:bc:db:4d:fc:46:16:a8:39:bd:a2:83:82: cd:47:4a:3c:62:00:a6:99:e0:1c:be:2e:f4:c2:1c: 0d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:22:A7:F0:22:E7:BE:7F:3D:0D:BF:37:19:A9:C1:24:E4:04:A6:B0 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:dc:4d:57:e2:c8:6f:97:13:4b:78:f9:89:9f:f6:8e:1d:51: c2:43:98:0b:44:b0:a6:82:f8:69:c0:06:24:4d:c9:6c:bf:95: 63:20:41:eb:09:d6:3b:4d:c9:55:23:bb:62:c6:ef:08:94:d8: 91:09:45:70:d9:7a:65:e1:af:72:98:d1:5b:15:a6:a5:65:37: 16:cc:35:8e:df:60:d4:1d:56:cc:15:03:c2:0d:b0:3f:11:55: 58:e9:ba:36:66:e2:d3:a1:36:2c:31:69:2f:85:98:48:d7:b2: 3f:ef:bc:59:f4:b0:a0:fc:e5:e7:a4:99:62:25:12:ac:36:38: 40:3c:64:93:8e:31:03:f0:4d:8b:83:1d:72:44:4a:98:85:4e: fd:86:79:56:69:01:8a:62:65:64:39:9d:aa:91:46:37:89:12: 43:9f:5b:15:af:60:a6:60:50:d7:7b:ef:c2:38:ee:7d:cc:42: f3:e7:69:cb:77:37:eb:cf:df:f6:3b:e5:89:73:12:31:25:1f: c9:25:1e:77:2a:62:b4:15:45:b4:cc:d3:7e:f6:50:62:ca:cd: 17:cb:9b:8f:42:33:57:0a:be:32:42:6a:52:72:9d:34:05:72: cd:7e:c8:24:5f:28:08:83:f5:80:02:69:fb:61:f6:7b:0a:18: fd:6a:4d:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTEyMjMwNjIyNDNaFw0yNTEyMzAwNjIyNDNaMBgxFjAUBgNV BAMMDTY5NGEzNTMzLWI3MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSmB21a8m0AdJwCXCRmP6PXfTH+1kXMUzZStz8qutnzhR9mNUZeUQeGAyKbbEy QCDc0A/8KdkokMlAXwO0JQZQJO00jJlzAIK+wtq/QdnaTfCaZGZSvmJWeGCALkfo lJZkR/ph1FWPGdN7ed/A4/gK+Rq+omsQ4YTlQv++HS6himAAsD59FS9CLbtIGei0 ueDIstbGy8d4oJTuM3BzHxDE8GtFyVqCNEIXfwsBQA34SNFC4iPlICIcLA2D1wxE XVqTqRxgyP3poQrIDzC/JaZ01INTYBPXLDWU/TdzEgQqwqh2wbzbTfxGFqg5vaKD gs1HSjxiAKaZ4By+LvTCHA13AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUySKn8CLn vn89Db83GanBJOQEprAwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH3cTVfiyG+XE0t4+Ymf9o4dUcJDmAtEsKaC+GnABiRNyWy/lWMgQesJ 1jtNyVUju2LG7wiU2JEJRXDZemXhr3KY0VsVpqVlNxbMNY7fYNQdVswVA8INsD8R VVjpujZm4tOhNiwxaS+FmEjXsj/vvFn0sKD85eekmWIlEqw2OEA8ZJOOMQPwTYuD HXJESpiFTv2GeVZpAYpiZWQ5naqRRjeJEkOfWxWvYKZgUNd778I47n3MQvPnact3 N+vP3/Y75YlzEjElH8klHncqYrQVRbTM0372UGLKzRfLm49CM1cKvjJCalJynTQF cs1+yCRfKAiD9YACafth9nsKGP1qTeA= -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:46 2025 by rpki-client