This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: BXTvNbbDGjnHIsLenjx245rZhyTMDgf5j3ljtr4feSA= Subject key identifier: 34:27:5E:A5:CA:CE:9B:65:0E:08:D1:34:CD:10:1A:C2:34:E4:55:82 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: D8 Signing time: Tue 23 Dec 2025 04:35:48 +0000 Manifest this update: Tue 23 Dec 2025 04:35:48 +0000 Manifest next update: Tue 30 Dec 2025 04:35:48 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: xp0EKTJIQDJgroRbgBtMVtblkaXyV8gFai+9aivfWB4=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: Z1yPOrOVBAA0wAoiECPiJ9d5WH/bmXdgM8w0h3GaBUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Dec 23 04:35:48 2025 GMT Not After : Dec 30 04:35:48 2025 GMT Subject: CN=694a1c24-0083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:17:f1:44:d2:b1:e8:f6:2c:b8:88:f9:be:a3: d7:bf:55:17:74:3e:ad:1e:0c:b8:3f:9f:d6:9d:8d: 19:55:d6:93:1f:df:0e:4e:f2:ea:6c:cc:8c:84:1a: 9e:f3:b4:92:76:4b:9b:db:af:80:1f:e6:88:35:8a: 2c:91:61:06:0f:97:e1:9a:0e:32:5b:1b:6f:ee:a5: 86:9e:9d:6a:f7:ca:88:e0:42:ac:9d:d6:25:fe:49: 15:1c:d2:4a:17:33:f7:d7:17:ef:ae:ec:21:4f:44: a6:25:2f:28:9f:24:d8:27:0c:1c:59:07:f5:c3:1f: 9e:5e:d2:95:6c:f3:16:5c:37:7c:26:60:c2:0d:5d: 3d:3e:e9:60:db:6b:15:df:d9:bb:7b:63:45:80:f0: e2:13:2b:0d:93:07:4e:25:48:33:bf:d9:79:b3:5e: 9b:55:5f:d2:c1:75:6d:cf:ef:7b:9f:aa:7d:f5:41: 19:cd:f1:99:cd:7d:cd:59:7a:8c:35:09:f6:47:0d: 62:bb:2c:92:7c:50:2c:55:d7:a6:f1:1a:87:c3:03: ee:95:65:09:1d:af:8f:67:5b:06:e9:d3:85:75:0e: c0:c9:18:13:aa:57:60:65:41:63:e8:1f:56:2a:dc: 93:5d:bc:77:c6:e6:23:d9:9f:62:36:88:a3:5a:59: 9d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:27:5E:A5:CA:CE:9B:65:0E:08:D1:34:CD:10:1A:C2:34:E4:55:82 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:8f:62:d0:51:01:90:8b:d4:eb:40:4e:27:c6:ca:3b:42:98: ed:95:43:a7:b5:92:2b:7f:72:2e:97:64:6a:3b:d4:be:35:1d: 03:e7:e7:56:a4:31:b1:a3:50:77:0b:a9:9b:90:33:6a:d6:35: 12:3a:61:dc:b7:2e:39:a0:6b:5a:68:c6:c3:2b:82:00:8d:90: 03:13:0d:7e:97:d6:4f:e3:12:32:af:5a:1d:cd:4d:90:d1:13: 8f:f9:ee:76:82:b4:f0:57:ff:b8:f9:72:6a:5d:a6:2e:19:13: 17:82:94:a2:79:e5:94:5c:cd:7a:f0:02:2a:cc:90:48:f3:52: cf:6d:5d:64:32:a2:f2:88:3f:ea:ef:41:98:d7:c7:b0:51:c8: 2c:06:11:8d:6f:4c:0f:2a:c8:91:3d:7f:c5:87:3a:44:20:fd: 56:e4:4f:e8:22:15:e9:43:8b:87:d5:c9:38:a9:46:a2:89:98: 08:dc:2f:68:93:04:ee:26:86:b5:31:f9:44:d1:27:04:ee:3c: fe:c1:f9:bf:8f:90:f6:98:ab:85:d8:db:68:a4:3e:33:88:42: fd:fc:19:53:23:35:c8:a7:d5:e0:5c:cd:8c:8b:0d:26:44:74: c0:62:d6:a7:72:25:ee:ba:22:7e:f9:3c:9f:a9:cf:a4:48:6c: 9a:08:d9:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjUxMjIzMDQzNTQ4WhcNMjUxMjMwMDQzNTQ4WjAYMRYwFAYD VQQDDA02OTRhMWMyNC0wMDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBfxRNKx6PYsuIj5vqPXv1UXdD6tHgy4P5/WnY0ZVdaTH98OTvLqbMyMhBqe 87SSdkub26+AH+aINYoskWEGD5fhmg4yWxtv7qWGnp1q98qI4EKsndYl/kkVHNJK FzP31xfvruwhT0SmJS8onyTYJwwcWQf1wx+eXtKVbPMWXDd8JmDCDV09Pulg22sV 39m7e2NFgPDiEysNkwdOJUgzv9l5s16bVV/SwXVtz+97n6p99UEZzfGZzX3NWXqM NQn2Rw1iuyySfFAsVdem8RqHwwPulWUJHa+PZ1sG6dOFdQ7AyRgTqldgZUFj6B9W KtyTXbx3xuYj2Z9iNoijWlmdbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQnXqXK zptlDgjRNM0QGsI05FWCMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVj2LQUQGQi9TrQE4nxso7QpjtlUOntZIrf3Iul2RqO9S+NR0D5+dW pDGxo1B3C6mbkDNq1jUSOmHcty45oGtaaMbDK4IAjZADEw1+l9ZP4xIyr1odzU2Q 0ROP+e52grTwV/+4+XJqXaYuGRMXgpSieeWUXM168AIqzJBI81LPbV1kMqLyiD/q 70GY18ewUcgsBhGNb0wPKsiRPX/FhzpEIP1W5E/oIhXpQ4uH1ck4qUaiiZgI3C9o kwTuJoa1MflE0ScE7jz+wfm/j5D2mKuF2NtopD4ziEL9/BlTIzXIp9XgXM2Miw0m RHTAYtanciXuuiJ++Tyfqc+kSGyaCNmT -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:46 2025 by rpki-client