This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: 6quEcKsaNDnkdGc68G7EuTQIZTwOAlXdmdBiOyqls5Y= Subject key identifier: 02:4D:68:4A:F6:2A:F1:D1:3F:AD:F2:5D:F2:E2:06:00:F3:18:1D:62 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 21C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 21AC Signing time: Sat 20 Dec 2025 15:44:55 +0000 Manifest this update: Sat 20 Dec 2025 15:44:54 +0000 Manifest next update: Sat 27 Dec 2025 15:44:54 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: HEMzdojG2cgloXZ1pnDzT26iVEQ4rtZWK8Loo/CyBzc=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: Ms90FxESevmJJSUHqdATBiDii797QEYyZU7sr0gTu+4=) 3: 1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa (hash: lQXg+x/pxYEw6RZp1vPPXfhhm8xX80IO6STDBaCkyJw=) 4: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: Y1Cpa5UdPfcspNdJq+tFu9S//D6d+al37ZNPf+vz/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8648 (0x21c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Dec 20 15:44:54 2025 GMT Not After : Dec 27 15:44:54 2025 GMT Subject: CN=6946c477-8fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:9d:af:70:3e:10:ac:09:e8:d8:8f:4e:ba:44: 0e:96:2f:9c:98:1c:23:68:77:d4:a5:b5:cd:8b:d8: 38:09:37:b8:6d:c6:40:08:17:5a:0d:73:f2:4a:22: b1:64:4b:01:ff:2e:64:06:43:d8:ad:27:36:2e:8a: 3c:7d:8f:43:dc:9f:46:bf:f3:ba:e1:ee:08:3d:76: 11:dc:db:41:e2:69:93:ab:5d:6d:53:b1:e0:0c:09: 30:f8:48:45:c6:1b:b3:73:db:32:e5:e5:39:54:16: fc:b6:d7:5d:c1:e8:3c:8e:67:9b:06:a1:0f:9a:21: b4:3f:6b:1a:0c:3f:36:f6:30:7d:dc:4a:9f:46:8d: 68:c0:b7:d3:1b:80:1d:a1:74:ff:2d:4b:35:09:92: 81:f6:ed:8a:35:e2:e7:18:84:20:cc:4d:28:c1:b7: 2b:36:cb:bd:d9:4e:dd:7e:ce:f5:3b:4b:98:a0:cf: 15:5e:c2:54:98:67:5a:bd:7d:67:5e:63:c3:b6:ae: e6:89:59:70:78:4c:66:f1:1a:8e:ae:64:02:ad:ad: d9:50:8e:4f:89:f8:2d:3f:9c:b1:f5:6a:39:7b:69: d3:96:57:e2:73:9b:6a:9d:6e:f0:fe:41:30:ca:4e: 54:b1:fd:91:a7:ae:e3:ad:80:74:34:ea:38:56:d7: c6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4D:68:4A:F6:2A:F1:D1:3F:AD:F2:5D:F2:E2:06:00:F3:18:1D:62 X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:bd:98:b9:05:13:cb:89:20:4d:81:46:c3:fc:da:b1:4a:5a: 0b:45:a7:ce:8f:d0:a3:53:48:64:21:78:19:46:1d:3f:59:27: ab:dc:ea:a9:43:39:ec:90:9d:ee:de:d0:63:90:f2:de:74:33: 49:b7:ff:78:d1:f6:8c:8f:f4:38:17:00:98:bc:cb:bc:41:08: d7:b1:ca:91:2d:8d:69:0f:49:fc:05:1b:5a:c7:44:b0:63:60: 6c:bc:bb:d0:b9:c7:85:d6:9f:7b:60:50:76:06:28:b0:8c:cf: a2:a6:17:95:d1:3c:f8:ae:2a:0f:90:d4:1a:d6:5e:b8:1e:52: 64:19:ca:09:11:b4:fb:8c:66:af:c4:57:84:21:88:2f:ce:54: dc:da:d7:a9:27:46:d9:47:e7:e8:00:5e:1e:bb:19:e9:19:3c: 32:a8:8c:3c:1b:d4:4f:06:bc:f4:35:37:9b:3c:5d:f8:39:9d: be:54:6c:47:8b:6b:c1:4b:84:a0:4d:7e:14:18:29:ad:85:a1: f7:ba:01:df:d9:95:54:e7:e3:b4:1b:72:3d:01:08:77:ba:55: a2:75:12:f1:00:79:4c:12:74:84:36:19:27:e6:bb:bd:23:53: 47:f2:34:38:da:5c:ff:c1:00:94:c9:82:b7:8f:8d:75:43:44: 89:86:57:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUxMjIwMTU0NDU0WhcNMjUxMjI3MTU0NDU0WjAYMRYwFAYD VQQDDA02OTQ2YzQ3Ny04ZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7p2vcD4QrAno2I9OukQOli+cmBwjaHfUpbXNi9g4CTe4bcZACBdaDXPySiKx ZEsB/y5kBkPYrSc2Loo8fY9D3J9Gv/O64e4IPXYR3NtB4mmTq11tU7HgDAkw+EhF xhuzc9sy5eU5VBb8ttddweg8jmebBqEPmiG0P2saDD829jB93EqfRo1owLfTG4Ad oXT/LUs1CZKB9u2KNeLnGIQgzE0owbcrNsu92U7dfs71O0uYoM8VXsJUmGdavX1n XmPDtq7miVlweExm8RqOrmQCra3ZUI5PifgtP5yx9Wo5e2nTllfic5tqnW7w/kEw yk5Usf2Rp67jrYB0NOo4VtfGaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJNaEr2 KvHRP63yXfLiBgDzGB1iMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxvZi5BRPLiSBNgUbD/NqxSloLRafOj9CjU0hkIXgZRh0/WSer3Oqp QznskJ3u3tBjkPLedDNJt/940faMj/Q4FwCYvMu8QQjXscqRLY1pD0n8BRtax0Sw Y2BsvLvQuceF1p97YFB2BiiwjM+ipheV0Tz4rioPkNQa1l64HlJkGcoJEbT7jGav xFeEIYgvzlTc2tepJ0bZR+foAF4euxnpGTwyqIw8G9RPBrz0NTebPF34OZ2+VGxH i2vBS4SgTX4UGCmthaH3ugHf2ZVU5+O0G3I9AQh3ulWidRLxAHlMEnSENhkn5ru9 I1NH8jQ42lz/wQCUyYK3j411Q0SJhlca -----END CERTIFICATE-----Generated at Sun Dec 21 00:29:55 2025 by rpki-client