This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: x+g95AzKDZzojqGxfYQ4VOQv4nuauPGLU5Zrryj4BNE= Subject key identifier: 48:62:C0:96:77:B7:3E:38:A9:44:CF:FB:3C:CB:08:E7:96:09:A2:53 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0C11 Signing time: Sat 20 Dec 2025 18:23:42 +0000 Manifest this update: Sat 20 Dec 2025 18:23:42 +0000 Manifest next update: Sat 27 Dec 2025 18:23:42 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: H05UyCPrhSv27oCbnvMPrpJlaWQIxs3dtjh1gkxD9bM=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Dec 20 18:23:42 2025 GMT Not After : Dec 27 18:23:42 2025 GMT Subject: CN=6946e9ae-6688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:72:24:d9:8d:7d:b1:90:1b:9b:b1:c4:8f:9f: 16:66:d2:11:46:83:50:33:db:a2:97:50:76:d1:c5: 5b:ec:43:06:9e:5f:00:a3:b1:78:48:68:de:26:7e: fe:4a:25:27:8d:61:8d:7b:58:be:32:c1:7e:26:50: 13:cc:e0:b6:8b:c5:5e:5c:57:f2:c4:44:0d:a1:1e: b7:66:fa:3e:66:5f:b7:18:21:ef:9e:b5:36:df:50: c3:a2:14:79:7b:d9:2d:3c:10:29:3b:10:31:d4:cb: 8e:73:78:50:7d:d2:03:ab:3f:a2:6b:84:38:e5:77: 90:e8:60:f1:35:02:03:8c:a3:01:c9:16:23:8d:52: a1:1c:a9:0d:99:62:b0:15:18:16:1e:c8:26:c0:ff: 59:69:40:e5:c0:d0:00:10:94:0a:4d:98:be:58:3e: 22:67:34:db:18:d5:1d:e3:e8:f8:05:48:c9:75:fb: 3b:78:dc:f5:61:63:fe:94:9c:45:a3:20:68:55:90: ad:f1:96:b9:db:e7:44:52:19:d3:de:bf:58:27:d2: 95:2e:be:a8:c9:38:31:54:8b:33:45:83:01:fb:b8: ba:b0:10:53:1d:7e:e2:44:ec:d3:a6:03:4d:4c:d8: 72:17:99:44:34:2f:5c:05:7b:0e:7f:c0:3f:2b:7e: b1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:62:C0:96:77:B7:3E:38:A9:44:CF:FB:3C:CB:08:E7:96:09:A2:53 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:28:8f:a8:04:6d:9d:f8:42:8c:b9:b2:fb:db:66:5f:80:b1: 24:44:9b:c1:21:20:5e:98:80:f7:90:44:7f:8a:6e:87:3e:12: a8:5f:d4:ae:ba:ae:18:06:ac:f4:aa:a8:04:65:d2:c7:e5:4f: ce:31:8e:a5:fc:9f:c1:da:cd:0e:f7:7c:2c:cc:1e:43:72:7c: 37:e4:d2:e0:98:e5:5f:4a:45:52:aa:70:b5:55:91:88:65:4b: 11:2c:90:66:ac:4a:d5:b8:a3:12:5f:f5:d4:c8:dd:70:fe:fc: c3:cf:b6:2f:d3:58:48:2b:58:e1:e4:ab:8b:2d:70:29:a2:74: c2:e8:b8:c2:d9:a1:22:ed:27:f9:b5:00:56:68:10:3c:ab:1c: b9:e9:f4:40:17:65:2a:bd:e8:60:a5:fa:99:4d:3b:6d:41:c1: a1:ed:c5:10:2e:c5:e8:d5:11:dc:b2:c6:e6:7d:17:b3:87:fc: 1b:50:2e:cc:c7:3b:14:50:16:e9:b0:b5:bf:99:6e:0b:e8:b5: b2:b9:a0:d6:17:56:c2:e9:b8:9c:fc:ba:7d:90:77:76:66:ba: ca:e3:09:7e:4d:1c:3f:e2:2a:ce:28:04:c2:8e:16:93:11:f7: f4:e6:b3:d3:7f:2e:dd:0a:06:7b:f0:ed:1c:0c:30:d6:0b:16: a8:bf:d1:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUxMjIwMTgyMzQyWhcNMjUxMjI3MTgyMzQyWjAYMRYwFAYD VQQDDA02OTQ2ZTlhZS02Njg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonIk2Y19sZAbm7HEj58WZtIRRoNQM9uil1B20cVb7EMGnl8Ao7F4SGjeJn7+ SiUnjWGNe1i+MsF+JlATzOC2i8VeXFfyxEQNoR63Zvo+Zl+3GCHvnrU231DDohR5 e9ktPBApOxAx1MuOc3hQfdIDqz+ia4Q45XeQ6GDxNQIDjKMByRYjjVKhHKkNmWKw FRgWHsgmwP9ZaUDlwNAAEJQKTZi+WD4iZzTbGNUd4+j4BUjJdfs7eNz1YWP+lJxF oyBoVZCt8Za52+dEUhnT3r9YJ9KVLr6oyTgxVIszRYMB+7i6sBBTHX7iROzTpgNN TNhyF5lENC9cBXsOf8A/K36x5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhiwJZ3 tz44qUTP+zzLCOeWCaJTMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGKI+oBG2d+EKMubL722ZfgLEkRJvBISBemID3kER/im6HPhKoX9Su uq4YBqz0qqgEZdLH5U/OMY6l/J/B2s0O93wszB5Dcnw35NLgmOVfSkVSqnC1VZGI ZUsRLJBmrErVuKMSX/XUyN1w/vzDz7Yv01hIK1jh5KuLLXAponTC6LjC2aEi7Sf5 tQBWaBA8qxy56fRAF2UqvehgpfqZTTttQcGh7cUQLsXo1RHcssbmfRezh/wbUC7M xzsUUBbpsLW/mW4L6LWyuaDWF1bC6bic/Lp9kHd2ZrrK4wl+TRw/4irOKATCjhaT Eff05rPTfy7dCgZ78O0cDDDWCxaov9F6 -----END CERTIFICATE-----Generated at Mon Dec 22 05:53:45 2025 by rpki-client