This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: qfAhSf1IUm1eSqQWVKaKfGLzwZ1+Cs0sWeJVOF5MiaM= Subject key identifier: 5F:59:32:EC:48:9D:35:91:BD:6C:7F:5D:38:D7:92:0A:3E:4A:9C:24 Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 0519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 0514 Signing time: Mon 22 Dec 2025 22:42:41 +0000 Manifest this update: Mon 22 Dec 2025 22:42:40 +0000 Manifest next update: Mon 29 Dec 2025 22:42:40 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: ql5SR2RviDE3kApj14fOaP4asFQW1UHHe5OWUdpZhYs=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1305 (0x519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Dec 22 22:42:40 2025 GMT Not After : Dec 29 22:42:40 2025 GMT Subject: CN=6949c961-67b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c1:0e:ca:c5:54:33:d8:13:01:a3:17:e6:93: 74:78:db:a6:53:32:1d:b7:ac:dc:35:27:cb:2f:f6: e9:dc:de:28:d5:3b:ba:40:71:c8:5b:7f:4a:3e:9a: 31:39:2e:43:8d:62:27:2c:a1:a1:15:ea:4c:17:83: 3d:ac:73:bc:fe:e4:7f:e2:58:6a:af:86:42:d9:5f: 9f:70:be:b5:62:b1:5a:a1:a9:12:31:ef:0c:60:30: 32:fa:c8:f5:25:11:90:78:ac:e5:87:b2:53:63:e5: 3f:e9:f2:39:65:7a:86:c1:dc:87:35:ea:18:8e:1b: 63:5c:35:80:f8:41:df:5e:64:f5:0c:6a:a2:e2:44: f3:8c:04:75:53:e6:cf:bf:35:66:ee:5f:1c:ee:28: cc:7a:97:1f:c7:27:d2:33:ac:0c:e5:b8:c5:26:0d: b6:f3:d5:2f:6b:b4:5e:5d:a4:23:ba:58:40:a3:71: eb:07:82:cd:f7:1c:94:3a:2e:83:75:96:3f:b3:49: 31:ff:eb:65:81:66:24:04:f0:05:00:0a:4f:ef:c7: 82:33:b0:16:34:17:ce:93:cf:1c:a7:be:16:50:1e: da:a4:fd:d3:6d:4d:c4:e9:1e:36:f0:32:48:cb:fc: d5:d4:25:26:5c:e7:2c:bd:8f:fc:46:bf:c1:f0:8b: 16:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:59:32:EC:48:9D:35:91:BD:6C:7F:5D:38:D7:92:0A:3E:4A:9C:24 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:52:c4:a4:01:6c:b4:a8:3b:13:69:5c:b5:14:b8:56:b7:f5: 4f:01:93:84:36:71:51:25:84:d1:2c:08:c6:1f:63:8f:ce:78: 9d:cc:ef:a2:10:61:af:38:54:da:47:77:c3:25:a8:21:c0:f4: 3c:b4:13:20:3f:2d:25:a5:ff:92:06:b0:37:a1:44:3a:95:90: 22:66:32:33:98:30:55:97:51:3b:41:e5:5a:7f:07:2d:d9:4f: 94:2d:13:c1:fa:dc:64:e9:bb:a3:9a:32:7c:1e:3a:01:d9:dd: 91:9b:8c:16:ca:37:d2:e6:0a:f2:37:6d:31:c8:ea:f0:a9:03: 02:c1:b5:ff:a1:f5:f0:be:3d:e3:97:d5:16:56:da:cf:8e:b5: ed:2d:4d:73:42:38:65:cd:7a:9b:14:fd:ee:e5:93:01:be:47: 4c:56:82:1c:1b:b6:05:d0:47:0d:94:a6:f5:14:6d:b2:fc:01: 0a:26:2a:0a:17:6a:3b:15:33:c9:0a:37:ed:62:9c:4e:81:8b: 56:02:db:e1:a8:a5:ff:eb:ba:43:cc:a4:46:66:bc:ec:22:89: 29:f3:29:9c:1d:ed:47:be:33:3e:fc:76:de:da:84:02:7e:ac: ee:1b:4d:59:92:e2:1f:d0:ac:fe:4c:3e:eb:95:5d:aa:35:45: fc:90:b3:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUxMjIyMjI0MjQwWhcNMjUxMjI5MjI0MjQwWjAYMRYwFAYD VQQDDA02OTQ5Yzk2MS02N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsEOysVUM9gTAaMX5pN0eNumUzIdt6zcNSfLL/bp3N4o1Tu6QHHIW39KPpox OS5DjWInLKGhFepMF4M9rHO8/uR/4lhqr4ZC2V+fcL61YrFaoakSMe8MYDAy+sj1 JRGQeKzlh7JTY+U/6fI5ZXqGwdyHNeoYjhtjXDWA+EHfXmT1DGqi4kTzjAR1U+bP vzVm7l8c7ijMepcfxyfSM6wM5bjFJg2289Uva7ReXaQjulhAo3HrB4LN9xyUOi6D dZY/s0kx/+tlgWYkBPAFAApP78eCM7AWNBfOk88cp74WUB7apP3TbU3E6R428DJI y/zV1CUmXOcsvY/8Rr/B8IsWQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9ZMuxI nTWRvWx/XTjXkgo+SpwkMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEUsSkAWy0qDsTaVy1FLhWt/VPAZOENnFRJYTRLAjGH2OPznidzO+i EGGvOFTaR3fDJaghwPQ8tBMgPy0lpf+SBrA3oUQ6lZAiZjIzmDBVl1E7QeVafwct 2U+ULRPB+txk6bujmjJ8HjoB2d2Rm4wWyjfS5gryN20xyOrwqQMCwbX/ofXwvj3j l9UWVtrPjrXtLU1zQjhlzXqbFP3u5ZMBvkdMVoIcG7YF0EcNlKb1FG2y/AEKJioK F2o7FTPJCjftYpxOgYtWAtvhqKX/67pDzKRGZrzsIokp8ymcHe1HvjM+/Hbe2oQC fqzuG01ZkuIf0Kz+TD7rlV2qNUX8kLPb -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:09 2025 by rpki-client