This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: T4RZy0+UMKgXdnZQp7h0udcvNzDAgdeFSCHOVCBzl84= Subject key identifier: 75:B0:61:F4:B3:C2:D5:30:C1:91:47:F2:BF:61:C8:12:FD:56:53:E3 Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0252 Signing time: Thu 11 Dec 2025 00:05:00 +0000 Manifest this update: Thu 11 Dec 2025 00:04:59 +0000 Manifest next update: Thu 18 Dec 2025 00:04:59 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: WhclAjW5qwRoam8SY5S1I8D9/cc38BPssEraSI98vCs=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: d2fZwjk/kReWJf7o+GQOO5RAjKTwIQ1B0ld4lPrAcBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 00:04:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Dec 11 00:04:59 2025 GMT Not After : Dec 18 00:04:59 2025 GMT Subject: CN=693a0aac-90b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:86:a5:68:31:e1:72:4c:a6:ec:a0:86:d0:56: 07:70:9d:42:55:30:45:20:14:a0:ff:bf:84:ab:af: 02:91:58:69:47:bb:2b:6e:b0:ae:4a:ec:3c:e7:a7: cd:83:d2:bc:ad:8c:17:f0:41:f1:2a:6b:e6:0c:f6: 26:c9:b0:78:7f:df:ff:b4:02:a2:f1:43:9b:4c:a5: be:8b:02:08:a7:cd:bb:76:61:bb:98:c5:83:26:75: 7d:6a:e0:4f:9f:bd:72:19:cb:a0:96:b3:9d:65:09: 74:c2:dd:bd:e1:b0:de:eb:0c:04:37:a2:9e:20:dc: 1d:56:d9:2a:fa:78:9c:d0:db:54:13:a4:e6:07:e3: 99:82:37:21:57:f8:8c:2d:c6:40:de:1f:11:88:ee: 15:bd:12:9c:72:5d:24:5f:be:87:d3:5b:05:43:9f: 64:fe:6e:a4:57:2b:37:dd:19:19:ff:09:e9:1e:72: 66:80:4a:1f:85:b3:54:34:0e:78:ea:7e:ae:03:e8: d6:a9:25:08:d3:3a:4f:4d:11:f7:23:d9:30:e0:77: 7b:69:13:2b:d4:cf:44:73:0f:d0:3c:b8:e6:ad:24: 80:20:01:eb:34:f2:28:05:69:a3:32:f5:bd:0d:79: 7e:d0:97:dd:22:57:dc:26:7b:72:76:d6:12:e5:c1: 13:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B0:61:F4:B3:C2:D5:30:C1:91:47:F2:BF:61:C8:12:FD:56:53:E3 X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:78:53:dd:31:cf:f7:5f:86:7a:9e:b9:a6:53:32:d3:d6:1a: 12:10:c8:a1:d2:1f:7b:c1:97:53:4f:d0:5a:d1:a0:0c:e5:b8: 56:6f:2e:a9:05:06:38:d9:fd:6a:d0:01:5c:1c:3e:2b:05:63: b5:32:af:5b:10:d9:6a:8d:07:0d:7a:fb:2e:5d:3a:f3:9d:83: 79:82:d9:81:c9:ea:c0:01:e1:06:c2:bb:8b:d6:b0:e6:03:3f: 5d:fc:15:18:8b:f9:43:b6:7d:f9:09:c3:d7:ea:b2:49:17:10: 0d:c0:5a:a5:d8:1b:57:86:c3:25:fe:79:6b:d8:df:6e:e9:19: f0:89:46:1a:28:1e:8f:a6:1b:7d:d7:b4:ff:45:7d:c8:09:d4: 0a:21:cc:93:a9:0b:e6:ac:96:74:aa:97:27:46:1b:0f:98:76: 11:c5:55:0d:bc:da:26:76:b2:ff:aa:ce:04:b3:7a:5d:bb:75: 20:6e:b7:9b:8e:59:c8:d2:87:15:1f:08:fe:b4:ba:d7:49:05: 82:3b:9e:75:7d:8a:f7:a9:17:c3:82:9a:d8:74:0f:c3:00:18: 3d:d1:6e:f6:f9:0a:4a:53:d6:62:39:f7:22:a8:ce:59:4d:e5: 24:17:84:34:84:59:43:73:ec:9f:ba:9b:9a:51:09:b1:2a:f5: 6d:55:0f:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUxMjExMDAwNDU5WhcNMjUxMjE4MDAwNDU5WjAYMRYwFAYD VQQDEw02OTNhMGFhYy05MGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IalaDHhckym7KCG0FYHcJ1CVTBFIBSg/7+Eq68CkVhpR7srbrCuSuw856fN g9K8rYwX8EHxKmvmDPYmybB4f9//tAKi8UObTKW+iwIIp827dmG7mMWDJnV9auBP n71yGcuglrOdZQl0wt294bDe6wwEN6KeINwdVtkq+nic0NtUE6TmB+OZgjchV/iM LcZA3h8RiO4VvRKccl0kX76H01sFQ59k/m6kVys33RkZ/wnpHnJmgEofhbNUNA54 6n6uA+jWqSUI0zpPTRH3I9kw4Hd7aRMr1M9Ecw/QPLjmrSSAIAHrNPIoBWmjMvW9 DXl+0JfdIlfcJntydtYS5cETHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWwYfSz wtUwwZFH8r9hyBL9VlPjMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbeFPdMc/3X4Z6nrmmUzLT1hoSEMih0h97wZdTT9Ba0aAM5bhWby6p BQY42f1q0AFcHD4rBWO1Mq9bENlqjQcNevsuXTrznYN5gtmByerAAeEGwruL1rDm Az9d/BUYi/lDtn35CcPX6rJJFxANwFql2BtXhsMl/nlr2N9u6RnwiUYaKB6Ppht9 17T/RX3ICdQKIcyTqQvmrJZ0qpcnRhsPmHYRxVUNvNomdrL/qs4Es3pdu3Ugbreb jlnI0ocVHwj+tLrXSQWCO551fYr3qRfDgprYdA/DABg90W72+QpKU9ZiOfciqM5Z TeUkF4Q0hFlDc+yfupuaUQmxKvVtVQ9z -----END CERTIFICATE-----Generated at Fri Dec 12 21:00:53 2025 by rpki-client