This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: GeNR+FtD4DffmGadR4uezxagmPHSAwq7Lu08q0GV2gI= Subject key identifier: FB:D0:B1:08:B2:3B:8C:5C:C5:E6:FD:7E:FC:76:22:AA:0C:73:63:89 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 08B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 08B1 Signing time: Sun 14 Dec 2025 19:54:58 +0000 Manifest this update: Sun 14 Dec 2025 19:54:58 +0000 Manifest next update: Sun 21 Dec 2025 19:54:58 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: EwwvfCT7ZO+dH7Y4N1N/i8xCm3gB9P2++Q45bfQWoTA=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: 1N0QMhN8bev3U7bduyRkYXLSMRn8SE8/x15vjryS7dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 19:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2231 (0x8b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A, serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Dec 14 19:54:58 2025 GMT Not After : Dec 21 19:54:58 2025 GMT Subject: CN=693f1612-b998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5d:83:34:58:7c:f9:cd:83:40:54:2b:ed:99: 0c:7e:8b:2b:46:85:aa:56:db:80:fd:c1:00:48:a8: 11:b9:7d:0f:55:15:f7:21:e3:da:0f:2a:9c:18:00: f7:f3:ea:b4:18:3a:89:66:56:45:85:99:69:68:9a: 46:67:01:b9:f6:de:00:da:35:30:98:63:62:47:a4: 2f:71:89:1b:0b:b1:54:59:2f:7e:b7:da:27:5e:65: ed:2e:f8:bd:51:a8:9d:9d:2c:ea:95:02:00:b6:6a: bb:8a:e2:e2:ad:20:43:da:93:f4:68:4b:b1:3e:5f: d8:05:2c:4e:03:5c:19:ce:9f:60:2e:0b:58:de:72: 81:83:16:98:8a:4e:a7:12:fb:e0:07:9a:23:c9:76: 1f:7d:96:2f:f0:c9:4e:02:7f:e7:15:96:c4:5b:0e: 0a:a0:22:85:22:67:c8:f7:ec:d4:fd:bf:b6:7c:c0: a9:bb:63:d4:96:71:f9:98:87:c2:e1:7b:55:94:9f: ae:6b:df:b2:0a:db:88:21:ae:7e:51:87:a8:bd:37: de:18:91:d5:b1:56:79:51:2d:50:de:2b:b5:0b:2a: 36:5d:42:29:83:f2:ff:7e:8d:75:75:a0:9b:d7:6f: ae:67:3f:e2:92:66:96:9f:9b:28:fd:08:4c:46:3b: 34:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D0:B1:08:B2:3B:8C:5C:C5:E6:FD:7E:FC:76:22:AA:0C:73:63:89 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ab:78:6a:31:4b:f0:46:83:50:47:a3:ea:5b:f3:d4:02:6c: ee:a5:38:c8:03:72:44:d3:63:4b:6b:b9:b3:6b:99:84:b9:5d: b2:f5:7d:9c:2e:68:a7:56:60:16:f7:45:2b:5e:e3:8b:92:fe: 52:9e:62:7f:7b:0f:0e:b3:21:e4:a1:a5:43:ed:56:39:9a:14: 9a:58:19:bd:1d:a2:c8:2d:49:7f:c6:55:e1:58:46:b1:f8:9e: f7:be:f4:e6:eb:f4:ba:93:7e:61:4d:fd:02:ac:3e:12:ae:e8: dd:33:d2:7b:89:f2:5d:ef:5d:7b:f7:0f:a3:3c:a8:15:f9:69: af:5d:0a:f2:0d:c9:ed:7a:df:72:4e:1a:bb:d6:5b:9f:b2:82: 4f:69:58:5a:9c:9a:fc:14:91:77:7e:67:67:91:95:eb:e7:3b: 41:66:d8:0a:16:17:00:10:19:25:6e:de:78:1d:7c:7f:d9:4e: a5:6c:a1:ab:43:6a:f2:56:d7:ce:08:16:e1:04:b7:48:b3:89: 82:48:14:24:0c:0b:98:e1:22:44:15:c1:13:32:a4:14:bb:8b: 96:67:03:0d:0d:c4:25:25:5c:7c:cb:53:2f:e7:26:b3:5e:70: 7c:91:35:62:3b:a7:51:82:02:d9:32:e6:a4:36:b3:8f:b5:d7: 9f:e8:c4:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjUxMjE0MTk1NDU4WhcNMjUxMjIxMTk1NDU4WjAYMRYwFAYD VQQDDA02OTNmMTYxMi1iOTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1F2DNFh8+c2DQFQr7ZkMfosrRoWqVtuA/cEASKgRuX0PVRX3IePaDyqcGAD3 8+q0GDqJZlZFhZlpaJpGZwG59t4A2jUwmGNiR6QvcYkbC7FUWS9+t9onXmXtLvi9 UaidnSzqlQIAtmq7iuLirSBD2pP0aEuxPl/YBSxOA1wZzp9gLgtY3nKBgxaYik6n EvvgB5ojyXYffZYv8MlOAn/nFZbEWw4KoCKFImfI9+zU/b+2fMCpu2PUlnH5mIfC 4XtVlJ+ua9+yCtuIIa5+UYeovTfeGJHVsVZ5US1Q3iu1Cyo2XUIpg/L/fo11daCb 12+uZz/ikmaWn5so/QhMRjs0tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvQsQiy O4xcxeb9fvx2IqoMc2OJMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+q3hqMUvwRoNQR6PqW/PUAmzupTjIA3JE02NLa7mza5mEuV2y9X2c LminVmAW90UrXuOLkv5SnmJ/ew8OsyHkoaVD7VY5mhSaWBm9HaLILUl/xlXhWEax +J73vvTm6/S6k35hTf0CrD4SrujdM9J7ifJd71179w+jPKgV+WmvXQryDcntet9y Thq71lufsoJPaVhanJr8FJF3fmdnkZXr5ztBZtgKFhcAEBklbt54HXx/2U6lbKGr Q2ryVtfOCBbhBLdIs4mCSBQkDAuY4SJEFcETMqQUu4uWZwMNDcQlJVx8y1Mv5yaz XnB8kTViO6dRggLZMuakNrOPtdef6MT2 -----END CERTIFICATE-----Generated at Mon Dec 15 12:08:14 2025 by rpki-client