This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: KMsoEVJ1yk6lzizXYD+dyls+ZXezsOM9/t5uy3EE44U= Subject key identifier: 2F:9C:D0:72:F9:27:7B:12:65:7A:59:9E:AD:6C:F3:3F:A0:71:9D:76 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 039E Signing time: Wed 10 Dec 2025 23:11:15 +0000 Manifest this update: Wed 10 Dec 2025 23:11:15 +0000 Manifest next update: Wed 17 Dec 2025 23:11:15 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: n3+191r5O/S6jQ9g470O/i49AEFQQVMu2M9MGB7qwOI=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 23:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Dec 10 23:11:15 2025 GMT Not After : Dec 17 23:11:15 2025 GMT Subject: CN=6939fe13-27ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:12:35:5b:00:0b:39:22:47:9e:d6:d6:85:0c: f8:c2:40:9d:e2:6c:a1:4f:8a:c6:80:7a:8d:ce:46: 50:3c:45:4f:22:c0:38:42:dc:88:c9:ab:03:3b:10: fb:8a:d2:01:10:3a:62:c4:3d:16:91:b4:9d:96:06: de:b2:56:89:16:90:b2:5c:fb:6a:0d:27:7d:38:e6: 33:0a:5d:d4:39:f8:10:15:3c:2a:fc:a8:08:2a:38: f0:47:21:fc:a2:58:7c:43:f0:e6:0a:72:43:84:86: 2c:13:63:48:78:ca:1d:a4:06:c7:4d:66:90:4a:c0: 07:a3:c3:fe:32:e8:11:ff:95:8d:fc:8a:71:a9:7f: e5:94:d3:20:1a:dc:4f:50:d1:eb:c1:85:fb:4a:30: cc:ef:13:cd:94:3a:5b:56:6f:ce:ed:1e:52:6f:e5: 44:42:84:e5:02:bb:53:d2:95:16:ca:d1:c8:aa:4f: 05:b8:26:2b:9f:17:18:fd:dd:64:3f:97:8b:8e:88: f3:9e:f6:3f:0e:8b:6d:43:7e:6d:4c:54:dd:c1:26: ed:f7:52:70:d1:67:13:82:37:28:2d:a5:9b:f8:27: bc:3b:42:90:26:38:8e:4b:fd:ea:47:94:e6:a2:88: d4:1b:e2:c9:af:b3:c6:4b:bf:10:03:5b:4b:c2:73: e9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9C:D0:72:F9:27:7B:12:65:7A:59:9E:AD:6C:F3:3F:A0:71:9D:76 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:21:f5:78:8c:67:c9:62:87:bd:bc:68:ec:da:7e:ba:15:8a: bc:1c:74:8c:47:4b:13:c3:ec:ff:e3:85:b0:e5:53:1c:3b:04: e4:21:e4:33:dd:ee:78:2a:7e:fc:20:5a:8b:a6:57:96:39:f9: 6d:98:2d:ec:17:44:cd:fc:7f:77:12:bd:df:e5:1e:56:de:a8: 2b:ff:b7:6b:2f:b2:fe:3c:03:7b:0d:35:39:0e:af:4a:41:f6: 3a:1b:73:3c:40:b3:56:75:d0:b4:ad:cb:1d:3b:1d:3e:cc:b0: 4d:7a:35:8c:c3:58:2f:c5:b1:df:d8:95:45:9b:f9:60:34:59: d8:9a:42:6a:e6:97:c6:56:07:39:b3:1e:aa:22:a4:95:a1:c1: a5:d6:b8:b0:e7:1c:2e:3e:49:fb:ae:d5:bd:c4:73:68:3e:f6: 9a:be:6f:2d:0f:82:35:42:9c:f2:c8:38:33:92:db:ce:5c:d5: 0d:48:eb:88:38:a1:f3:2f:f3:5b:dc:44:8a:4b:6a:e3:e1:c4: 6d:4d:69:65:09:15:ea:68:f9:dd:0e:9e:6b:7b:ac:c6:af:8f: 07:11:15:a8:9d:d9:34:aa:dc:8e:06:3a:19:76:12:64:7f:75: 92:4c:3b:0f:7a:d2:6e:55:0e:2f:b5:ca:2f:9e:26:3f:87:dd: f6:f9:40:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUxMjEwMjMxMTE1WhcNMjUxMjE3MjMxMTE1WjAYMRYwFAYD VQQDEw02OTM5ZmUxMy0yN2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhI1WwALOSJHntbWhQz4wkCd4myhT4rGgHqNzkZQPEVPIsA4QtyIyasDOxD7 itIBEDpixD0WkbSdlgbeslaJFpCyXPtqDSd9OOYzCl3UOfgQFTwq/KgIKjjwRyH8 olh8Q/DmCnJDhIYsE2NIeModpAbHTWaQSsAHo8P+MugR/5WN/IpxqX/llNMgGtxP UNHrwYX7SjDM7xPNlDpbVm/O7R5Sb+VEQoTlArtT0pUWytHIqk8FuCYrnxcY/d1k P5eLjojznvY/DottQ35tTFTdwSbt91Jw0WcTgjcoLaWb+Ce8O0KQJjiOS/3qR5Tm oojUG+LJr7PGS78QA1tLwnPpsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+c0HL5 J3sSZXpZnq1s8z+gcZ12MB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1IfV4jGfJYoe9vGjs2n66FYq8HHSMR0sTw+z/44Ww5VMcOwTkIeQz 3e54Kn78IFqLpleWOfltmC3sF0TN/H93Er3f5R5W3qgr/7drL7L+PAN7DTU5Dq9K QfY6G3M8QLNWddC0rcsdOx0+zLBNejWMw1gvxbHf2JVFm/lgNFnYmkJq5pfGVgc5 sx6qIqSVocGl1riw5xwuPkn7rtW9xHNoPvaavm8tD4I1QpzyyDgzktvOXNUNSOuI OKHzL/Nb3ESKS2rj4cRtTWllCRXqaPndDp5re6zGr48HERWondk0qtyOBjoZdhJk f3WSTDsPetJuVQ4vtcovniY/h932+UCA -----END CERTIFICATE-----Generated at Fri Dec 12 08:28:48 2025 by rpki-client