This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: fNrgZKeJik3v86NruE+SunGAezQUS3E+4phURW9Cscc= Subject key identifier: 61:3A:31:10:92:AF:12:05:23:03:49:6B:A7:04:08:F7:2D:99:6D:EA Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0855 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 083A Signing time: Mon 22 Dec 2025 20:17:34 +0000 Manifest this update: Mon 22 Dec 2025 20:17:33 +0000 Manifest next update: Mon 29 Dec 2025 20:17:33 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: VVa4US9i4hQZuvIc5Ov3PYFwgvivgiaM/jqWzL5T9eM=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: bp4jWdbgFBJj7qXPWgiCGUliXYnrbIsNlkes3iQSxxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2133 (0x855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Dec 22 20:17:33 2025 GMT Not After : Dec 29 20:17:33 2025 GMT Subject: CN=6949a75e-48c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:09:15:8d:0c:8c:29:7a:78:00:5f:03:aa:16: 2f:a9:ab:df:5c:b7:4b:b0:d2:80:bc:0b:6f:dd:ca: 1a:d0:6e:59:b8:f5:87:3f:13:d6:aa:9e:74:d3:34: dd:87:6b:3a:7c:37:13:aa:6a:53:6a:e5:13:5c:27: c6:67:e6:38:c9:0a:3b:a8:d0:46:7d:25:d4:cc:16: 6f:58:ca:13:c0:d1:db:f5:15:d9:71:0e:7e:44:1b: 59:f3:7f:c7:1c:09:bf:d9:ed:7f:17:95:13:7d:ae: ec:f4:df:f9:58:8d:ec:99:48:96:ef:94:c4:7c:74: 39:eb:50:92:dd:cb:20:23:62:c3:53:bc:a9:e0:b1: d3:c8:43:5b:e3:74:e7:ac:08:a3:e7:8a:dc:24:af: e4:84:5f:f0:a0:4b:4f:75:7e:8d:9f:52:2c:15:03: f9:b0:59:c0:30:59:e9:ba:ef:48:4e:7f:9e:9f:7e: d4:ab:da:78:91:71:e4:cb:51:be:d1:98:13:70:60: 00:bc:a2:ba:e3:ec:a5:c0:9f:c4:d3:24:27:c3:9e: c6:28:e6:fe:67:6d:ce:02:3b:dc:04:54:91:fb:43: cb:48:7e:8c:1f:cb:ee:e9:01:a2:59:5a:d9:f6:c9: 6a:ba:12:e3:d0:7a:0f:a2:3c:43:b1:4a:af:87:1f: d9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3A:31:10:92:AF:12:05:23:03:49:6B:A7:04:08:F7:2D:99:6D:EA X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:70:4c:3a:87:ce:64:4b:a2:6f:98:d2:d9:ab:f8:f1:07:64: e9:58:24:06:ae:41:72:01:be:53:64:d9:77:76:7e:ec:c2:15: 9b:89:d2:33:62:a9:c1:fa:53:81:86:18:bf:39:cd:6b:ea:b4: 9d:94:50:ce:b5:2e:bf:85:e5:03:51:36:fc:b3:aa:3f:fd:09: f5:ee:ac:3b:57:63:ac:35:eb:33:a5:bd:a7:31:b0:d4:e2:8b: 4e:eb:50:69:f1:c8:fe:33:f2:b8:64:f2:7f:2a:ee:25:6a:43: 8b:8d:ff:39:1d:c4:05:86:ed:e1:be:6e:81:db:2d:6e:06:52: cc:f5:97:2f:c8:66:c9:36:c3:ba:c1:7a:9e:a0:10:ac:01:39: d5:d7:db:a3:79:b1:ac:b0:26:de:df:70:a6:0f:e5:43:c6:bf: 02:bb:8e:05:6e:81:44:b1:0f:1e:0b:c0:16:c3:49:cd:1c:63: 00:24:d0:95:2d:e0:60:f1:86:19:3c:80:c3:4e:9b:66:38:24: 02:c4:45:c0:05:30:46:ea:6b:32:7a:89:c8:2b:3c:49:00:4e: 9e:dd:23:f7:6c:f2:ed:c3:e4:ae:6f:f6:01:07:2e:82:fe:b7: 18:4d:9a:03:fe:1e:93:48:01:b2:61:ce:6e:60:51:33:6b:02: d6:86:28:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjUxMjIyMjAxNzMzWhcNMjUxMjI5MjAxNzMzWjAYMRYwFAYD VQQDDA02OTQ5YTc1ZS00OGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwkVjQyMKXp4AF8DqhYvqavfXLdLsNKAvAtv3coa0G5ZuPWHPxPWqp500zTd h2s6fDcTqmpTauUTXCfGZ+Y4yQo7qNBGfSXUzBZvWMoTwNHb9RXZcQ5+RBtZ83/H HAm/2e1/F5UTfa7s9N/5WI3smUiW75TEfHQ561CS3csgI2LDU7yp4LHTyENb43Tn rAij54rcJK/khF/woEtPdX6Nn1IsFQP5sFnAMFnpuu9ITn+en37Uq9p4kXHky1G+ 0ZgTcGAAvKK64+ylwJ/E0yQnw57GKOb+Z23OAjvcBFSR+0PLSH6MH8vu6QGiWVrZ 9slquhLj0HoPojxDsUqvhx/ZGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGE6MRCS rxIFIwNJa6cECPctmW3qMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9cEw6h85kS6JvmNLZq/jxB2TpWCQGrkFyAb5TZNl3dn7swhWbidIz YqnB+lOBhhi/Oc1r6rSdlFDOtS6/heUDUTb8s6o//Qn17qw7V2OsNeszpb2nMbDU 4otO61Bp8cj+M/K4ZPJ/Ku4lakOLjf85HcQFhu3hvm6B2y1uBlLM9ZcvyGbJNsO6 wXqeoBCsATnV19ujebGssCbe33CmD+VDxr8Cu44FboFEsQ8eC8AWw0nNHGMAJNCV LeBg8YYZPIDDTptmOCQCxEXABTBG6msyeonIKzxJAE6e3SP3bPLtw+Sub/YBBy6C /rcYTZoD/h6TSAGyYc5uYFEzawLWhiiv -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:23 2025 by rpki-client