This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: 4+Z5YbobfP2g11Ppf3IP5Ub2JwUpLX1vVQ9hJYxvYYI= Subject key identifier: D4:52:DE:CC:FF:EF:99:C7:6D:57:8D:F7:08:0B:0C:A6:70:DF:76:F4 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A58 Signing time: Mon 22 Dec 2025 19:06:12 +0000 Manifest this update: Mon 22 Dec 2025 19:06:12 +0000 Manifest next update: Mon 29 Dec 2025 19:06:12 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: Zeddrgtq/JZwitArtCUDMQZBCorNDq11GYO2RtVS0j0=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0c8vFwsGm0y9J7tirCRPVhjPNwdGg4DZRn3e0fuJjls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Dec 22 19:06:12 2025 GMT Not After : Dec 29 19:06:12 2025 GMT Subject: CN=694996a4-6186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ae:d7:64:9c:35:40:b4:89:69:5f:ec:0e:fc: 05:34:2b:38:52:d3:5b:89:62:84:e0:17:fa:08:c1: 0d:2c:10:60:09:ca:d1:1d:ee:24:69:22:68:54:3f: f8:89:42:fa:c3:bb:54:2e:75:d5:dd:3b:c8:78:4b: f9:7f:36:eb:38:d7:53:27:c8:d7:d7:f8:ee:49:91: 32:40:43:7a:cf:26:48:92:c7:3b:41:2d:82:41:50: b9:46:59:a2:93:90:3f:76:cf:63:f7:5c:f6:00:b9: ba:8d:7b:72:53:14:bd:b3:e2:84:c4:ed:2e:31:21: 9b:36:b3:3f:e7:10:41:35:77:a8:39:b0:d4:9e:61: 83:63:8e:9f:b8:27:67:bd:32:cc:98:7d:46:a8:7a: 3d:02:e2:a5:83:a7:1f:38:65:c0:b7:d5:b8:e4:ba: 5d:cd:26:be:32:62:5c:0e:fa:6d:e9:a0:33:aa:21: 32:e6:25:84:fe:e7:b7:b9:ed:4d:4e:70:0f:42:2a: 64:c3:bb:e9:76:a6:4a:d3:8e:33:30:34:bb:97:90: dd:df:7f:ec:2d:3f:fe:02:1a:5d:76:42:ac:96:30: 33:22:92:73:15:74:ca:c9:59:05:89:4e:05:d5:ec: 36:ef:36:b3:40:51:b0:da:2c:25:9d:52:f3:63:7b: a6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:52:DE:CC:FF:EF:99:C7:6D:57:8D:F7:08:0B:0C:A6:70:DF:76:F4 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:dd:04:f5:a2:f7:7d:11:20:a7:ed:48:b1:a1:39:31:6e:a7: 53:6a:5a:2d:9b:2b:c6:a1:bf:f9:02:79:5e:83:b0:10:13:73: ed:bc:d9:69:d5:16:92:73:89:41:80:5f:13:e7:78:70:7d:13: 6c:06:98:fd:9c:31:90:25:f3:8c:99:3c:dd:fa:67:ec:65:0c: 66:42:0b:6d:e2:3a:c8:f3:27:33:41:4a:0a:00:62:15:d1:a3: db:7b:10:4e:e0:a4:b0:63:67:34:50:81:40:1c:8a:92:77:ec: 77:36:33:76:7d:07:36:5d:79:9e:d9:be:28:12:01:70:72:da: fc:f4:b4:78:c2:86:a5:70:ec:f4:0e:68:60:7e:b2:38:71:e7: da:4e:a6:0a:e9:4a:b5:30:42:84:44:4b:06:ee:5b:0f:69:ae: 32:ce:e1:c1:18:d3:40:5b:67:82:ba:41:0e:d3:ac:9a:94:12: f6:b9:84:36:36:23:09:10:11:3e:84:4c:37:c4:d8:81:d7:81: 32:0e:9b:af:2b:9c:35:35:c4:12:bd:0e:d3:56:50:ca:f7:54: 93:3d:cc:01:c5:bf:ee:32:de:be:af:12:3a:eb:13:a3:b0:50: ec:69:8c:9f:83:a6:b2:d1:80:db:c4:6f:73:8c:12:a1:d7:9f: 2f:6b:21:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUxMjIyMTkwNjEyWhcNMjUxMjI5MTkwNjEyWjAYMRYwFAYD VQQDDA02OTQ5OTZhNC02MTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmq7XZJw1QLSJaV/sDvwFNCs4UtNbiWKE4Bf6CMENLBBgCcrRHe4kaSJoVD/4 iUL6w7tULnXV3TvIeEv5fzbrONdTJ8jX1/juSZEyQEN6zyZIksc7QS2CQVC5Rlmi k5A/ds9j91z2ALm6jXtyUxS9s+KExO0uMSGbNrM/5xBBNXeoObDUnmGDY46fuCdn vTLMmH1GqHo9AuKlg6cfOGXAt9W45LpdzSa+MmJcDvpt6aAzqiEy5iWE/ue3ue1N TnAPQipkw7vpdqZK044zMDS7l5Dd33/sLT/+AhpddkKsljAzIpJzFXTKyVkFiU4F 1ew27zazQFGw2iwlnVLzY3umbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRS3sz/ 75nHbVeN9wgLDKZw33b0MB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/3QT1ovd9ESCn7UixoTkxbqdTalotmyvGob/5Anleg7AQE3PtvNlp 1RaSc4lBgF8T53hwfRNsBpj9nDGQJfOMmTzd+mfsZQxmQgtt4jrI8yczQUoKAGIV 0aPbexBO4KSwY2c0UIFAHIqSd+x3NjN2fQc2XXme2b4oEgFwctr89LR4woalcOz0 DmhgfrI4cefaTqYK6Uq1MEKEREsG7lsPaa4yzuHBGNNAW2eCukEO06yalBL2uYQ2 NiMJEBE+hEw3xNiB14EyDpuvK5w1NcQSvQ7TVlDK91STPcwBxb/uMt6+rxI66xOj sFDsaYyfg6ay0YDbxG9zjBKh158vayHk -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:27 2025 by rpki-client