This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: kuynRkkjtVwKjH84EgHE/VCQ067YLSLvq50KSsLBS4I= Subject key identifier: 0E:D7:91:5A:5F:B9:6F:77:49:31:36:A1:22:59:6C:5A:6B:1E:B7:58 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 2151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 213F Signing time: Mon 22 Dec 2025 15:44:55 +0000 Manifest this update: Mon 22 Dec 2025 15:44:54 +0000 Manifest next update: Mon 29 Dec 2025 15:44:54 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: WS2qx+7ATQqAdDn6bIjPNkabfwLVb7G1GdepNrLBgEY=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8529 (0x2151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Dec 22 15:44:54 2025 GMT Not After : Dec 29 15:44:54 2025 GMT Subject: CN=69496777-e6ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ed:ce:1e:3c:34:f7:eb:2b:be:2a:78:43:75: 9f:a1:65:5b:c3:ae:41:46:b1:c5:9c:a9:3a:9f:d0: ea:05:89:13:4b:9d:7a:1a:5d:2a:95:3e:06:cd:51: 5e:ad:ad:cd:df:db:dc:72:8d:cb:cb:0f:c3:18:c8: ff:1b:83:72:b3:ad:e2:59:0f:ba:cf:ca:d4:74:19: d8:3a:d3:a4:79:35:01:2b:1d:b9:99:8d:b2:30:03: 4b:b4:79:76:4c:49:0f:8a:3f:90:ed:49:54:19:18: 75:18:84:13:d9:b1:96:cd:1b:25:3a:f0:bd:8f:1c: 27:15:c8:6f:68:12:d7:c0:39:bb:03:6a:ce:48:e3: 7a:59:f4:e6:eb:8b:40:b7:a4:07:13:d3:3c:35:9c: a6:02:dd:08:72:f6:72:d6:11:ca:db:f5:a9:70:93: d7:7a:d4:3e:1d:9a:d7:cc:cf:6b:49:f6:07:ae:7f: af:be:29:95:d8:df:18:07:81:ae:37:78:cf:2c:60: ea:70:a5:cd:0e:1a:0f:1b:ea:0f:99:b3:03:97:1e: 65:c3:94:8f:26:fb:77:f9:11:66:ca:2a:ef:ec:c2: 23:a1:7b:98:db:09:27:24:fe:52:87:90:97:9f:24: e9:91:2b:25:c2:6a:38:d6:84:64:18:5f:62:e3:be: 38:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D7:91:5A:5F:B9:6F:77:49:31:36:A1:22:59:6C:5A:6B:1E:B7:58 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ba:36:b2:d5:f1:4a:1e:9f:5e:ff:62:02:20:bb:de:ef:fe: c7:a7:8f:e6:03:07:14:fb:0e:9c:06:93:05:79:95:72:db:b8: d3:66:8f:72:c8:67:16:40:f1:40:61:cf:a9:be:67:63:9d:7c: eb:d0:dd:63:48:85:5c:c6:b5:e0:89:51:3e:96:d6:09:21:1c: 00:0d:94:c7:65:6c:75:58:fb:d8:16:3b:c0:34:c6:84:c9:47: e6:48:94:3a:af:f8:47:27:6f:7c:82:a9:bf:bf:f1:17:32:38: 0c:47:8f:bd:0a:a8:2e:40:b5:3b:7b:6e:cf:de:c5:97:1f:b7: f5:82:df:8c:62:af:8b:da:9b:36:df:0d:77:53:48:41:0f:df: e6:3a:45:a6:4b:3a:a9:0f:09:b8:33:ba:74:5a:0a:f2:75:d1: 67:89:41:ec:ab:12:ec:17:85:ae:d6:68:12:68:fa:94:56:6e: 3e:a4:93:36:18:5a:df:46:8d:93:23:f8:c2:10:d7:b2:59:d5: 97:2f:74:1c:25:d5:a0:83:76:07:ee:40:7b:61:de:57:a4:f9: 89:4c:b0:ab:e1:34:95:3a:80:62:40:02:9c:5b:26:ea:4f:1b: e4:b5:ba:02:a2:fe:49:90:f4:2e:34:1e:90:de:b2:0a:08:23: 10:6c:13:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUxMjIyMTU0NDU0WhcNMjUxMjI5MTU0NDU0WjAYMRYwFAYD VQQDDA02OTQ5Njc3Ny1lNmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxu3OHjw09+srvip4Q3WfoWVbw65BRrHFnKk6n9DqBYkTS516Gl0qlT4GzVFe ra3N39vcco3Lyw/DGMj/G4Nys63iWQ+6z8rUdBnYOtOkeTUBKx25mY2yMANLtHl2 TEkPij+Q7UlUGRh1GIQT2bGWzRslOvC9jxwnFchvaBLXwDm7A2rOSON6WfTm64tA t6QHE9M8NZymAt0IcvZy1hHK2/WpcJPXetQ+HZrXzM9rSfYHrn+vvimV2N8YB4Gu N3jPLGDqcKXNDhoPG+oPmbMDlx5lw5SPJvt3+RFmyirv7MIjoXuY2wknJP5Sh5CX nyTpkSslwmo41oRkGF9i4744MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7XkVpf uW93STE2oSJZbFprHrdYMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvujay1fFKHp9e/2ICILve7/7Hp4/mAwcU+w6cBpMFeZVy27jTZo9y yGcWQPFAYc+pvmdjnXzr0N1jSIVcxrXgiVE+ltYJIRwADZTHZWx1WPvYFjvANMaE yUfmSJQ6r/hHJ298gqm/v/EXMjgMR4+9CqguQLU7e27P3sWXH7f1gt+MYq+L2ps2 3w13U0hBD9/mOkWmSzqpDwm4M7p0WgryddFniUHsqxLsF4Wu1mgSaPqUVm4+pJM2 GFrfRo2TI/jCENeyWdWXL3QcJdWgg3YH7kB7Yd5XpPmJTLCr4TSVOoBiQAKcWybq TxvktboCov5JkPQuNB6Q3rIKCCMQbBPA -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:16 2025 by rpki-client