This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: bFcvlr3mLe5ohv/bs9MFHW36r1DnU3KZNWTXo0j2VpU= Subject key identifier: 9C:6C:0A:0C:DB:86:B4:6F:43:B1:1B:E2:71:FD:63:A3:E9:C7:54:9D Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0C2A Signing time: Sat 20 Dec 2025 18:19:35 +0000 Manifest this update: Sat 20 Dec 2025 18:19:34 +0000 Manifest next update: Sat 27 Dec 2025 18:19:34 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: ZoX0yWhJoDWKnqWoCFIyRvQZxE8TuWI8KSr6+zqjJ5k=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: yqFSXrSreAwWsxKHKKypXy96bJWuk7Ta+8Svfir1RMk=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: 8S+9u5NejOEqjzyGww6nqkHBEMgMZJI4JwQwHM3xtzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3126 (0xc36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Dec 20 18:19:34 2025 GMT Not After : Dec 27 18:19:34 2025 GMT Subject: CN=6946e8b7-5fdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:52:25:cd:63:3e:34:fc:85:0b:51:f9:c8:2f: 85:89:6a:f2:76:c2:d5:61:07:9c:93:e6:1c:32:90: 8a:7b:ef:0e:56:3d:ed:ab:2d:d2:97:89:e4:fc:82: ef:e7:98:bb:6c:94:e0:80:d2:68:57:1a:d5:51:26: 20:51:8e:09:35:5d:c5:fc:d8:9c:dd:a5:27:2a:73: 11:01:1a:77:f2:af:5a:a6:ad:06:ea:75:d8:f6:0f: 53:85:c5:5b:00:c2:4a:8d:34:e4:55:d9:4a:fd:63: d3:0f:73:9b:7f:45:c4:9c:46:45:34:8f:17:d1:fa: d1:c7:88:52:ca:e7:02:95:d7:9c:6c:11:6b:76:23: 05:ef:de:2f:81:a9:b5:e7:7f:37:77:b2:b9:eb:04: 70:15:c2:ba:5c:78:6f:6a:27:2b:d7:3a:4e:e3:c6: 15:c9:41:ad:96:07:08:22:ae:08:ea:46:e9:f4:61: fa:29:f2:dc:a6:eb:b2:3e:d4:f0:d1:38:45:8f:e4: 38:09:05:b2:44:e5:a8:95:21:bd:87:6a:b0:7a:0a: 1c:fd:57:d4:bd:e0:af:fd:f4:f4:64:16:f3:34:66: ac:88:b2:b0:05:4e:79:e6:62:01:e0:d2:94:7d:dc: fa:b4:a3:ad:42:44:44:b9:f8:1e:72:f4:42:07:30: 05:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6C:0A:0C:DB:86:B4:6F:43:B1:1B:E2:71:FD:63:A3:E9:C7:54:9D X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f7:74:3d:1d:21:d5:b1:81:f8:e1:dd:36:6c:bc:cb:74:24: b1:1a:1e:78:55:d2:07:35:44:29:b5:f1:b6:9f:86:ad:cb:0d: ca:ef:db:72:61:52:f0:77:83:d1:53:17:a3:f5:dd:65:fc:cd: 18:8f:32:e8:bf:ec:cb:e3:bc:26:de:da:10:e5:72:6b:44:a4: 41:a0:37:b3:2a:37:f4:a8:90:15:16:bf:c5:d3:7c:9b:84:da: ab:3f:82:33:30:3f:31:00:84:ac:5f:89:3b:b0:a3:90:b6:80: f3:39:8c:69:80:8c:d6:63:c9:3e:fa:d9:d9:d8:ba:90:f9:9d: 04:a0:2b:0b:fb:96:27:f5:2c:c1:48:df:5b:c9:62:80:ed:29: 3f:23:c5:b8:0f:06:31:12:07:eb:92:e4:e9:04:86:fb:4e:e9: 91:e8:2a:d1:09:2c:42:a2:a0:60:c4:a5:ff:27:b4:b3:72:ca: 5e:7c:55:55:11:54:8b:11:49:10:61:ff:bb:be:b8:cb:0a:41: d7:df:06:9b:e1:cc:76:af:32:ed:38:e7:03:b9:6a:41:4c:ee: 07:ab:6b:09:24:10:da:ef:b5:fa:51:31:68:7f:c3:78:1e:f8: 27:69:b0:a6:1d:e1:62:2a:e0:bd:22:02:1e:f9:80:85:8f:54: 69:31:b3:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUxMjIwMTgxOTM0WhcNMjUxMjI3MTgxOTM0WjAYMRYwFAYD VQQDDA02OTQ2ZThiNy01ZmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVIlzWM+NPyFC1H5yC+FiWrydsLVYQeck+YcMpCKe+8OVj3tqy3Sl4nk/ILv 55i7bJTggNJoVxrVUSYgUY4JNV3F/Nic3aUnKnMRARp38q9apq0G6nXY9g9ThcVb AMJKjTTkVdlK/WPTD3Obf0XEnEZFNI8X0frRx4hSyucCldecbBFrdiMF794vgam1 5383d7K56wRwFcK6XHhvaicr1zpO48YVyUGtlgcIIq4I6kbp9GH6KfLcpuuyPtTw 0ThFj+Q4CQWyROWolSG9h2qwegoc/VfUveCv/fT0ZBbzNGasiLKwBU555mIB4NKU fdz6tKOtQkREufgecvRCBzAFzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxsCgzb hrRvQ7Eb4nH9Y6Ppx1SdMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM93Q9HSHVsYH44d02bLzLdCSxGh54VdIHNUQptfG2n4atyw3K79ty YVLwd4PRUxej9d1l/M0YjzLov+zL47wm3toQ5XJrRKRBoDezKjf0qJAVFr/F03yb hNqrP4IzMD8xAISsX4k7sKOQtoDzOYxpgIzWY8k++tnZ2LqQ+Z0EoCsL+5Yn9SzB SN9byWKA7Sk/I8W4DwYxEgfrkuTpBIb7TumR6CrRCSxCoqBgxKX/J7SzcspefFVV EVSLEUkQYf+7vrjLCkHX3wab4cx2rzLtOOcDuWpBTO4Hq2sJJBDa77X6UTFof8N4 HvgnabCmHeFiKuC9IgIe+YCFj1RpMbNI -----END CERTIFICATE-----Generated at Sun Dec 21 12:49:55 2025 by rpki-client