This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: hru0fweGRhzzRg6ShdODRcNkFY9TY2zPpb/lpGWrEck= Subject key identifier: 6B:06:4D:EF:29:89:6D:DA:95:4F:FE:B2:EC:2C:4D:EA:92:93:28:2C Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 0405 Signing time: Tue 30 Dec 2025 23:39:45 +0000 Manifest this update: Tue 30 Dec 2025 23:39:45 +0000 Manifest next update: Tue 06 Jan 2026 23:39:45 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: UGBAj6HlYf9Zt0vGKtxj0ggmwHt0wb1yt8MBlL+K+NU=) 2: F570D764773F11F09FC02036C4F9AE02.roa (hash: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: kpBK3OXshYOskuLSoO3uUhN6W4dairHEsqEKAKksIS4=) 4: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 23:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Dec 30 23:39:45 2025 GMT Not After : Jan 6 23:39:45 2026 GMT Subject: CN=695462c1-0e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:b0:ac:17:2a:e1:4d:51:cd:f3:58:be:27: f8:17:0f:7a:45:d6:9c:61:4b:fc:0b:57:af:a8:31: 47:18:ad:df:3c:59:b5:3e:be:a1:8e:0d:bd:02:2d: a6:5d:0f:73:6e:89:b8:47:ba:ff:ea:f6:ac:a7:94: 03:00:a4:12:18:ff:c4:a6:a2:9c:6b:12:16:e2:2a: 28:bb:56:9b:c2:22:b4:22:0c:4d:bd:a5:c8:82:e6: 27:6b:50:a3:90:62:69:65:38:b5:16:1c:47:ac:11: f3:f1:78:ef:82:aa:88:f3:18:3f:c6:33:90:4b:54: 99:72:6d:57:ca:14:b9:32:f8:e9:c8:e8:e9:fe:77: b2:d6:8e:c2:d0:96:f0:5b:4a:03:8e:00:89:65:f4: 71:6f:d6:0e:b3:4e:0a:8b:dc:86:18:ba:b5:3b:13: 2a:20:85:41:93:19:a2:6d:2c:6d:a5:60:ba:17:34: 7f:6e:2c:6b:0f:95:71:92:38:72:5f:e5:e3:2b:73: ab:45:26:ab:0f:17:a5:98:f5:ff:38:0f:09:8f:92: 3a:68:78:20:03:ce:e2:c8:c6:29:0d:b7:63:03:2a: 40:1e:4b:49:00:17:7d:8d:c7:3d:2b:8e:c0:88:3a: 9f:f0:a2:b1:fe:4f:0c:45:e3:66:e1:42:ca:10:ba: 6d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:06:4D:EF:29:89:6D:DA:95:4F:FE:B2:EC:2C:4D:EA:92:93:28:2C X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:88:07:d9:59:7b:f4:b9:13:80:4f:8b:50:e2:b5:fb:61:29: a9:64:f2:0d:f6:ae:83:5f:f6:f3:31:d9:71:2d:68:1e:21:fb: cb:3f:e5:2a:5d:88:53:c6:b3:4d:6b:1a:2b:41:39:8d:43:43: 90:dd:7b:5f:92:71:ee:ee:f5:76:da:58:46:40:de:2f:93:75: f5:c0:f1:e0:f5:e1:73:e4:bd:03:ec:03:06:c4:53:57:ce:16: e3:0b:d8:7f:64:30:e7:35:ea:5e:7f:02:bf:99:2e:54:01:bb: 45:3a:92:e4:ca:7d:62:3d:ed:12:57:4c:e7:9a:3a:51:3d:06: 12:d7:2a:5d:94:41:50:8d:42:7a:85:57:7d:e8:1e:78:0b:43: 6c:cc:9b:e5:4f:fe:61:01:68:ea:17:5d:41:17:9f:7f:0b:da: b4:8f:1b:71:15:74:29:77:b3:92:76:fe:3d:d3:f9:20:37:d8: 09:86:a6:97:0a:63:18:58:4b:ea:1b:77:8a:37:0f:55:33:65: 78:31:88:5d:72:93:2d:26:aa:79:50:3e:2b:39:a6:a0:ad:ae: 4a:2f:fd:30:a6:0a:8f:78:1b:a8:e0:c9:70:60:ad:5d:32:8d: 8a:46:03:11:c0:fb:6c:45:da:f0:af:19:eb:36:35:4d:3c:7b: f1:6e:4a:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUxMjMwMjMzOTQ1WhcNMjYwMTA2MjMzOTQ1WjAYMRYwFAYD VQQDDA02OTU0NjJjMS0wZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5+wrBcq4U1RzfNYvif4Fw96RdacYUv8C1evqDFHGK3fPFm1Pr6hjg29Ai2m XQ9zbom4R7r/6vasp5QDAKQSGP/EpqKcaxIW4ioou1abwiK0IgxNvaXIguYna1Cj kGJpZTi1FhxHrBHz8XjvgqqI8xg/xjOQS1SZcm1XyhS5MvjpyOjp/ney1o7C0Jbw W0oDjgCJZfRxb9YOs04Ki9yGGLq1OxMqIIVBkxmibSxtpWC6FzR/bixrD5Vxkjhy X+XjK3OrRSarDxelmPX/OA8Jj5I6aHggA87iyMYpDbdjAypAHktJABd9jcc9K47A iDqf8KKx/k8MReNm4ULKELptTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsGTe8p iW3alU/+suwsTeqSkygsMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkiAfZWXv0uROAT4tQ4rX7YSmpZPIN9q6DX/bzMdlxLWgeIfvLP+Uq XYhTxrNNaxorQTmNQ0OQ3XtfknHu7vV22lhGQN4vk3X1wPHg9eFz5L0D7AMGxFNX zhbjC9h/ZDDnNepefwK/mS5UAbtFOpLkyn1iPe0SV0znmjpRPQYS1ypdlEFQjUJ6 hVd96B54C0NszJvlT/5hAWjqF11BF59/C9q0jxtxFXQpd7OSdv490/kgN9gJhqaX CmMYWEvqG3eKNw9VM2V4MYhdcpMtJqp5UD4rOaagra5KL/0wpgqPeBuo4MlwYK1d Mo2KRgMRwPtsRdrwrxnrNjVNPHvxbkqk -----END CERTIFICATE-----Generated at Wed Dec 31 21:12:16 2025 by rpki-client