This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: NGjO8fm+d9haS1xQIYc116eeaIMhlZiUmxiK7pTs5Mc= Subject key identifier: 7C:06:7C:03:F2:A3:2D:CA:73:25:FF:E1:93:FF:AB:48:ED:65:BB:C5 Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: 0108 Signing time: Fri 19 Dec 2025 04:08:21 +0000 Manifest this update: Fri 19 Dec 2025 04:08:20 +0000 Manifest next update: Fri 26 Dec 2025 04:08:20 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: 8hARqOt04V5lyiyuGKdDwCPnUIfgqyi6f/sDvo+8VRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Dec 19 04:08:20 2025 GMT Not After : Dec 26 04:08:20 2025 GMT Subject: CN=6944cfb5-7a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:86:cd:c0:2f:96:26:70:50:a4:bf:db:01:b6: f5:ba:51:a6:c6:a3:82:ef:45:da:30:ba:a3:c4:b7: 74:ba:17:a1:61:f6:0c:d2:f1:65:92:a2:6c:87:69: fd:c5:47:ea:d6:d1:f9:3e:fa:50:f1:9f:b3:db:f2: a2:05:7f:ae:1a:4a:9f:70:1d:89:b5:d4:8a:65:52: c9:2a:a8:84:3a:c0:c5:2a:2d:c1:61:48:97:63:de: 47:6f:22:60:cc:6e:8a:91:0e:48:a0:8f:70:68:6b: 59:9a:c7:bc:e7:9d:b8:d5:41:c0:08:9b:44:61:a5: 71:80:cc:20:88:e0:c7:b8:ef:15:74:fd:f8:f8:8a: 1e:f0:a9:38:61:14:56:f8:2a:25:ab:ef:f5:61:8c: be:85:ef:db:de:37:d7:04:62:8f:88:34:e6:0d:2d: ee:c0:31:f7:b2:45:ce:d8:a9:84:e2:04:c3:08:ef: 2e:36:e2:93:5a:9e:76:0e:09:f7:0e:34:1c:52:a5: 89:2e:e9:cc:f1:8a:24:65:32:20:90:d7:e5:2a:28: 78:93:dd:36:0d:c7:85:b8:5e:5c:bd:a2:29:1a:7c: bd:37:2d:08:d0:80:f7:86:e3:65:ee:3b:e9:4d:ee: 73:29:cc:8d:2e:3f:9e:65:6d:18:75:2a:70:aa:92: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:06:7C:03:F2:A3:2D:CA:73:25:FF:E1:93:FF:AB:48:ED:65:BB:C5 X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:5d:c0:fc:22:c9:d6:2d:e1:f7:93:95:57:20:82:47:72:5d: a0:c6:ee:ed:d7:9f:5a:cc:ec:5c:62:f8:c2:d8:cf:38:23:f3: 24:c3:18:c0:9e:b3:22:f1:12:93:bb:9f:5e:00:5f:24:6e:c3: d2:5b:56:a7:ac:83:88:31:85:62:b1:37:9a:1c:be:a7:73:12: 26:6c:3c:a3:e6:88:10:03:92:a3:97:6b:0b:bd:68:9d:7f:b9: b1:d6:5c:75:25:c2:ea:b8:bc:1a:bb:fb:62:bb:47:e8:cb:87: c6:9d:b0:2e:6f:c1:3d:f0:18:ba:7b:8f:6b:78:1a:15:0f:f5: 5c:44:5e:4f:e3:93:1b:1e:35:f3:65:35:2c:26:50:4e:10:7f: da:71:cb:73:bc:84:4f:b7:66:1f:38:99:fd:0b:b3:d2:8b:84: db:f4:05:7f:82:57:10:92:c7:39:6a:88:b6:77:82:fe:0a:b0: d0:0a:f3:ec:a7:fd:be:00:d1:b6:82:66:2c:d8:e5:50:4d:e7: ba:0b:82:39:ef:3d:a8:f0:31:74:4e:26:8f:a1:d3:5a:ad:5a: ed:1c:ca:29:1c:93:0a:28:3e:e8:df:54:3e:c5:e4:1a:70:36: 15:87:be:0e:c8:32:0a:d5:11:33:c3:36:a2:fc:bc:a5:22:18: 26:8c:71:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjUxMjE5MDQwODIwWhcNMjUxMjI2MDQwODIwWjAYMRYwFAYD VQQDDA02OTQ0Y2ZiNS03YTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj4bNwC+WJnBQpL/bAbb1ulGmxqOC70XaMLqjxLd0uhehYfYM0vFlkqJsh2n9 xUfq1tH5PvpQ8Z+z2/KiBX+uGkqfcB2JtdSKZVLJKqiEOsDFKi3BYUiXY95HbyJg zG6KkQ5IoI9waGtZmse855241UHACJtEYaVxgMwgiODHuO8VdP34+Ioe8Kk4YRRW +Colq+/1YYy+he/b3jfXBGKPiDTmDS3uwDH3skXO2KmE4gTDCO8uNuKTWp52Dgn3 DjQcUqWJLunM8YokZTIgkNflKih4k902DceFuF5cvaIpGny9Ny0I0ID3huNl7jvp Te5zKcyNLj+eZW0YdSpwqpIilQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwGfAPy oy3KcyX/4ZP/q0jtZbvFMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3XcD8IsnWLeH3k5VXIIJHcl2gxu7t159azOxcYvjC2M84I/MkwxjA nrMi8RKTu59eAF8kbsPSW1anrIOIMYVisTeaHL6ncxImbDyj5ogQA5Kjl2sLvWid f7mx1lx1JcLquLwau/tiu0foy4fGnbAub8E98Bi6e49reBoVD/VcRF5P45MbHjXz ZTUsJlBOEH/acctzvIRPt2YfOJn9C7PSi4Tb9AV/glcQksc5aoi2d4L+CrDQCvPs p/2+ANG2gmYs2OVQTee6C4I57z2o8DF0TiaPodNarVrtHMopHJMKKD7o31Q+xeQa cDYVh74OyDIK1REzwzai/LylIhgmjHFK -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:52 2025 by rpki-client