This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft File: H5ogKJzpMW5ls9tyToxzYGyPhks.mft (raw, json) Hash identifier: 509vFDwJfrBYV299tdw0seKlUz9PKEIF0BANnwTRTl8= Subject key identifier: 8D:4C:1A:AB:73:58:53:ED:59:CF:C2:C8:93:86:4A:C5:08:5E:61:13 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0C9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft Manifest number: 0C8D Signing time: Sat 20 Dec 2025 18:05:55 +0000 Manifest this update: Sat 20 Dec 2025 18:05:54 +0000 Manifest next update: Sat 27 Dec 2025 18:05:54 +0000 Files and hashes: 1: H5ogKJzpMW5ls9tyToxzYGyPhks.crl (hash: FhJXat2oGyPMBxsCk6AowneRGcakM1RFWpGGh/6fUOs=) 2: 67827BDC0B8511EA97C80D52C4F9AE02.roa (hash: FwxCipQAsBk9UBv8EDrb+Vo/Shz8I+uuiBIqO9LmFMg=) 3: 172E487A416911ECB6B11742C4F9AE02.roa (hash: jjQzstnlPYenRZWamhU8+OP/S56HuWE5rPwPEoYqLOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: Dec 20 18:05:54 2025 GMT Not After : Dec 27 18:05:54 2025 GMT Subject: CN=6946e583-4967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2f:34:19:20:e2:c5:8c:87:98:56:71:40:c4: d2:fb:6f:b7:b5:d1:dc:62:62:29:8e:ca:65:6e:c0: 0f:92:ec:e2:e7:cd:ae:23:d6:52:45:8b:ff:ca:7c: d0:48:77:b7:f9:d2:de:58:df:37:44:e5:27:fe:82: 22:f8:ee:16:ee:7f:9f:85:ef:82:b9:ac:71:d6:9f: 65:a1:6c:5e:66:5e:be:7b:ed:20:dd:6f:d0:9e:94: 68:03:8f:22:64:15:5b:10:85:8f:cc:71:2a:90:05: 75:7f:f4:d5:e2:76:0e:e3:5e:13:81:46:42:c9:b3: c3:36:a9:0a:77:87:d6:3d:31:74:98:b8:f8:36:41: 0b:1d:d8:64:f0:08:3f:88:ce:5d:6f:e6:13:eb:02: a5:7b:af:83:4c:c3:6c:7c:58:0a:1a:5f:10:dd:63: 43:a0:cc:fa:7e:ae:38:da:59:e0:d4:f9:97:4c:a6: 70:c0:ba:0e:0e:b9:1f:05:82:4c:97:e3:32:6d:0d: 1b:ce:0b:6e:de:04:99:d1:03:c2:0c:6f:ae:24:51: 64:e9:70:89:9c:59:51:30:ef:6a:23:a7:82:84:f8: b3:ce:fd:58:d9:b3:fb:99:ef:0a:84:8b:c9:54:5e: 5e:80:8c:a0:ee:ef:bb:11:62:a8:06:24:b8:01:f9: 01:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4C:1A:AB:73:58:53:ED:59:CF:C2:C8:93:86:4A:C5:08:5E:61:13 X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:91:fc:4a:c2:f4:2f:ea:0c:07:d3:4e:15:51:8f:b8:3c:c6: f8:82:02:23:41:78:c1:60:91:63:ac:0d:8f:a0:f4:7b:41:f1: 5c:d4:cf:f2:4d:bc:50:d6:d6:54:97:8a:96:69:f0:fd:5e:68: b3:56:b6:a3:97:10:f1:1c:8b:9b:74:d1:37:8c:09:86:f6:42: 84:fa:20:04:84:2e:bb:bd:1a:6b:b7:f3:4e:57:ed:0e:fa:ff: e6:41:3b:b1:8b:4f:8a:af:8e:93:b8:6f:2b:48:d0:9c:a3:ab: 04:a1:70:66:ce:07:69:2a:7e:d7:4b:b3:aa:00:2f:72:56:f5: 0f:40:11:f8:e1:92:77:81:67:91:cd:89:f9:ad:d2:24:ac:d8: 3b:3f:ca:c4:2b:b5:be:56:d2:be:a3:e3:7a:32:81:dc:31:6b: 6b:e8:5c:be:06:4b:f6:ee:6a:f2:99:ce:36:53:15:58:a8:95: 73:2f:5f:81:fe:84:d0:bd:67:86:8d:1b:96:e3:ad:21:34:17: c8:05:d1:19:f2:11:63:0d:2e:6d:fa:f6:75:3a:d8:b4:75:9e: f2:28:ba:e5:08:32:3d:4a:a0:72:ac:3e:3e:35:1c:3e:48:4d: 0e:16:84:e5:9f:d7:0e:a7:2b:3e:68:f6:14:ce:e0:72:31:65: df:35:5e:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjUxMjIwMTgwNTU0WhcNMjUxMjI3MTgwNTU0WjAYMRYwFAYD VQQDDA02OTQ2ZTU4My00OTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzC80GSDixYyHmFZxQMTS+2+3tdHcYmIpjsplbsAPkuzi582uI9ZSRYv/ynzQ SHe3+dLeWN83ROUn/oIi+O4W7n+fhe+Cuaxx1p9loWxeZl6+e+0g3W/QnpRoA48i ZBVbEIWPzHEqkAV1f/TV4nYO414TgUZCybPDNqkKd4fWPTF0mLj4NkELHdhk8Ag/ iM5db+YT6wKle6+DTMNsfFgKGl8Q3WNDoMz6fq442lng1PmXTKZwwLoODrkfBYJM l+MybQ0bzgtu3gSZ0QPCDG+uJFFk6XCJnFlRMO9qI6eChPizzv1Y2bP7me8KhIvJ VF5egIyg7u+7EWKoBiS4AfkBuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1MGqtz WFPtWc/CyJOGSsUIXmETMB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkYzMy80NjA2NjFEQzBCODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1X NWxzOXR5VG94ellHeVBoa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkkfxKwvQv6gwH004VUY+4PMb4ggIjQXjBYJFjrA2PoPR7QfFc1M/y TbxQ1tZUl4qWafD9XmizVrajlxDxHIubdNE3jAmG9kKE+iAEhC67vRprt/NOV+0O +v/mQTuxi0+Kr46TuG8rSNCco6sEoXBmzgdpKn7XS7OqAC9yVvUPQBH44ZJ3gWeR zYn5rdIkrNg7P8rEK7W+VtK+o+N6MoHcMWtr6Fy+Bkv27mrymc42UxVYqJVzL1+B /oTQvWeGjRuW460hNBfIBdEZ8hFjDS5t+vZ1Oti0dZ7yKLrlCDI9SqByrD4+NRw+ SE0OFoTln9cOpys+aPYUzuByMWXfNV7n -----END CERTIFICATE-----Generated at Sun Dec 21 14:14:24 2025 by rpki-client