This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: vAM8lGNuZsxuBU08lfPA+lUHipCylb6roceX14FeykA= Subject key identifier: 28:11:14:11:12:CE:A9:36:13:E1:56:76:9B:D6:C1:63:35:FF:6B:0C Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0E0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0DDC Signing time: Sat 20 Dec 2025 17:34:06 +0000 Manifest this update: Sat 20 Dec 2025 17:34:06 +0000 Manifest next update: Sat 27 Dec 2025 17:34:06 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: QJQjvUDTwCkTTPRarlSUiclKM5mu7Ru8Ikiai80BsPY=) 2: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU=) 3: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: TgzuO7T0sgwTCl2sRbtN58HlHEFkWtWHdI30YEepdig=) 4: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs=) 5: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw=) 6: F2826A504FCF11EB88444467C4F9AE02.roa (hash: QqSGad7FxeptCh4lzX5ee03GteRq4SxJe8s+1HGe3x4=) 7: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: u8GCpF3JjtF0fC5bHONBso6P9ZKL07gluzKPfJhmpXI=) 8: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: ccQHTXT/JWlYkUSlrHBZlxj0fPuZnF/MXZqxQxgBSSk=) 9: D0551B50046411F09760073DC4F9AE02.roa (hash: Ml6MHIFRGUbHxsyGVzTTlekIkq7JzuhUAzoayMJcf6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3594 (0xe0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Dec 20 17:34:06 2025 GMT Not After : Dec 27 17:34:06 2025 GMT Subject: CN=6946de0e-05c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:af:0b:07:f7:71:2d:22:d7:ea:73:14:d7:53: bc:ec:95:55:81:75:da:11:bf:47:1f:67:49:f5:81: 58:36:55:ec:99:a1:89:2a:15:c0:63:72:f8:26:b1: e1:b9:41:a3:2a:5b:8c:37:0a:d0:8e:44:82:87:be: 58:35:fe:47:51:cd:52:bc:41:6c:11:75:ea:8e:e8: 23:68:f1:28:f0:20:a2:59:78:1e:5e:2f:6c:6f:36: ff:38:c9:a2:b9:47:a6:00:c1:15:52:48:cc:de:d1: 26:69:8d:a9:46:49:e6:38:d1:ed:ad:29:71:b3:c8: 38:1d:aa:a8:e6:51:bc:9e:ac:8f:75:91:94:42:20: 46:1e:fd:c2:d3:64:77:a2:fa:4a:8a:01:53:7b:eb: b1:ef:41:cc:53:aa:a6:a2:cc:aa:69:b5:46:93:4a: db:b3:3c:a4:47:8c:63:d8:af:a1:4e:ca:ba:0d:1f: c9:6a:61:c6:eb:83:11:d4:81:5c:d4:70:de:28:fe: 20:8e:c8:4c:ef:fe:28:ca:80:64:02:bf:ed:8c:78: 8c:6a:f8:c3:0b:55:65:e7:fb:98:db:3c:a6:5f:6b: ad:f9:03:ed:fa:69:cd:01:da:98:e8:c7:99:0d:b7: 6d:a2:06:84:9a:00:85:74:e5:32:3e:9a:13:b7:72: cd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:11:14:11:12:CE:A9:36:13:E1:56:76:9B:D6:C1:63:35:FF:6B:0C X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:6d:04:ef:39:7e:53:19:8d:5b:cc:b8:2f:6e:fe:a7:a1:56: bd:66:69:84:61:6b:7b:40:a7:9a:6e:7c:08:2c:6f:9c:b1:9a: 9f:49:e0:05:74:0b:bf:1a:22:71:88:a9:3e:b4:12:f4:bb:34: ce:9a:48:29:5d:32:c3:75:a8:94:ed:0d:e2:5a:0f:b8:35:fa: b8:c3:21:31:94:83:40:72:05:d4:53:48:31:41:c5:46:d1:24: 85:a4:bd:9b:94:e4:9e:00:bc:02:c1:de:f5:02:17:cb:86:cf: 43:40:78:ea:8e:77:11:d2:1e:1b:d3:e6:ae:e2:98:93:c4:fe: 6f:a7:5c:c1:01:c0:35:9c:65:72:bf:79:de:c0:e5:4b:67:1b: 0b:ac:55:47:d7:70:e2:c2:0a:5d:7a:a2:00:73:b3:06:ba:ba: e9:69:7f:8f:c1:9e:61:79:fb:63:8e:24:ec:c2:94:98:82:d1: 55:aa:fa:f4:15:10:01:ce:c2:cb:7c:5c:e0:85:c3:49:fb:cc: 5b:93:6b:79:be:c1:1b:95:0c:70:ab:5f:fe:7b:75:58:44:28: c6:c6:ef:da:4b:0d:ef:40:3c:c5:b7:63:2c:d8:e5:db:ad:22: 6e:34:53:92:3e:a2:d1:f2:99:e7:c0:bd:0e:4d:58:f8:1a:fa: 55:21:ff:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUxMjIwMTczNDA2WhcNMjUxMjI3MTczNDA2WjAYMRYwFAYD VQQDDA02OTQ2ZGUwZS0wNWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAra8LB/dxLSLX6nMU11O87JVVgXXaEb9HH2dJ9YFYNlXsmaGJKhXAY3L4JrHh uUGjKluMNwrQjkSCh75YNf5HUc1SvEFsEXXqjugjaPEo8CCiWXgeXi9sbzb/OMmi uUemAMEVUkjM3tEmaY2pRknmONHtrSlxs8g4Haqo5lG8nqyPdZGUQiBGHv3C02R3 ovpKigFTe+ux70HMU6qmosyqabVGk0rbszykR4xj2K+hTsq6DR/JamHG64MR1IFc 1HDeKP4gjshM7/4oyoBkAr/tjHiMavjDC1Vl5/uY2zymX2ut+QPt+mnNAdqY6MeZ DbdtogaEmgCFdOUyPpoTt3LN/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgRFBES zqk2E+FWdpvWwWM1/2sMMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCbQTvOX5TGY1bzLgvbv6noVa9ZmmEYWt7QKeabnwILG+csZqfSeAF dAu/GiJxiKk+tBL0uzTOmkgpXTLDdaiU7Q3iWg+4Nfq4wyExlINAcgXUU0gxQcVG 0SSFpL2blOSeALwCwd71AhfLhs9DQHjqjncR0h4b0+au4piTxP5vp1zBAcA1nGVy v3newOVLZxsLrFVH13DiwgpdeqIAc7MGurrpaX+PwZ5heftjjiTswpSYgtFVqvr0 FRABzsLLfFzghcNJ+8xbk2t5vsEblQxwq1/+e3VYRCjGxu/aSw3vQDzFt2Ms2OXb rSJuNFOSPqLR8pnnwL0OTVj4GvpVIf9u -----END CERTIFICATE-----Generated at Sat Dec 20 20:55:11 2025 by rpki-client