This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft File: H3amlEQsq0PX0XzW_fmpfgt_qo4.mft (raw, json) Hash identifier: npHNk7sw0gN7HVv9LXMSGThDqwjfsQRTpphRhwvzUPc= Subject key identifier: 40:A2:59:37:6A:8F:78:AF:C8:B7:73:F2:17:F3:2D:D7:F4:05:29:15 Authority key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E Certificate issuer: /CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft Manifest number: 0684 Signing time: Thu 18 Dec 2025 21:51:54 +0000 Manifest this update: Thu 18 Dec 2025 21:51:54 +0000 Manifest next update: Thu 25 Dec 2025 21:51:54 +0000 Files and hashes: 1: H3amlEQsq0PX0XzW_fmpfgt_qo4.crl (hash: ggtMTcXFUHf4Nocb00pegZFHuyYZl2B7cfUVMxuZkZg=) 2: 702A62CE9CC311EBA5A7A47BC4F9AE02.roa (hash: casLvQjbiWmoUm1zZDsT8rFqITbKKo8QIpvIUSskW7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Validity Not Before: Dec 18 21:51:54 2025 GMT Not After : Dec 25 21:51:54 2025 GMT Subject: CN=6944777a-48c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8b:a4:f0:3d:a6:4b:ee:0d:a2:7b:d0:df:04: d3:96:cd:cc:b0:72:6f:d2:3e:1b:6a:a7:f0:70:e1: ca:5b:74:1a:be:8c:c6:2c:c0:2c:27:dd:c0:87:de: 47:b5:98:fa:3e:47:f3:17:69:01:58:27:f0:0a:ac: 00:8b:7e:64:b2:d0:43:cf:38:84:b5:8f:74:89:aa: fb:aa:62:b1:43:1e:51:a5:9f:db:f5:85:e0:8b:09: 76:7b:af:ae:3c:17:37:74:05:dc:8e:e3:36:08:9a: 0c:4f:2a:1a:88:93:f7:d7:40:0b:2c:63:c2:44:d0: cb:22:83:27:e3:4a:65:01:45:85:97:31:80:4a:91: 18:b6:76:0b:60:66:7c:31:44:44:d4:2f:17:fe:e9: 86:58:30:9d:1e:4a:45:87:2b:60:78:67:ad:ee:16: 52:a6:bd:a1:6f:3d:4f:92:42:67:fb:7b:39:ef:11: 24:c4:79:fd:4b:df:27:e9:8a:c6:c2:ee:c3:8e:ea: 62:51:59:6c:6a:86:fc:da:57:d6:d7:61:a8:41:ea: ba:a6:54:54:52:1e:02:2e:1f:4b:c9:96:f7:cb:6c: 74:0f:ee:84:5d:3b:70:6f:20:8e:62:e6:89:01:56: 4f:f9:80:88:15:49:b2:4a:76:1b:22:4c:38:8d:17: 9e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A2:59:37:6A:8F:78:AF:C8:B7:73:F2:17:F3:2D:D7:F4:05:29:15 X509v3 Authority Key Identifier: keyid:1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a4:05:74:e8:2d:cd:9e:e4:dd:7d:f2:c1:81:2b:63:dd:e0: 2d:8c:a1:45:6b:49:5f:92:73:a3:05:58:bb:0b:5c:f1:83:3b: c6:05:a6:00:e9:c4:e5:7c:8d:eb:29:87:71:86:b7:c7:fe:9c: ef:0a:c5:f8:1a:5e:28:03:3f:cd:a2:f1:fa:ab:51:a9:0e:2c: ce:f1:60:25:d0:47:73:2c:b2:1c:20:eb:bd:7e:fc:75:b2:ab: df:8e:7e:69:36:69:c1:23:f4:4b:77:2d:31:8e:4c:89:3a:2d: 19:d9:fc:6c:a9:6e:13:bd:66:a8:3b:8b:4d:f9:a8:12:81:a7: c5:3a:b9:74:91:e9:8b:48:b7:e8:0d:1d:5c:eb:c4:c9:fa:05: 7a:23:d8:3d:a9:d1:25:06:b0:7f:46:0c:e4:31:2f:c9:91:47: 18:eb:8a:6b:e4:2b:85:ea:f3:a1:57:5f:98:c0:e5:9b:bb:84: ea:6c:e4:bf:1f:0d:66:a2:88:41:41:a7:9e:33:44:75:74:5f: fe:8d:9e:98:d4:4a:57:76:5b:c4:84:d9:47:d8:98:f1:9b:7e: 31:5d:68:da:5f:6d:29:46:50:b1:b0:f8:91:93:c7:c7:82:23: 3a:b3:e6:23:da:86:0e:46:77:d7:88:f6:79:8f:59:1e:02:01: c9:98:fd:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NENkZERjlBOTdF MEI3RkFBOEUwHhcNMjUxMjE4MjE1MTU0WhcNMjUxMjI1MjE1MTU0WjAYMRYwFAYD VQQDDA02OTQ0Nzc3YS00OGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIuk8D2mS+4NonvQ3wTTls3MsHJv0j4baqfwcOHKW3QavozGLMAsJ93Ah95H tZj6PkfzF2kBWCfwCqwAi35kstBDzziEtY90iar7qmKxQx5RpZ/b9YXgiwl2e6+u PBc3dAXcjuM2CJoMTyoaiJP310ALLGPCRNDLIoMn40plAUWFlzGASpEYtnYLYGZ8 MURE1C8X/umGWDCdHkpFhytgeGet7hZSpr2hbz1PkkJn+3s57xEkxHn9S98n6YrG wu7DjupiUVlsaob82lfW12GoQeq6plRUUh4CLh9LyZb3y2x0D+6EXTtwbyCOYuaJ AVZP+YCIFUmySnYbIkw4jReeLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECiWTdq j3ivyLdz8hfzLdf0BSkVMB8GA1UdIwQYMBaAFB92ppRELKtD19F81v35qX4Lf6qO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODA1OS9CQkQ4MURBODlD QzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3EwUFgwWHpXX2ZtcGZndF9x bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gzYW1sRVFzcTBQWDBYeldfZm1wZmd0X3FvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3Ew UFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfpAV06C3NnuTdffLBgStj3eAtjKFFa0lfknOjBVi7C1zxgzvGBaYA 6cTlfI3rKYdxhrfH/pzvCsX4Gl4oAz/NovH6q1GpDizO8WAl0EdzLLIcIOu9fvx1 sqvfjn5pNmnBI/RLdy0xjkyJOi0Z2fxsqW4TvWaoO4tN+agSgafFOrl0kemLSLfo DR1c68TJ+gV6I9g9qdElBrB/RgzkMS/JkUcY64pr5CuF6vOhV1+YwOWbu4TqbOS/ Hw1moohBQaeeM0R1dF/+jZ6Y1EpXdlvEhNlH2Jjxm34xXWjaX20pRlCxsPiRk8fH giM6s+Yj2oYORnfXiPZ5j1keAgHJmP2o -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:27 2025 by rpki-client