This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: YLaEGdAccb8XbPw/OGzoNf2bFSSZSPwXHVdCzhA+LU0= Subject key identifier: 7F:D2:5B:AC:20:BD:3F:1E:29:F7:B0:7E:D6:B3:F3:34:07:9C:6E:3E Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: C9 Signing time: Sun 21 Dec 2025 05:01:12 +0000 Manifest this update: Sun 21 Dec 2025 05:01:11 +0000 Manifest next update: Sun 28 Dec 2025 05:01:11 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: 38cdpfRfsfEzeerUQkwuC2b/Xga15BGCat9OiLHZxc0=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: cRwLsutqQVxWT3ZK97DqtNM6mPPtYnnF8FmbKFlWINg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: wDnirQsBVGr2+TbqtsfsrtJW3jBHzGAZ6azL84nOZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Dec 21 05:01:11 2025 GMT Not After : Dec 28 05:01:11 2025 GMT Subject: CN=69477f18-7dc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d4:9e:4e:bb:6f:f7:8d:e0:39:5f:75:d7:8d: 23:a0:88:0e:bb:6d:ee:de:52:e7:ea:f7:6c:be:99: 44:0c:03:23:e5:cf:57:5a:62:a6:1e:a4:bf:a8:32: f7:3f:1e:8b:e3:44:01:a4:52:eb:1d:b6:26:3b:52: cf:d7:a2:cd:61:4d:f3:fa:77:50:47:4b:3f:c6:d7: 59:d8:6d:cc:4d:02:67:06:d7:56:93:35:1d:69:6a: 21:74:11:a2:ef:c3:a1:f3:d2:c0:98:f7:4e:f7:f6: c1:17:aa:c9:9b:d3:ad:4f:c9:ce:b0:34:d5:ff:40: 1a:9b:35:2e:84:7d:b0:ef:3e:1a:0e:01:96:2c:25: 65:77:e4:ef:08:08:69:d2:0e:fc:3d:19:e5:5b:5c: ec:db:37:9b:17:42:ff:5f:6c:f2:b3:41:5e:71:30: 20:42:e5:e7:a7:64:4b:5f:43:19:41:c9:82:d4:b0: c8:78:d1:ee:95:82:49:f0:1c:f7:43:b1:a9:4a:e7: 44:68:c5:2a:33:a3:34:19:69:06:5e:31:5b:bc:3d: b6:bd:10:04:fd:d0:3a:0e:7c:c0:68:25:07:ea:f8: 48:e8:45:df:8f:14:b7:8f:f0:9e:4c:19:7c:aa:2d: 29:2b:a1:c4:48:2d:c8:27:86:49:ab:ca:34:cf:9f: d3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D2:5B:AC:20:BD:3F:1E:29:F7:B0:7E:D6:B3:F3:34:07:9C:6E:3E X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:87:b4:32:28:4b:45:e8:50:c5:66:70:86:e1:ff:3f:b1:ff: 63:a9:41:1d:f6:60:43:c3:e0:ef:1a:95:41:bd:82:5b:98:5f: a8:5d:61:0b:b2:95:74:37:d3:30:37:ed:5f:57:45:06:c2:74: 8b:8c:f6:b2:05:cb:a0:28:d4:d4:35:44:2c:4e:38:0e:a3:cc: 8a:c3:e0:38:ac:61:4a:08:ef:07:26:b0:80:d6:c6:33:fa:00: be:2f:18:57:50:9d:f9:73:61:bb:03:c5:44:38:06:be:6a:bd: 88:53:9d:42:d2:a3:d8:ae:f4:59:41:c0:3b:9d:dc:c4:81:96: ec:64:89:a7:83:c3:2e:0a:25:57:b8:fb:24:fc:1c:98:10:e5: d0:8b:5a:44:90:94:51:f8:b1:ba:9d:c6:a5:65:ab:ac:87:7f: 91:78:99:b4:02:38:80:c8:d0:83:06:32:a1:8f:75:eb:d5:67: fd:bd:cc:c8:4f:8e:29:80:6c:94:4d:5d:a0:85:2f:3b:f9:a4: 2b:f6:58:d4:fa:4a:86:8a:fb:89:2b:e0:06:56:43:92:42:67: ba:cb:84:14:36:09:9a:1e:b8:f9:fc:a2:ef:4d:9c:26:3d:53: 21:47:c2:b5:ac:b6:a6:36:27:c9:43:91:ff:25:d4:6b:d6:42: 86:64:de:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0OEQxMTAvBgNVBAUTKDg2NDQ0QTMzNDkxNTEyMTRCNEYyNzExQjJDNURBMENC OTlFNTBGMTMwHhcNMjUxMjIxMDUwMTExWhcNMjUxMjI4MDUwMTExWjAYMRYwFAYD VQQDDA02OTQ3N2YxOC03ZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNSeTrtv943gOV91140joIgOu23u3lLn6vdsvplEDAMj5c9XWmKmHqS/qDL3 Px6L40QBpFLrHbYmO1LP16LNYU3z+ndQR0s/xtdZ2G3MTQJnBtdWkzUdaWohdBGi 78Oh89LAmPdO9/bBF6rJm9OtT8nOsDTV/0AamzUuhH2w7z4aDgGWLCVld+TvCAhp 0g78PRnlW1zs2zebF0L/X2zys0FecTAgQuXnp2RLX0MZQcmC1LDIeNHulYJJ8Bz3 Q7GpSudEaMUqM6M0GWkGXjFbvD22vRAE/dA6DnzAaCUH6vhI6EXfjxS3j/CeTBl8 qi0pK6HESC3IJ4ZJq8o0z5/TMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/SW6wg vT8eKfewftaz8zQHnG4+MB8GA1UdIwQYMBaAFIZESjNJFRIUtPJxGyxdoMuZ5Q8T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ4RC8wQzIxNThCMkIy QzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVoUzA4bkViTEYyZ3k1bmxE eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzQ4RC8wQzIxNThCMkIyQzkxMUVGOTAzRjc4ODNDNEY5QUUwMi9oa1JLTTBrVkVo UzA4bkViTEYyZ3k1bmxEeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4h7QyKEtF6FDFZnCG4f8/sf9jqUEd9mBDw+DvGpVBvYJbmF+oXWEL spV0N9MwN+1fV0UGwnSLjPayBcugKNTUNUQsTjgOo8yKw+A4rGFKCO8HJrCA1sYz +gC+LxhXUJ35c2G7A8VEOAa+ar2IU51C0qPYrvRZQcA7ndzEgZbsZImng8MuCiVX uPsk/ByYEOXQi1pEkJRR+LG6ncalZaush3+ReJm0AjiAyNCDBjKhj3Xr1Wf9vczI T44pgGyUTV2ghS87+aQr9ljU+kqGivuJK+AGVkOSQme6y4QUNgmaHrj5/KLvTZwm PVMhR8K1rLamNifJQ5H/JdRr1kKGZN6B -----END CERTIFICATE-----Generated at Sun Dec 21 13:25:02 2025 by rpki-client