This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: 1bdLvjicmmWjmy7Pf1eLuoXEDyia+vlC3isCrWO3sCU= Subject key identifier: E0:E2:BA:0E:97:73:05:11:44:7C:6C:3E:6C:DA:3B:9A:2A:06:FC:3D Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 3551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 3522 Signing time: Thu 18 Dec 2025 14:32:54 +0000 Manifest this update: Thu 18 Dec 2025 14:32:53 +0000 Manifest next update: Thu 25 Dec 2025 14:32:53 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: c8XZED89REHT65KmcGwMQQxJ1ZyNw4ELmamyDnPz3Ro=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: 9cBRSzqf+beBYSiFhP5CgytCZQdt5uKUFHqt/G05Dqw=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: L9XUW5EKcX3N5kGAQjlCulKdYkLxOgguoKHEktNkp/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13649 (0x3551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Dec 18 14:32:53 2025 GMT Not After : Dec 25 14:32:53 2025 GMT Subject: CN=69441096-afaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8f:33:f0:7b:d8:10:46:ae:b8:7e:c5:57:76: d5:5d:eb:f7:3e:ca:58:3d:62:7e:3c:2a:5a:35:da: 12:de:1e:67:6b:97:0e:49:36:a7:32:61:31:1c:a8: d5:5c:36:a8:a3:a1:71:79:0b:59:68:8b:c5:c4:4d: 48:9b:54:1f:0d:b5:9a:bc:db:d5:40:db:af:98:98: 08:39:2f:81:de:05:50:d9:45:06:2c:f5:ca:e9:73: 30:e4:20:9b:90:1c:de:d3:56:94:03:b1:be:be:48: 9e:80:89:13:7c:7c:4d:38:62:7a:41:9d:f5:96:d8: b5:d9:34:26:f5:a3:a7:67:81:ac:1a:39:09:26:30: 95:e0:53:56:b5:cf:a2:7a:c0:bb:4a:98:04:3c:11: 56:96:54:45:3d:d0:e1:e0:92:7b:94:b1:1c:40:0a: 31:f6:63:81:fb:f2:13:57:24:7c:f9:29:30:44:e2: 4d:24:82:01:40:e1:87:68:93:05:0d:f3:73:f5:73: ab:0c:36:c5:62:b8:13:c2:30:96:c2:76:af:37:41: 02:57:de:e0:f4:8b:4a:66:9a:81:01:b6:a5:89:a3: cb:eb:71:7f:91:d7:e9:ca:18:3f:64:42:54:a4:3a: 46:7b:7a:64:02:18:27:2a:5f:82:3b:86:80:ba:f4: 27:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E2:BA:0E:97:73:05:11:44:7C:6C:3E:6C:DA:3B:9A:2A:06:FC:3D X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:8a:6b:39:a4:39:e5:a5:18:7c:0f:aa:37:d1:62:2f:fc:28: 15:bd:db:a9:28:5b:a2:73:62:9b:51:6c:c9:0f:f9:56:fb:b4: ae:d6:06:42:e6:05:56:6e:ca:08:dc:1a:08:80:9c:8f:8b:70: fd:b2:be:e9:d1:83:2f:9f:5e:af:3c:8d:80:0e:a4:48:2d:3a: 48:ed:5c:00:3e:96:87:f8:6d:6b:43:b6:a3:9e:3c:98:22:ee: ec:40:ce:90:92:70:8d:c0:09:e2:07:42:c4:09:b8:27:06:98: da:c4:ad:c1:c6:f0:23:1c:6b:b9:d0:1c:9b:c1:42:17:c7:e6: 5c:a2:27:80:59:b3:38:07:67:e2:c2:47:36:6b:f4:55:c1:76: 06:3e:37:6b:af:47:d9:14:6b:89:ff:88:88:90:f1:55:ad:d0: 33:3a:85:0e:b8:a8:b3:e1:18:2c:87:94:f6:f5:89:27:bc:ad: 5f:b7:f6:e8:fc:6c:f6:ca:79:f2:69:17:5d:f4:66:17:d0:92: 18:10:7b:29:dc:f1:a4:9e:d3:c2:3b:0d:4f:5c:3e:48:4e:bf: ce:15:22:da:67:e4:28:8f:ad:c8:c7:f4:8d:28:ff:ab:bd:d8: cc:f0:f3:7c:21:74:25:04:b9:28:8c:2d:31:b2:1a:1e:8a:c1: 28:35:3d:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjUxMjE4MTQzMjUzWhcNMjUxMjI1MTQzMjUzWjAYMRYwFAYD VQQDDA02OTQ0MTA5Ni1hZmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Y8z8HvYEEauuH7FV3bVXev3PspYPWJ+PCpaNdoS3h5na5cOSTanMmExHKjV XDaoo6FxeQtZaIvFxE1Im1QfDbWavNvVQNuvmJgIOS+B3gVQ2UUGLPXK6XMw5CCb kBze01aUA7G+vkiegIkTfHxNOGJ6QZ31lti12TQm9aOnZ4GsGjkJJjCV4FNWtc+i esC7SpgEPBFWllRFPdDh4JJ7lLEcQAox9mOB+/ITVyR8+SkwROJNJIIBQOGHaJMF DfNz9XOrDDbFYrgTwjCWwnavN0ECV97g9ItKZpqBAbaliaPL63F/kdfpyhg/ZEJU pDpGe3pkAhgnKl+CO4aAuvQn7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODiug6X cwURRHxsPmzaO5oqBvw9MB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlims5pDnlpRh8D6o30WIv/CgVvdupKFuic2KbUWzJD/lW+7Su1gZC 5gVWbsoI3BoIgJyPi3D9sr7p0YMvn16vPI2ADqRILTpI7VwAPpaH+G1rQ7ajnjyY Iu7sQM6QknCNwAniB0LECbgnBpjaxK3BxvAjHGu50BybwUIXx+ZcoieAWbM4B2fi wkc2a/RVwXYGPjdrr0fZFGuJ/4iIkPFVrdAzOoUOuKiz4Rgsh5T29YknvK1ft/bo /Gz2ynnyaRdd9GYX0JIYEHsp3PGkntPCOw1PXD5ITr/OFSLaZ+Qoj63Ix/SNKP+r vdjM8PN8IXQlBLkojC0xshoeisEoNT1v -----END CERTIFICATE-----Generated at Fri Dec 19 23:51:12 2025 by rpki-client