This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: KsMi3ONb4xprWSs/cQGa+MNqaPXH082e2Ih9MncyhUY= Subject key identifier: E4:26:FF:5C:59:F9:04:BE:61:24:30:F0:C1:D6:F7:BC:E0:BD:4C:A6 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A5A Signing time: Tue 30 Dec 2025 19:08:39 +0000 Manifest this update: Tue 30 Dec 2025 19:08:39 +0000 Manifest next update: Tue 06 Jan 2026 19:08:39 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: 20LEOE1SIswsKY06Mu+1VcVQPwSxLL7mXAUAg49h75g=) 2: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) 3: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: S+5qUnemcpQGoSOv79wtTvxOi8xqGPx0E74Y3KFGkhU=) 4: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: B5buB00YWWO2A2xnD3M5vrisGIi+aFvWdlZltMnylng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 19:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2665 (0xa69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Dec 30 19:08:39 2025 GMT Not After : Jan 6 19:08:39 2026 GMT Subject: CN=69542337-0ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:14:5a:83:e1:04:79:4e:74:f2:7c:7d:f8:f9: 61:fe:68:8c:be:de:65:c9:ad:4b:13:83:e0:e3:55: 63:44:f7:9b:a9:96:c8:ec:61:a5:ac:ae:1c:b0:94: f7:3c:c4:0a:5c:33:4e:5c:37:05:b1:42:64:4c:f9: 6e:23:ea:40:aa:e7:4a:b1:3b:53:18:17:02:e9:4b: e9:78:b1:e4:1b:52:ad:de:6b:cb:56:1f:de:1c:d2: 42:ff:54:25:5b:39:16:06:48:42:1c:21:6d:7b:7c: f1:36:dd:eb:2e:a5:c2:35:69:30:67:96:3c:a8:2a: 77:94:ba:99:9b:82:85:ae:a1:40:81:06:ee:24:9a: 99:cf:be:2e:c6:8e:d9:3d:de:07:ab:3b:49:91:d6: 6c:3b:06:a8:1f:20:ff:ac:4d:00:ef:0b:70:4d:8a: f9:fb:7a:82:5c:43:04:b0:f2:63:b0:30:eb:b3:be: d9:fc:45:94:30:ce:fd:c8:42:a0:06:bd:d5:bf:bf: 36:58:9e:75:53:52:ab:01:37:9a:26:5e:9e:a3:97: 44:a6:5d:44:8c:83:e1:22:66:4f:a1:03:66:5a:b2: 02:de:c2:a0:a5:cc:6c:86:2b:e1:fd:bf:04:69:67: 3c:85:90:af:2f:fc:27:81:64:c2:63:75:aa:c4:90: fd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:26:FF:5C:59:F9:04:BE:61:24:30:F0:C1:D6:F7:BC:E0:BD:4C:A6 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:54:94:3f:91:30:a8:a9:25:16:d8:a3:24:78:d5:51:5b:d1: ab:c9:b5:59:44:87:69:83:5a:34:21:75:26:67:71:c0:10:23: da:27:2f:e5:c3:37:bd:c7:30:08:3c:32:e0:cf:c5:cf:fa:44: 8d:7a:34:9c:bf:0e:83:84:f7:c8:19:f8:90:21:e6:ca:13:37: e5:ff:e1:62:4d:b1:5a:0e:0e:94:37:90:15:39:dc:36:57:82: d3:a7:85:7e:f2:55:40:1c:43:ae:37:36:ab:44:72:70:1d:76: 5e:8b:67:f6:48:67:05:53:31:0c:bb:c9:f9:aa:06:24:da:31: 78:e8:c2:66:d3:f7:dc:ef:97:cb:f1:10:ed:94:ea:3f:0f:ff: 33:0a:3c:5a:ad:b9:25:b6:0f:74:ca:0c:04:c4:34:61:20:58: 47:f0:5b:44:95:7b:75:60:a4:88:19:ff:36:67:ac:a9:34:87: ba:3a:cb:25:c9:51:77:cd:11:00:39:3e:6c:d3:01:7c:c3:22: cb:5c:3d:76:59:d4:f7:29:d7:b3:83:e0:39:23:27:79:8a:3a: d1:e7:bd:4d:b2:cd:44:48:b0:57:99:b7:4e:0b:de:ed:8a:14: 9d:d1:38:53:da:f0:06:31:2d:61:8a:83:bd:f8:90:14:85:76: ee:d4:6f:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUxMjMwMTkwODM5WhcNMjYwMTA2MTkwODM5WjAYMRYwFAYD VQQDDA02OTU0MjMzNy0wY2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BRag+EEeU508nx9+Plh/miMvt5lya1LE4Pg41VjRPebqZbI7GGlrK4csJT3 PMQKXDNOXDcFsUJkTPluI+pAqudKsTtTGBcC6UvpeLHkG1Kt3mvLVh/eHNJC/1Ql WzkWBkhCHCFte3zxNt3rLqXCNWkwZ5Y8qCp3lLqZm4KFrqFAgQbuJJqZz74uxo7Z Pd4HqztJkdZsOwaoHyD/rE0A7wtwTYr5+3qCXEMEsPJjsDDrs77Z/EWUMM79yEKg Br3Vv782WJ51U1KrATeaJl6eo5dEpl1EjIPhImZPoQNmWrIC3sKgpcxshivh/b8E aWc8hZCvL/wngWTCY3WqxJD9ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQm/1xZ +QS+YSQw8MHW97zgvUymMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeVJQ/kTCoqSUW2KMkeNVRW9GrybVZRIdpg1o0IXUmZ3HAECPaJy/l wze9xzAIPDLgz8XP+kSNejScvw6DhPfIGfiQIebKEzfl/+FiTbFaDg6UN5AVOdw2 V4LTp4V+8lVAHEOuNzarRHJwHXZei2f2SGcFUzEMu8n5qgYk2jF46MJm0/fc75fL 8RDtlOo/D/8zCjxarbkltg90ygwExDRhIFhH8FtElXt1YKSIGf82Z6ypNIe6Ossl yVF3zREAOT5s0wF8wyLLXD12WdT3Kdezg+A5Iyd5ijrR571Nss1ESLBXmbdOC97t ihSd0ThT2vAGMS1hioO9+JAUhXbu1G9Y -----END CERTIFICATE-----Generated at Wed Dec 31 03:44:08 2025 by rpki-client