This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: a9YxhXmOF+KEji8MBiPuGV4pa1ZrlSYD1OLDMatnojY= Subject key identifier: 7E:4C:FB:3E:65:DD:30:40:5B:90:68:18:B1:0B:40:62:41:11:8F:06 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 3C Signing time: Sun 21 Dec 2025 06:32:46 +0000 Manifest this update: Sun 21 Dec 2025 06:32:46 +0000 Manifest next update: Sun 28 Dec 2025 06:32:46 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: zpHo8iglDdncub0Nj2UH4vAEbLKxel5K45X7cK0axjc=) 2: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Tw5k9/cuQwB71OFXRXiv/bwE46v5T5qgIQMcMfV+JV4=) 3: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ=) 4: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Dec 21 06:32:46 2025 GMT Not After : Dec 28 06:32:46 2025 GMT Subject: CN=6947948e-6c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c9:8e:8b:65:21:f7:d5:39:e2:f6:82:42:85: 8e:d8:a8:70:fe:f2:60:d5:6e:02:ae:6e:b9:fc:2d: 1b:77:f0:b0:cc:af:f6:b9:ec:b4:fc:0f:dc:36:97: 98:b8:ad:04:f6:14:5a:2a:0f:f5:75:cb:0e:06:0f: 6e:01:15:66:29:0b:59:41:08:c3:f7:a2:19:58:ec: f2:fd:0a:05:51:ea:46:4e:53:27:7a:ae:00:27:5d: e1:34:f2:0a:69:d3:7a:be:c3:2b:67:30:72:fc:5c: 90:c3:28:fb:77:ae:67:5a:59:06:f0:c2:95:6b:6e: b8:c8:e9:e9:db:07:e7:87:a8:2e:cc:95:e2:c9:f7: ec:0b:41:73:da:f0:73:ec:76:f0:02:c5:7c:f5:81: 9c:9f:5a:81:bc:0a:b2:62:42:3e:8a:50:49:9a:6b: 68:80:03:4c:66:5b:09:2b:41:3c:50:19:ee:e6:51: 8a:ad:c3:3d:d4:53:24:64:a1:4d:d1:a8:eb:69:3b: 3c:04:a7:1c:81:c7:43:84:7c:46:41:d9:8e:b8:ff: ad:16:aa:7c:8e:13:77:cb:93:f8:96:7b:64:14:c4: a5:4b:38:94:1c:7f:9a:57:ef:38:20:8a:24:b2:ca: c4:b0:42:8f:d3:f3:df:a5:d6:0d:b3:12:fe:91:6c: 7f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:4C:FB:3E:65:DD:30:40:5B:90:68:18:B1:0B:40:62:41:11:8F:06 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:3a:44:4b:87:d1:74:28:48:64:58:dc:96:e8:09:92:b9:ca: ea:57:ea:52:fb:ee:0b:bf:9c:5e:9e:20:82:57:87:e7:19:82: 20:9d:61:8a:37:ac:c9:d2:de:9a:de:2c:59:1b:a2:40:08:47: 9d:ed:fc:4d:b7:b6:37:00:ef:a4:60:d9:15:17:cc:32:62:f5: 68:1e:92:cf:8c:06:3c:95:eb:9e:de:92:b3:c4:88:fa:59:08: c6:48:86:b4:f5:cf:06:93:1d:70:eb:84:e6:94:09:54:b0:14: 1c:a4:01:41:ee:20:1d:fa:60:37:17:14:4e:41:3d:2d:ca:f6: e9:f2:5e:c6:f8:20:92:17:49:7f:e3:c5:65:d3:18:80:f0:d2: 0d:59:bf:fb:da:99:5e:d4:50:9f:51:9a:86:aa:6f:4e:ae:a6: 8e:6e:7e:19:90:80:03:7c:03:02:09:be:9d:70:f7:79:e9:4c: 20:a4:0f:4d:e3:15:44:71:31:1e:37:60:b0:27:a7:15:2e:bb: d2:4a:d1:3c:95:b0:77:5b:b7:20:95:e7:32:cf:a8:13:6c:05: 72:07:bb:46:0a:16:35:52:4e:d1:3d:a6:7b:07:85:26:f9:46: d0:b1:42:86:6a:32:86:ba:66:20:5e:d3:c6:d9:aa:b8:c2:56: f8:f0:93:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTEyMjEwNjMyNDZaFw0yNTEyMjgwNjMyNDZaMBgxFjAUBgNV BAMMDTY5NDc5NDhlLTZjODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbyY6LZSH31Tni9oJChY7YqHD+8mDVbgKubrn8LRt38LDMr/a57LT8D9w2l5i4 rQT2FFoqD/V1yw4GD24BFWYpC1lBCMP3ohlY7PL9CgVR6kZOUyd6rgAnXeE08gpp 03q+wytnMHL8XJDDKPt3rmdaWQbwwpVrbrjI6enbB+eHqC7MleLJ9+wLQXPa8HPs dvACxXz1gZyfWoG8CrJiQj6KUEmaa2iAA0xmWwkrQTxQGe7mUYqtwz3UUyRkoU3R qOtpOzwEpxyBx0OEfEZB2Y64/60WqnyOE3fLk/iWe2QUxKVLOJQcf5pX7zggiiSy ysSwQo/T89+l1g2zEv6RbH+dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfkz7PmXd MEBbkGgYsQtAYkERjwYwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJY6REuH0XQoSGRY3JboCZK5yupX6lL77gu/nF6eIIJXh+cZgiCdYYo3 rMnS3preLFkbokAIR53t/E23tjcA76Rg2RUXzDJi9Wgeks+MBjyV657ekrPEiPpZ CMZIhrT1zwaTHXDrhOaUCVSwFBykAUHuIB36YDcXFE5BPS3K9unyXsb4IJIXSX/j xWXTGIDw0g1Zv/vamV7UUJ9Rmoaqb06upo5ufhmQgAN8AwIJvp1w93npTCCkD03j FURxMR43YLAnpxUuu9JK0TyVsHdbtyCV5zLPqBNsBXIHu0YKFjVSTtE9pnsHhSb5 RtCxQoZqMoa6ZiBe08bZqrjCVvjwk6s= -----END CERTIFICATE-----Generated at Sun Dec 21 13:06:57 2025 by rpki-client