This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: 6/40yLIA9GWkSEU4nzLA8IJNn2+d8wynaAYt1WfUqkA= Subject key identifier: 94:45:38:19:8C:4A:F8:96:BA:20:49:81:6E:67:CD:00:6F:B0:B1:D9 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: D6 Signing time: Fri 19 Dec 2025 04:46:15 +0000 Manifest this update: Fri 19 Dec 2025 04:46:15 +0000 Manifest next update: Fri 26 Dec 2025 04:46:15 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: EuUU4rilIYqpcZ00CJ1EeDfbgN4n2Uw4nN7PoIMIb3c=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: Z1yPOrOVBAA0wAoiECPiJ9d5WH/bmXdgM8w0h3GaBUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Dec 19 04:46:15 2025 GMT Not After : Dec 26 04:46:15 2025 GMT Subject: CN=6944d897-7bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:85:e8:2c:27:7d:fd:c8:bb:73:61:1d:b6:e6: d5:93:84:e9:c5:e5:c1:d1:b7:ad:ac:01:34:42:8d: 8e:5c:80:a4:06:8e:10:37:98:a3:c2:70:fa:cf:f6: 45:ed:e2:b1:6b:43:54:ba:c8:7a:4d:0b:53:c1:4a: 3e:eb:01:48:0e:48:2d:6e:ef:2d:69:d3:91:03:1b: 2c:6b:ff:99:19:2b:5b:a7:79:02:7c:cf:1e:69:65: 35:c6:9f:27:89:a9:bd:49:ad:d9:9e:3c:1c:e3:0d: d0:89:9b:ce:f1:6d:86:25:8d:e4:70:8f:8e:82:59: 9e:78:e3:c2:2b:08:b0:c8:3f:f3:e1:aa:c5:a5:4c: 52:62:a9:ae:23:33:5e:1b:2b:3f:37:94:30:f3:ab: 2a:7b:bf:ca:34:9f:7a:50:8e:6f:2d:8b:41:1c:96: 78:ac:b4:b6:c6:c2:10:34:91:a3:dc:55:fd:1a:1b: 18:22:89:fb:d7:b6:18:d4:d4:d0:75:8a:c3:1a:55: 8e:72:18:21:ab:fb:84:14:38:7a:69:79:fe:95:d6: df:db:cb:b6:c9:1a:cb:58:52:8e:9b:5e:67:4e:e2: c0:91:62:06:c6:5d:36:78:c7:d1:b1:2f:3f:4c:ff: e2:b6:00:a3:1b:ca:25:75:cc:6b:dc:65:6f:3f:a8: 19:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:45:38:19:8C:4A:F8:96:BA:20:49:81:6E:67:CD:00:6F:B0:B1:D9 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:34:76:0a:a7:a0:9d:1d:56:3c:12:f1:da:04:17:84:28:9a: db:2e:ff:b1:49:fb:a9:2d:98:41:21:1f:6e:d5:fe:81:96:a7: 3f:a0:67:7f:5e:38:2f:f0:5f:84:3c:e5:40:3f:5a:56:93:89: 77:a4:38:df:a7:47:9a:d3:70:b2:0f:1b:d3:74:33:0c:59:6e: f7:ca:6a:02:92:8c:e2:52:5f:d8:64:42:77:e8:9e:d6:9e:97: ff:5a:4a:8c:db:9a:c8:7c:18:12:1f:51:62:13:3a:14:16:a8: e9:ac:27:d2:f1:b2:c4:bd:f2:d3:01:83:60:6e:92:9f:01:4c: c0:72:d4:dd:b4:80:c0:e7:32:ad:8c:9d:e8:59:00:1d:4d:f0: 7d:8b:6e:53:f3:4c:0d:a1:08:65:80:46:63:d5:df:bb:03:1a: 38:f6:75:c2:fe:3e:4c:36:27:1b:77:7a:fe:20:7a:d0:5c:2a: ad:10:9d:a5:e1:fd:94:ef:3d:5b:47:91:d6:70:7b:28:c5:41: 98:17:81:42:f4:a7:dc:1d:f6:ce:af:d9:75:a1:93:aa:62:b0: 78:5d:c3:84:f9:d5:a0:2c:78:2a:c0:72:8a:80:0f:46:36:72: 5d:47:75:78:41:ba:f9:95:f0:fb:c2:79:b4:08:e0:20:83:bf: ec:ce:14:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjUxMjE5MDQ0NjE1WhcNMjUxMjI2MDQ0NjE1WjAYMRYwFAYD VQQDDA02OTQ0ZDg5Ny03YmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYXoLCd9/ci7c2EdtubVk4TpxeXB0betrAE0Qo2OXICkBo4QN5ijwnD6z/ZF 7eKxa0NUush6TQtTwUo+6wFIDkgtbu8tadORAxssa/+ZGStbp3kCfM8eaWU1xp8n iam9Sa3Znjwc4w3QiZvO8W2GJY3kcI+OglmeeOPCKwiwyD/z4arFpUxSYqmuIzNe Gys/N5Qw86sqe7/KNJ96UI5vLYtBHJZ4rLS2xsIQNJGj3FX9GhsYIon717YY1NTQ dYrDGlWOchghq/uEFDh6aXn+ldbf28u2yRrLWFKOm15nTuLAkWIGxl02eMfRsS8/ TP/itgCjG8oldcxr3GVvP6gZiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRFOBmM SviWuiBJgW5nzQBvsLHZMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrNHYKp6CdHVY8EvHaBBeEKJrbLv+xSfupLZhBIR9u1f6Blqc/oGd/ Xjgv8F+EPOVAP1pWk4l3pDjfp0ea03CyDxvTdDMMWW73ymoCkoziUl/YZEJ36J7W npf/WkqM25rIfBgSH1FiEzoUFqjprCfS8bLEvfLTAYNgbpKfAUzActTdtIDA5zKt jJ3oWQAdTfB9i25T80wNoQhlgEZj1d+7Axo49nXC/j5MNicbd3r+IHrQXCqtEJ2l 4f2U7z1bR5HWcHsoxUGYF4FC9KfcHfbOr9l1oZOqYrB4XcOE+dWgLHgqwHKKgA9G NnJdR3V4Qbr5lfD7wnm0COAgg7/szhS2 -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:49 2025 by rpki-client