This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft File: hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json) Hash identifier: nwU4J/APGoySgUC2TOE6/qF/liZ/azq/Uqwbyj9UxeI= Subject key identifier: E0:2E:D4:0F:06:C6:38:CD:E7:6D:34:D2:F0:F6:F5:01:2A:08:15:49 Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F Certificate issuer: /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft Manifest number: 0692 Signing time: Wed 31 Dec 2025 21:58:38 +0000 Manifest this update: Wed 31 Dec 2025 21:58:37 +0000 Manifest next update: Wed 07 Jan 2026 21:58:37 +0000 Files and hashes: 1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: b0JmSmcEce1190tuIn6Y2wG4sV9PYsXQFeuJwwJqjFc=) 2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: tc+HUzngZ7VVMdvUKEWM7ZZWawGnaExqZ4p3l2kRuv4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 21:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6825, serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Validity Not Before: Dec 31 21:58:37 2025 GMT Not After : Jan 7 21:58:37 2026 GMT Subject: CN=69559c8d-6956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a6:78:2d:34:f7:cf:f2:be:d8:21:cb:6c:c6: 8d:cb:40:b2:27:e7:18:4d:e0:43:cd:bd:64:c6:82: 26:c0:f2:59:f1:29:10:87:ad:7d:54:d9:66:fa:39: 83:58:19:5c:17:62:ef:f8:50:e9:ee:cb:6c:74:82: 34:07:9e:b5:0c:bd:3f:18:36:10:d7:1f:6a:5b:0a: 76:00:21:20:63:7f:cc:81:da:fe:29:8a:43:f9:3f: 51:e3:53:47:3f:11:9c:d1:82:24:51:86:db:55:fe: 9e:0f:7f:cf:81:d0:82:ee:c2:85:18:62:53:32:af: 14:58:41:ee:79:9b:40:06:26:01:3b:b9:2d:60:14: 06:a9:8d:90:df:6b:07:05:60:96:f8:4c:10:3c:aa: 3f:54:f2:12:cd:08:42:7e:22:ed:e0:16:39:9d:21: 2b:a0:07:0f:65:8b:2b:d0:f0:f7:7e:f2:32:fe:61: 14:cc:95:47:08:c5:65:80:61:fd:8e:98:37:e3:54: d4:ad:f7:3c:88:b8:4d:27:eb:8e:ee:c0:37:36:c2: c3:66:93:9b:74:1e:46:8f:da:57:12:08:f0:a1:0a: 90:88:f1:d4:14:59:4a:eb:09:c0:1b:ac:62:8e:90: eb:c5:da:7c:ea:82:af:3c:8f:1c:07:50:12:28:ee: 18:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2E:D4:0F:06:C6:38:CD:E7:6D:34:D2:F0:F6:F5:01:2A:08:15:49 X509v3 Authority Key Identifier: keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:d0:c6:10:13:c9:ef:85:f3:f6:cb:c5:cc:fb:7f:97:d0:2f: 0c:0b:04:54:db:e0:a9:be:50:03:e0:86:d2:c7:5b:4c:cc:ca: 91:be:c0:d1:57:b3:b7:87:12:a9:ce:ed:db:89:49:bd:44:74: c8:d0:c7:99:fd:66:12:48:ed:5e:c4:2f:c7:b6:1b:87:a9:c3: 5d:0b:82:65:4f:de:a4:8d:ab:73:25:cb:65:f7:3c:32:fb:89: 9a:e1:40:5b:02:2e:b3:c2:db:19:18:83:70:35:3e:6f:c7:bd: e8:d1:c6:82:61:85:5c:9c:91:73:95:af:51:ce:da:33:80:66: f0:01:13:9f:f7:c4:ab:6e:64:31:57:c0:d2:70:5e:91:6d:26: 56:c4:b7:d7:74:e5:8b:4d:0e:1e:b8:52:fc:28:d3:3e:4a:5f: 55:13:a2:66:a5:74:09:20:6a:fa:57:e8:3b:d7:b9:11:88:d5: 6c:00:f3:a3:20:6b:83:b4:06:fc:8e:5e:2d:a4:97:6c:ae:6d: e5:1c:fa:63:c0:f9:ea:46:83:46:b1:24:f9:66:01:74:8e:23: 19:0c:b7:2f:f2:c8:60:8f:06:94:e9:1d:27:67:5b:91:79:54: 33:f1:e2:5b:a4:0d:46:f1:f0:f5:0c:51:4d:27:19:77:f1:6d: c7:68:40:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4MjUxMTAvBgNVBAUTKDg3MTQ5N0M4ODUwRTQxNjI1Nzk1QzRGOEQ5NDVDN0Iz RDA0MTZDMUYwHhcNMjUxMjMxMjE1ODM3WhcNMjYwMTA3MjE1ODM3WjAYMRYwFAYD VQQDDA02OTU1OWM4ZC02OTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKZ4LTT3z/K+2CHLbMaNy0CyJ+cYTeBDzb1kxoImwPJZ8SkQh619VNlm+jmD WBlcF2Lv+FDp7stsdII0B561DL0/GDYQ1x9qWwp2ACEgY3/Mgdr+KYpD+T9R41NH PxGc0YIkUYbbVf6eD3/PgdCC7sKFGGJTMq8UWEHueZtABiYBO7ktYBQGqY2Q32sH BWCW+EwQPKo/VPISzQhCfiLt4BY5nSEroAcPZYsr0PD3fvIy/mEUzJVHCMVlgGH9 jpg341TUrfc8iLhNJ+uO7sA3NsLDZpObdB5Gj9pXEgjwoQqQiPHUFFlK6wnAG6xi jpDrxdp86oKvPI8cB1ASKO4YGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAu1A8G xjjN52000vD29QEqCBVJMB8GA1UdIwQYMBaAFIcUl8iFDkFiV5XE+NlFx7PQQWwf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjgyNS8xQUE5MEZCNjlB QkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FXSlhsY1Q0MlVYSHM5QkJi QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4U1h5SVVPUVdKWGxjVDQyVVhIczlCQmJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjgyNS8xQUE5MEZCNjlBQkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FX SlhsY1Q0MlVYSHM5QkJiQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA30MYQE8nvhfP2y8XM+3+X0C8MCwRU2+CpvlAD4IbSx1tMzMqRvsDR V7O3hxKpzu3biUm9RHTI0MeZ/WYSSO1exC/HthuHqcNdC4JlT96kjatzJctl9zwy +4ma4UBbAi6zwtsZGINwNT5vx73o0caCYYVcnJFzla9RztozgGbwAROf98SrbmQx V8DScF6RbSZWxLfXdOWLTQ4euFL8KNM+Sl9VE6JmpXQJIGr6V+g717kRiNVsAPOj IGuDtAb8jl4tpJdsrm3lHPpjwPnqRoNGsST5ZgF0jiMZDLcv8shgjwaU6R0nZ1uR eVQz8eJbpA1G8fD1DFFNJxl38W3HaEDw -----END CERTIFICATE-----Generated at Thu Jan 1 03:57:44 2026 by rpki-client