This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft File: Har0X7TSckB6UqY7tzllNp6RIO0.mft (raw, json) Hash identifier: oE1A2lDmASbwDE9Y80QSdmIpvCcqJMCFxt0i9TcHCR0= Subject key identifier: 5E:C5:91:A6:7D:0E:EF:E2:7C:5B:B4:4A:98:5D:5B:5E:28:5A:08:B8 Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft Manifest number: 01E5 Signing time: Fri 19 Dec 2025 01:53:02 +0000 Manifest this update: Fri 19 Dec 2025 01:53:02 +0000 Manifest next update: Fri 26 Dec 2025 01:53:02 +0000 Files and hashes: 1: Har0X7TSckB6UqY7tzllNp6RIO0.crl (hash: RxAVfzTrVOWJ7olW22ptsNQzALq15rCZPXtcR8d3C4o=) 2: C369BA98260D11F082934618C4F9AE02.roa (hash: eheiIoP+DIGo6TDFauXxAmF27naEz5wcAihLZFXfuog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A, serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Dec 19 01:53:02 2025 GMT Not After : Dec 26 01:53:02 2025 GMT Subject: CN=6944affe-4468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:64:b0:dd:9c:95:79:f6:e9:ec:4f:24:e5: cc:1c:e7:f7:9f:99:45:01:5a:84:45:f1:c5:02:fe: 47:ee:29:4f:6a:98:47:fc:34:fd:26:60:06:5d:53: d7:a2:10:e9:6b:29:ae:4b:76:21:ce:11:f1:db:94: a0:dc:4a:7e:7c:05:0a:e8:3b:0e:c6:3f:f3:7f:fa: 78:8e:b2:43:d9:67:6c:fb:38:98:cd:84:1b:a2:ed: 9a:52:cb:bd:02:a1:fa:46:6b:d8:67:75:08:35:bd: 7a:38:47:99:26:c5:41:b8:71:06:21:ed:30:c7:8e: 70:e3:2c:ce:be:27:ce:dc:aa:b4:da:ac:b4:13:7b: 01:37:d5:d3:90:0c:c0:ae:39:26:79:d9:f3:f6:49: 6e:9d:4f:4e:61:92:41:a5:75:02:37:f2:ee:95:8e: c8:4f:e0:50:b1:d3:fa:9e:67:16:84:05:9f:9e:97: d8:b6:57:4b:53:2f:b4:8a:2b:ce:c4:cb:42:f7:f7: 4e:9c:29:3f:29:87:46:63:81:9f:12:08:af:61:78: ff:aa:fb:8c:d1:ff:dd:59:fe:bb:c5:e8:c0:3c:f8: a0:24:b5:8c:77:87:78:a8:92:66:1f:a2:02:15:ff: a1:0c:3c:c2:5e:ab:39:88:49:a1:0d:81:8a:48:25: 2f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C5:91:A6:7D:0E:EF:E2:7C:5B:B4:4A:98:5D:5B:5E:28:5A:08:B8 X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:d2:73:8f:3d:0c:f1:2c:89:53:d7:d3:3d:98:9d:27:5f:e3: 54:4b:ee:58:75:bf:2c:a9:ac:7e:92:f6:ae:4b:4e:65:fd:28: 86:ae:c5:5e:43:bf:9d:d6:33:1e:0c:0f:06:db:e3:f0:45:77: 33:52:8c:7d:4d:1f:75:72:0c:14:1b:50:4b:c1:d9:7a:c0:4b: e4:48:cf:98:15:19:2b:7f:a1:55:0b:aa:44:a7:2c:8f:c9:ed: 6c:14:40:e5:68:6f:02:5a:54:d3:aa:90:07:88:9b:6b:5f:61: e2:d0:b8:58:8c:be:45:87:b0:ab:ce:12:ea:26:ca:c3:99:b8: 20:d0:a8:e9:94:92:9d:26:9a:31:70:63:e9:d4:a9:1e:5b:b4: 0a:6a:0a:58:fd:57:f9:fa:46:25:4e:8e:e7:03:0c:96:2e:fa: 0e:6c:35:9a:33:d7:f8:b8:c4:4c:a0:6f:01:c2:47:89:ad:19: 07:d3:c4:14:ee:36:4e:3b:7b:4a:e4:bf:4d:ba:25:c4:ca:20: f2:48:a8:2e:d8:f4:e5:a7:dd:85:f4:d3:ff:a5:5d:a3:35:36: 28:01:37:1d:7c:0e:dc:70:56:39:b6:fb:4f:fe:89:33:68:60: 1e:0b:72:96:af:cd:e6:50:37:32:4e:e0:cd:15:aa:05:e3:98: 29:a1:be:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjUxMjE5MDE1MzAyWhcNMjUxMjI2MDE1MzAyWjAYMRYwFAYD VQQDDA02OTQ0YWZmZS00NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHJksN2clXn26exPJOXMHOf3n5lFAVqERfHFAv5H7ilPaphH/DT9JmAGXVPX ohDpaymuS3YhzhHx25Sg3Ep+fAUK6DsOxj/zf/p4jrJD2Wds+ziYzYQbou2aUsu9 AqH6RmvYZ3UINb16OEeZJsVBuHEGIe0wx45w4yzOvifO3Kq02qy0E3sBN9XTkAzA rjkmednz9klunU9OYZJBpXUCN/LulY7IT+BQsdP6nmcWhAWfnpfYtldLUy+0iivO xMtC9/dOnCk/KYdGY4GfEgivYXj/qvuM0f/dWf67xejAPPigJLWMd4d4qJJmH6IC Ff+hDDzCXqs5iEmhDYGKSCUvhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7FkaZ9 Du/ifFu0SphdW14oWgi4MB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2Nr QjZVcVk3dHpsbE5wNlJJTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm0nOPPQzxLIlT19M9mJ0nX+NUS+5Ydb8sqax+kvauS05l/SiGrsVe Q7+d1jMeDA8G2+PwRXczUox9TR91cgwUG1BLwdl6wEvkSM+YFRkrf6FVC6pEpyyP ye1sFEDlaG8CWlTTqpAHiJtrX2Hi0LhYjL5Fh7CrzhLqJsrDmbgg0KjplJKdJpox cGPp1KkeW7QKagpY/Vf5+kYlTo7nAwyWLvoObDWaM9f4uMRMoG8BwkeJrRkH08QU 7jZOO3tK5L9NuiXEyiDySKgu2PTlp92F9NP/pV2jNTYoATcdfA7ccFY5tvtP/okz aGAeC3KWr83mUDcyTuDNFaoF45gpob5I -----END CERTIFICATE-----Generated at Sat Dec 20 15:14:25 2025 by rpki-client