This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft File: hDJHwKwYH8NmZqRDchryHZ2mUNo.mft (raw, json) Hash identifier: /jiEz7bt4Gbinl+8mSafjxVsPc9rEqKiycRm96zCtuI= Subject key identifier: BA:EA:CA:D0:8F:23:84:62:60:8C:B8:C7:36:08:71:15:38:2E:22:F7 Authority key identifier: 84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA Certificate issuer: /CN=A91CEAE0/serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft Manifest number: 012F Signing time: Thu 25 Dec 2025 03:40:22 +0000 Manifest this update: Thu 25 Dec 2025 03:40:22 +0000 Manifest next update: Thu 01 Jan 2026 03:40:22 +0000 Files and hashes: 1: hDJHwKwYH8NmZqRDchryHZ2mUNo.crl (hash: ehgnloDRjrUkvcrxEFrRK1yQC3NQ+lUQp3M67sFnZ/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 03:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Validity Not Before: Dec 25 03:40:22 2025 GMT Not After : Jan 1 03:40:22 2026 GMT Subject: CN=694cb226-9964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0a:41:ee:74:4f:6a:6c:01:0e:8e:99:e5:a3: e5:15:d2:3c:98:72:59:7b:e8:3d:19:ce:88:f9:f9: c7:a2:0a:00:6f:08:0a:52:53:69:27:9d:c9:d7:4c: 1e:6b:33:a7:80:87:ac:90:d0:5e:94:5a:58:e0:a2: 77:ab:e9:20:b4:7a:55:ac:d2:c6:09:8b:f0:24:78: a2:1e:0d:d4:0d:74:e2:f0:82:28:1d:a9:45:91:5b: b2:fc:2b:be:4e:5b:4d:94:8a:26:7f:04:6e:bb:d0: 44:1b:32:b7:7c:a0:8e:2d:1b:7f:97:2d:57:e3:fd: e3:1c:83:f5:46:9f:38:6c:50:85:13:33:e4:9f:9d: 88:d1:64:12:59:01:e6:53:a1:d4:aa:09:4e:10:c1: 22:d6:e6:15:4b:ab:aa:35:c0:26:e3:45:cb:38:35: 52:1f:b8:9f:89:88:d5:5f:49:bb:b7:67:5c:37:77: 12:c0:5c:b8:45:db:8e:6d:47:da:4a:24:de:02:32: 94:68:d4:f9:60:0c:cb:71:6b:83:c6:7d:ed:22:10: 2e:04:50:29:d6:d4:29:29:1d:08:fb:d5:8a:f0:98: 32:c6:9e:5c:1a:4a:8f:c4:d4:ae:58:20:f2:2c:ab: 18:ab:7d:a8:39:fb:9f:62:6b:f7:15:b1:32:12:46: 44:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EA:CA:D0:8F:23:84:62:60:8C:B8:C7:36:08:71:15:38:2E:22:F7 X509v3 Authority Key Identifier: keyid:84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:20:d6:91:a4:8a:1c:e5:4e:2d:7e:e5:d3:e0:58:f2:0a:c2: c6:35:76:ba:07:14:70:cb:e7:15:52:61:00:fb:ad:93:b3:b2: dc:ff:df:80:35:48:13:64:3e:64:e0:e5:9f:0f:35:bf:6b:1f: 87:27:ef:bf:9d:f1:9e:cf:49:6d:91:78:2f:11:6a:60:c5:f5: 47:45:c0:7e:5e:89:f0:5d:c7:46:0c:98:12:d8:a5:40:1b:b6: 03:60:8e:69:df:a8:b0:9a:26:a0:48:98:3d:53:f9:82:49:0a: 2a:6f:5d:6d:fd:b5:81:12:64:3b:34:9a:f6:13:01:05:f4:6c: db:7b:66:3c:8d:07:6b:fd:ce:16:f5:a7:03:84:95:a7:2b:ca: b8:72:b3:73:19:d0:2c:f2:59:37:bc:fe:0d:b4:f9:66:75:cc: cc:23:26:dc:71:61:ad:d6:ea:b2:63:c3:90:fa:13:1c:c3:b4: fc:64:fc:14:4c:df:e9:15:83:df:6b:58:07:68:3f:5a:e4:95: 1d:dd:1f:76:b2:dc:21:5c:48:cb:33:19:aa:63:55:a7:bb:5c: 34:aa:8c:0c:41:9c:f5:fd:80:4c:a8:f9:1e:79:e4:1e:0a:5f: 75:a8:96:42:14:c9:50:b0:1d:c7:0d:44:f6:45:40:fc:5e:26: 31:1b:9e:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDg0MzI0N0MwQUMxODFGQzM2NjY2QTQ0MzcyMUFGMjFE OURBNjUwREEwHhcNMjUxMjI1MDM0MDIyWhcNMjYwMTAxMDM0MDIyWjAYMRYwFAYD VQQDDA02OTRjYjIyNi05OTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwpB7nRPamwBDo6Z5aPlFdI8mHJZe+g9Gc6I+fnHogoAbwgKUlNpJ53J10we azOngIeskNBelFpY4KJ3q+kgtHpVrNLGCYvwJHiiHg3UDXTi8IIoHalFkVuy/Cu+ TltNlIomfwRuu9BEGzK3fKCOLRt/ly1X4/3jHIP1Rp84bFCFEzPkn52I0WQSWQHm U6HUqglOEMEi1uYVS6uqNcAm40XLODVSH7ifiYjVX0m7t2dcN3cSwFy4RduObUfa SiTeAjKUaNT5YAzLcWuDxn3tIhAuBFAp1tQpKR0I+9WK8Jgyxp5cGkqPxNSuWCDy LKsYq32oOfufYmv3FbEyEkZEUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrqytCP I4RiYIy4xzYIcRU4LiL3MB8GA1UdIwQYMBaAFIQyR8CsGB/DZmakQ3Ia8h2dplDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9CQzUyMUE1NDE5 MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4Tm1acVJEY2hyeUhaMm1V Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hESkh3S3dZSDhObVpxUkRjaHJ5SFoybVVOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9CQzUyMUE1NDE5MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4 Tm1acVJEY2hyeUhaMm1VTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfINaRpIoc5U4tfuXT4FjyCsLGNXa6BxRwy+cVUmEA+62Ts7Lc/9+A NUgTZD5k4OWfDzW/ax+HJ++/nfGez0ltkXgvEWpgxfVHRcB+XonwXcdGDJgS2KVA G7YDYI5p36iwmiagSJg9U/mCSQoqb11t/bWBEmQ7NJr2EwEF9Gzbe2Y8jQdr/c4W 9acDhJWnK8q4crNzGdAs8lk3vP4NtPlmdczMIybccWGt1uqyY8OQ+hMcw7T8ZPwU TN/pFYPfa1gHaD9a5JUd3R92stwhXEjLMxmqY1Wnu1w0qowMQZz1/YBMqPkeeeQe Cl91qJZCFMlQsB3HDUT2RUD8XiYxG56p -----END CERTIFICATE-----Generated at Sat Dec 27 04:07:22 2025 by rpki-client