This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: 5WO5CagkaFpzsF0YabdPxvg8tg9mWntZE29LeLNfB34= Subject key identifier: 92:AA:85:E3:DD:38:19:59:01:6D:E3:E6:2B:81:3C:43:80:0A:A4:9C Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 01F2 Signing time: Fri 19 Dec 2025 01:53:41 +0000 Manifest this update: Fri 19 Dec 2025 01:53:40 +0000 Manifest next update: Fri 26 Dec 2025 01:53:40 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: B699XL8bhFxOYrFLAlzDPbyPcgxMIUb0As5xliYuDQc=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: Aaq+TCQ/KTzVoqOiGqBuyk59qeKatX9nZx11XR64nYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Dec 19 01:53:40 2025 GMT Not After : Dec 26 01:53:40 2025 GMT Subject: CN=6944b025-8adc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:f3:c0:6b:05:b0:f0:71:73:d7:73:67:c1: 07:24:90:ce:cf:05:ce:e1:9f:f1:c3:9a:42:a8:7b: 7e:46:4c:7e:c4:57:97:ab:d5:45:1c:8c:88:88:80: a7:bc:4a:f4:e8:3b:21:ba:b9:5e:3f:b2:69:81:b3: 00:6a:c3:3a:96:97:7f:1d:e8:cb:06:49:4e:41:27: 07:af:cb:f5:a5:4d:e2:e7:c1:82:10:22:e9:36:ad: 62:70:d2:8c:2b:62:17:03:b5:e6:4d:f0:97:19:d0: dc:10:1c:c2:28:ee:a2:27:59:01:89:a7:74:21:05: fc:65:24:31:12:75:25:d0:bb:78:fa:25:9c:2c:66: b9:85:b7:bf:9b:84:99:3a:1f:fd:15:75:fb:74:5f: af:80:20:77:d0:a3:59:83:56:dc:a3:88:9c:4f:7b: 8f:88:58:c8:e4:ac:2a:11:a2:f7:be:19:57:7c:2c: 1c:3a:f3:89:2f:b2:52:92:60:bc:90:13:2e:83:49: 4a:b0:32:b7:ec:47:05:73:59:9f:db:72:7b:51:72: 73:6c:c3:54:e1:fa:5d:64:f5:21:68:ff:8e:a4:9a: ce:fb:75:5b:7b:8e:03:7f:40:0f:71:6a:76:d9:34: fb:2f:49:2b:42:59:7e:e4:3c:90:82:2c:73:ea:fd: f7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AA:85:E3:DD:38:19:59:01:6D:E3:E6:2B:81:3C:43:80:0A:A4:9C X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:cc:c7:47:b7:9e:99:35:9a:2c:32:db:f4:d5:a0:52:8f:aa: 56:f4:45:2a:a9:3b:8b:b8:d7:ac:3f:03:02:9c:cd:6f:0b:ef: 05:0b:45:2a:94:28:61:6b:98:83:30:d5:22:9c:a8:10:c3:ac: 12:e7:6c:33:8c:98:fd:98:0a:e4:14:aa:8e:d4:d0:ff:9e:86: 72:94:d6:01:89:41:04:c1:31:02:dc:97:df:02:c6:30:a9:56: a7:e5:ee:46:26:98:6b:8c:29:72:ac:d3:7c:ef:33:6b:80:52: 7f:15:fe:ab:ea:dc:87:3c:93:38:3a:04:74:0e:6c:a3:7c:e1: 2e:cf:4d:0c:29:99:a2:2a:9e:87:69:0e:8a:be:36:4a:4e:ff: f2:08:05:28:48:12:02:68:10:ef:d1:e5:53:77:e6:f4:68:3e: d2:09:4f:5a:d1:65:bf:29:cd:f4:c9:3c:08:80:7f:7c:c1:3b: 4a:5e:35:52:ce:f4:73:ec:f0:57:22:20:92:93:56:9d:02:fa: 25:3f:53:7d:3c:61:4b:c5:50:79:3f:65:b6:a3:12:b0:19:49: 9b:8f:14:4f:f9:a9:67:21:43:4d:d4:29:60:a9:0b:43:31:42: 94:a6:90:d0:40:61:b0:fa:2d:e2:0d:81:37:31:3c:ba:d2:48: 60:45:69:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjUxMjE5MDE1MzQwWhcNMjUxMjI2MDE1MzQwWjAYMRYwFAYD VQQDDA02OTQ0YjAyNS04YWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVnzwGsFsPBxc9dzZ8EHJJDOzwXO4Z/xw5pCqHt+Rkx+xFeXq9VFHIyIiICn vEr06DshurleP7JpgbMAasM6lpd/HejLBklOQScHr8v1pU3i58GCECLpNq1icNKM K2IXA7XmTfCXGdDcEBzCKO6iJ1kBiad0IQX8ZSQxEnUl0Lt4+iWcLGa5hbe/m4SZ Oh/9FXX7dF+vgCB30KNZg1bco4icT3uPiFjI5KwqEaL3vhlXfCwcOvOJL7JSkmC8 kBMug0lKsDK37EcFc1mf23J7UXJzbMNU4fpdZPUhaP+OpJrO+3Vbe44Df0APcWp2 2TT7L0krQll+5DyQgixz6v330QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKqhePd OBlZAW3j5iuBPEOACqScMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAczMdHt56ZNZosMtv01aBSj6pW9EUqqTuLuNesPwMCnM1vC+8FC0Uq lChha5iDMNUinKgQw6wS52wzjJj9mArkFKqO1ND/noZylNYBiUEEwTEC3JffAsYw qVan5e5GJphrjClyrNN87zNrgFJ/Ff6r6tyHPJM4OgR0DmyjfOEuz00MKZmiKp6H aQ6KvjZKTv/yCAUoSBICaBDv0eVTd+b0aD7SCU9a0WW/Kc30yTwIgH98wTtKXjVS zvRz7PBXIiCSk1adAvolP1N9PGFLxVB5P2W2oxKwGUmbjxRP+alnIUNN1ClgqQtD MUKUppDQQGGw+i3iDYE3MTy60khgRWmr -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:06 2025 by rpki-client