This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: i8vULWGPzgHEWj6r/gFMFCj937a6hHbYIyYoo8lrMec= Subject key identifier: 57:E4:36:7E:39:E2:F9:BD:8A:D8:15:6B:66:70:15:FD:5D:28:F8:CB Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: F1 Signing time: Tue 23 Dec 2025 04:20:06 +0000 Manifest this update: Tue 23 Dec 2025 04:20:06 +0000 Manifest next update: Tue 30 Dec 2025 04:20:06 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: lRH7peNw72RPNWyI3zG4gkHu/aXeBhAw96LIIgLmwBs=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: w4Rh9NpZ/IQ60xsdouCsCPn/eRzJ06RRF4GvfzZ5uwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Dec 23 04:20:06 2025 GMT Not After : Dec 30 04:20:06 2025 GMT Subject: CN=694a1876-c4d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:46:a5:a3:fe:65:b6:0d:58:fd:2b:53:46:af: d6:0f:59:f0:d3:a4:19:1a:f2:9e:e6:5a:96:0c:37: 9c:f4:ac:24:ef:11:32:b4:f0:2f:7c:30:9d:9b:93: d0:a8:e3:1a:40:1c:e7:a8:3e:28:ae:ad:23:bc:ad: a0:34:af:b5:38:40:9b:08:78:4f:b1:a2:43:d1:68: 39:4b:64:6c:57:81:a3:9b:f4:a6:a0:b9:31:c1:ba: 26:d9:c8:b7:e6:1d:72:3b:04:9c:21:da:b5:14:e4: b8:e3:9d:8d:7b:01:3c:ec:2f:3f:44:da:08:4e:ea: 0c:13:75:8e:00:c9:d6:ef:9d:51:47:2b:c0:c9:51: 1a:1d:83:aa:7c:59:94:ba:ff:a3:bf:31:40:11:5e: 4d:36:6c:66:34:4f:a0:ba:fb:dc:1a:54:99:3c:b4: 5f:74:be:11:c3:c2:14:51:33:be:d9:36:cc:1a:1c: 6a:3e:d5:6f:67:6f:bf:03:d4:5c:d5:cb:ef:d9:21: db:0c:a4:2d:95:f4:5a:de:73:34:ec:96:fe:65:1b: 7a:ba:2a:b8:b9:ef:cc:57:c8:a5:6b:b3:bf:2c:7c: 20:f9:3e:31:36:03:05:9f:08:85:1a:d7:c5:8f:65: f1:93:c0:18:25:0d:dd:34:c0:21:22:41:a1:97:ec: 6a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E4:36:7E:39:E2:F9:BD:8A:D8:15:6B:66:70:15:FD:5D:28:F8:CB X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:dd:a9:60:15:62:28:d7:55:99:96:01:45:b8:c3:a2:bb:02: cf:61:90:08:71:e5:74:8b:7d:82:f0:9d:f1:36:15:d2:53:91: 48:6b:0c:3f:f8:ee:a9:89:ea:fc:01:a6:cd:03:1b:4c:b4:5a: fb:88:25:40:c9:f6:3b:fb:f5:28:44:d7:c8:b4:46:1c:2c:bd: 17:83:e7:b8:6b:5a:54:ea:37:05:de:3c:a0:bb:4c:d4:90:09: d4:a3:0c:1f:b0:b9:f7:6f:a3:4a:8f:b1:32:a4:35:ac:c0:a1: 4c:7e:ea:e0:b7:8a:3f:c8:ef:c1:2e:d0:5d:7d:ad:3f:ba:c1: ff:b3:77:55:b7:d9:20:cc:18:a4:78:13:98:34:4e:4d:1c:8e: a3:2a:cb:30:58:8b:f9:01:ca:29:e7:c6:f1:5f:2b:48:0f:75: cf:17:0e:55:32:e1:3e:05:5a:48:b6:d1:2b:ac:b8:ec:2c:b8: 4c:46:b6:ca:11:15:28:42:17:df:17:f1:e6:53:24:7a:8b:f8: f0:ca:36:28:3e:fd:0c:75:18:e8:1b:7d:3d:f1:9f:44:d3:fb: ac:2d:46:e2:c2:ea:e3:72:60:e5:fc:0a:be:49:69:ff:9d:6c: 0f:56:6f:06:83:93:cc:55:a9:a7:2b:dc:bd:c3:e8:63:7d:b0: 25:b2:d2:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjUxMjIzMDQyMDA2WhcNMjUxMjMwMDQyMDA2WjAYMRYwFAYD VQQDDA02OTRhMTg3Ni1jNGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUalo/5ltg1Y/StTRq/WD1nw06QZGvKe5lqWDDec9Kwk7xEytPAvfDCdm5PQ qOMaQBznqD4orq0jvK2gNK+1OECbCHhPsaJD0Wg5S2RsV4Gjm/SmoLkxwbom2ci3 5h1yOwScIdq1FOS4452NewE87C8/RNoITuoME3WOAMnW751RRyvAyVEaHYOqfFmU uv+jvzFAEV5NNmxmNE+guvvcGlSZPLRfdL4Rw8IUUTO+2TbMGhxqPtVvZ2+/A9Rc 1cvv2SHbDKQtlfRa3nM07Jb+ZRt6uiq4ue/MV8ila7O/LHwg+T4xNgMFnwiFGtfF j2Xxk8AYJQ3dNMAhIkGhl+xqvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfkNn45 4vm9itgVa2ZwFf1dKPjLMB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg3algFWIo11WZlgFFuMOiuwLPYZAIceV0i32C8J3xNhXSU5FIaww/ +O6pier8AabNAxtMtFr7iCVAyfY7+/UoRNfItEYcLL0Xg+e4a1pU6jcF3jygu0zU kAnUowwfsLn3b6NKj7EypDWswKFMfurgt4o/yO/BLtBdfa0/usH/s3dVt9kgzBik eBOYNE5NHI6jKsswWIv5Acop58bxXytID3XPFw5VMuE+BVpIttErrLjsLLhMRrbK ERUoQhffF/HmUyR6i/jwyjYoPv0MdRjoG3098Z9E0/usLUbiwurjcmDl/Aq+SWn/ nWwPVm8Gg5PMVamnK9y9w+hjfbAlstKR -----END CERTIFICATE-----Generated at Tue Dec 23 18:35:09 2025 by rpki-client