This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft File: Hhb4PQxAM115a-W6IckMvumXWbw.mft (raw, json) Hash identifier: 9OBwf2r/9+/VwnDS4Na0MFcigqfS8GtjLqnX2n/roZA= Subject key identifier: 27:DF:A6:60:C2:F8:FE:E9:C8:BA:53:F6:18:DF:3F:CF:80:0E:B2:6D Authority key identifier: 1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC Certificate issuer: /CN=A91D5606/serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Certificate serial: 072D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft Manifest number: 070C Signing time: Sun 28 Dec 2025 21:13:32 +0000 Manifest this update: Sun 28 Dec 2025 21:13:31 +0000 Manifest next update: Sun 04 Jan 2026 21:13:31 +0000 Files and hashes: 1: Hhb4PQxAM115a-W6IckMvumXWbw.crl (hash: LCj7N4yMq5aE8M2Zt2SH28snjLU2o72pCZLfHO0HYKQ=) 2: 1745A0504D7F11EE8487CA3CC4F9AE02.roa (hash: u+ofbKLYcAYXay4QDo5J92308RfIUZYffrakAkc1/w0=) 3: 7E11B25E632A11EEA4BAF91FC4F9AE02.roa (hash: 00yFzXA+JQ5htpGD8ADiNSIhDTumFOoTTNXL9w2q2PM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5606, serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Validity Not Before: Dec 28 21:13:31 2025 GMT Not After : Jan 4 21:13:31 2026 GMT Subject: CN=69519d7c-b601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:9a:cf:b1:2b:f0:e8:65:6c:97:1b:e1:64:5c: 83:f7:dc:e5:c5:80:bf:31:d6:52:00:5c:5c:49:60: 28:c9:f4:32:f2:9c:66:0a:bc:55:00:f0:5a:85:0f: 9b:f9:74:ff:20:6c:44:5e:eb:f8:5d:80:71:60:47: 9a:3d:1e:ba:30:a6:c5:ca:4b:63:21:c8:ae:9f:86: c5:a6:32:a5:ce:0f:65:0f:e9:d1:09:55:40:18:91: 71:13:9c:2a:f3:ab:4f:87:50:70:11:ea:04:e4:ae: 49:b1:92:c3:84:a4:07:72:62:88:ff:55:7f:e6:e7: 90:8b:91:fc:b4:28:de:4f:dc:19:16:38:c4:39:04: 13:79:92:93:a0:68:3b:70:c1:5c:8b:08:e8:9f:f0: 25:d4:fc:02:7e:2e:f8:40:37:77:2c:06:3a:3e:72: 76:2d:74:3f:25:92:60:d2:0d:2d:26:a5:da:b1:f9: 9d:1e:bb:00:c6:1a:45:04:fb:68:2d:12:86:15:c8: fa:9b:36:ce:0d:3c:6b:51:ed:7b:e4:7f:99:3a:c5: 6e:8c:a4:95:f0:ab:7c:23:e8:7a:57:a7:7b:13:c6: 9f:f7:07:4d:41:27:5d:b8:c7:09:1b:cf:1f:42:6e: 64:a1:6a:36:8a:2f:a1:83:ea:57:c8:a9:93:b9:51: b5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:DF:A6:60:C2:F8:FE:E9:C8:BA:53:F6:18:DF:3F:CF:80:0E:B2:6D X509v3 Authority Key Identifier: keyid:1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:9d:a6:1d:7d:76:20:19:35:87:e7:3b:43:a9:0c:4c:75:a4: 7a:0f:a6:5e:25:0a:29:36:e3:58:ab:07:14:2a:96:72:f8:64: 64:f3:d2:29:72:81:6d:4b:56:03:87:fc:67:44:a5:80:22:e4: 9f:fc:2d:f6:33:ab:fc:64:4d:7d:fd:58:48:18:61:2d:75:9c: 4f:0e:f1:e4:75:2d:29:1b:1d:8a:95:66:cb:00:9d:46:21:a3: 8a:3b:e9:9c:bb:0b:b9:02:54:e6:ca:ae:fe:bf:d0:1d:a7:0c: 22:74:6a:ba:99:e1:93:af:4a:2b:74:b1:19:31:9d:d4:1c:92: 39:86:f0:c2:b2:f8:b8:81:f2:1a:c5:1f:bc:db:0d:d6:58:f3: ef:c8:fe:73:c8:5a:7f:9b:5d:00:ba:e3:90:04:05:81:1d:7e: ca:26:f9:de:a9:6a:7a:77:c4:a5:b3:08:2a:3a:cc:54:67:26: 24:9d:93:07:19:62:1d:42:91:85:7f:12:04:77:22:d0:b1:61: 2d:10:c5:de:f4:65:05:33:9c:15:54:f0:41:df:b0:8e:d0:06: 66:2c:02:ac:f1:cb:04:aa:fe:e6:76:04:5f:78:af:c0:4a:87: 2a:ef:13:04:d8:32:f5:5e:71:b0:e7:7c:6c:da:5d:d6:95:f0: e7:c1:72:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2MDYxMTAvBgNVBAUTKDFFMTZGODNEMEM0MDMzNUQ3OTZCRTVCQTIxQzkwQ0JF RTk5NzU5QkMwHhcNMjUxMjI4MjExMzMxWhcNMjYwMTA0MjExMzMxWjAYMRYwFAYD VQQDDA02OTUxOWQ3Yy1iNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85rPsSvw6GVslxvhZFyD99zlxYC/MdZSAFxcSWAoyfQy8pxmCrxVAPBahQ+b +XT/IGxEXuv4XYBxYEeaPR66MKbFyktjIciun4bFpjKlzg9lD+nRCVVAGJFxE5wq 86tPh1BwEeoE5K5JsZLDhKQHcmKI/1V/5ueQi5H8tCjeT9wZFjjEOQQTeZKToGg7 cMFciwjon/Al1PwCfi74QDd3LAY6PnJ2LXQ/JZJg0g0tJqXasfmdHrsAxhpFBPto LRKGFcj6mzbODTxrUe175H+ZOsVujKSV8Kt8I+h6V6d7E8af9wdNQSdduMcJG88f Qm5koWo2ii+hg+pXyKmTuVG16QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCffpmDC +P7pyLpT9hjfP8+ADrJtMB8GA1UdIwQYMBaAFB4W+D0MQDNdeWvluiHJDL7pl1m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTYwNi85NDBDNUQ5Qzcx MDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0xMTVhLVc2SWNrTXZ1bVhX YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hoYjRQUXhBTTExNWEtVzZJY2tNdnVtWFdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTYwNi85NDBDNUQ5QzcxMDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0x MTVhLVc2SWNrTXZ1bVhXYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZnaYdfXYgGTWH5ztDqQxMdaR6D6ZeJQopNuNYqwcUKpZy+GRk89Ip coFtS1YDh/xnRKWAIuSf/C32M6v8ZE19/VhIGGEtdZxPDvHkdS0pGx2KlWbLAJ1G IaOKO+mcuwu5AlTmyq7+v9AdpwwidGq6meGTr0ordLEZMZ3UHJI5hvDCsvi4gfIa xR+82w3WWPPvyP5zyFp/m10AuuOQBAWBHX7KJvneqWp6d8SlswgqOsxUZyYknZMH GWIdQpGFfxIEdyLQsWEtEMXe9GUFM5wVVPBB37CO0AZmLAKs8csEqv7mdgRfeK/A Socq7xME2DL1XnGw53xs2l3WlfDnwXIp -----END CERTIFICATE-----Generated at Tue Dec 30 10:52:47 2025 by rpki-client