This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft File: Hhb4PQxAM115a-W6IckMvumXWbw.mft (raw, json) Hash identifier: ulZ/QQENOBBW2nUuUDY6QoEIjOezGOXkdMvj2x8j47k= Subject key identifier: D8:E5:FA:C1:61:03:01:05:36:62:BF:CD:AC:40:61:8F:7B:72:45:9C Authority key identifier: 1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC Certificate issuer: /CN=A91D5606/serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Certificate serial: 0728 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft Manifest number: 0707 Signing time: Thu 18 Dec 2025 21:22:17 +0000 Manifest this update: Thu 18 Dec 2025 21:22:17 +0000 Manifest next update: Thu 25 Dec 2025 21:22:17 +0000 Files and hashes: 1: Hhb4PQxAM115a-W6IckMvumXWbw.crl (hash: wrUFMczDzSPXQvVTcwJADNdQTvSow1/6SaJdnhtX43U=) 2: 7E11B25E632A11EEA4BAF91FC4F9AE02.roa (hash: 00yFzXA+JQ5htpGD8ADiNSIhDTumFOoTTNXL9w2q2PM=) 3: 1745A0504D7F11EE8487CA3CC4F9AE02.roa (hash: u+ofbKLYcAYXay4QDo5J92308RfIUZYffrakAkc1/w0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5606, serialNumber=1E16F83D0C40335D796BE5BA21C90CBEE99759BC Validity Not Before: Dec 18 21:22:17 2025 GMT Not After : Dec 25 21:22:17 2025 GMT Subject: CN=69447089-4d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d2:1f:1e:df:91:b7:e1:c5:32:ba:b5:71:74: 3c:6a:f1:71:f2:61:11:14:dc:f1:f8:17:6d:03:73: 74:94:ed:0e:98:32:e6:a2:11:6d:3d:1d:d4:63:fb: 1b:a4:c7:c0:24:c0:0c:82:3f:80:a1:a9:92:da:f4: 83:04:9d:92:f4:a1:b7:d6:48:f1:18:aa:df:a5:d8: 12:23:4d:f2:c0:33:2c:19:d1:0a:04:86:d5:3f:a1: 47:e6:6f:45:11:0b:52:aa:e9:71:11:fc:28:45:e9: ca:e4:3c:68:35:36:3d:d4:ef:5d:3a:63:35:4f:51: b5:95:12:a8:ba:f2:bd:d8:60:cd:ba:81:85:4e:07: 2f:d5:1c:ee:6b:4e:01:d4:ea:80:1a:52:0f:8b:0b: d2:3c:0a:dd:94:f8:9c:b3:7d:fe:d7:d0:7d:6b:9a: 20:6e:83:71:61:39:d4:9a:5b:18:51:38:74:13:77: 09:58:72:e5:ce:29:18:32:88:bc:2e:8e:b1:62:7a: 83:bc:23:13:e0:6b:ab:65:3e:45:00:20:93:b0:05: 3f:24:23:2d:69:96:75:b9:2a:6c:03:b1:48:4d:80: 28:a4:04:1f:ab:1f:07:11:2d:d5:f2:01:b2:df:8b: 12:57:62:f7:7e:b5:ee:96:78:7a:18:c2:54:9b:4c: b2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E5:FA:C1:61:03:01:05:36:62:BF:CD:AC:40:61:8F:7B:72:45:9C X509v3 Authority Key Identifier: keyid:1E:16:F8:3D:0C:40:33:5D:79:6B:E5:BA:21:C9:0C:BE:E9:97:59:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hhb4PQxAM115a-W6IckMvumXWbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5606/940C5D9C710211EB87073B70C4F9AE02/Hhb4PQxAM115a-W6IckMvumXWbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:01:a0:d3:de:f8:e4:e4:52:51:8d:8c:3e:3e:2c:f6:3e:5f: 71:86:c9:51:12:91:c2:e3:f7:97:db:e1:59:ed:00:78:fd:c6: c5:b1:3c:ad:b8:9f:6e:5a:f5:c7:92:09:b2:f2:a1:2c:a2:b5: 58:7b:b1:19:fc:a0:3e:a6:d2:1c:ef:45:41:f4:98:08:76:7d: 1e:bc:8c:cf:2e:99:90:1e:05:ff:e5:84:71:aa:8f:70:b9:47: 60:56:fb:b9:d4:af:00:fe:11:24:8f:fe:c9:56:63:c6:b5:69: 46:34:3c:01:8e:a0:63:10:74:4b:ff:fc:7c:0e:5e:23:12:69: bc:a1:b2:5a:a5:9b:19:59:f8:7a:39:6b:3f:d3:ce:8f:85:50: 2f:4b:2c:8e:d4:89:b3:d4:29:30:5c:cf:e1:81:de:91:02:f9: df:e1:f6:e4:f2:d1:d6:0e:9e:87:92:bb:2d:ea:6c:8e:5a:44: 66:31:ed:97:ed:7c:fa:ac:b1:34:62:17:24:0e:25:8e:b2:7f: 5d:48:3f:f3:8e:28:23:91:1b:c7:39:04:50:a3:2c:24:31:3d: 74:ef:74:5b:4e:77:ac:be:a2:64:91:5c:d3:7e:c1:c1:9d:74: e5:a6:6e:e2:63:b8:7c:82:b1:a4:22:9a:72:6f:08:e3:27:13: c5:2f:25:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2MDYxMTAvBgNVBAUTKDFFMTZGODNEMEM0MDMzNUQ3OTZCRTVCQTIxQzkwQ0JF RTk5NzU5QkMwHhcNMjUxMjE4MjEyMjE3WhcNMjUxMjI1MjEyMjE3WjAYMRYwFAYD VQQDDA02OTQ0NzA4OS00ZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdIfHt+Rt+HFMrq1cXQ8avFx8mERFNzx+BdtA3N0lO0OmDLmohFtPR3UY/sb pMfAJMAMgj+AoamS2vSDBJ2S9KG31kjxGKrfpdgSI03ywDMsGdEKBIbVP6FH5m9F EQtSqulxEfwoRenK5DxoNTY91O9dOmM1T1G1lRKouvK92GDNuoGFTgcv1Rzua04B 1OqAGlIPiwvSPArdlPics33+19B9a5ogboNxYTnUmlsYUTh0E3cJWHLlzikYMoi8 Lo6xYnqDvCMT4GurZT5FACCTsAU/JCMtaZZ1uSpsA7FITYAopAQfqx8HES3V8gGy 34sSV2L3frXulnh6GMJUm0yynQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjl+sFh AwEFNmK/zaxAYY97ckWcMB8GA1UdIwQYMBaAFB4W+D0MQDNdeWvluiHJDL7pl1m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTYwNi85NDBDNUQ5Qzcx MDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0xMTVhLVc2SWNrTXZ1bVhX YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hoYjRQUXhBTTExNWEtVzZJY2tNdnVtWFdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTYwNi85NDBDNUQ5QzcxMDIxMUVCODcwNzNCNzBDNEY5QUUwMi9IaGI0UFF4QU0x MTVhLVc2SWNrTXZ1bVhXYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0AaDT3vjk5FJRjYw+Piz2Pl9xhslREpHC4/eX2+FZ7QB4/cbFsTyt uJ9uWvXHkgmy8qEsorVYe7EZ/KA+ptIc70VB9JgIdn0evIzPLpmQHgX/5YRxqo9w uUdgVvu51K8A/hEkj/7JVmPGtWlGNDwBjqBjEHRL//x8Dl4jEmm8obJapZsZWfh6 OWs/086PhVAvSyyO1Imz1CkwXM/hgd6RAvnf4fbk8tHWDp6Hkrst6myOWkRmMe2X 7Xz6rLE0YhckDiWOsn9dSD/zjigjkRvHOQRQoywkMT1073RbTnesvqJkkVzTfsHB nXTlpm7iY7h8grGkIppybwjjJxPFLyXK -----END CERTIFICATE-----Generated at Sat Dec 20 13:19:04 2025 by rpki-client