This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: Cb/UtzOn+R6bDTMojDYWg6AyJJWDGZP9onmuXVYUX9o= Subject key identifier: 01:A9:50:2D:F6:09:EA:D3:43:E1:85:43:D4:80:70:28:EC:AA:8B:EB Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0D7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0D75 Signing time: Thu 18 Dec 2025 17:45:05 +0000 Manifest this update: Thu 18 Dec 2025 17:45:05 +0000 Manifest next update: Thu 25 Dec 2025 17:45:05 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: VG+UF9BMSFf5BGJ9FgyFaDTaqlCDNgwOD54YL2cQsxE=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: MzWbilqvJU/bA0pbUK90+TSc+f/XjXTcVvnJOFhs0gQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Dec 18 17:45:05 2025 GMT Not After : Dec 25 17:45:05 2025 GMT Subject: CN=69443da1-cf01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:51:a9:57:a7:dd:4d:95:c9:df:00:2b:6e:6a: 95:28:ad:7e:07:e1:2b:3b:d2:0a:da:a8:8c:d4:5c: 0d:39:71:c6:82:c0:56:89:e9:84:66:87:06:35:c8: f1:b5:06:e6:46:7e:7b:df:2a:84:82:28:92:a7:55: f7:62:ba:0f:41:92:4d:67:f7:f6:ad:6a:89:f6:e3: 63:94:25:f2:b7:f9:a0:96:e5:c3:9a:fd:ab:21:47: a3:27:15:a8:48:05:f8:98:9c:54:35:1e:d6:8a:4a: 5f:4a:9c:20:ac:35:77:0a:bf:0f:5c:5b:b9:0e:24: 9e:76:bc:11:15:06:b5:35:fa:59:dc:ed:e9:e7:3f: 34:52:b5:da:7a:a4:f2:01:5a:d6:fc:9c:43:2a:cb: b8:bf:af:5b:95:07:dc:27:54:63:62:c2:04:a5:b7: f4:4d:61:c1:0e:9e:61:a2:80:8b:43:8f:ed:05:42: 40:9f:2a:b6:0d:d9:42:47:4d:b6:6d:98:75:54:ed: 98:1f:5d:7d:d6:07:48:fa:7f:6b:1f:ec:d9:35:bb: 1f:5e:14:b3:77:ae:3f:a4:d9:34:8b:52:26:6c:dd: 25:9e:e9:0f:77:fa:24:c0:36:a0:a4:bd:ee:9a:ea: 50:b4:69:78:7d:5f:85:11:5f:6f:02:77:19:8e:82: a4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A9:50:2D:F6:09:EA:D3:43:E1:85:43:D4:80:70:28:EC:AA:8B:EB X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:63:03:70:2e:74:92:ca:87:e0:be:b3:0c:a9:5c:55:9c:42: 8a:60:1c:11:b0:e9:91:19:8a:98:ad:41:1f:3f:85:5c:4f:e0: 4b:40:58:ac:cb:1e:8a:76:a6:83:ec:e4:2e:5b:d1:6b:4d:43: 63:6f:7a:ee:93:31:09:f6:f4:9d:d6:17:ea:ad:5f:ea:34:3b: 72:d7:85:f7:4c:75:b9:ea:31:e1:45:fd:7d:ee:88:ca:b2:4e: 21:28:d3:97:f9:e6:ca:00:be:68:05:f8:17:42:62:f6:15:7e: 55:85:13:26:df:23:52:24:c9:00:72:da:19:f9:11:28:fb:9c: 6d:47:27:4f:a7:b4:d2:3a:a5:61:15:17:18:4e:97:e3:93:ea: 93:d7:30:49:a3:11:05:f1:90:b3:8a:21:91:1c:ac:5b:04:64: 09:50:63:ff:85:18:7b:d6:37:0e:82:ff:c4:99:eb:78:0f:da: 98:eb:41:4d:e3:57:e7:f2:d6:a9:4e:a0:d7:71:ac:63:43:93: 78:d5:ed:40:f7:86:a5:16:ef:74:72:91:4e:8f:7e:2f:f7:00: b4:f4:a7:69:ce:61:02:8a:9d:af:d5:c1:a1:d0:18:f0:ce:85: 65:3a:aa:67:78:2d:69:82:67:93:95:82:8f:af:52:20:b5:3d: 47:5d:03:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjUxMjE4MTc0NTA1WhcNMjUxMjI1MTc0NTA1WjAYMRYwFAYD VQQDDA02OTQ0M2RhMS1jZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlGpV6fdTZXJ3wArbmqVKK1+B+ErO9IK2qiM1FwNOXHGgsBWiemEZocGNcjx tQbmRn573yqEgiiSp1X3YroPQZJNZ/f2rWqJ9uNjlCXyt/mgluXDmv2rIUejJxWo SAX4mJxUNR7WikpfSpwgrDV3Cr8PXFu5DiSedrwRFQa1NfpZ3O3p5z80UrXaeqTy AVrW/JxDKsu4v69blQfcJ1RjYsIEpbf0TWHBDp5hooCLQ4/tBUJAnyq2DdlCR022 bZh1VO2YH1191gdI+n9rH+zZNbsfXhSzd64/pNk0i1ImbN0lnukPd/okwDagpL3u mupQtGl4fV+FEV9vAncZjoKkswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGpUC32 CerTQ+GFQ9SAcCjsqovrMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYYwNwLnSSyofgvrMMqVxVnEKKYBwRsOmRGYqYrUEfP4VcT+BLQFis yx6KdqaD7OQuW9FrTUNjb3rukzEJ9vSd1hfqrV/qNDty14X3THW56jHhRf197ojK sk4hKNOX+ebKAL5oBfgXQmL2FX5VhRMm3yNSJMkActoZ+REo+5xtRydPp7TSOqVh FRcYTpfjk+qT1zBJoxEF8ZCziiGRHKxbBGQJUGP/hRh71jcOgv/Emet4D9qY60FN 41fn8tapTqDXcaxjQ5N41e1A94alFu90cpFOj34v9wC09KdpzmECip2v1cGh0Bjw zoVlOqpneC1pgmeTlYKPr1IgtT1HXQO/ -----END CERTIFICATE-----Generated at Fri Dec 19 14:47:28 2025 by rpki-client