This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: dNPYYv//RljfNsTlpqDh5Bqo8FwFumZcwVgxoQ8S/JY= Subject key identifier: AE:04:8D:B1:96:65:04:FD:29:56:02:28:46:B4:E9:05:56:64:28:AF Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0256 Signing time: Fri 19 Dec 2025 00:56:07 +0000 Manifest this update: Fri 19 Dec 2025 00:56:07 +0000 Manifest next update: Fri 26 Dec 2025 00:56:07 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: Za9YqKK/UoYd+xTRp2ndwcCGPFY6eo97Z4Yx35mAbbc=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: d2fZwjk/kReWJf7o+GQOO5RAjKTwIQ1B0ld4lPrAcBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Dec 19 00:56:07 2025 GMT Not After : Dec 26 00:56:07 2025 GMT Subject: CN=6944a2a7-ee00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d6:0c:a7:fa:9d:0d:90:b6:5e:ff:17:67:4d: c5:7e:fd:de:2c:e7:e7:19:f2:5b:df:c3:b5:13:ef: 18:dc:24:66:e9:37:8e:4b:d8:ba:30:6e:71:62:e6: 38:f6:c3:bf:51:04:1e:66:e5:aa:98:78:ed:1f:39: b0:b7:d2:7c:da:ed:f3:59:c7:58:7a:67:af:15:fc: 27:b3:c1:f1:1e:c4:a0:e5:d1:f4:d5:2e:23:73:43: a3:8e:72:03:40:ce:60:c8:bd:41:ee:19:75:bb:a5: a2:ce:42:c1:4b:41:1e:23:1f:74:15:5b:33:4b:61: c1:3f:c0:07:4b:f2:40:c2:2e:90:7a:ab:bf:41:1b: 13:aa:d8:54:7a:da:f6:ad:7a:66:c6:60:65:2c:2e: 2b:2b:68:33:fb:34:5e:f3:87:90:c1:48:18:2c:fa: 44:b6:ff:f2:e0:1f:2c:68:e6:d7:b0:42:81:7b:b9: 57:2f:24:cf:62:26:8a:1d:f9:b9:ea:c3:9f:01:ce: 1d:b6:cd:8b:ff:fe:e5:da:b2:d9:24:db:32:8b:9b: 21:57:09:79:08:d2:f7:38:9f:2b:f9:ba:ad:6a:b9: ed:93:55:34:b7:5e:c0:82:93:87:44:4b:19:7a:4c: e4:ba:44:d8:0d:dc:20:17:c1:d9:e8:5a:95:10:15: cd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:04:8D:B1:96:65:04:FD:29:56:02:28:46:B4:E9:05:56:64:28:AF X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:72:39:d1:22:01:b1:39:51:e7:fd:63:d6:8d:74:89:b0:0a: 80:ee:4d:0d:39:b8:70:3d:d0:a8:94:60:49:d7:3c:36:ba:12: 9b:55:76:a9:ce:45:ec:06:5d:f9:e3:14:80:89:a3:f9:30:74: 16:e7:35:d2:13:04:e2:c0:5f:89:57:83:af:b2:a8:da:35:97: 31:78:e8:63:59:e6:de:75:e5:77:8d:f2:fb:28:fa:e3:7f:21: 41:b2:42:0d:06:83:ff:94:84:d1:49:b0:35:a9:12:c7:32:63: c5:29:a7:a3:38:47:35:23:d8:c1:20:83:6f:29:b4:ef:c8:75: 44:d3:0c:99:36:37:df:6c:40:23:0b:97:2d:41:ba:8d:34:ff: 7d:35:f4:99:89:ef:e1:27:ca:83:41:a7:47:cd:ed:3a:24:2b: c1:be:27:29:b7:d0:75:b1:c4:6d:47:d1:5f:77:88:8d:dc:01: 97:a7:19:b1:e2:9b:34:c3:01:bb:63:21:31:41:89:88:c7:f3: 5e:7a:5f:ef:4b:c5:21:c6:6b:41:aa:e7:ea:d6:bb:23:db:9f: c3:5a:59:ca:c5:25:c6:2d:42:e7:d2:91:4a:d0:9c:ed:84:81: e2:3f:00:e6:3a:7e:83:78:21:8a:32:5b:2e:d2:f8:4a:6f:c7: ab:42:74:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUxMjE5MDA1NjA3WhcNMjUxMjI2MDA1NjA3WjAYMRYwFAYD VQQDDA02OTQ0YTJhNy1lZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9YMp/qdDZC2Xv8XZ03Ffv3eLOfnGfJb38O1E+8Y3CRm6TeOS9i6MG5xYuY4 9sO/UQQeZuWqmHjtHzmwt9J82u3zWcdYemevFfwns8HxHsSg5dH01S4jc0OjjnID QM5gyL1B7hl1u6WizkLBS0EeIx90FVszS2HBP8AHS/JAwi6Qequ/QRsTqthUetr2 rXpmxmBlLC4rK2gz+zRe84eQwUgYLPpEtv/y4B8saObXsEKBe7lXLyTPYiaKHfm5 6sOfAc4dts2L//7l2rLZJNsyi5shVwl5CNL3OJ8r+bqtarntk1U0t17AgpOHREsZ ekzkukTYDdwgF8HZ6FqVEBXN3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4EjbGW ZQT9KVYCKEa06QVWZCivMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4cjnRIgGxOVHn/WPWjXSJsAqA7k0NObhwPdColGBJ1zw2uhKbVXap zkXsBl354xSAiaP5MHQW5zXSEwTiwF+JV4OvsqjaNZcxeOhjWebedeV3jfL7KPrj fyFBskINBoP/lITRSbA1qRLHMmPFKaejOEc1I9jBIINvKbTvyHVE0wyZNjffbEAj C5ctQbqNNP99NfSZie/hJ8qDQadHze06JCvBvicpt9B1scRtR9Ffd4iN3AGXpxmx 4ps0wwG7YyExQYmIx/Neel/vS8UhxmtBqufq1rsj25/DWlnKxSXGLULn0pFK0Jzt hIHiPwDmOn6DeCGKMlsu0vhKb8erQnRc -----END CERTIFICATE-----Generated at Fri Dec 19 19:03:01 2025 by rpki-client