This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: XN7xBKdk6MY3zix3/7m2b9/jAmkLJQ06C9ThTcuB3Jk= Subject key identifier: 70:47:48:22:D0:03:A8:B6:45:E1:74:18:85:0F:BD:AA:6D:69:D7:E2 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03A2 Signing time: Thu 18 Dec 2025 23:59:45 +0000 Manifest this update: Thu 18 Dec 2025 23:59:45 +0000 Manifest next update: Thu 25 Dec 2025 23:59:45 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: 01Usae72nZHvUmgc0dLqJD0WSWP0ROq6NKUZZyMFv34=) 2: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) 3: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 4: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 942 (0x3ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Dec 18 23:59:45 2025 GMT Not After : Dec 25 23:59:45 2025 GMT Subject: CN=69449571-ee64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ec:a6:2f:84:8e:68:e0:d3:03:3b:84:c7:fd: 68:7c:86:16:e7:e9:67:5c:cc:36:5d:c8:15:9f:b3: 7c:2f:2d:9b:3a:80:8d:d9:59:99:43:74:7b:5b:15: 71:16:9a:63:1b:ad:33:92:21:95:81:ff:a9:f9:ff: 67:6b:1c:aa:55:5d:8e:97:fd:91:15:26:c5:26:4d: a2:ff:cf:d6:cd:f1:bc:d9:9f:11:9e:ed:e4:05:a1: e7:53:9a:6b:a3:2d:5d:9a:be:3c:05:af:64:78:21: e0:bd:2a:23:fc:01:c4:f7:93:a0:ea:74:3f:8b:ed: c3:e5:46:43:cc:4f:4b:24:98:96:48:48:74:39:f5: 26:31:a9:c8:d2:7e:35:29:90:e9:5f:b7:d2:1f:95: ba:03:44:cc:17:04:12:a9:83:e6:e9:d7:c6:e6:68: 28:31:9e:af:ab:9f:94:9b:1d:3f:09:0e:c1:85:86: 42:5a:d3:e2:e1:d7:e3:03:ef:9f:65:a5:c3:18:ce: 69:3e:40:ff:b0:61:cb:5f:23:84:42:7d:5c:76:a5: 39:37:ca:37:41:a1:6b:d7:ec:8a:28:91:7b:c5:8a: c2:b8:01:c2:3f:06:0b:89:a8:e2:20:be:f0:b4:9f: fb:67:41:d1:b9:f4:4d:e2:38:a1:84:ba:3c:06:2c: a7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:47:48:22:D0:03:A8:B6:45:E1:74:18:85:0F:BD:AA:6D:69:D7:E2 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:bd:9a:ff:3d:f9:bc:09:e6:a6:3b:4b:15:79:9f:d8:52:8a: 07:0b:46:bc:4f:a3:0a:34:e1:5f:88:92:84:08:3c:a9:4d:06: b8:6f:38:a0:f5:bb:61:a1:ef:5f:da:7c:9d:38:99:1f:8a:a7: 6d:df:42:0b:36:79:7b:96:fd:88:5f:70:98:38:d3:46:55:5c: c4:5c:57:15:fd:e3:0f:d4:12:de:5e:ef:52:b3:84:d8:96:61: 1e:fb:25:2e:87:73:50:25:62:7e:b6:63:c4:53:79:a9:5a:2e: 46:b5:78:d0:6c:35:13:0f:61:60:49:41:73:9d:df:66:6a:09: 57:f7:79:b3:6a:1b:9e:f4:a7:94:d7:46:a1:54:d0:bd:b3:06: d1:db:23:5a:45:63:3c:f1:f8:86:9c:f0:99:5f:f2:aa:95:24: 98:60:f7:fc:0d:ca:2b:7b:2c:4b:80:5f:4f:4b:66:aa:a8:2e: ac:2b:e4:ea:e0:30:43:40:79:fe:17:ce:e0:ce:31:13:8a:a0: 23:55:b7:a5:5e:21:3a:2a:5b:df:ea:f9:c9:8b:f1:b6:28:68: 5a:3b:36:de:c5:65:cb:96:14:e4:e3:b0:a2:40:99:b8:26:78: 2c:c3:d1:cd:1e:75:97:95:ca:bb:ac:85:a2:64:af:46:0e:33: c7:93:59:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUxMjE4MjM1OTQ1WhcNMjUxMjI1MjM1OTQ1WjAYMRYwFAYD VQQDDA02OTQ0OTU3MS1lZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuymL4SOaODTAzuEx/1ofIYW5+lnXMw2XcgVn7N8Ly2bOoCN2VmZQ3R7WxVx FppjG60zkiGVgf+p+f9naxyqVV2Ol/2RFSbFJk2i/8/WzfG82Z8Rnu3kBaHnU5pr oy1dmr48Ba9keCHgvSoj/AHE95Og6nQ/i+3D5UZDzE9LJJiWSEh0OfUmManI0n41 KZDpX7fSH5W6A0TMFwQSqYPm6dfG5mgoMZ6vq5+Umx0/CQ7BhYZCWtPi4dfjA++f ZaXDGM5pPkD/sGHLXyOEQn1cdqU5N8o3QaFr1+yKKJF7xYrCuAHCPwYLiajiIL7w tJ/7Z0HRufRN4jihhLo8BiynJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBHSCLQ A6i2ReF0GIUPvaptadfiMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOvZr/Pfm8CeamO0sVeZ/YUooHC0a8T6MKNOFfiJKECDypTQa4bzig 9bthoe9f2nydOJkfiqdt30ILNnl7lv2IX3CYONNGVVzEXFcV/eMP1BLeXu9Ss4TY lmEe+yUuh3NQJWJ+tmPEU3mpWi5GtXjQbDUTD2FgSUFznd9maglX93mzahue9KeU 10ahVNC9swbR2yNaRWM88fiGnPCZX/KqlSSYYPf8DcoreyxLgF9PS2aqqC6sK+Tq 4DBDQHn+F87gzjETiqAjVbelXiE6Klvf6vnJi/G2KGhaOzbexWXLlhTk47CiQJm4 Jngsw9HNHnWXlcq7rIWiZK9GDjPHk1lB -----END CERTIFICATE-----Generated at Sun Dec 21 00:14:04 2025 by rpki-client