This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft File: HT2u99J4g3Pt38sa1cTCNWxXre0.mft (raw, json) Hash identifier: ey4eruLH2hhJxS+N1IXfydBJen3i+yQPZAAdAKEkbMc= Subject key identifier: 56:7D:A7:4C:98:79:7A:4B:50:EC:3E:62:3C:2E:A6:35:D1:AB:94:03 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft Manifest number: B9 Signing time: Sat 27 Dec 2025 04:58:19 +0000 Manifest this update: Sat 27 Dec 2025 04:58:19 +0000 Manifest next update: Sat 03 Jan 2026 04:58:19 +0000 Files and hashes: 1: HT2u99J4g3Pt38sa1cTCNWxXre0.crl (hash: eL+6YVC4UVXNhG8N88MoFzAm1gfzSc8Va7PsgQ4kzIQ=) 2: 8B349526E61B11EFA5CFAA1CC4F9AE02.roa (hash: ne8tUgudan5gCr0Fj4AbK9IugW5sTtsGHmdJgQPhqp8=) 3: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (hash: vLRSLWwCPlw1XgMXqIwjNZRh5iifhLT67LBNrNkXRO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Validity Not Before: Dec 27 04:58:19 2025 GMT Not After : Jan 3 04:58:19 2026 GMT Subject: CN=694f676b-7fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:eb:7a:e0:a0:19:1f:18:c7:a0:bb:1d:24:47: 5c:6c:db:dc:68:4c:1c:89:76:83:26:4a:6a:69:26: 7b:d9:3b:5d:2d:f9:31:a3:db:cf:73:05:e8:a9:59: ea:72:08:b6:97:4f:5b:2c:4f:37:86:c7:fd:c9:db: 9c:5c:db:0c:71:08:74:0c:dc:70:0b:07:92:f1:7a: 8d:24:04:45:58:92:19:64:a1:39:e5:8d:50:3b:1c: a0:dd:ca:d9:dc:a5:23:78:f4:e8:9d:d8:49:99:41: b0:fd:9e:37:ff:4e:e3:f0:c5:d7:da:68:d3:91:95: ba:a7:ff:7b:df:c6:a7:27:5e:e9:62:fe:e7:2b:7c: 64:9c:09:8b:d8:79:8b:9f:16:42:0f:52:bb:10:83: cc:36:fd:6d:e6:c4:7d:58:63:42:91:ca:65:f1:55: 2a:34:99:6e:ef:76:3c:de:54:b6:8d:09:5c:61:9c: 8b:75:f9:1b:9e:fc:21:f9:c0:af:0a:6f:d7:04:a3: ec:e6:fe:1f:a1:b1:fc:c9:a8:38:d9:8b:ff:8f:83: c9:ef:a3:5a:3a:13:3c:07:17:93:63:c7:42:53:bb: ad:ad:e1:c6:d8:75:dd:d8:af:82:4b:2e:0b:03:ae: 77:db:0e:06:5c:21:f4:be:7e:6e:6b:99:14:c7:87: 43:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7D:A7:4C:98:79:7A:4B:50:EC:3E:62:3C:2E:A6:35:D1:AB:94:03 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a5:4f:c2:eb:32:b8:e9:8e:59:6c:8f:65:b8:65:b2:2f:51: 54:ac:d2:86:c7:ff:36:40:27:a4:e7:af:3c:bf:68:f2:8a:7e: 24:ca:78:e0:52:60:01:f9:b3:07:93:8d:e2:cf:cd:5d:db:b9: 0a:f7:62:ad:76:ea:e4:75:9b:00:0e:77:99:c7:64:5d:5a:e5: d9:47:bb:29:3e:5f:8e:5a:a4:1b:0b:c8:ed:4e:f3:c0:57:91: 25:f8:ad:4b:b4:f4:95:46:dd:26:74:c7:e8:77:aa:bd:48:37: 2f:a5:b9:4b:b5:73:43:b3:60:5a:ce:2b:54:f7:35:96:71:08: a4:01:15:c2:9a:b4:bf:42:b1:a2:8f:ed:82:1d:4c:21:c2:1b: d8:0d:d8:eb:3a:40:8c:62:45:f5:ab:75:25:7b:2b:20:23:a0: 8a:47:a6:13:3c:29:0a:84:1d:89:9e:b9:bd:0b:83:6d:76:8d: b9:65:11:a3:27:a9:21:15:a7:3d:d8:0c:c5:1b:bf:e6:77:db: 49:16:1b:d7:68:5b:c5:a3:60:1b:c8:55:94:7f:5b:d4:a5:26: 86:9b:ff:2f:1f:45:2b:72:3b:40:ea:27:2f:91:42:e0:19:b7: 31:93:09:9f:8b:8c:ab:86:5e:ca:8d:7d:a0:2d:d8:09:98:fc: d0:22:4b:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1NzgxMTAvBgNVBAUTKDFEM0RBRUY3RDI3ODgzNzNFRERGQ0IxQUQ1QzRDMjM1 NkM1N0FERUQwHhcNMjUxMjI3MDQ1ODE5WhcNMjYwMTAzMDQ1ODE5WjAYMRYwFAYD VQQDDA02OTRmNjc2Yi03ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+t64KAZHxjHoLsdJEdcbNvcaEwciXaDJkpqaSZ72TtdLfkxo9vPcwXoqVnq cgi2l09bLE83hsf9yducXNsMcQh0DNxwCweS8XqNJARFWJIZZKE55Y1QOxyg3crZ 3KUjePTondhJmUGw/Z43/07j8MXX2mjTkZW6p/9738anJ17pYv7nK3xknAmL2HmL nxZCD1K7EIPMNv1t5sR9WGNCkcpl8VUqNJlu73Y83lS2jQlcYZyLdfkbnvwh+cCv Cm/XBKPs5v4fobH8yag42Yv/j4PJ76NaOhM8BxeTY8dCU7utreHG2HXd2K+CSy4L A6532w4GXCH0vn5ua5kUx4dDewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZ9p0yY eXpLUOw+YjwupjXRq5QDMB8GA1UdIwQYMBaAFB09rvfSeINz7d/LGtXEwjVsV63t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDU3OC8wMDNBNzlEQUNG M0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IVDJ1OTlKNGczUHQzOHNhMWNUQ05XeFhy ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDU3OC8wMDNBNzlEQUNGM0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IVDJ1OTlKNGcz UHQzOHNhMWNUQ05XeFhyZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMpU/C6zK46Y5ZbI9luGWyL1FUrNKGx/82QCek5688v2jyin4kynjg UmAB+bMHk43iz81d27kK92KtdurkdZsADneZx2RdWuXZR7spPl+OWqQbC8jtTvPA V5El+K1LtPSVRt0mdMfod6q9SDcvpblLtXNDs2BazitU9zWWcQikARXCmrS/QrGi j+2CHUwhwhvYDdjrOkCMYkX1q3UleysgI6CKR6YTPCkKhB2Jnrm9C4Ntdo25ZRGj J6khFac92AzFG7/md9tJFhvXaFvFo2AbyFWUf1vUpSaGm/8vH0UrcjtA6icvkULg Gbcxkwmfi4yrhl7KjX2gLdgJmPzQIksZ -----END CERTIFICATE-----Generated at Mon Dec 29 06:15:15 2025 by rpki-client