This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: bReAHeCY+XVBjiQQg4RicZ8YPE+ZpjlQ56HQE4nzwEs= Subject key identifier: F1:31:DF:FC:10:B3:67:A0:AE:E6:06:6F:59:A4:0F:AB:A2:61:68:6D Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A56 Signing time: Thu 18 Dec 2025 19:16:12 +0000 Manifest this update: Thu 18 Dec 2025 19:16:11 +0000 Manifest next update: Thu 25 Dec 2025 19:16:11 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: krbuvr3H6NZltfx7PWTpcfe2E6262fKmjkRePqbXARE=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0c8vFwsGm0y9J7tirCRPVhjPNwdGg4DZRn3e0fuJjls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2657 (0xa61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Dec 18 19:16:11 2025 GMT Not After : Dec 25 19:16:11 2025 GMT Subject: CN=694452fc-40dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:70:b5:14:32:38:73:e0:9d:20:fe:57:71: fa:8d:8c:fa:91:e9:f7:3b:c3:0e:8a:b4:2b:e3:8d: 50:99:db:2e:8c:c9:55:d5:b4:94:52:21:18:fa:ca: b3:90:e0:4a:e8:3b:85:a8:61:b0:8a:23:1d:e2:83: d8:3f:10:25:f1:54:6f:e9:f4:00:7e:43:14:f5:73: 1a:cd:87:65:dd:4f:3a:c1:bd:6c:8c:1a:e9:ff:f9: 3d:b9:34:94:a9:74:b5:1e:b7:7b:e4:51:79:53:89: 93:35:67:c9:86:20:9d:5d:4f:50:81:dd:e3:7f:cc: 63:8d:68:e6:93:75:ef:81:76:23:38:f6:bd:29:2a: 88:c0:38:90:aa:ef:0e:2c:d3:ea:7d:f0:36:ca:ec: 02:a1:ca:ba:2e:0e:bc:1b:b8:8e:11:50:04:6c:d8: dd:8c:4e:4d:21:6a:97:7b:a8:15:72:87:6c:ac:3c: 63:08:6d:71:92:63:74:89:66:5f:0c:a6:c8:36:da: ba:53:a8:1b:f3:b3:d4:17:c0:53:bb:7b:27:2e:39: 3d:0d:b6:cb:c5:6e:ba:c2:c5:9b:77:21:c3:23:68: 15:ff:73:b5:fb:50:8e:34:9d:17:55:7f:05:64:07: b2:2b:36:1b:e9:cd:bf:04:67:6a:83:95:37:62:37: a4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:31:DF:FC:10:B3:67:A0:AE:E6:06:6F:59:A4:0F:AB:A2:61:68:6D X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:fe:f9:76:28:0e:94:a7:8b:ff:e7:14:1f:54:c4:c8:94:62: 53:35:f1:22:1d:a2:61:32:e8:5d:20:95:38:bb:4a:48:9d:ac: af:71:3d:9b:ee:c2:98:99:5f:9b:11:55:c4:93:c9:53:97:f1: a8:ac:a4:e4:d7:3d:8d:b2:7e:90:c6:c1:d7:ba:23:ab:51:bf: 8d:af:01:7d:7b:c2:0d:4f:be:ad:b7:09:9f:cd:e1:98:46:78: ab:9b:ba:9b:db:e4:3a:8c:23:4f:fe:2e:41:51:d2:fd:12:ff: f4:b2:47:8d:76:fd:7a:c7:9f:dd:51:e8:34:1b:ce:90:a6:fe: 71:10:7e:27:06:80:77:fb:92:7d:5d:f1:75:1c:73:44:03:37: 10:39:64:91:a1:c2:b7:f1:c8:4f:0e:a9:b9:cf:01:c3:78:24: 21:22:c6:47:09:10:64:0c:d1:e5:fd:ca:07:5f:89:c8:df:59: 32:58:21:c2:1a:88:41:0d:06:b8:d2:49:01:af:c6:60:f1:f6: 01:f7:06:15:e6:45:24:9d:35:48:ec:9b:74:c9:4d:b8:86:79: b8:6f:88:13:d8:8c:d1:06:f2:61:22:4c:8b:e2:8b:71:e4:32: 45:2d:84:92:e9:81:58:64:62:a7:42:d2:e8:a5:dd:53:c4:b0: e3:d4:db:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUxMjE4MTkxNjExWhcNMjUxMjI1MTkxNjExWjAYMRYwFAYD VQQDDA02OTQ0NTJmYy00MGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xlwtRQyOHPgnSD+V3H6jYz6ken3O8MOirQr441QmdsujMlV1bSUUiEY+sqz kOBK6DuFqGGwiiMd4oPYPxAl8VRv6fQAfkMU9XMazYdl3U86wb1sjBrp//k9uTSU qXS1Hrd75FF5U4mTNWfJhiCdXU9Qgd3jf8xjjWjmk3XvgXYjOPa9KSqIwDiQqu8O LNPqffA2yuwCocq6Lg68G7iOEVAEbNjdjE5NIWqXe6gVcodsrDxjCG1xkmN0iWZf DKbINtq6U6gb87PUF8BTu3snLjk9DbbLxW66wsWbdyHDI2gV/3O1+1CONJ0XVX8F ZAeyKzYb6c2/BGdqg5U3YjekgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEx3/wQ s2egruYGb1mkD6uiYWhtMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW/vl2KA6Up4v/5xQfVMTIlGJTNfEiHaJhMuhdIJU4u0pInayvcT2b 7sKYmV+bEVXEk8lTl/GorKTk1z2Nsn6QxsHXuiOrUb+NrwF9e8INT76ttwmfzeGY Rnirm7qb2+Q6jCNP/i5BUdL9Ev/0skeNdv16x5/dUeg0G86Qpv5xEH4nBoB3+5J9 XfF1HHNEAzcQOWSRocK38chPDqm5zwHDeCQhIsZHCRBkDNHl/coHX4nI31kyWCHC GohBDQa40kkBr8Zg8fYB9wYV5kUknTVI7Jt0yU24hnm4b4gT2IzRBvJhIkyL4otx 5DJFLYSS6YFYZGKnQtLopd1TxLDj1Ntw -----END CERTIFICATE-----Generated at Fri Dec 19 18:58:10 2025 by rpki-client