This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: gXcB2yrZqKVKb5gWTh7Un+E54DBPmnXGAEkcCwPbAAg= Subject key identifier: 5C:EC:03:98:A8:6A:09:10:29:5E:E0:2E:BA:DF:9E:4E:FB:6A:E3:30 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 157D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 156C Signing time: Thu 18 Dec 2025 16:39:34 +0000 Manifest this update: Thu 18 Dec 2025 16:39:33 +0000 Manifest next update: Thu 25 Dec 2025 16:39:33 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: 7wFI0aRIDMdEgpnC4fTN+lx/H8aVAhK/aEtsRGzQvWE=) 2: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) 3: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5501 (0x157d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Dec 18 16:39:33 2025 GMT Not After : Dec 25 16:39:33 2025 GMT Subject: CN=69442e46-a76e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ed:22:80:ea:9f:81:33:78:ef:5f:16:23:39: 06:4f:3e:cd:8e:4f:b3:8c:9f:b8:6e:78:8a:63:3d: d6:26:d4:7c:76:ca:f4:eb:cc:2b:e5:44:9c:0e:fb: 7c:59:0d:59:e7:11:89:96:1d:25:37:52:3f:29:ae: d3:ca:84:9e:88:e4:25:75:a7:4d:40:d5:7d:5d:a7: 02:8e:3a:8d:60:16:75:93:f3:b2:5f:cf:04:b6:83: ef:13:c0:60:af:a5:c1:f0:99:0f:ac:92:81:1d:c2: 6b:bd:71:9d:32:2b:7c:76:57:44:9f:75:0d:27:6f: 01:69:20:c2:49:47:ef:d4:fe:27:13:28:4d:85:54: 45:38:21:7b:28:29:cd:2d:4f:6b:1d:6d:50:30:8c: 7d:d6:1f:de:98:34:34:d7:ea:9c:5e:70:a5:f4:39: 82:58:15:9f:fd:7f:0f:7e:2e:b6:f0:ae:b0:65:c5: 5e:7f:d2:a6:b4:26:4b:09:d4:74:6d:ba:de:ef:5d: fd:cc:c4:5f:27:c0:3e:c2:90:fa:70:fd:da:21:47: 78:3d:62:99:b3:dd:43:9e:aa:0d:4e:20:c0:fd:b4: 6b:65:f3:be:b9:48:7d:69:97:a9:65:14:e2:b6:82: a6:92:4f:de:06:d3:44:ef:aa:b7:71:2d:9d:23:15: c8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:EC:03:98:A8:6A:09:10:29:5E:E0:2E:BA:DF:9E:4E:FB:6A:E3:30 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:e4:55:13:91:17:c2:de:54:3b:7b:c8:3f:1e:d3:a2:85:55: 22:29:eb:34:97:84:e4:15:94:f3:2d:ba:a9:e8:ac:74:b6:66: 05:d4:3e:c0:84:6c:75:d5:26:bc:3f:99:6c:7b:70:be:2d:2d: 4d:f5:00:08:9e:67:af:b4:65:94:14:8f:da:e3:ac:26:dc:4e: da:a4:e1:e8:12:3f:c1:15:1c:ac:17:d2:2e:ac:23:d7:5a:94: c9:e2:88:e5:d2:4a:18:fb:4e:44:16:29:ab:b3:4c:74:a7:a3: 1e:ea:bb:88:a6:b2:33:4e:08:e0:63:54:8b:a9:a2:a6:e4:87: 73:5b:f9:99:f6:a8:30:af:3d:8e:62:60:a1:4b:2d:cf:a8:25: 0d:f8:12:f7:b6:1f:53:14:3c:02:17:9e:b1:65:f4:f7:c4:bd: 8b:a6:03:06:e3:c4:2c:77:54:08:4a:0c:84:fe:dd:b7:d6:bd: 3d:ad:aa:ad:e8:f9:ba:f1:8e:77:64:92:26:d4:70:fa:f5:f1: 2c:38:81:40:64:75:44:b2:4a:57:3e:a5:20:a9:d4:01:2e:18: d7:12:24:b1:62:34:8c:a6:31:83:03:f7:59:b5:c4:7b:7b:60: 2c:d2:59:e7:42:5f:2d:3d:87:20:6a:7a:2f:eb:f8:2e:92:a7: 14:9d:81:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUxMjE4MTYzOTMzWhcNMjUxMjI1MTYzOTMzWjAYMRYwFAYD VQQDDA02OTQ0MmU0Ni1hNzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+0igOqfgTN4718WIzkGTz7Njk+zjJ+4bniKYz3WJtR8dsr068wr5UScDvt8 WQ1Z5xGJlh0lN1I/Ka7TyoSeiOQldadNQNV9XacCjjqNYBZ1k/OyX88EtoPvE8Bg r6XB8JkPrJKBHcJrvXGdMit8dldEn3UNJ28BaSDCSUfv1P4nEyhNhVRFOCF7KCnN LU9rHW1QMIx91h/emDQ01+qcXnCl9DmCWBWf/X8Pfi628K6wZcVef9KmtCZLCdR0 bbre7139zMRfJ8A+wpD6cP3aIUd4PWKZs91DnqoNTiDA/bRrZfO+uUh9aZepZRTi toKmkk/eBtNE76q3cS2dIxXItwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzsA5io agkQKV7gLrrfnk77auMwMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi5FUTkRfC3lQ7e8g/HtOihVUiKes0l4TkFZTzLbqp6Kx0tmYF1D7A hGx11Sa8P5lse3C+LS1N9QAInmevtGWUFI/a46wm3E7apOHoEj/BFRysF9IurCPX WpTJ4ojl0koY+05EFimrs0x0p6Me6ruIprIzTgjgY1SLqaKm5IdzW/mZ9qgwrz2O YmChSy3PqCUN+BL3th9TFDwCF56xZfT3xL2LpgMG48Qsd1QISgyE/t231r09raqt 6Pm68Y53ZJIm1HD69fEsOIFAZHVEskpXPqUgqdQBLhjXEiSxYjSMpjGDA/dZtcR7 e2As0lnnQl8tPYcganov6/gukqcUnYFv -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:54 2025 by rpki-client