This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft File: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft (raw, json) Hash identifier: 3QKX83sClVdBxXut479b5dT+pQniD579ngVb5/SAFVg= Subject key identifier: 7A:01:48:45:49:D9:4D:37:C4:E2:EF:C0:D3:96:D1:C9:0C:F2:3C:1F Authority key identifier: 1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C Certificate issuer: /CN=A91F7BE4/serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Certificate serial: 104A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft Manifest number: 1040 Signing time: Thu 18 Dec 2025 17:14:49 +0000 Manifest this update: Thu 18 Dec 2025 17:14:48 +0000 Manifest next update: Thu 25 Dec 2025 17:14:48 +0000 Files and hashes: 1: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl (hash: PuaqIx3/FVdV8yzvcmAiQxlELXH9N8Qi4nYfw6u3kEI=) 2: DB63DD0C511311E998B6E814C4F9AE02.roa (hash: C6D3XzDSLt3OsrdqaJczrZOT46rffzR9T87fEcqPayY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4170 (0x104a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7BE4, serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Validity Not Before: Dec 18 17:14:48 2025 GMT Not After : Dec 25 17:14:48 2025 GMT Subject: CN=69443688-407d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6a:9e:35:e2:45:4c:31:15:a1:fc:af:56:f6: 06:6d:9b:d6:61:19:40:e4:37:87:4d:c2:31:94:0c: 56:73:de:be:64:fd:6b:80:28:81:dc:4c:2a:00:c2: 7a:10:03:6e:5e:04:74:6d:8c:17:e8:57:af:38:5b: c2:f2:d0:d6:6b:82:9c:a8:6f:8f:a2:49:6e:90:ab: fa:05:f7:14:24:d7:bd:06:6b:69:89:62:08:db:fe: dc:99:47:74:46:ca:6d:8f:b1:7d:a6:b1:f2:41:c7: 47:09:92:df:e5:45:b3:01:bc:c5:e7:89:4d:7b:c4: 7d:c9:2b:fe:3a:b3:c4:0e:79:54:8f:2c:ed:4d:8a: b5:3f:63:7b:dd:c4:15:c5:71:cb:26:28:f8:cb:4e: f9:50:a7:23:2d:a6:f4:ea:58:66:19:7c:f9:cb:87: 88:d7:9e:26:3b:7f:b8:a1:d1:27:29:a5:bf:81:0d: 90:b0:37:78:fd:d1:0b:2b:78:e7:93:54:e8:db:0a: 45:b0:92:59:56:e2:cd:ad:37:72:54:91:ce:1d:0a: 84:8c:59:39:d9:f5:50:bf:39:06:df:66:62:0c:37: 7f:2e:d1:46:a7:bd:8a:95:5c:96:36:bf:6b:48:b8: 4a:ea:f9:7f:eb:8d:ce:e4:ff:85:5e:33:6b:c4:c2: 3b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:01:48:45:49:D9:4D:37:C4:E2:EF:C0:D3:96:D1:C9:0C:F2:3C:1F X509v3 Authority Key Identifier: keyid:1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:d1:c3:30:2f:1c:2a:f7:17:b8:ff:57:f8:ee:6e:77:f0:85: 9b:2a:14:81:aa:ed:ed:38:b4:44:44:60:54:0d:db:11:fd:b5: b2:87:14:a8:02:66:41:b2:76:3f:79:af:8b:6c:3f:e0:e1:93: 16:b5:89:f8:d6:6b:bb:58:6c:0d:e2:d9:ab:99:fe:e6:9a:14: c8:27:43:cb:7d:39:04:36:85:f1:8b:49:d8:53:ca:75:d3:68: ac:37:1c:92:54:75:27:93:9f:03:01:26:54:70:f7:38:97:4b: bd:d1:17:4d:e5:02:ab:da:b0:88:3f:4a:3a:42:98:f7:34:59: ec:d2:f0:0e:66:9e:45:43:49:ff:f9:a3:29:d3:59:43:42:91: 6c:fb:1c:35:78:26:75:b9:dc:f3:7c:df:e6:d7:5b:dc:d4:bf: ff:e6:d0:7f:e7:b6:a1:a2:2f:db:e6:50:34:6d:ed:86:4e:fd: 96:f6:f6:20:e9:3d:11:8f:f8:c3:02:bc:77:30:75:80:a9:41: bc:ac:ed:b0:08:d4:b8:d2:e0:f4:35:c9:89:3a:0e:ff:44:38: 95:5c:dd:db:38:c7:2b:ea:ba:35:f0:91:ad:6b:ce:77:e5:49: 74:53:f2:1a:c1:eb:2f:27:ea:e4:28:18:83:72:cc:ba:19:e5: 6c:47:a4:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdCRTQxMTAvBgNVBAUTKDFFNkIzOTQ0QjY3ODhFOTBFOTk3RDhBOEU4MDY3QzU5 NjlCODg5OEMwHhcNMjUxMjE4MTcxNDQ4WhcNMjUxMjI1MTcxNDQ4WjAYMRYwFAYD VQQDDA02OTQ0MzY4OC00MDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmqeNeJFTDEVofyvVvYGbZvWYRlA5DeHTcIxlAxWc96+ZP1rgCiB3EwqAMJ6 EANuXgR0bYwX6FevOFvC8tDWa4KcqG+PoklukKv6BfcUJNe9BmtpiWII2/7cmUd0 Rsptj7F9prHyQcdHCZLf5UWzAbzF54lNe8R9ySv+OrPEDnlUjyztTYq1P2N73cQV xXHLJij4y075UKcjLab06lhmGXz5y4eI154mO3+4odEnKaW/gQ2QsDd4/dELK3jn k1To2wpFsJJZVuLNrTdyVJHOHQqEjFk52fVQvzkG32ZiDDd/LtFGp72KlVyWNr9r SLhK6vl/643O5P+FXjNrxMI71wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoBSEVJ 2U03xOLvwNOW0ckM8jwfMB8GA1UdIwQYMBaAFB5rOUS2eI6Q6ZfYqOgGfFlpuImM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0JFNC9BMDYzMDVDMjUx MTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpwRHBsOWlvNkFaOFdXbTRp WXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htczVSTFo0anBEcGw5aW82QVo4V1dtNGlZdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0JFNC9BMDYzMDVDMjUxMTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpw RHBsOWlvNkFaOFdXbTRpWXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB40cMwLxwq9xe4/1f47m538IWbKhSBqu3tOLRERGBUDdsR/bWyhxSo AmZBsnY/ea+LbD/g4ZMWtYn41mu7WGwN4tmrmf7mmhTIJ0PLfTkENoXxi0nYU8p1 02isNxySVHUnk58DASZUcPc4l0u90RdN5QKr2rCIP0o6Qpj3NFns0vAOZp5FQ0n/ +aMp01lDQpFs+xw1eCZ1udzzfN/m11vc1L//5tB/57ahoi/b5lA0be2GTv2W9vYg 6T0Rj/jDArx3MHWAqUG8rO2wCNS40uD0NcmJOg7/RDiVXN3bOMcr6ro18JGta853 5Ul0U/IawesvJ+rkKBiDcsy6GeVsR6SX -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:01 2025 by rpki-client