This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft File: H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft (raw, json) Hash identifier: 2SDUK0EQkCp4fC1HXjk7bwQHFFMT4un1+7Osg4c9y4k= Subject key identifier: F7:97:62:DB:75:5E:85:09:6F:E4:6D:B3:FF:A2:7D:C7:90:46:0C:BB Authority key identifier: 1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 Certificate issuer: /CN=A91F8282/serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft Manifest number: 96 Signing time: Sun 21 Dec 2025 05:33:54 +0000 Manifest this update: Sun 21 Dec 2025 05:33:54 +0000 Manifest next update: Sun 28 Dec 2025 05:33:54 +0000 Files and hashes: 1: H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl (hash: 1adTWMNIzL/bkOGUMliT3KSlc5cRw0Fn4vc2zK7imkE=) 2: 0664C974FEF811EFB0C52572C4F9AE02.roa (hash: qw98EXKpwezEJaUdjFxnME0guuBGI/INe4GkxMZV/98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Validity Not Before: Dec 21 05:33:54 2025 GMT Not After : Dec 28 05:33:54 2025 GMT Subject: CN=694786c2-7ac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:81:87:98:b4:1b:e4:3b:21:dd:9c:0d:d8:c3: 21:62:67:75:1a:cc:b4:5f:05:25:8c:88:1b:ed:b7: 0b:ad:c6:a8:a2:02:01:72:d6:55:ba:1f:a8:2f:c0: 9e:78:12:ec:b6:37:1c:53:a6:b0:3f:37:aa:6f:f2: 3b:20:21:04:79:80:f2:35:d2:f9:c4:15:44:df:a3: d5:78:20:c7:fe:80:d1:85:b7:df:58:f9:e2:09:d7: 10:7d:ea:cb:6f:99:e3:8f:d3:5b:6f:69:86:50:8a: 2b:dc:81:9d:d8:11:e7:9a:4a:28:fd:b8:0f:da:92: c8:38:ba:5a:ce:30:06:53:50:ec:58:39:c5:5c:f9: 2b:b4:d4:f2:02:b2:1a:46:e4:cd:3a:d2:b8:f1:6b: da:f3:d5:3f:e3:e2:d0:fb:a7:bb:6a:6d:37:c5:85: f0:39:10:19:4d:07:1d:fc:54:ba:12:23:b4:81:19: cd:2c:4b:57:07:8a:c2:0e:1d:fb:79:d0:1d:2d:a9: 45:43:18:ed:10:0f:42:32:53:66:7c:cc:53:78:3e: 08:15:12:50:3f:3f:68:16:21:d7:1a:e4:6d:8a:55: ed:61:a6:c1:73:d6:ae:70:cc:44:10:5b:8d:f5:27: e5:5d:a6:47:54:e9:95:54:4f:a6:b8:d9:36:a3:05: 9a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:97:62:DB:75:5E:85:09:6F:E4:6D:B3:FF:A2:7D:C7:90:46:0C:BB X509v3 Authority Key Identifier: keyid:1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:9d:f1:f8:d1:f7:12:22:49:d7:17:0a:b3:a6:7e:f3:b3:c6: 18:e6:3e:b0:26:b1:03:45:b0:a3:0c:64:21:6e:90:7d:85:64: da:31:ca:0d:e5:d2:34:42:b5:d1:4b:a1:27:0d:47:ae:af:52: a5:40:e9:75:05:d7:2c:ce:38:e8:f5:7f:2d:b6:ca:46:44:e7: d4:f7:97:74:eb:6b:f2:ea:34:85:78:c4:ab:8b:15:8b:cd:b3: a8:d4:a0:87:ad:e4:91:00:49:bd:fb:78:d6:73:c1:f1:31:1a: 72:59:b6:0e:bd:3f:e4:c0:c1:2b:89:e8:9e:c9:74:a9:1c:1b: 04:9a:17:40:65:26:b3:76:0b:47:16:b6:95:a6:ef:0e:20:a4: 2d:9c:c7:0c:b5:da:23:81:b3:08:9c:77:ed:61:7b:ee:39:84: 1f:c4:54:2c:e9:57:3f:81:df:70:28:f9:7f:6d:e2:01:cf:7e: f6:4e:ba:50:83:fc:59:c1:ad:34:8d:a3:25:18:38:79:7d:6b: 58:14:0f:b8:8e:e4:4f:d3:51:79:91:7d:c4:e3:ce:4a:2c:cb: c9:f2:0e:dc:32:f7:45:63:c3:63:03:c3:f4:65:a4:ad:2c:63: fc:cf:9e:50:2b:27:f8:3e:14:76:91:5f:96:48:87:0f:8f:bf: 9f:f9:24:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyODIxMTAvBgNVBAUTKDFGNERDRTM0MzlCMUY0MDM1RkZGOEM3MUNFMzU5RTVE MjBFNjlBMjQwHhcNMjUxMjIxMDUzMzU0WhcNMjUxMjI4MDUzMzU0WjAYMRYwFAYD VQQDDA02OTQ3ODZjMi03YWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoGHmLQb5Dsh3ZwN2MMhYmd1Gsy0XwUljIgb7bcLrcaoogIBctZVuh+oL8Ce eBLstjccU6awPzeqb/I7ICEEeYDyNdL5xBVE36PVeCDH/oDRhbffWPniCdcQferL b5njj9Nbb2mGUIor3IGd2BHnmkoo/bgP2pLIOLpazjAGU1DsWDnFXPkrtNTyArIa RuTNOtK48Wva89U/4+LQ+6e7am03xYXwORAZTQcd/FS6EiO0gRnNLEtXB4rCDh37 edAdLalFQxjtEA9CMlNmfMxTeD4IFRJQPz9oFiHXGuRtilXtYabBc9aucMxEEFuN 9SflXaZHVOmVVE+muNk2owWaKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPeXYtt1 XoUJb+Rts/+ifceQRgy7MB8GA1UdIwQYMBaAFB9NzjQ5sfQDX/+Mcc41nl0g5pok MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODI4Mi8yRjI1M0MxQUZC RkUxMUVGQjU1MjBBMTJDNEY5QUUwMi9IMDNPTkRteDlBTmZfNHh4empXZVhTRG1t aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0gwM09ORG14OUFOZl80eHh6aldlWFNEbW1pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODI4Mi8yRjI1M0MxQUZCRkUxMUVGQjU1MjBBMTJDNEY5QUUwMi9IMDNPTkRteDlB TmZfNHh4empXZVhTRG1taVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRnfH40fcSIknXFwqzpn7zs8YY5j6wJrEDRbCjDGQhbpB9hWTaMcoN 5dI0QrXRS6EnDUeur1KlQOl1Bdcszjjo9X8ttspGROfU95d062vy6jSFeMSrixWL zbOo1KCHreSRAEm9+3jWc8HxMRpyWbYOvT/kwMErieieyXSpHBsEmhdAZSazdgtH FraVpu8OIKQtnMcMtdojgbMInHftYXvuOYQfxFQs6Vc/gd9wKPl/beIBz372TrpQ g/xZwa00jaMlGDh5fWtYFA+4juRP01F5kX3E485KLMvJ8g7cMvdFY8NjA8P0ZaSt LGP8z55QKyf4PhR2kV+WSIcPj7+f+SSj -----END CERTIFICATE-----Generated at Mon Dec 22 19:11:48 2025 by rpki-client