This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: otOl3isYEsxhb/naGSam8DCbzDq/4ncXKeQFPLV3yc4= Subject key identifier: 65:3F:A8:04:DB:33:5D:1D:6B:5D:24:F2:7B:56:AD:9B:33:49:BD:39 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 087A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 0871 Signing time: Sat 20 Dec 2025 20:17:38 +0000 Manifest this update: Sat 20 Dec 2025 20:17:38 +0000 Manifest next update: Sat 27 Dec 2025 20:17:38 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: mxHWYLowhxCtn0TDsfAIoJnk+L78/cFwAZjZX+aG4fQ=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: JSXZPzGVLU9fQk71dSSSCg9QgV8dPEGUY9fKj87l+ig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Dec 20 20:17:38 2025 GMT Not After : Dec 27 20:17:38 2025 GMT Subject: CN=69470462-7f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:31:77:9c:b0:da:43:d4:e8:b2:0c:85:cc: 67:78:08:37:c4:34:89:8f:c6:47:9a:a9:a5:7a:fd: 5a:36:7c:0d:d3:d2:db:70:f8:79:64:50:59:40:d4: f3:42:d5:2e:ab:85:d9:a9:e5:19:cc:8d:89:91:f0: c4:a5:c5:8a:7d:46:5e:e6:7f:09:9c:d8:8e:32:a6: 57:6a:fc:20:7c:9d:87:b6:94:5a:56:21:f8:18:0a: 05:ff:6a:73:15:d2:36:69:ec:a1:fe:e1:cd:4a:7e: 74:b8:14:1e:fe:95:62:35:91:83:c8:fb:57:d6:63: c6:e5:56:5d:2c:58:09:cb:24:94:0f:91:23:ea:c9: 67:d0:48:72:b9:77:b1:64:dd:96:ff:20:e6:6a:ec: 3f:dd:c2:e6:3a:20:31:52:13:39:a6:ee:08:c7:4b: 02:a0:e4:dc:a2:77:85:cb:37:88:41:24:fa:44:e2: fb:5f:29:8d:c4:53:a6:97:7a:0b:7b:96:7f:e2:c2: 95:29:4b:6e:b8:f0:00:97:42:08:8f:1b:3d:c7:c4: 42:2c:3d:d5:bd:ce:e8:87:11:8c:89:0f:5b:73:c0: d0:16:7d:17:66:3b:ee:dc:09:8a:fb:16:60:26:89: 06:65:93:0d:ee:93:65:52:f5:4e:8a:ed:3d:ef:d8: d4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3F:A8:04:DB:33:5D:1D:6B:5D:24:F2:7B:56:AD:9B:33:49:BD:39 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:85:ce:51:c7:bb:03:5c:bf:c4:33:67:11:4c:ad:0f:09:0b: 37:53:b8:cc:bc:70:20:bb:15:91:02:13:29:ea:18:92:4d:8c: ea:c9:eb:a6:84:94:71:06:cc:c8:59:5e:4b:17:6e:19:6d:0e: 43:cc:27:d3:d3:49:e0:2b:74:e5:3c:46:3a:dd:7d:07:84:de: d9:63:da:d9:24:3b:48:44:4e:ca:02:60:5e:8c:eb:ec:05:b1: 0e:92:4b:84:13:8d:20:02:59:97:3a:73:66:27:4f:e3:1f:73: 73:99:10:01:c3:6a:c4:bb:03:20:ea:eb:0f:c1:46:40:94:47: 3e:9b:b4:a4:d8:78:30:5c:b8:a6:d4:c3:00:e7:16:75:cd:ef: a9:92:f9:e7:8d:df:91:a4:6a:41:a8:ac:29:94:c0:07:7a:94: 29:c1:83:3c:31:b9:d7:2f:b8:2a:30:27:f0:aa:77:9c:1a:e1: 21:f4:c7:8d:ac:06:97:c7:82:0e:c9:61:80:de:da:14:f8:b2: 53:c8:00:86:c4:dc:42:a3:d1:51:17:eb:7a:66:54:b1:f3:bc: 59:d3:57:62:5e:7f:8f:ba:9c:55:55:b1:49:e9:27:39:60:06: 1a:ba:37:01:d0:c6:3d:56:41:6d:43:73:5b:3f:b3:b4:3e:06: 5f:e7:14:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjUxMjIwMjAxNzM4WhcNMjUxMjI3MjAxNzM4WjAYMRYwFAYD VQQDDA02OTQ3MDQ2Mi03ZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5Axd5yw2kPU6LIMhcxneAg3xDSJj8ZHmqmlev1aNnwN09LbcPh5ZFBZQNTz QtUuq4XZqeUZzI2JkfDEpcWKfUZe5n8JnNiOMqZXavwgfJ2HtpRaViH4GAoF/2pz FdI2aeyh/uHNSn50uBQe/pViNZGDyPtX1mPG5VZdLFgJyySUD5Ej6sln0EhyuXex ZN2W/yDmauw/3cLmOiAxUhM5pu4Ix0sCoOTconeFyzeIQST6ROL7XymNxFOml3oL e5Z/4sKVKUtuuPAAl0IIjxs9x8RCLD3Vvc7ohxGMiQ9bc8DQFn0XZjvu3AmK+xZg JokGZZMN7pNlUvVOiu0979jUVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGU/qATb M10da10k8ntWrZszSb05MB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOhc5Rx7sDXL/EM2cRTK0PCQs3U7jMvHAguxWRAhMp6hiSTYzqyeum hJRxBszIWV5LF24ZbQ5DzCfT00ngK3TlPEY63X0HhN7ZY9rZJDtIRE7KAmBejOvs BbEOkkuEE40gAlmXOnNmJ0/jH3NzmRABw2rEuwMg6usPwUZAlEc+m7Sk2HgwXLim 1MMA5xZ1ze+pkvnnjd+RpGpBqKwplMAHepQpwYM8MbnXL7gqMCfwqnecGuEh9MeN rAaXx4IOyWGA3toU+LJTyACGxNxCo9FRF+t6ZlSx87xZ01diXn+PupxVVbFJ6Sc5 YAYaujcB0MY9VkFtQ3NbP7O0PgZf5xTn -----END CERTIFICATE-----Generated at Sat Dec 20 23:09:59 2025 by rpki-client