This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: +xOk6ENX28AGowYTIyTudMpE+zpW31EnJhfuWJ50lGk= Subject key identifier: 9D:45:2A:B4:3C:09:C5:C3:B2:C1:AA:DC:6A:AA:BA:F2:0F:08:A1:C2 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0C29 Signing time: Thu 18 Dec 2025 18:26:33 +0000 Manifest this update: Thu 18 Dec 2025 18:26:32 +0000 Manifest next update: Thu 25 Dec 2025 18:26:32 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: pAx/tsvq4FtCdeRJddkgiamHlO8sGu1l20raCwOcNlg=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: yqFSXrSreAwWsxKHKKypXy96bJWuk7Ta+8Svfir1RMk=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: 8S+9u5NejOEqjzyGww6nqkHBEMgMZJI4JwQwHM3xtzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Dec 18 18:26:32 2025 GMT Not After : Dec 25 18:26:32 2025 GMT Subject: CN=69444758-a94a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fd:4a:9c:16:1a:43:1b:62:7f:54:a3:9f:0e: 38:80:2b:8f:9c:83:5d:50:42:7b:c6:21:85:f6:ea: 16:88:b5:04:cd:8a:b8:00:ec:dc:fb:1f:e3:cc:2f: d4:14:ab:ef:b9:72:4b:cc:31:11:d1:a8:9a:85:10: f6:3f:f4:ec:82:dd:7b:55:22:03:98:b2:d0:1d:76: 8a:e9:32:86:75:0b:12:8d:21:30:f2:f0:9c:d9:23: 98:c6:5a:87:80:b6:25:11:09:f2:e3:b9:e6:24:8f: e4:36:00:cc:09:b3:1c:db:b0:85:12:7d:db:4a:0f: 0d:16:0e:ec:02:08:92:49:05:83:6e:29:42:94:b6: bf:eb:fd:2b:f4:de:a2:53:09:10:52:b0:86:15:5b: c2:61:63:11:91:cf:48:91:54:53:dd:ae:d2:23:f0: 9f:4e:fc:52:68:2f:72:17:4f:3b:85:40:0b:bc:5c: f3:57:49:70:18:85:bc:94:61:07:3a:9d:0a:6b:b2: 1d:ad:ba:38:65:28:2a:c1:65:ec:e0:2f:6a:55:ee: f8:5a:39:fe:cd:d2:37:08:c9:1d:db:86:8d:bb:42: b6:a9:34:de:df:6b:a5:84:ce:6a:6e:38:5c:a8:6b: 3a:3b:a3:20:ef:25:33:e5:a3:e9:b3:cc:ec:f7:bf: 5d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:45:2A:B4:3C:09:C5:C3:B2:C1:AA:DC:6A:AA:BA:F2:0F:08:A1:C2 X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b3:e6:f8:77:12:5a:20:5c:4d:3f:32:0a:de:cc:20:7f:a1: 0f:7b:a1:f3:a1:d4:38:53:5f:17:bc:3b:46:c5:e0:d8:86:bd: e5:32:69:d0:c7:2c:a8:70:18:1f:1b:9a:d8:23:1e:04:58:b7: 2f:a3:31:a0:ff:0e:2c:1a:33:83:61:ed:67:16:55:aa:bf:f2: 08:f6:3e:b4:9f:21:7e:95:52:0b:fb:b5:4e:39:3a:2e:ea:98: 5f:67:a2:bb:2e:fc:f7:31:37:69:db:40:77:3b:a2:7c:c6:75: 73:20:99:a2:81:a0:07:b3:8e:eb:cb:65:ef:26:46:99:b3:56: 29:4a:4a:9f:82:20:ad:19:d6:2f:f9:6f:78:5c:ce:50:cd:11: 0e:d7:ef:12:99:24:b1:c3:93:a1:34:1e:6d:50:ce:44:9f:25: c7:f6:2f:df:58:87:b8:ea:d6:ba:d7:b8:67:ef:45:f5:2c:f3: ab:1d:ea:d8:d6:e7:64:93:fd:c9:9f:01:78:9a:66:ee:7f:03: e9:a0:9a:bb:01:11:51:f7:5e:66:df:9d:b9:cb:12:3a:0a:ec: 6f:76:16:5c:de:f2:43:c5:c8:e5:f6:37:05:e5:09:cd:4b:29: 3d:27:37:74:61:c4:e6:09:cf:d1:18:a7:a1:6c:58:17:da:fe: d4:ce:a6:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUxMjE4MTgyNjMyWhcNMjUxMjI1MTgyNjMyWjAYMRYwFAYD VQQDDA02OTQ0NDc1OC1hOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlf1KnBYaQxtif1Sjnw44gCuPnINdUEJ7xiGF9uoWiLUEzYq4AOzc+x/jzC/U FKvvuXJLzDER0aiahRD2P/Tsgt17VSIDmLLQHXaK6TKGdQsSjSEw8vCc2SOYxlqH gLYlEQny47nmJI/kNgDMCbMc27CFEn3bSg8NFg7sAgiSSQWDbilClLa/6/0r9N6i UwkQUrCGFVvCYWMRkc9IkVRT3a7SI/CfTvxSaC9yF087hUALvFzzV0lwGIW8lGEH Op0Ka7Idrbo4ZSgqwWXs4C9qVe74Wjn+zdI3CMkd24aNu0K2qTTe32ulhM5qbjhc qGs6O6Mg7yUz5aPps8zs979dnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1FKrQ8 CcXDssGq3GqquvIPCKHCMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMs+b4dxJaIFxNPzIK3swgf6EPe6HzodQ4U18XvDtGxeDYhr3lMmnQ xyyocBgfG5rYIx4EWLcvozGg/w4sGjODYe1nFlWqv/II9j60nyF+lVIL+7VOOTou 6phfZ6K7Lvz3MTdp20B3O6J8xnVzIJmigaAHs47ry2XvJkaZs1YpSkqfgiCtGdYv +W94XM5QzREO1+8SmSSxw5OhNB5tUM5EnyXH9i/fWIe46ta617hn70X1LPOrHerY 1udkk/3JnwF4mmbufwPpoJq7ARFR915m3525yxI6CuxvdhZc3vJDxcjl9jcF5QnN Syk9Jzd0YcTmCc/RGKehbFgX2v7Uzqax -----END CERTIFICATE-----Generated at Sat Dec 20 11:45:51 2025 by rpki-client