This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft File: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft (raw, json) Hash identifier: LmXeLY/97pULEck2Zl44LPYxLbBHJgeokTuWLbxZe00= Subject key identifier: 42:48:4A:D3:D8:CB:2A:9B:82:6C:0D:C8:4A:BB:03:C9:ED:8E:9B:65 Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1BC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft Manifest number: 1B83 Signing time: Sat 20 Dec 2025 16:04:25 +0000 Manifest this update: Sat 20 Dec 2025 16:04:24 +0000 Manifest next update: Sat 27 Dec 2025 16:04:24 +0000 Files and hashes: 1: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl (hash: J3BKvu5lM9XNFu4orBlAGNcwbSlmo+u9tIxk/JXVgZE=) 2: AA54657A880E11ED9BE52B17C4F9AE02.roa (hash: m7jMoGaJOamQccyHDJiW6HrfpYtQA9+C9u4Ehg8vWNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7110 (0x1bc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB, serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Validity Not Before: Dec 20 16:04:24 2025 GMT Not After : Dec 27 16:04:24 2025 GMT Subject: CN=6946c908-c46d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:48:d3:7a:6e:22:6d:c5:28:5f:15:e3:32:06: 98:88:50:7c:b1:1c:0f:e2:9d:18:63:e6:3c:12:7e: 32:27:ae:cd:b7:e3:22:53:8e:93:64:49:57:85:00: bd:c2:a7:a6:2a:5a:fd:3e:08:a7:1c:4d:df:c3:1c: 53:64:0c:70:ed:8f:2c:6d:2b:45:ba:39:8e:7c:8f: 0e:53:ab:7c:58:00:28:19:13:c8:43:b3:d0:ed:73: 5d:6e:b7:03:95:42:ef:a2:85:fc:0e:b5:bc:0e:72: 86:3a:a5:4e:0d:26:21:3c:5c:fe:94:07:93:e9:63: 9a:ce:17:63:68:9f:98:83:75:96:82:da:fe:7d:c1: 40:ca:7d:88:cb:53:42:14:09:44:30:9a:ef:4c:a9: 61:ac:02:ba:4c:26:1d:c9:6b:52:e3:2a:f6:b5:c9: 78:ad:a2:b2:e0:60:db:b5:31:7a:69:e8:6f:9b:44: 20:8e:af:fa:fc:7c:b0:e1:3f:13:9a:21:6d:c1:fe: 47:8e:ec:a8:b4:26:a6:66:ca:ce:40:4b:39:b8:ae: cf:12:11:3e:22:22:96:db:4a:be:85:ae:29:56:a2: f0:4c:4d:ec:be:b1:2a:9b:5a:c3:e0:b0:af:1c:5e: 37:f7:f4:9e:74:63:e8:5a:13:db:0f:e0:3e:2d:56: 95:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:48:4A:D3:D8:CB:2A:9B:82:6C:0D:C8:4A:BB:03:C9:ED:8E:9B:65 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:7d:19:d9:8f:1d:1f:c5:1a:16:fa:de:14:b9:29:2f:a8:34: 93:36:a1:75:ff:e3:86:63:76:3b:c0:cc:a2:f5:d6:56:e2:20: 28:40:32:67:dc:2f:aa:30:75:e5:5c:dc:2a:80:38:3e:24:93: 96:e0:7f:f9:2d:dd:0c:82:82:15:2a:9b:61:d0:5d:f5:25:28: 30:60:e1:97:5c:65:61:14:30:1c:30:bb:8b:68:98:c6:c0:30: 5a:64:c8:f7:44:67:9a:cf:df:e0:cb:c6:3b:2a:60:3b:e1:09: 67:04:94:24:c5:4e:f6:8f:15:d9:1b:32:15:c5:1b:aa:86:c3: a2:fb:2c:af:e0:37:d8:da:a7:e0:e6:41:87:b3:18:4c:ff:d1: fd:6d:f1:d7:e3:ce:b3:7f:af:07:70:85:b3:7d:34:36:9e:79: fb:91:3a:b3:8c:4f:bf:3d:a5:75:f1:5f:35:1a:7b:e1:ee:ff: 88:f7:78:39:6b:8f:43:c0:28:a9:74:1a:3c:40:af:d8:96:9d: 67:ea:93:a3:01:25:92:fd:3f:2e:0b:50:64:70:af:40:c4:f0: 5c:6f:c9:8b:1d:8e:07:db:ac:f2:2e:94:21:ca:47:41:b7:b4: ba:bc:1b:eb:02:ff:39:c3:ae:c4:a8:d8:0c:a5:a1:85:28:b4: a7:ff:6b:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjUxMjIwMTYwNDI0WhcNMjUxMjI3MTYwNDI0WjAYMRYwFAYD VQQDDA02OTQ2YzkwOC1jNDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9kjTem4ibcUoXxXjMgaYiFB8sRwP4p0YY+Y8En4yJ67Nt+MiU46TZElXhQC9 wqemKlr9PginHE3fwxxTZAxw7Y8sbStFujmOfI8OU6t8WAAoGRPIQ7PQ7XNdbrcD lULvooX8DrW8DnKGOqVODSYhPFz+lAeT6WOazhdjaJ+Yg3WWgtr+fcFAyn2Iy1NC FAlEMJrvTKlhrAK6TCYdyWtS4yr2tcl4raKy4GDbtTF6aehvm0Qgjq/6/Hyw4T8T miFtwf5HjuyotCamZsrOQEs5uK7PEhE+IiKW20q+ha4pVqLwTE3svrEqm1rD4LCv HF439/SedGPoWhPbD+A+LVaVewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJIStPY yyqbgmwNyEq7A8ntjptlMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QkVEQi81RDg2N0VCQzFGODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtM elNyak5sRTRHOTRmMEh4ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCufRnZjx0fxRoW+t4UuSkvqDSTNqF1/+OGY3Y7wMyi9dZW4iAoQDJn 3C+qMHXlXNwqgDg+JJOW4H/5Ld0MgoIVKpth0F31JSgwYOGXXGVhFDAcMLuLaJjG wDBaZMj3RGeaz9/gy8Y7KmA74QlnBJQkxU72jxXZGzIVxRuqhsOi+yyv4DfY2qfg 5kGHsxhM/9H9bfHX486zf68HcIWzfTQ2nnn7kTqzjE+/PaV18V81Gnvh7v+I93g5 a49DwCipdBo8QK/Ylp1n6pOjASWS/T8uC1BkcK9AxPBcb8mLHY4H26zyLpQhykdB t7S6vBvrAv85w67EqNgMpaGFKLSn/2ul -----END CERTIFICATE-----Generated at Mon Dec 22 07:41:38 2025 by rpki-client