This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: gc3Kq6lyEPhlJB5lC2/mJmSYOeLacfnnvQ7dd4eoYaE= Subject key identifier: 9E:7B:32:22:D0:3E:44:D6:22:1A:38:05:61:D8:AD:C0:3F:99:71:AB Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0899 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 0892 Signing time: Sat 20 Dec 2025 19:57:20 +0000 Manifest this update: Sat 20 Dec 2025 19:57:20 +0000 Manifest next update: Sat 27 Dec 2025 19:57:20 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: hDjReM5+oFBcTJEY6AJndkXL73ebVRV/14Tl2xML/zI=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 8ta9HVc8kWnLyV4rQM+6TAEQnoWOLIl1eGvxCBdphDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2201 (0x899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Dec 20 19:57:20 2025 GMT Not After : Dec 27 19:57:20 2025 GMT Subject: CN=6946ffa0-68bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:ff:98:88:68:ec:d1:48:86:f9:5e:6c:ee:b8: 81:c2:fc:9f:99:33:fa:9e:48:8e:08:97:17:53:c4: 13:7a:10:2e:d8:4c:60:e5:94:e0:ac:ab:4f:fd:7d: d8:71:d9:2b:bd:5f:e9:a6:d9:4e:f3:ca:4d:c4:ad: 08:b8:42:20:71:ee:35:44:6a:09:c8:b4:e8:9a:d8: c1:23:10:b0:a2:7f:ae:8c:bf:29:0a:ff:88:a5:47: 96:23:dc:67:fe:8b:39:4d:10:12:e5:50:14:65:3f: 73:ea:c9:15:37:2b:9e:d6:10:b3:10:8f:46:27:4d: 77:3b:d5:ae:ef:15:48:95:f6:14:0b:97:b9:a9:f0: 12:c6:d2:a3:9c:f6:68:62:08:6e:67:17:5b:aa:34: 8a:54:2e:81:cb:75:f4:4b:54:9e:cb:25:40:96:6c: 1a:b5:e1:3a:a2:38:e3:2a:cf:79:bc:75:cb:13:dd: 13:ef:dd:c7:f9:01:49:1a:9d:15:14:40:65:09:f2: 19:68:a1:73:34:f8:28:bd:22:d6:db:96:f6:a0:68: 1b:56:47:c3:80:62:e3:ce:99:4b:6f:cb:b8:07:41: 50:73:f1:54:06:50:f7:ee:07:a5:fb:95:f2:df:6f: ba:27:9a:2d:51:fc:61:cb:72:6b:4c:3c:5b:b8:b5: 9f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7B:32:22:D0:3E:44:D6:22:1A:38:05:61:D8:AD:C0:3F:99:71:AB X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:96:75:eb:4c:bb:75:7f:9c:c5:d6:b8:71:3f:cb:7a:7e:fe: ee:d4:d9:33:54:c1:81:15:9f:5a:63:f7:c1:e9:cf:48:07:4e: e6:54:bc:6c:2e:8a:f9:0b:d4:64:f6:d3:f6:f1:40:e7:b2:9c: c0:82:6b:02:c2:14:50:cc:18:f7:e6:3c:ba:36:4a:3e:e9:4f: 75:3a:cc:15:cb:4d:f9:15:66:7c:b7:8c:33:c2:d2:b8:b9:52: 25:4f:d4:d7:96:ce:c1:24:f7:6e:ad:e9:d8:75:3f:89:47:7e: eb:cf:5f:59:3f:eb:20:21:79:64:35:e0:33:33:57:67:e7:5e: 3e:23:84:04:f7:bc:a1:ae:5e:22:04:a5:0a:5d:31:c2:f2:56: 09:8d:36:4b:f1:6e:f3:13:39:97:cd:e6:44:9e:40:bf:13:41: 13:c9:b1:92:bf:8e:d1:e3:15:4f:fa:38:24:ff:b0:53:b7:4b: ab:f6:f8:00:bd:27:a3:06:83:1f:af:58:4f:00:f2:c0:9f:7c: 28:58:ea:b2:30:b7:a8:37:86:39:83:4b:83:0e:0e:c1:4e:19: b0:9f:52:3c:f9:23:3a:a1:5f:bc:72:07:7d:b5:d3:8a:5a:7a: 4a:61:2d:b4:ca:de:11:8b:8e:7d:50:06:5e:26:0e:0f:f3:1f: 95:44:36:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUxMjIwMTk1NzIwWhcNMjUxMjI3MTk1NzIwWjAYMRYwFAYD VQQDDA02OTQ2ZmZhMC02OGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhP+YiGjs0UiG+V5s7riBwvyfmTP6nkiOCJcXU8QTehAu2Exg5ZTgrKtP/X3Y cdkrvV/pptlO88pNxK0IuEIgce41RGoJyLTomtjBIxCwon+ujL8pCv+IpUeWI9xn /os5TRAS5VAUZT9z6skVNyue1hCzEI9GJ013O9Wu7xVIlfYUC5e5qfASxtKjnPZo YghuZxdbqjSKVC6By3X0S1SeyyVAlmwateE6ojjjKs95vHXLE90T793H+QFJGp0V FEBlCfIZaKFzNPgovSLW25b2oGgbVkfDgGLjzplLb8u4B0FQc/FUBlD37gel+5Xy 32+6J5otUfxhy3JrTDxbuLWfVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ57MiLQ PkTWIho4BWHYrcA/mXGrMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIlnXrTLt1f5zF1rhxP8t6fv7u1NkzVMGBFZ9aY/fB6c9IB07mVLxs Lor5C9Rk9tP28UDnspzAgmsCwhRQzBj35jy6Nko+6U91OswVy035FWZ8t4wzwtK4 uVIlT9TXls7BJPdurenYdT+JR37rz19ZP+sgIXlkNeAzM1dn514+I4QE97yhrl4i BKUKXTHC8lYJjTZL8W7zEzmXzeZEnkC/E0ETybGSv47R4xVP+jgk/7BTt0ur9vgA vSejBoMfr1hPAPLAn3woWOqyMLeoN4Y5g0uDDg7BThmwn1I8+SM6oV+8cgd9tdOK WnpKYS20yt4Ri459UAZeJg4P8x+VRDap -----END CERTIFICATE-----Generated at Sat Dec 20 23:57:25 2025 by rpki-client