This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: G4Pz5PS12/oQep6r+LNiC6g+gMLcN/Ot1s5uz7MMk8A= Subject key identifier: DC:DB:70:C6:B5:02:F1:6F:49:2B:AD:3C:5C:1C:FF:F7:CE:61:48:89 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 19C6 Signing time: Mon 22 Dec 2025 16:55:35 +0000 Manifest this update: Mon 22 Dec 2025 16:55:34 +0000 Manifest next update: Mon 29 Dec 2025 16:55:34 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: QSgZEFEjYqzC0wuEkJktlUhOmdWWwV8msKN7v+TjTK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4469 (0x1175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Dec 22 16:55:34 2025 GMT Not After : Dec 29 16:55:34 2025 GMT Subject: CN=69497806-bb49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c1:ab:7a:46:cc:af:c5:da:2d:92:a1:f5:68: c6:70:6f:ca:8e:91:5b:79:92:f7:b8:6a:9a:cf:d9: 96:cb:1a:40:94:24:6d:5e:f5:97:2e:55:a8:06:9b: 35:c7:74:7b:6a:7f:e8:24:8b:f3:74:d5:66:55:35: b5:ae:d4:fc:7a:84:c9:2b:d5:6d:9f:5f:56:c7:20: 20:ee:5e:96:b8:a4:a9:6f:3e:1d:dc:50:3b:e9:a6: bf:fc:9a:32:8f:fd:a6:88:ec:7f:59:09:38:83:3f: ba:bb:47:0b:fc:9e:89:81:b7:41:3d:43:4a:9f:a9: 29:01:cd:ce:7a:49:ed:89:73:37:43:08:52:ea:05: 6a:c3:41:11:1c:bb:0f:e0:b4:f1:3b:6e:9a:d2:c1: 92:88:55:26:d3:d4:25:aa:bb:64:57:43:23:b4:7c: 38:87:9e:c9:c4:e7:82:b1:47:2a:0b:8b:bc:43:83: 85:de:26:f9:40:a8:26:2a:10:7e:ad:cc:05:62:b1: 1f:ad:74:e3:eb:95:bd:77:1c:ba:c1:97:f1:a4:5d: 76:bd:6a:0d:d7:46:5d:0b:a3:b2:b4:34:56:20:93: bc:8d:ec:c7:05:4e:05:1a:5d:fc:ac:99:38:e6:07: 36:d8:7f:ce:43:94:16:8f:37:4d:2e:3b:9e:c9:1b: a1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DB:70:C6:B5:02:F1:6F:49:2B:AD:3C:5C:1C:FF:F7:CE:61:48:89 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:d4:98:36:33:71:c0:89:c0:72:9e:b1:42:7b:b3:8e:d2:8a: 83:2e:2b:56:4d:b6:bc:eb:86:17:15:ce:50:20:e2:1f:91:75: 65:3d:22:ac:56:a7:22:06:e8:2d:69:78:70:64:dc:93:54:35: c5:24:41:3f:50:89:6f:4c:49:b3:ae:be:07:aa:d1:44:c4:5e: c3:cd:7e:b5:af:58:5c:42:97:4a:29:01:dd:c4:47:35:ff:27: f3:df:d5:d3:39:99:a8:fa:cf:ee:67:c4:c6:9c:5c:17:51:25: b3:c0:b0:32:e5:9b:4a:70:2c:04:1c:03:7b:9b:9c:93:c9:15: 32:81:dd:a7:52:d5:72:7b:6f:66:cc:f2:02:4a:9c:66:a4:55: 00:6d:71:92:f1:39:6f:e4:46:1e:07:10:a0:e9:fb:d1:c0:a6: 85:f2:56:49:5a:0d:39:ab:5b:d1:95:f8:31:19:d3:4f:48:c5: 39:8e:57:b5:67:e6:c8:b7:b0:c3:d0:2c:6e:d9:b4:42:e1:59: 64:b4:e4:dd:99:7d:8f:79:ff:0d:15:c2:9a:a2:0a:4e:11:14: 94:39:22:eb:18:7e:97:03:52:dd:25:ac:8b:ae:7e:5f:be:00: ea:7f:b8:a7:00:8c:3b:cb:64:6f:ef:0a:35:c4:6b:79:99:24: 88:e4:39:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUxMjIyMTY1NTM0WhcNMjUxMjI5MTY1NTM0WjAYMRYwFAYD VQQDDA02OTQ5NzgwNi1iYjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8GrekbMr8XaLZKh9WjGcG/KjpFbeZL3uGqaz9mWyxpAlCRtXvWXLlWoBps1 x3R7an/oJIvzdNVmVTW1rtT8eoTJK9Vtn19WxyAg7l6WuKSpbz4d3FA76aa//Joy j/2miOx/WQk4gz+6u0cL/J6JgbdBPUNKn6kpAc3OekntiXM3QwhS6gVqw0ERHLsP 4LTxO26a0sGSiFUm09QlqrtkV0MjtHw4h57JxOeCsUcqC4u8Q4OF3ib5QKgmKhB+ rcwFYrEfrXTj65W9dxy6wZfxpF12vWoN10ZdC6OytDRWIJO8jezHBU4FGl38rJk4 5gc22H/OQ5QWjzdNLjueyRuhRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzbcMa1 AvFvSSutPFwc//fOYUiJMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj1Jg2M3HAicBynrFCe7OO0oqDLitWTba864YXFc5QIOIfkXVlPSKs VqciBugtaXhwZNyTVDXFJEE/UIlvTEmzrr4HqtFExF7DzX61r1hcQpdKKQHdxEc1 /yfz39XTOZmo+s/uZ8TGnFwXUSWzwLAy5ZtKcCwEHAN7m5yTyRUygd2nUtVye29m zPICSpxmpFUAbXGS8Tlv5EYeBxCg6fvRwKaF8lZJWg05q1vRlfgxGdNPSMU5jle1 Z+bIt7DD0Cxu2bRC4VlktOTdmX2Pef8NFcKaogpOERSUOSLrGH6XA1LdJayLrn5f vgDqf7inAIw7y2Rv7wo1xGt5mSSI5Dla -----END CERTIFICATE-----Generated at Tue Dec 23 14:54:46 2025 by rpki-client