This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: yHEZB+0VvvcGQyhAL7MfJAyItKLWpxXWUiA35Ikri0I= Subject key identifier: 67:2D:75:57:1C:A0:20:55:D3:CB:76:5C:A4:F0:CF:04:DD:12:C3:CB Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 06BF Signing time: Mon 22 Dec 2025 21:28:30 +0000 Manifest this update: Mon 22 Dec 2025 21:28:29 +0000 Manifest next update: Mon 29 Dec 2025 21:28:29 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: 2hDbPEQm10YhXXl0T02l5XE0WlxKZycDq1Dscqr3ZFs=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: hWP/crnjmiKRkQxu0624FvYvc5uF2iF9vYd33TXrr/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225, serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: Dec 22 21:28:29 2025 GMT Not After : Dec 29 21:28:29 2025 GMT Subject: CN=6949b7fe-2b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6a:c6:03:a1:9f:44:e8:c3:5e:3e:96:4e:ae: 46:f7:5f:4b:11:0a:67:be:50:22:d4:2f:4c:e0:f4: fb:1a:3d:9b:08:fc:1b:fe:36:8d:28:11:ea:db:af: ee:0d:6c:34:cd:43:fb:6e:23:0c:a1:93:98:01:37: c3:87:3c:5f:ab:7a:78:2d:a3:41:09:3d:3c:91:b5: 76:7e:d7:b2:33:75:82:5f:78:77:93:f2:48:62:64: 5a:4e:b3:fc:86:3d:6e:de:7c:77:d1:72:44:71:09: 13:c0:35:6c:95:43:e2:83:c8:c3:65:73:7e:d5:ea: ad:80:ae:06:3d:a4:0b:dd:5d:5a:5f:81:c9:2f:8c: d4:3e:3b:ba:c1:47:87:1b:46:5e:39:38:cc:31:6f: 80:12:3a:ef:d3:26:7f:56:21:8f:61:fa:8e:35:d8: 38:68:ff:4e:65:ce:62:d1:79:e1:a4:1d:07:ec:6b: bd:39:2b:b3:e9:d7:89:e0:ab:bf:93:40:28:ae:c8: 09:9d:ca:5c:a8:23:45:0e:94:d7:73:1e:36:e6:60: cd:50:b7:46:ec:b2:e0:f6:d4:49:99:14:6b:1f:94: 73:ee:67:97:6c:df:2e:97:fd:d0:d3:99:31:6e:74: 22:3d:7e:25:dd:c5:7d:0b:74:a4:33:ad:7b:31:6c: 9c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2D:75:57:1C:A0:20:55:D3:CB:76:5C:A4:F0:CF:04:DD:12:C3:CB X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:4c:94:95:64:ea:9a:06:62:03:6b:d8:5f:e6:a9:72:cb:85: ac:d5:31:6d:36:72:11:7c:52:e9:50:05:02:c6:1f:de:4e:be: b3:3d:0e:0d:2b:d0:62:fd:5d:a0:af:05:99:e7:a6:2b:af:88: 7c:67:95:12:9d:f1:a8:dc:bb:d3:3c:37:33:5c:19:5a:54:b7: ed:2d:01:9b:d6:fc:22:e8:07:47:ed:ef:3f:66:7f:c0:a5:4d: 93:28:70:b7:10:a9:e3:eb:fb:5b:ef:cd:06:cf:42:28:eb:10: 74:94:71:1a:92:ba:84:29:ef:f5:89:07:1c:a9:3d:79:e2:f8: 7f:b2:be:7c:13:06:63:cb:fb:65:c4:45:c4:1d:f1:1a:c2:99: 12:22:ec:f6:1b:f5:a0:ca:28:25:84:92:2c:a5:b0:4e:18:72: 49:1b:9e:c2:21:37:89:83:95:2a:5e:69:5e:61:83:db:1e:68: 48:28:93:a6:68:e9:70:c3:94:3a:27:59:93:d3:5d:7a:00:59: be:5e:d3:2b:44:b4:b4:c9:10:da:1b:01:62:2e:e6:93:0e:d3: e3:be:89:c8:42:08:f4:60:e3:b7:52:94:35:64:a9:9a:a4:67: 4f:55:94:d1:5c:4b:8f:14:bc:93:0d:8e:9b:2a:3d:cb:33:c3: f6:8a:af:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjUxMjIyMjEyODI5WhcNMjUxMjI5MjEyODI5WjAYMRYwFAYD VQQDDA02OTQ5YjdmZS0yYjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmrGA6GfROjDXj6WTq5G919LEQpnvlAi1C9M4PT7Gj2bCPwb/jaNKBHq26/u DWw0zUP7biMMoZOYATfDhzxfq3p4LaNBCT08kbV2fteyM3WCX3h3k/JIYmRaTrP8 hj1u3nx30XJEcQkTwDVslUPig8jDZXN+1eqtgK4GPaQL3V1aX4HJL4zUPju6wUeH G0ZeOTjMMW+AEjrv0yZ/ViGPYfqONdg4aP9OZc5i0XnhpB0H7Gu9OSuz6deJ4Ku/ k0AorsgJncpcqCNFDpTXcx425mDNULdG7LLg9tRJmRRrH5Rz7meXbN8ul/3Q05kx bnQiPX4l3cV9C3SkM617MWyc7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGctdVcc oCBV08t2XKTwzwTdEsPLMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQTJSVZOqaBmIDa9hf5qlyy4Ws1TFtNnIRfFLpUAUCxh/eTr6zPQ4N K9Bi/V2grwWZ56Yrr4h8Z5USnfGo3LvTPDczXBlaVLftLQGb1vwi6AdH7e8/Zn/A pU2TKHC3EKnj6/tb780Gz0Io6xB0lHEakrqEKe/1iQccqT154vh/sr58EwZjy/tl xEXEHfEawpkSIuz2G/WgyiglhJIspbBOGHJJG57CITeJg5UqXmleYYPbHmhIKJOm aOlww5Q6J1mT0116AFm+XtMrRLS0yRDaGwFiLuaTDtPjvonIQgj0YOO3UpQ1ZKma pGdPVZTRXEuPFLyTDY6bKj3LM8P2iq/0 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:31 2025 by rpki-client