This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: 7euUQYwRbkRmu3/Dz6xMgMJXxZYmBUMFlKJH5vqnpHA= Subject key identifier: 5C:E5:9B:C4:82:FD:2E:81:0B:9F:F1:85:ED:53:EF:97:70:86:18:51 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 018D Signing time: Tue 23 Dec 2025 02:31:42 +0000 Manifest this update: Tue 23 Dec 2025 02:31:42 +0000 Manifest next update: Tue 30 Dec 2025 02:31:42 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: 9wgOl89rSognMIDXHvQ4Gyc3+cVbHJoRR3Hq+ImnoE0=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Dec 23 02:31:42 2025 GMT Not After : Dec 30 02:31:42 2025 GMT Subject: CN=6949ff0e-92fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3f:b2:f0:2c:31:39:26:da:e8:05:ce:4f:d9: 94:fe:c0:5e:ee:bc:f4:17:92:1e:15:82:15:97:97: 90:dd:c9:9f:41:ca:b2:0c:57:68:99:20:eb:e9:45: 57:e2:99:74:46:af:9f:05:2b:a0:f1:d5:ee:2f:6a: 39:48:f9:91:83:17:44:99:5c:00:1b:6f:bd:d7:40: ad:ea:93:67:f5:c4:86:d3:2d:8f:44:66:0d:3e:f9: f6:00:5c:d5:6f:0c:bd:57:cc:8b:bb:dc:40:12:57: 7b:f5:18:38:36:c5:b6:9c:35:b2:42:cb:54:b5:96: 25:b0:ba:24:79:9a:fd:76:2a:6d:53:9b:36:bb:15: 9b:65:79:20:f9:2b:53:d9:d2:1a:f3:7a:9f:2d:9c: c2:a6:c2:3b:ee:83:f7:fe:bb:64:cd:d6:c7:cf:33: 7b:1f:c7:21:3c:30:79:29:56:f6:75:cc:76:36:e7: 8a:23:a1:f4:08:c7:6f:3b:1f:e5:6d:83:91:88:f3: ec:d3:ab:61:50:bb:70:83:fe:0b:ee:06:df:c3:29: 15:b4:a5:69:66:70:5c:15:5d:3b:ce:e1:33:2e:e6: 2f:16:f3:0a:2d:3c:1c:20:33:8a:9d:b5:8f:96:1e: d4:76:96:71:8b:e1:7f:fc:dd:fb:f5:fb:cf:2f:a6: 90:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E5:9B:C4:82:FD:2E:81:0B:9F:F1:85:ED:53:EF:97:70:86:18:51 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:4a:2b:8d:95:89:bf:cf:d7:c8:01:46:5b:92:c1:34:e8:d2: 4e:9d:32:36:9a:6d:35:ec:54:94:53:79:28:18:45:fa:6d:a2: e4:00:17:88:ea:b9:3b:13:ae:3a:18:54:2a:56:5a:03:7a:7a: 3b:d2:05:18:e2:1b:78:84:9f:15:5e:0e:c7:ab:98:b5:4a:00: d2:98:c4:b0:06:f6:8c:81:20:a0:ba:fc:10:7b:b5:8b:67:67: ed:89:c2:1f:f1:83:1a:c5:1b:fd:cd:8a:95:6f:32:b5:40:71: fb:e0:a7:d7:2d:99:4a:32:f4:6f:56:67:e6:0c:e3:2a:43:56: 5d:12:4e:04:06:e8:ad:c8:ed:e3:a1:9e:01:72:b7:57:2e:a4: 4d:fc:07:18:e0:2f:b7:da:a6:74:86:0a:3b:01:2d:1a:31:b7: 95:27:f9:4a:6d:fa:f1:64:e9:89:c9:46:64:25:5e:d7:98:4a: 63:ea:2e:63:fb:d5:bc:6e:2c:3d:da:ba:17:7e:91:fd:ec:5d: 59:00:1b:e3:2d:ed:ba:e6:3b:50:a1:da:cf:5a:61:3d:46:dc: aa:4c:00:ce:be:2b:eb:c8:bf:3a:d9:87:7c:13:02:63:8a:53: 01:f1:68:28:23:0c:09:9b:4c:8c:15:a9:37:50:ae:96:69:21: 53:b2:db:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUxMjIzMDIzMTQyWhcNMjUxMjMwMDIzMTQyWjAYMRYwFAYD VQQDDA02OTQ5ZmYwZS05MmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwD+y8CwxOSba6AXOT9mU/sBe7rz0F5IeFYIVl5eQ3cmfQcqyDFdomSDr6UVX 4pl0Rq+fBSug8dXuL2o5SPmRgxdEmVwAG2+910Ct6pNn9cSG0y2PRGYNPvn2AFzV bwy9V8yLu9xAEld79Rg4NsW2nDWyQstUtZYlsLokeZr9diptU5s2uxWbZXkg+StT 2dIa83qfLZzCpsI77oP3/rtkzdbHzzN7H8chPDB5KVb2dcx2NueKI6H0CMdvOx/l bYORiPPs06thULtwg/4L7gbfwykVtKVpZnBcFV07zuEzLuYvFvMKLTwcIDOKnbWP lh7UdpZxi+F//N379fvPL6aQvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzlm8SC /S6BC5/xhe1T75dwhhhRMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMSiuNlYm/z9fIAUZbksE06NJOnTI2mm017FSUU3koGEX6baLkABeI 6rk7E646GFQqVloDeno70gUY4ht4hJ8VXg7Hq5i1SgDSmMSwBvaMgSCguvwQe7WL Z2fticIf8YMaxRv9zYqVbzK1QHH74KfXLZlKMvRvVmfmDOMqQ1ZdEk4EBuityO3j oZ4BcrdXLqRN/AcY4C+32qZ0hgo7AS0aMbeVJ/lKbfrxZOmJyUZkJV7XmEpj6i5j +9W8biw92roXfpH97F1ZABvjLe265jtQodrPWmE9RtyqTADOvivryL862Yd8EwJj ilMB8WgoIwwJm0yMFak3UK6WaSFTstuH -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:43 2025 by rpki-client