This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: ZDh925EaC6kd4beveNLW77uUiSzfSztGLpmXREHr6+w= Subject key identifier: 16:71:80:51:82:90:75:CF:92:45:46:69:11:9C:95:97:E1:39:25:8C Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0849 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0834 Signing time: Tue 16 Dec 2025 20:26:00 +0000 Manifest this update: Tue 16 Dec 2025 20:26:00 +0000 Manifest next update: Tue 23 Dec 2025 20:26:00 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: 4MauX0deDss6/pZPWeYR0y2KAH+LfwRrKWTcslTf7Jk=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 20:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Dec 16 20:26:00 2025 GMT Not After : Dec 23 20:26:00 2025 GMT Subject: CN=6941c058-10f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:48:17:90:e9:e3:fc:19:49:f2:da:68:f6:04: de:d5:5c:4e:e3:a5:cf:7a:4b:30:1d:58:9a:37:e2: a7:e5:41:5f:9a:55:12:58:fb:d9:6b:61:fe:dc:6f: 56:75:bc:45:81:eb:26:55:dd:8e:7d:94:e8:59:23: 09:c1:9b:5c:aa:62:32:c7:ac:40:e6:7f:46:68:56: 41:b7:b4:12:b9:f7:6b:3e:e0:03:42:f7:ba:de:75: d4:17:5c:df:6c:e3:dd:d0:17:ed:36:28:ce:a5:e4: b4:f9:09:31:a6:55:91:9d:b9:f0:dd:aa:29:28:d4: 1a:da:27:b6:ec:5f:ac:b6:fd:df:97:f2:fc:be:6b: b7:19:b2:a2:13:d5:76:43:54:f4:9a:3d:23:29:9e: f9:2f:2c:00:7c:39:fb:e0:0b:86:56:cb:c1:e7:eb: 94:c1:60:e2:12:06:46:d2:3e:1c:f0:59:cf:36:4c: fe:71:37:5f:b5:d8:dd:5d:2a:4b:03:45:bc:0c:d1: 0d:36:7e:51:2a:05:85:6d:22:39:24:b9:a3:e9:3f: 22:18:e5:e5:61:05:89:92:3e:aa:30:f8:b2:66:f4: d3:73:97:f8:67:51:40:e4:c7:a7:45:44:ab:2f:3d: 55:d1:6d:81:02:4f:39:d9:89:ec:1f:c3:85:b0:75: 9d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:71:80:51:82:90:75:CF:92:45:46:69:11:9C:95:97:E1:39:25:8C X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:96:59:e2:77:41:18:ba:f9:ab:0f:8e:d4:7c:48:1f:f7:d2: 6b:8c:77:f0:3a:e8:72:2b:b4:51:89:26:48:8e:b6:07:11:47: fc:06:0c:c6:8b:97:97:40:ac:2e:20:98:e7:93:9d:62:72:e1: 0e:57:25:08:59:d6:70:12:74:93:a7:82:8e:52:28:ce:d8:d6: 6a:7b:60:78:2a:90:e7:95:a7:83:3b:7b:c7:ee:3d:8e:56:d2: 7c:2d:73:28:cc:55:fd:59:1c:00:6c:e9:e4:fe:7c:bc:c1:c2: 38:34:13:68:4d:12:d7:11:64:f3:95:e1:50:23:3e:e8:57:eb: fb:b5:1c:14:33:ad:2d:5b:80:d3:c4:7d:cc:46:76:41:05:f6: 48:8a:42:70:3c:20:34:12:d1:a6:36:cf:1b:c5:2e:5e:de:64: a2:18:4e:94:e8:41:3e:f6:10:79:7e:be:cc:57:67:c1:1a:14: cd:d6:36:30:6d:4f:78:5c:93:f5:16:09:b9:99:44:ea:3c:b9: 3d:2b:8a:79:54:80:76:b2:7a:ce:0d:e5:a9:ab:f4:81:ae:64: 6d:0b:37:b3:00:8b:4a:c1:92:59:5f:c2:59:99:3d:e6:f7:8b: ca:38:bd:e8:0a:c5:7e:29:56:c5:e3:b5:23:3b:29:2c:b2:27: 98:83:0a:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUxMjE2MjAyNjAwWhcNMjUxMjIzMjAyNjAwWjAYMRYwFAYD VQQDDA02OTQxYzA1OC0xMGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskgXkOnj/BlJ8tpo9gTe1VxO46XPekswHViaN+Kn5UFfmlUSWPvZa2H+3G9W dbxFgesmVd2OfZToWSMJwZtcqmIyx6xA5n9GaFZBt7QSufdrPuADQve63nXUF1zf bOPd0BftNijOpeS0+QkxplWRnbnw3aopKNQa2ie27F+stv3fl/L8vmu3GbKiE9V2 Q1T0mj0jKZ75LywAfDn74AuGVsvB5+uUwWDiEgZG0j4c8FnPNkz+cTdftdjdXSpL A0W8DNENNn5RKgWFbSI5JLmj6T8iGOXlYQWJkj6qMPiyZvTTc5f4Z1FA5MenRUSr Lz1V0W2BAk852YnsH8OFsHWdRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZxgFGC kHXPkkVGaRGclZfhOSWMMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAllnid0EYuvmrD47UfEgf99JrjHfwOuhyK7RRiSZIjrYHEUf8BgzG i5eXQKwuIJjnk51icuEOVyUIWdZwEnSTp4KOUijO2NZqe2B4KpDnlaeDO3vH7j2O VtJ8LXMozFX9WRwAbOnk/ny8wcI4NBNoTRLXEWTzleFQIz7oV+v7tRwUM60tW4DT xH3MRnZBBfZIikJwPCA0EtGmNs8bxS5e3mSiGE6U6EE+9hB5fr7MV2fBGhTN1jYw bU94XJP1Fgm5mUTqPLk9K4p5VIB2snrODeWpq/SBrmRtCzezAItKwZJZX8JZmT3m 94vKOL3oCsV+KVbF47UjOykssieYgwrV -----END CERTIFICATE-----Generated at Thu Dec 18 08:41:56 2025 by rpki-client