This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft File: HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft (raw, json) Hash identifier: rTJGvTnFU10fA/UufIYctRjG+z5LOCi+BkxQATUBsDo= Subject key identifier: 26:AA:58:72:C3:05:F3:F5:91:5E:64:3B:DB:7B:E8:58:D0:4C:72:01 Authority key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 Certificate issuer: /CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft Manifest number: 0221 Signing time: Tue 23 Dec 2025 01:25:30 +0000 Manifest this update: Tue 23 Dec 2025 01:25:30 +0000 Manifest next update: Tue 30 Dec 2025 01:25:30 +0000 Files and hashes: 1: HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl (hash: roSCgE8WyREtKXrQqO6stMXMGC/avCE5wEZaqtwkYQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913277C, serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Validity Not Before: Dec 23 01:25:30 2025 GMT Not After : Dec 30 01:25:30 2025 GMT Subject: CN=6949ef8a-60c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:69:e4:b4:b5:ab:ba:13:94:f0:f8:23:f0:b1: 41:a8:dd:9a:fd:6c:48:e9:b1:a8:1e:da:bb:c6:42: 2f:2b:7f:6d:3c:9f:6d:a6:9c:24:a2:e2:9e:a7:5d: a9:c5:02:42:c8:b1:a2:6b:17:ba:60:fc:4a:dc:19: 4d:55:28:38:85:09:ad:94:b0:24:8e:bd:da:b4:39: 4a:8f:af:8a:8e:ce:fd:df:32:a3:ec:d5:97:35:4e: 66:50:c9:f5:ad:6d:e3:7d:a0:20:14:3e:02:93:9d: 4b:6b:a1:ac:e2:d8:e2:5e:74:92:d5:d6:74:c2:ee: f0:a4:9e:58:9f:4c:0d:26:25:f3:63:8f:a0:f6:86: 9b:e4:91:60:7a:0a:e8:0f:9f:9e:05:47:83:b2:a9: 35:71:03:d2:32:0e:4c:64:43:cc:70:1d:03:d6:6d: 31:f3:b9:07:7f:33:89:99:5e:8c:33:62:15:a9:53: 75:be:b4:cc:e4:4b:0f:a9:a6:4f:01:79:a7:1e:77: 4c:a9:39:4c:bd:cd:1b:0c:17:be:a1:49:ee:8e:07: 9e:1c:09:84:87:2c:05:3e:63:e4:c9:cd:61:04:3a: d7:ad:4f:2d:34:d4:b8:9c:c3:93:85:aa:ad:98:4f: 18:56:4d:e7:a6:1b:64:0a:84:af:93:12:92:c2:3d: 85:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:AA:58:72:C3:05:F3:F5:91:5E:64:3B:DB:7B:E8:58:D0:4C:72:01 X509v3 Authority Key Identifier: keyid:1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e6:f6:2c:02:86:22:49:64:e3:37:b5:1c:71:b4:98:fd:4e: 69:6c:2e:8c:8c:a0:2c:c6:c9:70:58:80:a8:5e:81:bf:b8:20: ca:62:02:18:fa:71:04:9c:da:e7:87:fd:c0:a0:75:15:e0:08: 1d:60:77:38:2e:0f:57:3b:58:a8:6b:51:35:88:7a:cf:80:4e: 3a:e2:a3:eb:62:c0:fc:ee:d0:33:e8:39:0c:19:02:60:0b:37: 9c:5c:73:48:10:a7:db:d2:70:6f:be:40:23:7f:c6:10:ab:e2: c9:f0:99:84:e3:62:55:94:a8:e7:af:5b:5b:28:8e:85:da:da: 0b:e6:3e:bb:5b:7a:32:a5:3e:bc:2f:a0:48:80:14:bd:d9:e1: ed:bb:71:5f:7c:69:45:a1:c7:3a:f1:8e:cf:79:29:5d:72:7c: d2:e3:32:c0:bf:a2:3e:7b:0a:50:b0:76:4a:4b:8e:e2:b0:9e: 84:88:a2:38:60:84:03:d2:3c:e7:21:aa:7e:b2:d6:05:94:7c: 1f:d9:e6:f4:5b:33:49:c9:11:55:14:6e:9e:b2:8b:0e:59:91: 49:34:7e:ae:dd:8b:92:b9:36:fd:a5:36:0a:59:c1:07:3c:30: 29:0a:e6:11:ef:ce:83:70:78:f6:c2:26:83:14:01:8c:d0:f9: a7:79:b6:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3N0MxMTAvBgNVBAUTKDFDRDQ5RUZCQzM3RUY0QThDNkM4ODc2NTYyQkQxMTMz NDRCQzdFRDEwHhcNMjUxMjIzMDEyNTMwWhcNMjUxMjMwMDEyNTMwWjAYMRYwFAYD VQQDDA02OTQ5ZWY4YS02MGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2nktLWruhOU8Pgj8LFBqN2a/WxI6bGoHtq7xkIvK39tPJ9tppwkouKep12p xQJCyLGiaxe6YPxK3BlNVSg4hQmtlLAkjr3atDlKj6+Kjs793zKj7NWXNU5mUMn1 rW3jfaAgFD4Ck51La6Gs4tjiXnSS1dZ0wu7wpJ5Yn0wNJiXzY4+g9oab5JFgegro D5+eBUeDsqk1cQPSMg5MZEPMcB0D1m0x87kHfzOJmV6MM2IVqVN1vrTM5EsPqaZP AXmnHndMqTlMvc0bDBe+oUnujgeeHAmEhywFPmPkyc1hBDrXrU8tNNS4nMOThaqt mE8YVk3nphtkCoSvkxKSwj2FfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaqWHLD BfP1kV5kO9t76FjQTHIBMB8GA1UdIwQYMBaAFBzUnvvDfvSoxsiHZWK9ETNEvH7R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc3Qy9COTdDNzM5NkM5 RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlLakd5SWRsWXIwUk0wUzhm dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOU2UtOE4tOUtqR3lJZGxZcjBSTTBTOGZ0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc3Qy9COTdDNzM5NkM5RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlL akd5SWRsWXIwUk0wUzhmdEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm5vYsAoYiSWTjN7UccbSY/U5pbC6MjKAsxslwWICoXoG/uCDKYgIY +nEEnNrnh/3AoHUV4AgdYHc4Lg9XO1ioa1E1iHrPgE464qPrYsD87tAz6DkMGQJg CzecXHNIEKfb0nBvvkAjf8YQq+LJ8JmE42JVlKjnr1tbKI6F2toL5j67W3oypT68 L6BIgBS92eHtu3FffGlFocc68Y7PeSldcnzS4zLAv6I+ewpQsHZKS47isJ6EiKI4 YIQD0jznIap+stYFlHwf2eb0WzNJyRFVFG6esosOWZFJNH6u3YuSuTb9pTYKWcEH PDApCuYR786DcHj2wiaDFAGM0PmnebZH -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:17 2025 by rpki-client