This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft File: HVb-TaQriGb-lqKX93LugLUYpAo.mft (raw, json) Hash identifier: 4D511+uj3uJZfk4atGGLq8cvP6fep7ZEBM+WFIaF96U= Subject key identifier: E7:DC:C6:5A:37:14:1E:EE:A8:F1:62:15:41:49:17:C6:A0:EB:9E:4A Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1C8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft Manifest number: 1C60 Signing time: Mon 22 Dec 2025 15:58:41 +0000 Manifest this update: Mon 22 Dec 2025 15:58:41 +0000 Manifest next update: Mon 29 Dec 2025 15:58:41 +0000 Files and hashes: 1: HVb-TaQriGb-lqKX93LugLUYpAo.crl (hash: sO3d3w8qDoRMM+D9AwfWypcYd8fXAfcxZjfLJP4n53M=) 2: 486F81CE4B4B11E79F2FF37BC4F9AE02.roa (hash: M+9/KccsjuKXSA6aFLKg/aVWmUin9oczPRD+MRgWtTk=) 3: 9B315A5E46A011E7B9BAF254C4F9AE02.roa (hash: o1l069BBsd3WUVBocCxI6g5VIW+fD/556imvKUhlYKw=) 4: 9933B21049D411E7AA790315C4F9AE02.roa (hash: wmOw2BuoGCJIUHvVuaRQLG+5/JheVX4qLMgdMvPjXZ4=) 5: 619B0B285AE611E781C33D7CC4F9AE02.roa (hash: zpxaNitqt84GE0AA0tEhFnXbQQVqt2sfIOkbeduHylA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7307 (0x1c8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9, serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Dec 22 15:58:41 2025 GMT Not After : Dec 29 15:58:41 2025 GMT Subject: CN=69496ab1-04e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:7b:62:54:37:4b:3f:18:bd:af:35:a1:61: f4:11:42:a4:3c:49:bb:79:cb:4f:6f:8f:7e:e4:71: ef:c6:ed:c7:1c:6f:c7:2d:cd:6e:df:27:5d:c8:e1: b3:aa:a4:d4:1e:17:2b:15:d7:66:35:9c:1d:67:b8: 81:6a:40:3a:71:d0:c0:95:b0:0a:be:8c:2a:17:3f: fe:3a:13:79:b9:00:34:90:5d:ac:1a:d9:33:84:05: 1c:bb:b1:65:c0:41:5e:fa:d2:a7:d3:58:fa:10:ed: de:71:b4:84:7e:3f:92:dc:5b:ba:4d:b7:51:32:3b: 08:4d:bc:14:37:e2:f0:38:12:7e:84:ba:65:1d:5d: aa:44:d0:95:7a:57:bf:19:d5:55:3b:d3:f6:45:aa: 71:29:31:a6:9d:fd:3c:64:d2:18:c6:d8:4d:2c:e1: 0e:f3:ff:aa:81:25:a5:6f:d5:f4:ad:76:18:3e:59: 85:fb:96:27:5f:db:56:5c:fd:51:c5:48:2f:83:99: fb:16:f2:58:f8:22:22:b5:e1:af:48:2c:03:eb:55: 17:9b:00:4e:7e:c1:c3:11:09:8b:01:f3:28:29:4c: cb:92:e3:7f:8c:35:5d:94:9d:17:65:fb:c7:49:0b: 71:ff:b1:e4:56:b9:71:f4:d2:03:8b:94:c2:bf:93: 7b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DC:C6:5A:37:14:1E:EE:A8:F1:62:15:41:49:17:C6:A0:EB:9E:4A X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:6c:17:26:e8:16:94:36:c0:99:0d:c4:8c:0b:88:26:5b:05: 1b:50:dd:b4:b9:ab:40:ee:96:c4:6b:f7:db:de:02:3c:9f:34: 84:b3:28:e6:d1:e8:92:63:4d:74:4d:11:a2:07:d6:cb:87:5a: bd:93:40:ed:3d:65:d9:ee:04:de:65:05:c9:42:c5:67:b2:be: c0:18:1c:37:ee:fd:84:62:bf:f0:aa:91:97:92:86:36:fd:8a: 6b:7f:d6:3a:68:b4:ab:f6:08:b7:5e:05:f0:c1:b2:9b:5d:82: 1c:f1:b3:45:33:63:b2:18:51:74:41:15:40:9f:82:ca:db:98: c9:a7:17:53:aa:90:4c:ad:cf:7c:f5:ee:2e:37:84:de:2f:12: ac:32:8f:00:d5:f4:87:92:cf:0f:43:79:e7:92:33:cf:d9:cd: 76:b1:32:d5:41:e3:d3:25:a1:45:a6:e8:35:ae:9c:26:58:37: 7d:b4:02:c7:56:30:ca:9f:4c:c1:db:c9:82:18:23:fe:5a:99: 4f:b3:d8:d8:f6:79:c5:a0:65:90:af:53:25:9d:c4:8d:cd:dd: a8:70:73:ec:0b:1d:85:0f:91:70:bf:f3:5f:fa:c4:b9:ae:31: 66:a1:14:f9:8f:3a:fc:a5:ab:49:bc:e2:3c:ce:13:4c:19:9e: ea:4b:26:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjUxMjIyMTU1ODQxWhcNMjUxMjI5MTU1ODQxWjAYMRYwFAYD VQQDDA02OTQ5NmFiMS0wNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcx7YlQ3Sz8Yva81oWH0EUKkPEm7ectPb49+5HHvxu3HHG/HLc1u3yddyOGz qqTUHhcrFddmNZwdZ7iBakA6cdDAlbAKvowqFz/+OhN5uQA0kF2sGtkzhAUcu7Fl wEFe+tKn01j6EO3ecbSEfj+S3Fu6TbdRMjsITbwUN+LwOBJ+hLplHV2qRNCVele/ GdVVO9P2RapxKTGmnf08ZNIYxthNLOEO8/+qgSWlb9X0rXYYPlmF+5YnX9tWXP1R xUgvg5n7FvJY+CIiteGvSCwD61UXmwBOfsHDEQmLAfMoKUzLkuN/jDVdlJ0XZfvH SQtx/7HkVrlx9NIDi5TCv5N7AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfcxlo3 FB7uqPFiFUFJF8ag655KMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0FFOS8wOERBNjBDNkYxQjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlH Yi1scUtYOTNMdWdMVVlwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASbBcm6BaUNsCZDcSMC4gmWwUbUN20uatA7pbEa/fb3gI8nzSEsyjm 0eiSY010TRGiB9bLh1q9k0DtPWXZ7gTeZQXJQsVnsr7AGBw37v2EYr/wqpGXkoY2 /Yprf9Y6aLSr9gi3XgXwwbKbXYIc8bNFM2OyGFF0QRVAn4LK25jJpxdTqpBMrc98 9e4uN4TeLxKsMo8A1fSHks8PQ3nnkjPP2c12sTLVQePTJaFFpug1rpwmWDd9tALH VjDKn0zB28mCGCP+WplPs9jY9nnFoGWQr1MlncSNzd2ocHPsCx2FD5Fwv/Nf+sS5 rjFmoRT5jzr8patJvOI8zhNMGZ7qSyYx -----END CERTIFICATE-----Generated at Tue Dec 23 02:07:52 2025 by rpki-client