This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: Fz6LcB7aSOXSbpY3/Ygy5crA1Y1J+GSe8dARGjE/xAg= Subject key identifier: 82:A9:5D:AF:C0:49:AC:DA:8F:72:1F:68:34:5D:F5:8E:20:8B:ED:20 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0B5A Signing time: Mon 22 Dec 2025 18:48:03 +0000 Manifest this update: Mon 22 Dec 2025 18:48:03 +0000 Manifest next update: Mon 29 Dec 2025 18:48:03 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: 1TrZbEnO8wgSSYwPTLG+VrDm/WU7utxS7PLVrHM/FWU=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: kj+LbGbtBvSSpF59xQ/oF6zo99e75Fj59GXX8sxOzfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:48:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Dec 22 18:48:03 2025 GMT Not After : Dec 29 18:48:03 2025 GMT Subject: CN=69499263-5d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:b3:8a:1e:d0:0d:f1:38:af:7f:5a:2b:e1: 49:6f:43:9f:1b:03:bf:b8:8a:fa:fd:5f:c6:6f:d7: 6b:57:45:69:9c:2b:d5:14:d0:40:57:13:21:c6:fd: 34:60:ee:bc:f5:0d:db:75:6b:22:72:bd:db:c2:8f: f6:a1:38:6d:44:4c:19:fe:75:b3:d7:a2:39:cc:26: 21:4f:23:f6:22:44:b7:31:f2:3a:eb:61:f4:60:39: 29:91:f7:97:55:c4:7a:5e:5e:35:23:c2:cc:ca:40: 9e:52:df:23:08:7f:62:5b:0e:77:df:c5:c9:66:1e: d5:7c:65:ea:7a:72:d5:c6:0a:e9:99:60:d8:98:e1: 9a:a2:6c:6d:0b:4d:d1:ee:cc:95:24:90:74:ea:2d: c6:ba:fa:9b:7f:12:03:8e:38:20:c5:5f:8e:34:ab: d4:85:4f:5c:c7:de:21:5e:09:2f:c6:50:e2:47:81: 13:01:41:7c:7d:33:3c:fd:dd:f3:94:3b:48:3a:2a: b9:14:e1:79:64:2e:76:3e:81:ad:f8:41:ee:27:9c: 85:27:37:ec:64:36:83:18:cc:54:1e:59:c2:ab:b3: 6e:1d:d1:f7:cc:38:38:5a:75:f5:53:5b:fc:23:8b: 9d:a3:30:34:50:12:96:34:fb:c0:59:e3:b9:14:bf: 35:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A9:5D:AF:C0:49:AC:DA:8F:72:1F:68:34:5D:F5:8E:20:8B:ED:20 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:63:30:75:42:2a:3e:c6:a3:f3:b1:26:31:ad:42:55:45:d3: ad:d0:c3:71:f5:df:f4:a9:08:89:21:e0:41:f5:8c:26:1a:69: c7:22:0c:bb:01:b2:4d:ac:b4:71:7e:bb:f7:e1:4d:96:65:36: d4:b2:02:f8:52:7d:9a:30:5c:ba:03:76:1c:02:76:56:8b:3a: b7:45:0a:98:12:e4:2d:31:0c:6e:51:02:ca:b8:03:5e:21:be: 76:86:8a:76:af:14:9a:6e:27:33:7e:7d:e4:4e:36:6f:be:dd: 08:58:5e:28:f4:ad:60:37:0b:04:a3:92:bc:2d:21:d0:a3:62: cf:42:47:02:f4:57:cd:95:10:8d:12:f2:aa:7e:02:58:80:0a: b0:71:23:ce:cc:63:90:fa:66:dd:e4:c4:7f:0e:bd:83:f7:40: 2c:af:2a:04:8a:b5:e6:9f:f1:21:bb:d6:c2:1e:52:7f:0b:ab: 3c:31:23:a3:c2:d4:e3:dd:b3:e3:65:83:22:b2:75:a5:3d:12: 0e:75:2c:12:07:29:e9:c4:ce:b8:bd:0d:09:86:2a:7a:71:dd: a0:65:04:5b:eb:c2:03:d3:24:77:85:0c:7d:0f:35:f5:e7:c8: 9e:4a:fb:20:ce:25:74:c7:58:9d:d1:24:86:ad:15:a6:dc:be: 22:c0:77:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUxMjIyMTg0ODAzWhcNMjUxMjI5MTg0ODAzWjAYMRYwFAYD VQQDDA02OTQ5OTI2My01ZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZezih7QDfE4r39aK+FJb0OfGwO/uIr6/V/Gb9drV0VpnCvVFNBAVxMhxv00 YO689Q3bdWsicr3bwo/2oThtREwZ/nWz16I5zCYhTyP2IkS3MfI662H0YDkpkfeX VcR6Xl41I8LMykCeUt8jCH9iWw5338XJZh7VfGXqenLVxgrpmWDYmOGaomxtC03R 7syVJJB06i3GuvqbfxIDjjggxV+ONKvUhU9cx94hXgkvxlDiR4ETAUF8fTM8/d3z lDtIOiq5FOF5ZC52PoGt+EHuJ5yFJzfsZDaDGMxUHlnCq7NuHdH3zDg4WnX1U1v8 I4udozA0UBKWNPvAWeO5FL81BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKpXa/A Sazaj3IfaDRd9Y4gi+0gMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZYzB1Qio+xqPzsSYxrUJVRdOt0MNx9d/0qQiJIeBB9YwmGmnHIgy7 AbJNrLRxfrv34U2WZTbUsgL4Un2aMFy6A3YcAnZWizq3RQqYEuQtMQxuUQLKuANe Ib52hop2rxSabiczfn3kTjZvvt0IWF4o9K1gNwsEo5K8LSHQo2LPQkcC9FfNlRCN EvKqfgJYgAqwcSPOzGOQ+mbd5MR/Dr2D90AsryoEirXmn/Ehu9bCHlJ/C6s8MSOj wtTj3bPjZYMisnWlPRIOdSwSBynpxM64vQ0Jhip6cd2gZQRb68ID0yR3hQx9DzX1 58ieSvsgziV0x1id0SSGrRWm3L4iwHeQ -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:10 2025 by rpki-client