This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: B0McmseOFMOwVt/fprPmj3MQnYJCY8I/z8VAb0pwrX4= Subject key identifier: C1:29:EB:3D:1C:E8:5B:CC:62:33:2C:44:4D:AD:0C:34:45:9F:50:9D Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 5A Signing time: Tue 23 Dec 2025 06:07:29 +0000 Manifest this update: Tue 23 Dec 2025 06:07:29 +0000 Manifest next update: Tue 30 Dec 2025 06:07:29 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: AT5xHCXWzmit2qUwcNbuAd684v6yhR+7VwVaTkp7Ou8=) 2: C7A29726A65311F091E2CF10C4F9AE02.roa (hash: H+sz1WV2JCbo6B0gUh55p+qB63Mvx+1vqhNeQo2vgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Dec 23 06:07:29 2025 GMT Not After : Dec 30 06:07:29 2025 GMT Subject: CN=694a31a1-6020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7e:5f:07:59:97:a6:2f:73:00:39:fe:37:86: c1:4e:cc:b7:0b:ef:08:39:3f:65:69:50:98:e0:8a: dd:a9:db:61:aa:ff:07:73:98:55:ce:19:f6:89:35: 28:7b:01:cf:7d:54:1f:b2:d0:11:4a:d6:60:41:f8: 71:fb:00:e8:62:02:60:5d:27:b1:e0:d3:91:bc:97: eb:3d:9b:ae:17:e9:71:6b:9a:50:fa:3e:a8:6d:20: db:77:74:86:11:5f:ed:1a:c0:90:4e:33:d5:ee:d2: 4e:4c:30:20:c5:02:a0:57:7a:9f:96:52:36:07:10: 95:ec:8a:0e:c5:b3:5b:e1:b6:10:6b:27:53:2d:b6: de:28:55:cf:4d:e3:b9:ed:3d:d6:70:80:9c:4a:8c: 8b:4f:e3:37:e3:2f:de:ad:6c:c6:58:ee:53:c9:69: 76:51:3f:a8:a3:36:a6:20:2c:85:db:96:71:bd:03: 25:a6:b7:b3:d0:b8:93:31:11:cc:66:eb:27:47:86: 8d:06:22:1b:8d:86:a4:25:a0:09:65:6c:ef:c2:46: 9a:5e:a5:bb:07:87:3d:29:ca:ca:b4:4b:b6:c1:85: d7:c0:d6:3b:3e:23:d5:81:89:be:5a:37:4a:36:d4: c3:65:cf:91:e9:d9:00:12:aa:73:6b:91:26:57:b6: 68:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:29:EB:3D:1C:E8:5B:CC:62:33:2C:44:4D:AD:0C:34:45:9F:50:9D X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:2f:21:ad:3e:ee:0b:1b:b0:87:68:66:00:10:d7:04:e7:c8: de:40:1d:34:dd:a6:c6:df:ae:e7:17:16:7e:de:a4:02:4f:1a: 3f:08:7c:56:d2:e3:29:b0:b7:ca:35:51:7d:90:75:a7:10:12: 59:d6:26:96:6a:e5:6c:68:e0:67:2a:d1:27:71:0b:ce:04:dc: 62:ec:31:20:08:1a:f7:a8:6b:38:f1:f8:bd:50:0a:2f:45:d5: 64:ee:49:49:a7:3d:c4:b9:c1:ae:02:7f:6f:fb:81:0d:3b:04: 4a:e1:85:76:5e:9a:32:a0:04:a0:b4:17:f1:fc:c2:8c:ca:f4: 06:a0:c7:23:9f:c0:1c:fe:f3:f5:06:f4:94:d9:9f:02:16:d7: 1a:02:06:ff:e9:21:dd:18:44:74:7a:18:77:42:37:de:b0:2a: 7a:60:fd:ee:3f:fd:fd:55:46:c5:c6:25:b6:03:7a:8b:59:b5: c2:ac:ee:4b:91:58:76:00:29:c0:b7:93:7f:53:cf:59:4e:2e: 3b:b1:0a:33:68:05:cf:66:ce:bf:54:fb:74:68:69:53:b8:19: 7d:12:0e:a8:e8:ae:09:25:73:7c:1b:3a:e8:b2:61:03:cb:dc: f5:ac:8b:b2:64:68:38:6e:6f:46:84:b0:7c:a4:e1:7f:5c:b3: 36:34:c7:f6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkY1OTExMC8GA1UEBRMoMUNBMzZEQ0ZDM0MwNDMzM0Y4ODNCODM1RjJDOERERDAy NUQ1NDEwNjAeFw0yNTEyMjMwNjA3MjlaFw0yNTEyMzAwNjA3MjlaMBgxFjAUBgNV BAMMDTY5NGEzMWExLTYwMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5fl8HWZemL3MAOf43hsFOzLcL7wg5P2VpUJjgit2p22Gq/wdzmFXOGfaJNSh7 Ac99VB+y0BFK1mBB+HH7AOhiAmBdJ7Hg05G8l+s9m64X6XFrmlD6PqhtINt3dIYR X+0awJBOM9Xu0k5MMCDFAqBXep+WUjYHEJXsig7Fs1vhthBrJ1Mttt4oVc9N47nt PdZwgJxKjItP4zfjL96tbMZY7lPJaXZRP6ijNqYgLIXblnG9AyWmt7PQuJMxEcxm 6ydHho0GIhuNhqQloAllbO/CRppepbsHhz0pysq0S7bBhdfA1js+I9WBib5aN0o2 1MNlz5Hp2QASqnNrkSZXtmhnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwSnrPRzo W8xiMyxETa0MNEWfUJ0wHwYDVR0jBBgwFoAUHKNtz8PAQzP4g7g18sjd0CXVQQYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRjU5LzA1MjZENjJFNjIz MDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFR WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSEtOdHo4UEFRelA0ZzdnMThzamQwQ1hWUVFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RjU5LzA1MjZENjJFNjIzMDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQ NGc3ZzE4c2pkMENYVlFRWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFcvIa0+7gsbsIdoZgAQ1wTnyN5AHTTdpsbfrucXFn7epAJPGj8IfFbS 4ymwt8o1UX2QdacQElnWJpZq5Wxo4Gcq0SdxC84E3GLsMSAIGveoazjx+L1QCi9F 1WTuSUmnPcS5wa4Cf2/7gQ07BErhhXZemjKgBKC0F/H8wozK9AagxyOfwBz+8/UG 9JTZnwIW1xoCBv/pId0YRHR6GHdCN96wKnpg/e4//f1VRsXGJbYDeotZtcKs7kuR WHYAKcC3k39Tz1lOLjuxCjNoBc9mzr9U+3RoaVO4GX0SDqjorgklc3wbOuiyYQPL 3PWsi7JkaDhub0aEsHyk4X9cszY0x/Y= -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:26 2025 by rpki-client