This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: nxPsBfW7yN22A9kUoJMjmTgZMoZZ5Cr1troeo/1zp5Y= Subject key identifier: 24:8C:BE:0B:D8:52:52:F6:C7:CD:F7:E3:B1:6E:74:E6:8B:81:3B:DC Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13E2 Signing time: Mon 22 Dec 2025 16:39:58 +0000 Manifest this update: Mon 22 Dec 2025 16:39:57 +0000 Manifest next update: Mon 29 Dec 2025 16:39:57 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: OETibyTaIaaw7lEn02R/rmvISveyMFYCIjU3m3KkbKo=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uohcAOcE60pEPVtJLM2mjq+61BAF61CBsuLOOzelXqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5111 (0x13f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Dec 22 16:39:57 2025 GMT Not After : Dec 29 16:39:57 2025 GMT Subject: CN=6949745e-dbff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:80:14:b2:3a:a5:c2:03:fd:9a:d2:79:29:84: 58:60:9d:90:12:d2:6a:77:24:1e:a2:10:32:27:0b: 97:eb:37:04:80:f1:02:4d:fa:0d:42:65:c1:0f:52: 8e:61:86:3d:24:06:25:06:90:1a:11:64:3a:b9:a0: 13:28:dd:46:bf:c0:45:f7:54:bc:ff:64:3e:6f:e6: 99:50:91:6a:a3:0e:62:10:e4:26:68:bd:9f:0a:aa: 65:83:7b:fc:2a:6c:09:f0:68:af:e3:f8:45:6d:fc: 8a:74:e9:62:31:20:a7:5b:ef:ec:fb:d0:af:22:e0: bf:d5:4b:bb:d1:12:14:ab:34:11:c5:a0:13:1d:a9: 64:fb:5b:f1:28:5c:60:84:19:61:e4:41:1d:af:68: ed:af:57:6a:bb:b1:be:6e:75:da:42:e4:40:2d:e0: d2:7a:8d:b3:b3:3f:ac:83:9a:3f:83:d2:93:a5:f2: 5e:b8:9c:87:fd:ab:54:98:ea:87:14:30:28:1c:c9: 78:ae:33:e3:28:67:d3:29:e6:2c:c4:a8:fd:52:99: 75:a2:75:da:ae:58:0f:4e:55:37:15:6c:6e:4c:ae: 2f:96:30:53:a3:6d:47:f0:3d:32:b5:ac:b0:8d:df: 2a:ee:2a:8f:40:ca:a2:11:cd:79:85:41:de:e1:c2: 18:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:8C:BE:0B:D8:52:52:F6:C7:CD:F7:E3:B1:6E:74:E6:8B:81:3B:DC X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c7:b1:21:28:c7:51:75:2b:1e:50:b5:79:84:ca:77:d0:e0: 14:3a:f6:e4:de:c8:55:dd:e5:af:64:a3:87:aa:a2:05:31:cc: d5:a3:10:80:92:5f:07:6b:7c:dc:81:9d:09:f4:2c:e9:57:2e: 81:3d:55:53:c8:5d:9c:56:3e:2c:1c:51:c9:a7:55:a5:ad:17: 2d:f0:8d:ef:1f:31:79:9e:64:87:d0:9f:df:f0:00:41:ae:42: bf:35:50:85:bd:71:e8:73:fc:e9:2b:92:2c:21:ac:51:f2:de: e9:0d:d0:b1:db:12:98:ab:c3:e4:f7:af:9c:56:14:ce:e1:ad: 62:2c:5e:b0:1d:6e:03:a4:db:46:e0:5e:44:29:59:24:bd:85: 39:ca:e1:3d:cc:8f:40:c3:56:2a:b2:f2:2b:09:98:4d:0c:f6: 23:6e:f9:54:2b:8c:c8:76:22:f0:61:3d:31:5f:b5:15:82:e7: 99:63:a4:56:67:4f:d7:01:e3:6d:a1:b0:33:30:4f:28:2b:47: db:7b:ff:2b:50:86:e6:2c:3e:25:a1:68:78:a7:8e:f1:08:e0: 3a:46:0a:58:90:c0:59:13:7f:b7:7e:39:ce:9c:a8:f0:ae:69: 1a:f5:f8:7f:b3:e2:df:94:ff:e6:6b:73:2f:ea:47:53:36:d3: 90:2a:e1:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUxMjIyMTYzOTU3WhcNMjUxMjI5MTYzOTU3WjAYMRYwFAYD VQQDDA02OTQ5NzQ1ZS1kYmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnoAUsjqlwgP9mtJ5KYRYYJ2QEtJqdyQeohAyJwuX6zcEgPECTfoNQmXBD1KO YYY9JAYlBpAaEWQ6uaATKN1Gv8BF91S8/2Q+b+aZUJFqow5iEOQmaL2fCqplg3v8 KmwJ8Giv4/hFbfyKdOliMSCnW+/s+9CvIuC/1Uu70RIUqzQRxaATHalk+1vxKFxg hBlh5EEdr2jtr1dqu7G+bnXaQuRALeDSeo2zsz+sg5o/g9KTpfJeuJyH/atUmOqH FDAoHMl4rjPjKGfTKeYsxKj9Upl1onXarlgPTlU3FWxuTK4vljBTo21H8D0ytayw jd8q7iqPQMqiEc15hUHe4cIYlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSMvgvY UlL2x83347FudOaLgTvcMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLx7EhKMdRdSseULV5hMp30OAUOvbk3shV3eWvZKOHqqIFMczVoxCA kl8Ha3zcgZ0J9CzpVy6BPVVTyF2cVj4sHFHJp1WlrRct8I3vHzF5nmSH0J/f8ABB rkK/NVCFvXHoc/zpK5IsIaxR8t7pDdCx2xKYq8Pk96+cVhTO4a1iLF6wHW4DpNtG 4F5EKVkkvYU5yuE9zI9Aw1YqsvIrCZhNDPYjbvlUK4zIdiLwYT0xX7UVgueZY6RW Z0/XAeNtobAzME8oK0fbe/8rUIbmLD4loWh4p47xCOA6RgpYkMBZE3+3fjnOnKjw rmka9fh/s+LflP/ma3Mv6kdTNtOQKuHb -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:26 2025 by rpki-client