This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: aMtTFjWqHjaxGyVd0ASNYpUDvm0flK7VMo6fX7nvQcw= Subject key identifier: 56:06:DF:27:69:BE:80:9C:3E:6C:82:24:AC:4A:F9:13:ED:6B:23:E0 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0E5A Signing time: Mon 22 Dec 2025 17:25:35 +0000 Manifest this update: Mon 22 Dec 2025 17:25:35 +0000 Manifest next update: Mon 29 Dec 2025 17:25:35 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: FScVGztBTMQt6BJlF2VUkcUVedyonAadR3B7V6Ajxvw=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: cxpNUxvjjUcenOfHXLOefCP2oAgYFBDBd3CzBohvfz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3686 (0xe66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Dec 22 17:25:35 2025 GMT Not After : Dec 29 17:25:35 2025 GMT Subject: CN=69497f0f-daca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fb:d0:db:56:3a:5d:f6:03:96:62:73:db:63: dd:7b:33:b2:85:c1:dc:2c:06:0e:6b:1d:a9:00:a1: c2:6e:11:96:da:96:da:ea:e0:52:01:6b:39:9e:a4: 6d:2f:f1:68:b9:d1:40:78:67:f8:df:1a:cc:fe:ea: a4:2c:dd:87:19:d1:bc:75:29:31:a6:b0:86:6c:ca: 4b:f4:cd:cc:f7:0b:d7:57:a1:b0:60:33:dc:a3:6b: b1:24:9a:d5:44:28:1e:0a:e6:cc:0b:a6:a5:db:e1: bf:78:94:73:63:4e:5b:36:cb:13:d8:79:11:b6:81: 3e:2d:14:12:9b:8f:80:2f:b2:82:9a:f3:b5:39:8d: 30:f0:da:06:a9:78:57:53:c2:09:93:14:46:22:92: 79:1f:0c:9a:7f:64:73:0b:c0:70:60:f1:fe:28:65: 96:b4:ab:1e:3f:70:0f:6b:96:4f:13:20:96:2b:8d: f1:f3:b0:0b:a4:1f:73:b8:ed:14:eb:f0:ec:10:bd: 53:f3:0d:87:47:b9:31:a1:53:9a:7b:40:4f:fc:48: ec:1e:0a:b8:70:b6:31:00:43:18:c6:a1:26:9a:09: 27:06:d2:0c:35:52:55:d0:26:e5:86:d8:1c:48:11: 91:4a:cd:e9:e3:d2:1f:0b:8f:8e:36:23:8d:90:05: e4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:06:DF:27:69:BE:80:9C:3E:6C:82:24:AC:4A:F9:13:ED:6B:23:E0 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ab:c7:a7:9d:b1:8f:d8:ea:6d:62:2e:37:f2:98:11:be:4a: fd:60:c6:8f:27:63:2b:ab:35:d0:42:b0:76:e1:c4:1b:06:90: de:67:a2:ce:5a:91:fb:06:ee:5b:2d:25:ed:a2:5d:c3:71:47: 99:60:f5:3d:d1:80:80:3b:0c:66:bc:20:d1:57:db:de:2f:4d: a0:cc:48:6a:8a:c4:23:19:91:00:86:15:84:8f:8c:d7:60:dc: d2:24:d6:b0:36:cf:e4:f1:ff:64:fd:b1:26:49:81:fd:d3:d6: 65:33:28:22:27:b3:a3:93:a2:23:6f:cd:69:d0:62:dc:f8:12: ad:cb:a7:09:38:4b:a6:29:85:c9:5a:3e:1e:71:f9:20:42:61: 60:4f:e5:e6:d0:fe:cc:66:ab:67:a7:53:dd:c1:bc:c3:de:b6: fc:81:25:dd:d7:d0:07:89:5c:4d:8c:d0:46:26:8e:74:05:08: 35:08:cf:ab:30:15:7c:86:1b:09:6d:9d:6c:1a:73:7e:3c:2f: fa:13:28:2f:d3:e7:c6:25:35:b7:60:02:f7:37:9b:90:1c:b3: 3e:3e:0b:5a:d6:34:fd:00:fb:1f:38:c9:70:78:19:3f:b0:5f: 29:a2:bf:7b:7d:72:7e:0b:34:40:cb:0c:69:6e:2d:8c:73:fd: 4a:2c:8c:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUxMjIyMTcyNTM1WhcNMjUxMjI5MTcyNTM1WjAYMRYwFAYD VQQDDA02OTQ5N2YwZi1kYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/vQ21Y6XfYDlmJz22PdezOyhcHcLAYOax2pAKHCbhGW2pba6uBSAWs5nqRt L/FoudFAeGf43xrM/uqkLN2HGdG8dSkxprCGbMpL9M3M9wvXV6GwYDPco2uxJJrV RCgeCubMC6al2+G/eJRzY05bNssT2HkRtoE+LRQSm4+AL7KCmvO1OY0w8NoGqXhX U8IJkxRGIpJ5Hwyaf2RzC8BwYPH+KGWWtKseP3APa5ZPEyCWK43x87ALpB9zuO0U 6/DsEL1T8w2HR7kxoVOae0BP/EjsHgq4cLYxAEMYxqEmmgknBtIMNVJV0Cblhtgc SBGRSs3p49IfC4+ONiONkAXkfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYG3ydp voCcPmyCJKxK+RPtayPgMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+q8ennbGP2OptYi438pgRvkr9YMaPJ2MrqzXQQrB24cQbBpDeZ6LO WpH7Bu5bLSXtol3DcUeZYPU90YCAOwxmvCDRV9veL02gzEhqisQjGZEAhhWEj4zX YNzSJNawNs/k8f9k/bEmSYH909ZlMygiJ7Ojk6Ijb81p0GLc+BKty6cJOEumKYXJ Wj4ecfkgQmFgT+Xm0P7MZqtnp1PdwbzD3rb8gSXd19AHiVxNjNBGJo50BQg1CM+r MBV8hhsJbZ1sGnN+PC/6Eygv0+fGJTW3YAL3N5uQHLM+Pgta1jT9APsfOMlweBk/ sF8por97fXJ+CzRAywxpbi2Mc/1KLIyD -----END CERTIFICATE-----Generated at Tue Dec 23 22:28:08 2025 by rpki-client