This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft File: HMTgP8GsieF7GYJHtuZFSrunG4w.mft (raw, json) Hash identifier: KyRqZAMTSyoluwvSQWizYOzHPUx8kZFP+aTNlkI6FPw= Subject key identifier: 3D:41:EA:27:FD:72:22:76:55:48:5E:86:C5:03:35:C0:39:7B:05:62 Authority key identifier: 1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C Certificate issuer: /CN=A9174BB4/serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Certificate serial: 17C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft Manifest number: 17C0 Signing time: Mon 22 Dec 2025 16:18:56 +0000 Manifest this update: Mon 22 Dec 2025 16:18:55 +0000 Manifest next update: Mon 29 Dec 2025 16:18:55 +0000 Files and hashes: 1: HMTgP8GsieF7GYJHtuZFSrunG4w.crl (hash: P4zfbzclegup8taEQ6J+nLDebtFoBb+bFhd0inUZkXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:18:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6080 (0x17c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174BB4, serialNumber=1CC4E03FC1AC89E17B198247B6E6454ABBA71B8C Validity Not Before: Dec 22 16:18:55 2025 GMT Not After : Dec 29 16:18:55 2025 GMT Subject: CN=69496f6f-bd53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ba:11:e1:2f:91:4b:9f:ad:be:74:a7:bc:01: e2:9f:13:05:88:9e:21:2d:6f:8e:72:6e:10:68:61: 7b:64:01:64:db:e1:9a:b4:a7:a5:e7:3c:d8:88:7a: 37:ad:f7:37:bc:eb:6a:52:f1:65:c4:a1:ba:7c:fd: e3:71:89:e9:70:9b:8e:31:4d:f6:76:c5:01:28:fc: c5:37:8a:fb:8e:b2:c4:c2:55:9d:3b:c3:46:cc:ba: d5:7c:70:9c:ac:57:a4:e4:ad:29:90:8d:19:dc:36: de:cb:aa:34:3d:9a:c5:c4:07:06:6f:b0:f2:36:6d: 6c:65:8b:f0:a3:25:4d:98:31:e5:99:8f:dc:14:16: 86:a4:f8:38:0e:7c:d7:67:34:65:d9:4f:9e:2b:72: 28:02:2f:a7:7b:c4:d6:ee:6b:7b:81:6e:c2:d5:0d: 60:7d:04:6e:d0:e6:4d:65:16:4f:ed:48:14:12:5c: b9:ee:09:8d:49:71:ef:bd:e6:a7:2c:b5:e6:a0:39: 92:ef:41:e3:c4:9b:40:d5:ef:6f:3f:42:90:2c:54: 0b:da:66:63:f4:6f:45:37:c5:21:17:d8:2f:e7:30: f5:d5:87:05:e4:14:67:63:64:e6:27:7d:04:54:3b: d5:68:8f:ea:0f:03:a8:f9:17:89:22:8d:fb:7d:1d: dc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:41:EA:27:FD:72:22:76:55:48:5E:86:C5:03:35:C0:39:7B:05:62 X509v3 Authority Key Identifier: keyid:1C:C4:E0:3F:C1:AC:89:E1:7B:19:82:47:B6:E6:45:4A:BB:A7:1B:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HMTgP8GsieF7GYJHtuZFSrunG4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174BB4/9D105BFCD66211E7ACF8DF2CC4F9AE02/HMTgP8GsieF7GYJHtuZFSrunG4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:bf:b4:2b:93:14:a3:ad:c3:91:a7:23:28:96:66:ac:2a:fc: ba:d0:6f:16:2f:fd:27:01:28:66:c7:8d:69:6e:cb:52:8f:7e: a5:26:39:91:07:02:cf:83:97:9f:68:79:3c:2e:9c:01:76:2a: d8:4f:b4:1d:60:2e:d6:18:a5:f8:7d:1c:21:e0:e8:ca:ee:2e: 4b:00:41:9b:0d:3d:3e:14:da:a5:98:d1:e8:c6:dd:5e:04:de: db:60:00:4c:f7:88:02:cc:41:39:b5:c1:c1:5a:da:d5:42:91: 5d:33:bf:9d:e6:b1:f0:fd:b7:d6:33:12:f0:b1:10:1e:9b:0d: 93:9b:4a:88:4b:ae:0e:ea:20:5e:0f:c7:f3:4b:8a:73:fa:12: 05:ed:1f:41:f9:17:09:09:16:37:ba:04:63:28:ac:cf:68:09: b9:68:7a:41:b3:40:f2:be:43:30:19:53:b0:32:86:99:c7:75: 35:f0:33:c0:71:7b:d8:04:fb:e9:bc:b1:7e:95:f7:f2:2e:6c: a9:1a:40:41:f6:19:27:79:f6:ae:98:17:49:c1:4f:ac:9f:49: 6f:01:18:70:5c:7f:a2:4d:71:15:90:fb:cb:4d:b6:03:03:9f: 02:9e:fb:0f:30:f3:a3:a0:e9:b2:6c:73:c6:7e:4f:b4:ba:08: 6d:5d:73:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRCQjQxMTAvBgNVBAUTKDFDQzRFMDNGQzFBQzg5RTE3QjE5ODI0N0I2RTY0NTRB QkJBNzFCOEMwHhcNMjUxMjIyMTYxODU1WhcNMjUxMjI5MTYxODU1WjAYMRYwFAYD VQQDDA02OTQ5NmY2Zi1iZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0boR4S+RS5+tvnSnvAHinxMFiJ4hLW+Ocm4QaGF7ZAFk2+GatKel5zzYiHo3 rfc3vOtqUvFlxKG6fP3jcYnpcJuOMU32dsUBKPzFN4r7jrLEwlWdO8NGzLrVfHCc rFek5K0pkI0Z3Dbey6o0PZrFxAcGb7DyNm1sZYvwoyVNmDHlmY/cFBaGpPg4DnzX ZzRl2U+eK3IoAi+ne8TW7mt7gW7C1Q1gfQRu0OZNZRZP7UgUEly57gmNSXHvvean LLXmoDmS70HjxJtA1e9vP0KQLFQL2mZj9G9FN8UhF9gv5zD11YcF5BRnY2TmJ30E VDvVaI/qDwOo+ReJIo37fR3caQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1B6if9 ciJ2VUhehsUDNcA5ewViMB8GA1UdIwQYMBaAFBzE4D/BrInhexmCR7bmRUq7pxuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEJCNC85RDEwNUJGQ0Q2 NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2llRjdHWUpIdHVaRlNydW5H NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hNVGdQOEdzaWVGN0dZSkh0dVpGU3J1bkc0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEJCNC85RDEwNUJGQ0Q2NjIxMUU3QUNGOERGMkNDNEY5QUUwMi9ITVRnUDhHc2ll RjdHWUpIdHVaRlNydW5HNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4v7QrkxSjrcORpyMolmasKvy60G8WL/0nAShmx41pbstSj36lJjmR BwLPg5efaHk8LpwBdirYT7QdYC7WGKX4fRwh4OjK7i5LAEGbDT0+FNqlmNHoxt1e BN7bYABM94gCzEE5tcHBWtrVQpFdM7+d5rHw/bfWMxLwsRAemw2Tm0qIS64O6iBe D8fzS4pz+hIF7R9B+RcJCRY3ugRjKKzPaAm5aHpBs0DyvkMwGVOwMoaZx3U18DPA cXvYBPvpvLF+lffyLmypGkBB9hknefaumBdJwU+sn0lvARhwXH+iTXEVkPvLTbYD A58CnvsPMPOjoOmybHPGfk+0ughtXXP5 -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:45 2025 by rpki-client