This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: X088HMK82UNJSqXFMUyfX8snEALNQ568fDMJN0UAqRc= Subject key identifier: EA:1D:3B:15:DF:13:DD:DC:51:72:8A:65:57:79:65:95:A7:1F:A1:A2 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 015E Signing time: Mon 15 Dec 2025 03:28:26 +0000 Manifest this update: Mon 15 Dec 2025 03:28:26 +0000 Manifest next update: Mon 22 Dec 2025 03:28:26 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: DhuxWwY6W58XFlH5/J4UOFgi2CvLTx1f3SAoe5acQ58=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: 5W+7nQ6sUflibilCBlXCdge8iT2G6A6aLqY201MPVEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E, serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Dec 15 03:28:26 2025 GMT Not After : Dec 22 03:28:26 2025 GMT Subject: CN=693f805a-d2b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:df:41:12:00:0e:5a:ca:be:00:4f:a7:34:e0: d2:ea:a4:d8:09:4e:4c:f1:26:3e:4d:11:e4:ef:00: 99:0d:a9:00:2e:af:4c:cc:de:60:cd:46:e0:03:66: 1a:02:47:ba:fb:7c:da:1a:5b:c9:38:6a:e9:a3:f9: 46:76:de:7e:49:52:ba:72:53:d2:75:f0:dd:b4:04: a9:4e:12:35:d0:29:ad:29:61:bc:38:c2:71:08:e8: e7:05:44:de:f6:b9:41:b8:5a:c3:ab:6e:e6:92:25: f1:1b:66:49:a6:67:7b:da:12:82:27:db:c8:3a:9f: a8:2c:aa:9d:29:f1:7c:5e:28:44:b0:21:5c:ab:44: 23:88:52:13:2d:d3:1a:7a:f3:f5:22:c9:fe:58:d2: 40:71:95:ec:19:7b:bb:c6:7d:0e:35:77:dc:8e:0f: d9:e4:6e:bb:3c:1f:d5:eb:bb:af:d0:9e:8d:a5:7a: 63:06:f6:52:4e:b1:9e:0e:61:54:59:40:c6:a6:fa: 45:a8:79:bf:1a:3c:08:0c:08:54:d9:be:ff:08:26: f9:d4:f5:09:3b:82:82:45:0d:5c:89:ab:8c:3e:b4: f6:2f:25:fe:d9:6f:b7:2b:b4:58:de:b7:2e:e6:38: 4f:eb:f1:9f:7f:13:d8:50:d2:76:7d:96:d1:5e:12: 24:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:1D:3B:15:DF:13:DD:DC:51:72:8A:65:57:79:65:95:A7:1F:A1:A2 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:fc:83:e1:4a:b0:5e:fe:62:e6:06:4e:7f:4b:a8:75:85:3a: 68:91:bd:1b:d1:15:f8:fd:f9:77:3e:df:b4:75:7e:d5:07:06: 99:ca:2e:31:12:dd:55:5e:8e:90:04:04:b9:6d:82:42:2d:8f: ff:43:c6:c7:02:2d:d4:72:a5:77:cb:cd:43:fe:0f:44:7a:77: 58:5d:54:4c:46:c4:e5:46:d6:0e:64:11:0f:d5:b5:af:b3:3e: ee:a6:79:2c:90:4b:3d:07:f2:28:d3:4b:0f:ba:48:ef:f8:01: fa:a3:81:f5:a7:b7:72:c4:67:04:c1:2c:be:96:eb:57:b1:1e: 85:8e:63:ea:a6:67:cd:83:60:46:f4:ac:0f:89:f8:9e:6f:a4: 53:c7:6c:5d:63:d1:e6:72:01:45:e9:31:52:3e:72:06:c0:9b: e8:b7:a1:e0:27:ee:3a:57:b2:19:a3:9e:a1:09:a8:c2:27:ad: c5:25:59:f9:ad:7d:14:ba:76:ec:ae:32:3e:9e:24:59:f9:f9: 94:4c:de:7d:a0:e2:2b:d9:ef:96:e9:1a:f2:9c:b0:31:bd:c6: 15:5c:9d:b4:09:87:22:b6:88:27:89:84:c6:f8:0c:a4:80:76: a0:14:ef:d8:da:7a:53:3c:2c:f2:fd:7d:03:f9:07:4f:2a:0a: b8:e1:86:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjUxMjE1MDMyODI2WhcNMjUxMjIyMDMyODI2WjAYMRYwFAYD VQQDDA02OTNmODA1YS1kMmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAot9BEgAOWsq+AE+nNODS6qTYCU5M8SY+TRHk7wCZDakALq9MzN5gzUbgA2Ya Ake6+3zaGlvJOGrpo/lGdt5+SVK6clPSdfDdtASpThI10CmtKWG8OMJxCOjnBUTe 9rlBuFrDq27mkiXxG2ZJpmd72hKCJ9vIOp+oLKqdKfF8XihEsCFcq0QjiFITLdMa evP1Isn+WNJAcZXsGXu7xn0ONXfcjg/Z5G67PB/V67uv0J6NpXpjBvZSTrGeDmFU WUDGpvpFqHm/GjwIDAhU2b7/CCb51PUJO4KCRQ1ciauMPrT2LyX+2W+3K7RY3rcu 5jhP6/GffxPYUNJ2fZbRXhIk/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOodOxXf E93cUXKKZVd5ZZWnH6GiMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZj MFZ1MUg1UDlOQ21admhGbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5/IPhSrBe/mLmBk5/S6h1hTpokb0b0RX4/fl3Pt+0dX7VBwaZyi4x Et1VXo6QBAS5bYJCLY//Q8bHAi3UcqV3y81D/g9EendYXVRMRsTlRtYOZBEP1bWv sz7upnkskEs9B/Io00sPukjv+AH6o4H1p7dyxGcEwSy+lutXsR6FjmPqpmfNg2BG 9KwPifieb6RTx2xdY9HmcgFF6TFSPnIGwJvot6HgJ+46V7IZo56hCajCJ63FJVn5 rX0UunbsrjI+niRZ+fmUTN59oOIr2e+W6RrynLAxvcYVXJ20CYcitogniYTG+Ayk gHagFO/Y2npTPCzy/X0D+QdPKgq44YZw -----END CERTIFICATE-----Generated at Tue Dec 16 04:43:12 2025 by rpki-client