This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: I1TI4LUm0FvA2xlFI+1yBm0gN+kKAvAdERHNgrOCtxQ= Subject key identifier: 4F:6A:5A:2A:73:98:D2:05:62:88:CB:4F:51:1B:35:29:FA:94:9F:E1 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 15E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 158F Signing time: Wed 24 Dec 2025 16:37:38 +0000 Manifest this update: Wed 24 Dec 2025 16:37:38 +0000 Manifest next update: Wed 31 Dec 2025 16:37:38 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: B/JjFz7g5mUw5XZqpWmazAdwc7/wyRjniyKE4icD+78=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: Wpl8FrrlApNTWx1QWVKbc/6NkILMCkKa4jpheAefikY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5607 (0x15e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Dec 24 16:37:38 2025 GMT Not After : Dec 31 16:37:38 2025 GMT Subject: CN=694c16d2-f971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9a:c4:45:4c:8c:2b:89:0e:3b:af:f5:6b:94: ac:67:dc:f5:17:a6:fb:45:9d:d9:5e:e4:bb:47:43: ae:5c:ee:72:13:a7:17:3b:66:2a:3c:50:2f:df:b3: 06:ca:02:38:21:77:26:d8:c7:66:f5:00:6f:3f:9b: 66:59:8f:6f:0e:1c:a9:88:b0:4a:8e:d0:d9:91:45: 01:98:3a:78:45:11:45:83:e1:54:34:80:08:cc:dd: ab:72:91:81:cc:90:05:d8:bb:5f:bc:7f:59:27:53: 16:4c:a2:21:dc:ad:19:fa:ec:00:73:a9:e5:1a:88: 4c:12:b1:d4:aa:08:10:71:88:50:94:ad:81:ed:41: 4f:d7:2b:25:db:73:d0:e5:ee:bf:7f:90:2d:9b:91: 44:67:36:b9:6c:da:a0:87:a3:59:f0:6a:55:e8:17: 7c:8b:53:6b:52:c7:5c:b6:62:47:93:3c:95:0c:0c: e6:c2:8d:70:fa:87:56:8a:fb:e3:8b:58:49:14:4d: 12:bc:91:24:9c:fa:08:d2:6e:b0:47:f1:e2:e3:7e: 5d:fd:19:05:8f:96:70:ce:44:b8:a4:a7:d0:ac:e6: 1c:62:05:15:b4:94:70:10:bb:f3:2e:6e:12:8f:16: e6:e2:cb:1e:e2:73:98:4e:34:50:64:2b:62:9b:3c: d2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6A:5A:2A:73:98:D2:05:62:88:CB:4F:51:1B:35:29:FA:94:9F:E1 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:3b:ec:d8:ad:e2:93:99:ee:73:84:5c:84:cc:23:18:a0:38: 38:62:a1:e6:1c:7c:fd:d7:55:6a:d5:63:9a:d4:98:2e:bb:f2: 18:d1:70:68:92:00:23:c6:98:a7:89:d5:51:df:9b:8f:f0:c5: 5f:25:d3:82:2d:43:30:ce:59:0a:0b:ae:c3:9e:94:b3:1d:41: b9:a6:63:d8:cd:4e:9f:f3:d2:bd:6a:a8:3d:74:b5:df:a8:fa: e9:1a:c9:e5:d8:e5:7f:1a:e5:b5:2c:ad:a9:e7:7a:51:ce:ab: db:64:6a:39:27:06:70:51:34:8e:4e:5e:a8:1f:06:f7:cc:b6: 86:1e:73:a6:91:3f:c7:3e:ef:e2:68:c2:32:ff:b9:00:8a:23: ab:bb:b7:63:9d:b5:f2:70:1d:29:ad:4d:ef:cb:ee:bc:b2:2d: b7:9f:4d:05:d7:6b:41:bb:af:29:ef:96:38:59:1a:ba:8b:1b: 0a:7c:e5:85:41:2f:2f:18:03:f2:7e:9d:20:7f:76:61:4f:59: 06:8b:cb:50:0b:a2:ff:86:95:1d:e0:18:42:d0:d5:88:e1:d7: 86:93:f5:33:49:83:62:0f:20:9c:b4:48:b2:67:6c:49:82:f0: c0:30:eb:83:26:ad:26:bd:a5:38:ea:23:1e:e2:c1:0f:82:fe: cd:a7:c1:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjUxMjI0MTYzNzM4WhcNMjUxMjMxMTYzNzM4WjAYMRYwFAYD VQQDDA02OTRjMTZkMi1mOTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJrERUyMK4kOO6/1a5SsZ9z1F6b7RZ3ZXuS7R0OuXO5yE6cXO2YqPFAv37MG ygI4IXcm2Mdm9QBvP5tmWY9vDhypiLBKjtDZkUUBmDp4RRFFg+FUNIAIzN2rcpGB zJAF2LtfvH9ZJ1MWTKIh3K0Z+uwAc6nlGohMErHUqggQcYhQlK2B7UFP1ysl23PQ 5e6/f5Atm5FEZza5bNqgh6NZ8GpV6Bd8i1NrUsdctmJHkzyVDAzmwo1w+odWivvj i1hJFE0SvJEknPoI0m6wR/Hi435d/RkFj5ZwzkS4pKfQrOYcYgUVtJRwELvzLm4S jxbm4sse4nOYTjRQZCtimzzSAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9qWipz mNIFYojLT1EbNSn6lJ/hMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKO+zYreKTme5zhFyEzCMYoDg4YqHmHHz911Vq1WOa1Jguu/IY0XBo kgAjxpinidVR35uP8MVfJdOCLUMwzlkKC67DnpSzHUG5pmPYzU6f89K9aqg9dLXf qPrpGsnl2OV/GuW1LK2p53pRzqvbZGo5JwZwUTSOTl6oHwb3zLaGHnOmkT/HPu/i aMIy/7kAiiOru7djnbXycB0prU3vy+68si23n00F12tBu68p75Y4WRq6ixsKfOWF QS8vGAPyfp0gf3ZhT1kGi8tQC6L/hpUd4BhC0NWI4deGk/UzSYNiDyCctEiyZ2xJ gvDAMOuDJq0mvaU46iMe4sEPgv7Np8G2 -----END CERTIFICATE-----Generated at Thu Dec 25 07:38:36 2025 by rpki-client