This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: alaooF/erxYzCgF3i1JGOWNBbYUQ1GXBGNOxYkZKVN4= Subject key identifier: 80:3D:AF:68:35:8E:92:51:06:E7:CD:05:84:9D:25:8D:3B:7A:6D:EA Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 16F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 16EF Signing time: Mon 22 Dec 2025 16:23:49 +0000 Manifest this update: Mon 22 Dec 2025 16:23:49 +0000 Manifest next update: Mon 29 Dec 2025 16:23:49 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: DqbSOWjwsDskMhGwsn1jSLaGIpmnIoO3CSuLbYMAAlU=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: 85zAa/NDU6R+uxxVwM+5q1AHLvo6RcZxo+KYtDUWQJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5881 (0x16f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Dec 22 16:23:49 2025 GMT Not After : Dec 29 16:23:49 2025 GMT Subject: CN=69497095-565d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:2f:4c:6b:84:51:87:92:f7:73:df:3f:3b: 6a:59:0d:12:37:19:0b:9d:b1:b4:ea:be:99:dd:8e: 16:13:7e:38:e6:e5:78:a4:f1:1c:f8:ff:3d:a8:0c: a1:27:42:9d:6d:fa:7c:52:86:86:0e:77:50:9b:8f: dc:60:8e:b5:8c:fa:67:ad:15:2d:ff:8d:88:54:f4: 1e:9b:7f:f9:00:f1:01:a5:48:06:97:0e:e9:14:a1: bb:9b:49:6d:02:ad:a9:b0:ba:e2:91:29:b9:db:ed: db:50:93:ef:ce:5e:18:76:91:20:4f:d8:8f:5a:3e: 48:d7:c0:e1:a2:9b:ab:80:c6:6a:96:f5:b3:7c:f9: 2c:f8:af:e4:b4:d1:4d:44:fb:bc:7b:94:0a:d6:2d: 26:18:0f:5d:a3:57:41:87:03:e7:82:12:88:ee:3c: 1a:e3:75:13:a0:0d:b5:0a:fe:61:b5:43:b4:e6:de: 8e:a6:62:dc:19:03:f2:36:07:71:65:5c:82:2f:be: 2e:68:62:cb:d3:0c:48:85:f1:b1:0f:3a:e6:11:31: d0:32:e6:4f:e8:7a:2e:df:72:b4:8f:e5:b1:cc:57: 61:59:a5:9f:c6:67:2a:7c:d7:11:8b:ea:56:9b:36: fc:5e:c8:17:ff:ca:4a:02:cb:cf:5b:d7:09:83:90: 5a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3D:AF:68:35:8E:92:51:06:E7:CD:05:84:9D:25:8D:3B:7A:6D:EA X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:85:f7:55:c5:4e:29:e2:45:92:40:48:d0:d2:1e:bb:69:01: b4:b4:d8:62:3f:ea:d2:06:d0:58:00:74:5d:44:66:17:3b:25: 5b:b2:82:2f:aa:ef:c6:59:60:f0:9b:ab:59:1b:bf:2f:af:e0: 6e:a7:33:a1:04:f5:bb:66:63:a4:b2:21:d5:8a:14:41:36:6b: f1:04:40:6d:34:85:7f:3b:b2:af:45:da:4b:57:c6:52:8b:6a: f1:39:de:b6:76:98:f3:b8:c7:33:95:65:60:ef:18:17:53:94: e6:c3:51:24:41:64:a3:0c:54:5a:d7:d3:66:aa:88:e9:94:43: 70:3d:5d:a0:20:0b:f1:b4:e1:e7:47:83:99:42:dd:e4:9d:b1: ee:2d:1b:51:36:0a:11:f1:44:0c:e1:c9:95:67:b4:c6:50:65: 15:e9:65:df:bd:f4:e9:3f:66:30:b3:cf:93:24:66:48:aa:5f: 90:a0:b7:fd:00:c7:7f:95:d6:e5:e8:42:69:7d:06:38:2d:e8: 59:d0:82:b1:34:ba:c5:37:ef:ef:d9:26:53:7c:e0:7d:36:43: 7f:f8:2c:44:fc:ab:30:cd:95:41:fc:c9:dd:78:df:74:81:02: 89:8a:ed:d5:a8:13:32:06:c5:77:c4:4c:19:65:2b:fb:7f:ab: 79:4b:1d:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUxMjIyMTYyMzQ5WhcNMjUxMjI5MTYyMzQ5WjAYMRYwFAYD VQQDDA02OTQ5NzA5NS01NjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxYvTGuEUYeS93PfPztqWQ0SNxkLnbG06r6Z3Y4WE3445uV4pPEc+P89qAyh J0Kdbfp8UoaGDndQm4/cYI61jPpnrRUt/42IVPQem3/5APEBpUgGlw7pFKG7m0lt Aq2psLrikSm52+3bUJPvzl4YdpEgT9iPWj5I18DhopurgMZqlvWzfPks+K/ktNFN RPu8e5QK1i0mGA9do1dBhwPnghKI7jwa43UToA21Cv5htUO05t6OpmLcGQPyNgdx ZVyCL74uaGLL0wxIhfGxDzrmETHQMuZP6Hou33K0j+WxzFdhWaWfxmcqfNcRi+pW mzb8XsgX/8pKAsvPW9cJg5Ba6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA9r2g1 jpJRBufNBYSdJY07em3qMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzhfdVxU4p4kWSQEjQ0h67aQG0tNhiP+rSBtBYAHRdRGYXOyVbsoIv qu/GWWDwm6tZG78vr+BupzOhBPW7ZmOksiHVihRBNmvxBEBtNIV/O7KvRdpLV8ZS i2rxOd62dpjzuMczlWVg7xgXU5Tmw1EkQWSjDFRa19NmqojplENwPV2gIAvxtOHn R4OZQt3knbHuLRtRNgoR8UQM4cmVZ7TGUGUV6WXfvfTpP2Yws8+TJGZIql+QoLf9 AMd/ldbl6EJpfQY4LehZ0IKxNLrFN+/v2SZTfOB9NkN/+CxE/KswzZVB/MndeN90 gQKJiu3VqBMyBsV3xEwZZSv7f6t5Sx17 -----END CERTIFICATE-----Generated at Tue Dec 23 12:54:56 2025 by rpki-client