This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: NGGTqvVRp9qTjq9opkHD7B7Q9H9iBTbVSGOQBi0iusU= Subject key identifier: 7F:25:6D:3E:CF:1D:7B:6B:80:4E:56:E3:49:C0:A8:A1:7D:C5:44:5D Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 98 Signing time: Tue 23 Dec 2025 05:20:42 +0000 Manifest this update: Tue 23 Dec 2025 05:20:41 +0000 Manifest next update: Tue 30 Dec 2025 05:20:41 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: BA1APne3KKCNKtPFCz3fWxCBAB36YUGCEYNGHVgPEWY=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: iou6EnoDniALad6Yrel3h0kHQ1grK3uoWpHvIkBO8LI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Dec 23 05:20:41 2025 GMT Not After : Dec 30 05:20:41 2025 GMT Subject: CN=694a26a9-9a21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:22:eb:33:c6:eb:b5:bf:a2:19:81:34:b1:a4: 3e:0a:9e:bc:37:a5:ee:8e:8d:f7:20:be:b1:c8:50: 5a:f7:12:87:f7:71:f7:b6:ff:a0:d1:e3:0c:21:b7: 3b:64:2b:3a:95:f2:7c:99:8c:47:a8:49:1e:40:90: 14:02:a8:25:6f:17:29:1d:eb:1b:95:0f:b1:f3:30: 34:88:f1:6e:53:e0:74:fd:d7:49:e2:54:cc:3c:2f: 4d:79:20:89:be:2c:c5:6d:a4:e8:a7:62:c2:49:f5: cc:fc:5a:cf:80:80:95:be:80:50:83:ed:d3:20:c8: b6:a9:a4:a8:9a:ab:37:26:aa:da:0d:c8:c8:05:dd: e9:cc:60:5e:e4:6f:3b:fe:b7:79:b7:9e:8e:42:8c: 1c:50:77:ee:2b:e4:04:d2:86:34:fa:8c:98:c0:32: fd:da:0d:93:9a:f7:e0:a2:ae:fb:45:82:06:e9:ff: 6b:c1:86:a7:a5:9d:2d:0c:86:b0:9e:31:95:b5:fe: 5b:1a:58:22:f8:42:b8:84:57:d3:05:3f:ec:ec:68: c8:3d:90:37:23:fd:9f:47:ed:86:a8:08:2a:c0:83: bb:14:36:82:47:24:b2:db:41:65:cb:7d:ad:7e:be: 24:01:29:9d:8e:5d:53:d4:89:6e:e9:df:7a:7e:b1: 32:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:25:6D:3E:CF:1D:7B:6B:80:4E:56:E3:49:C0:A8:A1:7D:C5:44:5D X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:3e:0e:19:2c:95:6f:ed:72:52:74:cb:7c:1f:4a:c9:e8:57: aa:c7:37:93:fd:25:f1:8f:94:ad:62:b8:2d:c4:86:df:60:17: e4:ac:c6:d8:94:03:8e:3d:77:74:45:8e:00:b1:c9:de:c1:f6: ba:79:9a:3e:29:fe:b0:c4:56:81:cb:12:b8:b5:45:99:4b:80: c1:24:75:ff:4b:47:86:b2:d2:44:8b:e2:7b:0d:88:0f:3f:28: 31:7f:79:a9:78:c9:0f:b9:2a:17:30:2c:dd:df:e5:f2:de:a6: 25:f6:59:f2:0e:12:3e:1c:d9:af:f8:67:65:9b:d6:8c:f7:52: 16:98:a5:4d:af:2a:31:24:54:85:01:74:f9:13:0a:8a:6d:fc: 1c:d9:01:71:40:fc:f1:b9:93:eb:f8:b8:dd:bd:bd:a1:9e:76: e9:b1:03:d1:d7:81:d0:03:df:29:0a:24:c4:40:74:29:90:96: 7c:64:a3:63:32:c8:92:6f:3c:6f:89:f6:92:54:66:24:23:0e: 51:9a:e9:2d:68:6b:20:85:22:e3:72:ab:f7:ba:62:8b:74:9b: fb:c2:e4:37:c0:19:b7:c7:a6:2d:5d:91:45:5f:51:01:ae:08: 99:91:95:79:83:2a:4d:3b:95:f0:6a:a9:85:44:55:d8:ad:2f: 6b:35:1f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0OTgxMTAvBgNVBAUTKDFDREUxMjQ0Q0JCQjk2NTQyRTZDOEIwOUEzREFDMUMx QjQ0MzY4RDcwHhcNMjUxMjIzMDUyMDQxWhcNMjUxMjMwMDUyMDQxWjAYMRYwFAYD VQQDDA02OTRhMjZhOS05YTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyLrM8brtb+iGYE0saQ+Cp68N6Xujo33IL6xyFBa9xKH93H3tv+g0eMMIbc7 ZCs6lfJ8mYxHqEkeQJAUAqglbxcpHesblQ+x8zA0iPFuU+B0/ddJ4lTMPC9NeSCJ vizFbaTop2LCSfXM/FrPgICVvoBQg+3TIMi2qaSomqs3JqraDcjIBd3pzGBe5G87 /rd5t56OQowcUHfuK+QE0oY0+oyYwDL92g2Tmvfgoq77RYIG6f9rwYanpZ0tDIaw njGVtf5bGlgi+EK4hFfTBT/s7GjIPZA3I/2fR+2GqAgqwIO7FDaCRySy20Fly32t fr4kASmdjl1T1Ilu6d96frEynwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8lbT7P HXtrgE5W40nAqKF9xURdMB8GA1UdIwQYMBaAFBzeEkTLu5ZULmyLCaPawcG0Q2jX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ5OC9EMkRFRDM0NkY4 MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xsUXViSXNKbzlyQndiUkRh TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ5OC9EMkRFRDM0NkY4MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xs UXViSXNKbzlyQndiUkRhTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDPg4ZLJVv7XJSdMt8H0rJ6FeqxzeT/SXxj5StYrgtxIbfYBfkrMbY lAOOPXd0RY4Ascnewfa6eZo+Kf6wxFaByxK4tUWZS4DBJHX/S0eGstJEi+J7DYgP Pygxf3mpeMkPuSoXMCzd3+Xy3qYl9lnyDhI+HNmv+Gdlm9aM91IWmKVNryoxJFSF AXT5EwqKbfwc2QFxQPzxuZPr+Ljdvb2hnnbpsQPR14HQA98pCiTEQHQpkJZ8ZKNj MsiSbzxvifaSVGYkIw5RmuktaGsghSLjcqv3umKLdJv7wuQ3wBm3x6YtXZFFX1EB rgiZkZV5gypNO5XwaqmFRFXYrS9rNR8z -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:32 2025 by rpki-client