This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: 79h99tQdR7RqdgZ0yJfy7BoQBYOKsfTsCJNbyxrquMI= Subject key identifier: 5B:12:85:62:66:E3:35:50:E0:19:FA:48:A7:B3:1A:52:74:28:CF:0D Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 015B Signing time: Tue 23 Dec 2025 03:06:27 +0000 Manifest this update: Tue 23 Dec 2025 03:06:27 +0000 Manifest next update: Tue 30 Dec 2025 03:06:27 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: PyQK3YivwxZY1LRCPm3BCY1mvGHmzdlPfA7Bg7tt7Sk=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: WWVsNPRylFl9Oj5E0+wxXjfLrjfPmxjiDu6REzUJaLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Dec 23 03:06:27 2025 GMT Not After : Dec 30 03:06:27 2025 GMT Subject: CN=694a0733-c856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:03:ef:5d:ee:c7:0e:cb:2c:4d:63:2f:73:06: 23:18:c9:b9:4e:e6:06:d9:a0:ec:c3:71:fa:ae:1a: b5:4e:22:00:ab:68:df:22:3e:fa:5e:b2:40:bc:ab: 72:6e:f5:8b:d5:4f:d5:5b:87:e2:e7:25:1c:94:1d: 92:3b:25:1b:e3:3c:14:1f:04:32:4f:a1:28:0c:ea: 29:2e:58:d1:ea:3f:fa:35:35:bc:29:27:3b:45:54: 05:46:d7:a3:f5:70:28:bc:ba:b5:08:e2:8b:01:53: 6b:da:7b:b0:d5:15:bd:20:41:e8:5d:d8:be:8e:2e: 00:9c:1a:bc:98:6e:8e:17:d8:3b:07:f5:04:51:1c: 62:42:cc:b9:66:d4:4f:4f:f2:b8:34:8b:ca:4e:a8: 53:a1:99:b8:41:d7:94:6f:00:11:9c:0b:a4:97:af: a9:26:44:2e:e6:ef:07:19:b7:98:11:7e:ca:ce:b9: f9:14:28:08:79:4f:63:04:37:50:82:8b:a0:a0:13: 38:19:48:f4:fb:f2:5c:19:f6:ea:ea:5b:d7:a6:61: 99:1f:c5:50:df:c0:63:4c:68:e1:4c:7c:e1:2c:72: dd:fa:72:0c:49:10:5d:da:19:46:82:c2:5a:84:78: 02:89:cc:86:1c:f9:42:38:7a:1c:db:b5:ee:58:72: 9f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:12:85:62:66:E3:35:50:E0:19:FA:48:A7:B3:1A:52:74:28:CF:0D X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:ad:2b:c7:9b:fc:c2:67:54:14:74:c8:be:90:12:c9:0d:b3: 0e:68:35:be:f1:0b:36:66:9a:f3:a4:54:ed:83:a8:a8:8b:c9: c3:32:cd:89:42:1b:0a:87:36:16:c9:48:4d:f0:ed:22:23:1e: e0:1f:24:1e:46:4a:7b:22:7b:06:ef:df:78:c6:ff:e4:9a:78: bd:47:91:e8:d3:68:d8:0c:62:5c:8e:6f:57:55:91:d3:a2:13: 56:6c:6c:d6:09:da:fb:ac:c8:29:a0:f9:57:93:51:b8:5a:af: 03:8d:fc:ba:3b:c2:59:52:b3:a3:5a:5f:e2:69:a5:02:de:18: 19:88:c8:b6:2e:9b:51:8e:e5:bb:2e:f0:01:cc:8c:ea:1b:90: 74:4a:d1:78:13:09:bd:3a:56:72:6e:b9:44:65:35:10:e6:41: f9:f9:68:f8:6f:e2:c5:24:19:de:c7:7f:37:74:b7:1a:9c:be: d1:8c:d8:28:0b:3f:7e:65:99:fa:95:05:e4:96:4c:9c:2d:60: d5:aa:41:2c:d0:36:4a:2d:80:ff:df:f2:45:68:72:c0:d8:76: d0:9a:7c:41:a9:bc:d2:20:21:86:e4:05:b2:c9:ba:c0:05:94: 3c:76:f6:ba:28:1b:5e:4f:a6:4d:57:43:d0:72:ef:a6:6a:5f: 06:f1:11:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUxMjIzMDMwNjI3WhcNMjUxMjMwMDMwNjI3WjAYMRYwFAYD VQQDDA02OTRhMDczMy1jODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QPvXe7HDsssTWMvcwYjGMm5TuYG2aDsw3H6rhq1TiIAq2jfIj76XrJAvKty bvWL1U/VW4fi5yUclB2SOyUb4zwUHwQyT6EoDOopLljR6j/6NTW8KSc7RVQFRtej 9XAovLq1COKLAVNr2nuw1RW9IEHoXdi+ji4AnBq8mG6OF9g7B/UEURxiQsy5ZtRP T/K4NIvKTqhToZm4QdeUbwARnAukl6+pJkQu5u8HGbeYEX7Kzrn5FCgIeU9jBDdQ gougoBM4GUj0+/JcGfbq6lvXpmGZH8VQ38BjTGjhTHzhLHLd+nIMSRBd2hlGgsJa hHgCicyGHPlCOHoc27XuWHKfvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsShWJm 4zVQ4Bn6SKezGlJ0KM8NMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARrSvHm/zCZ1QUdMi+kBLJDbMOaDW+8Qs2ZprzpFTtg6ioi8nDMs2J QhsKhzYWyUhN8O0iIx7gHyQeRkp7InsG7994xv/kmni9R5Ho02jYDGJcjm9XVZHT ohNWbGzWCdr7rMgpoPlXk1G4Wq8Djfy6O8JZUrOjWl/iaaUC3hgZiMi2LptRjuW7 LvABzIzqG5B0StF4Ewm9OlZybrlEZTUQ5kH5+Wj4b+LFJBnex383dLcanL7RjNgo Cz9+ZZn6lQXklkycLWDVqkEs0DZKLYD/3/JFaHLA2HbQmnxBqbzSICGG5AWyybrA BZQ8dva6KBteT6ZNV0PQcu+mal8G8RHN -----END CERTIFICATE-----Generated at Tue Dec 23 23:28:42 2025 by rpki-client