This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: 8N4Gm3q+Enn5f5mFnGp8UiF1dIUf7OMDBbNPXXjYzoo= Subject key identifier: C8:14:94:1B:8B:38:95:70:AA:14:7A:5A:45:D4:97:8B:07:37:D9:19 Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 0630 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 0629 Signing time: Sat 06 Dec 2025 21:39:24 +0000 Manifest this update: Sat 06 Dec 2025 21:39:23 +0000 Manifest next update: Sat 13 Dec 2025 21:39:23 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: SG8pPZnBt1CyTu+cAxub5TzPSkWRVs7MM2/9jcdcClM=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: an7WXAxX+jv7oF31g7hZpPAQEGzXt/L0AOIi2ZabL2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Dec 6 21:39:23 2025 GMT Not After : Dec 13 21:39:23 2025 GMT Subject: CN=6934a28c-2ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cd:37:b3:4c:97:49:2c:c0:0b:19:77:64:33: 67:0d:af:00:0b:b8:82:c1:c2:72:72:34:70:d7:61: 10:d7:3e:ff:0e:4a:76:a2:38:3c:88:10:3b:72:21: 09:1b:df:7a:1e:ea:f2:3f:b5:b5:f7:8a:b5:3a:09: 7a:7f:be:aa:95:ec:2d:26:a2:c3:3f:45:66:10:d2: 6a:a7:be:2a:39:58:0a:0b:37:a3:27:87:46:5c:2b: 7e:84:6b:24:91:a4:c6:cc:9c:05:56:52:b7:d5:42: ce:12:7a:a2:7f:b0:76:7e:56:d8:cf:f9:17:71:38: 71:bf:4b:e0:f4:5b:da:64:d9:19:6d:aa:db:5d:4b: 1e:e0:4a:e6:f9:3e:07:92:d7:5d:55:6c:cc:1f:b2: 4f:5b:d1:c5:a9:73:f1:d2:e7:1b:0c:5f:d3:16:b5: b7:d8:c2:45:82:6e:d1:1c:3c:1b:66:d9:f3:a3:b0: 7d:21:c1:2c:55:5d:d5:69:aa:ad:25:08:c7:dd:39: 51:92:8d:c0:0d:37:68:60:cc:19:77:c6:da:ce:46: 09:5a:1a:70:fd:08:40:4b:83:33:db:95:92:71:25: 30:49:58:e8:3d:99:6a:11:bc:e3:93:77:d9:90:30: 0f:8a:ac:73:6d:42:bb:d6:65:c2:6c:5f:ac:11:90: 80:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:14:94:1B:8B:38:95:70:AA:14:7A:5A:45:D4:97:8B:07:37:D9:19 X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:3b:ff:ff:f0:81:17:7a:af:5d:eb:10:56:3d:ca:d2:14:2a: 9b:59:b6:69:67:11:4c:30:c7:f8:9c:55:7e:57:63:62:fb:67: 25:43:55:3d:44:6e:19:d1:51:31:b3:2f:9b:8a:67:41:cf:f1: 85:99:ca:14:30:93:94:19:ef:1b:d2:aa:1e:6f:22:a4:62:2a: 63:a9:fa:b2:9f:1f:09:64:65:4d:34:6f:e6:f9:7f:5d:24:cd: 4f:87:2e:4e:ff:1e:de:4a:5f:88:e1:11:ba:43:35:64:49:16: df:30:ae:1b:ed:72:ab:21:92:e8:93:7d:f5:c5:91:7d:8c:16: da:91:21:91:4e:0b:eb:2e:23:ff:83:d2:20:18:35:ca:43:1e: bf:f8:d7:49:d0:88:59:fd:e1:86:60:f2:f6:5c:9f:9d:27:01: f9:fd:35:3e:49:72:6c:49:22:31:e7:3c:84:96:3e:c5:c4:60: 9d:3b:94:e4:47:08:a9:ae:f0:79:10:74:57:91:88:a7:e7:62: 27:ba:b6:c3:ca:5c:f7:a4:55:be:33:20:c3:86:16:11:d9:1b: a2:55:39:b6:0c:12:3e:9d:b7:47:ba:19:0a:75:6c:23:ae:9d: 5e:9c:a9:e4:f9:67:1b:33:85:9a:8c:ec:ee:31:95:0c:01:7d: c2:46:79:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjUxMjA2MjEzOTIzWhcNMjUxMjEzMjEzOTIzWjAYMRYwFAYD VQQDEw02OTM0YTI4Yy0yZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1s03s0yXSSzACxl3ZDNnDa8AC7iCwcJycjRw12EQ1z7/Dkp2ojg8iBA7ciEJ G996HuryP7W194q1Ogl6f76qlewtJqLDP0VmENJqp74qOVgKCzejJ4dGXCt+hGsk kaTGzJwFVlK31ULOEnqif7B2flbYz/kXcThxv0vg9FvaZNkZbarbXUse4Erm+T4H ktddVWzMH7JPW9HFqXPx0ucbDF/TFrW32MJFgm7RHDwbZtnzo7B9IcEsVV3Vaaqt JQjH3TlRko3ADTdoYMwZd8bazkYJWhpw/QhAS4Mz25WScSUwSVjoPZlqEbzjk3fZ kDAPiqxzbUK71mXCbF+sEZCAPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgUlBuL OJVwqhR6WkXUl4sHN9kZMB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5O///8IEXeq9d6xBWPcrSFCqbWbZpZxFMMMf4nFV+V2Ni+2clQ1U9 RG4Z0VExsy+bimdBz/GFmcoUMJOUGe8b0qoebyKkYipjqfqynx8JZGVNNG/m+X9d JM1Phy5O/x7eSl+I4RG6QzVkSRbfMK4b7XKrIZLok331xZF9jBbakSGRTgvrLiP/ g9IgGDXKQx6/+NdJ0IhZ/eGGYPL2XJ+dJwH5/TU+SXJsSSIx5zyElj7FxGCdO5Tk RwiprvB5EHRXkYin52InurbDylz3pFW+MyDDhhYR2RuiVTm2DBI+nbdHuhkKdWwj rp1enKnk+WcbM4WajOzuMZUMAX3CRnlX -----END CERTIFICATE-----Generated at Mon Dec 8 06:23:31 2025 by rpki-client