This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: iOCPkwn1kQp4fHI8TukBMsB2GJU2p/KAWVrtV8JEY1w= Subject key identifier: D2:78:4B:5F:4B:C3:A0:8B:8B:8B:E9:C7:3C:C1:96:82:9C:28:19:79 Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0C3D Signing time: Mon 22 Dec 2025 18:13:49 +0000 Manifest this update: Mon 22 Dec 2025 18:13:48 +0000 Manifest next update: Mon 29 Dec 2025 18:13:48 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: 78TY+oWE7lj/1X/ges8L4b2DZwxF5aCbSlqUXTmpC7I=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oYtKqIUNSIUuh/+KpPti5KOAL0KI5TmVO0WB52ytTkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Dec 22 18:13:48 2025 GMT Not After : Dec 29 18:13:48 2025 GMT Subject: CN=69498a5d-192c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7b:0d:58:c7:9a:0e:8a:46:c0:79:39:51:e6: d8:29:53:36:03:6b:b1:1d:14:bc:37:63:c1:48:0c: 57:cc:8c:84:3b:a5:6c:cc:f0:92:ca:66:f3:9c:16: 9e:fd:7e:7e:4b:46:46:0f:dc:be:c3:de:04:92:32: 4d:de:09:2d:a6:e5:0a:6c:24:b3:57:d9:0a:61:ab: 1c:09:18:1d:a2:f7:1a:47:7c:99:c6:3e:0f:ec:4a: 90:98:e6:46:f2:54:a6:92:14:84:82:33:ab:c1:ba: 53:25:3f:d7:95:e1:c8:27:d5:6d:0b:d0:08:82:05: 4a:76:73:74:6d:37:b2:05:a4:3c:d9:07:f2:6d:7f: bf:36:4a:19:d4:91:ee:8c:bf:bf:08:58:2e:f9:e2: 3b:bd:65:c0:88:a5:bc:54:5a:a6:6d:f6:cf:09:ff: 09:f1:0f:d8:a7:97:51:85:46:8d:14:04:46:14:06: de:05:ec:a4:04:50:46:84:f8:ca:9b:91:6c:db:ef: c6:dd:09:40:54:7f:ad:cf:da:6e:58:4c:99:9c:89: 8e:8f:ef:21:a7:cb:94:37:e9:3b:6f:f5:71:64:b9: ed:93:e8:4a:de:5c:0b:80:f4:ec:c0:f6:1f:1f:94: 70:fb:dd:5a:1b:b7:19:95:ef:7a:c9:32:77:41:a1: b7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:78:4B:5F:4B:C3:A0:8B:8B:8B:E9:C7:3C:C1:96:82:9C:28:19:79 X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:8b:cf:d7:99:d8:43:97:d8:4b:0b:56:cd:94:2b:c3:f3:27: da:f4:17:8a:e0:e9:cf:dd:92:c6:9c:71:45:c5:06:b0:a0:7b: e0:0b:4c:d5:0e:04:a8:4a:e4:ce:d7:ea:d4:71:9d:fc:f7:64: 28:3f:cc:57:a7:83:e1:c2:18:75:e2:06:4e:a5:0b:88:1d:13: ca:a4:e6:03:6e:a7:ff:dc:cd:a1:a0:b1:07:9e:15:70:a0:e7: b3:b5:22:67:af:89:39:d0:d8:75:c0:6d:ec:53:2f:04:3f:89: 1d:22:30:1f:ab:28:d0:71:de:88:fb:8c:28:81:7b:a4:a8:3c: c4:74:16:2d:08:c0:a7:a8:bb:b6:3b:20:6b:ea:1c:17:bc:16: 71:8e:bf:05:9f:ce:93:1a:d7:07:8b:9b:a5:7c:e0:e5:60:f2: 9d:6f:f9:09:b8:92:86:f9:b4:b6:37:74:b6:21:e1:83:7b:64: 1c:b8:fd:03:a5:98:8f:02:4d:c0:19:b6:4d:2f:10:f6:b0:e6: d7:f5:ca:8e:2b:93:ff:66:28:61:be:8d:9d:d4:ab:fa:b2:6d: c9:7a:00:de:53:8b:80:fb:31:90:99:c3:10:06:12:82:83:87: 15:1c:8f:e7:75:6b:34:02:68:11:72:fa:54:f0:9e:71:40:34: 67:55:f9:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjUxMjIyMTgxMzQ4WhcNMjUxMjI5MTgxMzQ4WjAYMRYwFAYD VQQDDA02OTQ5OGE1ZC0xOTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnsNWMeaDopGwHk5UebYKVM2A2uxHRS8N2PBSAxXzIyEO6VszPCSymbznBae /X5+S0ZGD9y+w94EkjJN3gktpuUKbCSzV9kKYascCRgdovcaR3yZxj4P7EqQmOZG 8lSmkhSEgjOrwbpTJT/XleHIJ9VtC9AIggVKdnN0bTeyBaQ82QfybX+/NkoZ1JHu jL+/CFgu+eI7vWXAiKW8VFqmbfbPCf8J8Q/Yp5dRhUaNFARGFAbeBeykBFBGhPjK m5Fs2+/G3QlAVH+tz9puWEyZnImOj+8hp8uUN+k7b/VxZLntk+hK3lwLgPTswPYf H5Rw+91aG7cZle96yTJ3QaG32wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJ4S19L w6CLi4vpxzzBloKcKBl5MB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXi8/XmdhDl9hLC1bNlCvD8yfa9BeK4OnP3ZLGnHFFxQawoHvgC0zV DgSoSuTO1+rUcZ3892QoP8xXp4Phwhh14gZOpQuIHRPKpOYDbqf/3M2hoLEHnhVw oOeztSJnr4k50Nh1wG3sUy8EP4kdIjAfqyjQcd6I+4wogXukqDzEdBYtCMCnqLu2 OyBr6hwXvBZxjr8Fn86TGtcHi5ulfODlYPKdb/kJuJKG+bS2N3S2IeGDe2QcuP0D pZiPAk3AGbZNLxD2sObX9cqOK5P/Zihhvo2d1Kv6sm3JegDeU4uA+zGQmcMQBhKC g4cVHI/ndWs0AmgRcvpU8J5xQDRnVfn8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:35 2025 by rpki-client