This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: ZvGyiuk44PUhdtQjWOre3gGtXqDKISsbbHDaxUe/4jM= Subject key identifier: 1E:A1:A7:F4:40:D0:C2:11:6C:5A:17:F3:F8:C2:ED:29:64:DA:7D:8E Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: AB Signing time: Sun 07 Dec 2025 04:21:51 +0000 Manifest this update: Sun 07 Dec 2025 04:21:51 +0000 Manifest next update: Sun 14 Dec 2025 04:21:51 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: 20Ccwx3boxNoURiiXy72PFww//ZkdqFMWUgwI6udOLE=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: 2FGmDI1OZCn2kXGRhcOkUfm2jCMswTb7EQPD9YLXHCc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Dec 7 04:21:51 2025 GMT Not After : Dec 14 04:21:51 2025 GMT Subject: CN=693500df-806d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:72:62:a8:01:04:6c:d3:7d:6c:66:e1:92:1f: 2b:a0:28:47:ee:ad:be:ef:d6:d7:ba:76:5f:89:4c: 84:97:6f:3b:3e:8c:8d:24:f3:e9:f0:ad:d9:cb:df: ff:01:7d:60:33:73:9d:9f:d5:0d:b8:99:ff:e3:0d: 85:3e:ce:85:b4:91:e0:7e:22:bc:40:cf:81:ae:af: 84:c8:6b:34:57:39:dd:b3:db:94:99:81:86:db:46: f6:ad:0c:0d:e5:76:d4:86:b2:c5:20:bd:bc:9e:c9: 1f:52:b7:e6:ac:90:ce:29:33:d3:46:dd:07:22:1a: 04:6d:8a:57:a6:91:ea:61:ef:cf:40:14:87:32:9b: 8d:c4:34:f7:66:8a:f2:f4:a8:13:6c:52:29:b5:4f: 85:14:b7:e0:5b:14:8c:6c:03:4b:9b:62:52:72:1c: a5:8b:c5:9d:f9:31:40:da:6f:83:57:7b:01:3a:57: 0e:78:c7:18:79:f8:f6:b3:01:0d:d3:61:ae:f4:01: 27:d4:34:25:d1:01:96:90:03:4d:14:db:2b:0c:59: 5a:ac:1e:fd:85:10:97:e2:43:24:a2:ab:2c:a6:ce: fe:af:0d:2f:1c:a9:04:c3:86:75:c9:da:ec:60:30: e4:93:33:20:66:59:d4:43:89:92:46:74:8d:59:4e: d3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A1:A7:F4:40:D0:C2:11:6C:5A:17:F3:F8:C2:ED:29:64:DA:7D:8E X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d7:f6:62:e0:4e:7b:4e:f0:c0:91:36:06:84:3d:43:84:46: ee:c0:d6:d5:6c:67:35:f3:d8:b0:94:3d:ff:24:df:da:c1:93: 8b:e4:a9:0c:60:45:55:d4:63:13:86:f5:81:bc:42:4c:8f:62: f9:83:a1:1c:a2:d8:74:d1:6e:f7:56:87:9c:4e:4e:e3:5a:23: 37:1f:d6:19:2c:c3:2b:d0:a8:94:11:7e:30:77:34:66:e9:4b: b1:b2:e7:59:a9:43:e7:84:12:b2:71:3e:28:10:e4:63:99:41: b5:62:0a:f0:e7:a9:d1:57:ac:29:aa:9a:cb:28:e3:3b:fc:6b: 04:66:3b:a3:77:88:06:71:6f:59:35:67:83:bf:07:d0:53:62: 36:bc:19:09:6c:a7:6b:b3:7f:af:66:55:ea:0e:58:76:cd:78: 7f:da:a3:9a:1b:7d:28:20:69:e7:11:d5:fe:b6:12:50:28:42: 87:fd:c7:60:00:3d:e6:6c:aa:44:25:a4:9d:71:47:39:b2:92: 1a:14:4f:8f:2d:a6:b6:41:f2:9f:d2:7f:83:63:68:5a:74:a7: 43:5e:ff:38:c6:80:6f:0b:9a:f9:36:29:ae:be:9b:30:4a:9e: 4b:45:6d:58:2a:ac:3b:cd:2d:36:c9:02:38:19:d3:9a:96:4f: 41:fa:4c:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE1REMxMTAvBgNVBAUTKDFENDVFNzI5NDU0QTI0MjQ0NjdCMDNDRkM5OTdEN0VC MTg0QUU3NjYwHhcNMjUxMjA3MDQyMTUxWhcNMjUxMjE0MDQyMTUxWjAYMRYwFAYD VQQDEw02OTM1MDBkZi04MDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nJiqAEEbNN9bGbhkh8roChH7q2+79bXunZfiUyEl287PoyNJPPp8K3Zy9// AX1gM3Odn9UNuJn/4w2FPs6FtJHgfiK8QM+Brq+EyGs0Vznds9uUmYGG20b2rQwN 5XbUhrLFIL28nskfUrfmrJDOKTPTRt0HIhoEbYpXppHqYe/PQBSHMpuNxDT3Zory 9KgTbFIptU+FFLfgWxSMbANLm2JSchyli8Wd+TFA2m+DV3sBOlcOeMcYefj2swEN 02Gu9AEn1DQl0QGWkANNFNsrDFlarB79hRCX4kMkoqssps7+rw0vHKkEw4Z1ydrs YDDkkzMgZlnUQ4mSRnSNWU7TXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6hp/RA 0MIRbFoX8/jC7Slk2n2OMB8GA1UdIwQYMBaAFB1F5ylFSiQkRnsDz8mX1+sYSudm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTVEQy81ODIzQUY4NkNF RUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi9IVVhuS1VWS0pDUkdld1BQeVpmWDZ4aEs1 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTVEQy81ODIzQUY4NkNFRUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi9IVVhuS1VWS0pD Ukdld1BQeVpmWDZ4aEs1MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu1/Zi4E57TvDAkTYGhD1DhEbuwNbVbGc189iwlD3/JN/awZOL5KkM YEVV1GMThvWBvEJMj2L5g6Ecoth00W73VoecTk7jWiM3H9YZLMMr0KiUEX4wdzRm 6UuxsudZqUPnhBKycT4oEORjmUG1Ygrw56nRV6wpqprLKOM7/GsEZjujd4gGcW9Z NWeDvwfQU2I2vBkJbKdrs3+vZlXqDlh2zXh/2qOaG30oIGnnEdX+thJQKEKH/cdg AD3mbKpEJaSdcUc5spIaFE+PLaa2QfKf0n+DY2hadKdDXv84xoBvC5r5Nimuvpsw Sp5LRW1YKqw7zS02yQI4GdOalk9B+kym -----END CERTIFICATE-----Generated at Mon Dec 8 06:46:33 2025 by rpki-client