This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: sDLoCbg19uFhB0afKXHA0fr+cWdpAKeK8AxNKsb2Yec= Subject key identifier: C5:D6:5B:C5:A2:AB:83:1A:62:5C:D0:75:56:23:8C:AF:ED:BC:8A:E2 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 1474 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 146B Signing time: Mon 22 Dec 2025 16:37:00 +0000 Manifest this update: Mon 22 Dec 2025 16:36:59 +0000 Manifest next update: Mon 29 Dec 2025 16:36:59 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: 2Ji9raq4tOF8v7iWrEFUaElgoR1gmWDBX0pxcEsKbr4=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5236 (0x1474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Dec 22 16:36:59 2025 GMT Not After : Dec 29 16:36:59 2025 GMT Subject: CN=694973ab-5628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:b6:27:6b:31:47:fe:58:61:a1:f6:91:c9:37: aa:b7:70:8b:b7:85:e1:23:ad:9e:c4:c5:8a:3d:c6: 1c:67:8e:2a:d6:ad:2a:99:c3:0a:ea:2a:6f:b8:32: 94:71:73:f9:a4:3c:e6:c0:41:6d:57:e6:0a:ed:84: 83:65:e7:13:f9:8f:84:a3:02:35:ce:13:f0:c4:26: fe:41:54:a6:00:25:7a:1d:1a:ee:08:71:bd:08:a8: 92:d1:40:06:3b:45:86:9a:74:87:e4:26:ca:7d:89: 63:d3:c3:fb:85:a5:38:11:76:2a:d1:38:55:5b:3c: 0a:79:1c:f6:2c:f6:5b:03:be:1a:38:5e:ca:db:0a: fd:91:e7:7e:f4:3b:f5:80:e8:26:52:1b:d5:7c:a2: 89:87:01:8a:0f:63:fa:0a:cb:02:83:b5:d0:97:0a: 7f:54:6f:8b:61:94:03:96:e8:bd:ec:94:ce:8b:e2: 90:ec:85:81:b2:29:56:4f:a6:3f:f8:b3:e9:2b:f7: 64:3f:c7:c7:9f:c2:80:b0:74:5d:0c:9e:6c:f4:c1: 73:08:02:21:cd:20:8e:00:f0:72:d0:bd:99:93:a5: 2c:10:16:8b:c9:cb:0a:00:d0:5b:64:5a:b5:f4:6f: e7:43:61:b8:b9:47:fe:b8:80:6e:b9:59:a1:16:6b: 23:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D6:5B:C5:A2:AB:83:1A:62:5C:D0:75:56:23:8C:AF:ED:BC:8A:E2 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f1:3d:0b:21:19:9f:da:75:28:1b:69:e6:e5:19:48:a1:76: e0:9c:ff:fc:82:0c:c7:e3:a3:a4:af:3b:ec:5e:f7:10:97:ae: eb:ed:84:31:a2:3e:fe:35:37:29:20:da:b6:24:38:47:99:f1: a8:de:5b:0d:42:7f:a7:18:8e:72:e8:73:63:64:d9:2d:d4:29: 48:09:f1:ff:83:23:71:bb:4e:8e:df:4a:a7:25:df:4a:34:e5: f7:41:9f:e4:77:7a:42:de:14:f0:5b:2a:22:01:74:c6:73:97: 96:87:0c:4f:23:a7:94:ee:fd:17:4b:2f:1a:c0:58:04:7f:26: 5c:b8:a4:57:a7:b8:8b:f1:53:b6:2b:05:1b:ed:d4:bb:20:62: 77:cb:05:1f:0d:46:a4:67:d4:78:3a:59:66:c9:a1:3b:48:89: 20:e2:1f:43:f6:25:44:b4:a6:28:4b:32:fd:85:76:de:24:2e: 1c:83:54:b0:b7:34:73:01:d2:51:f2:b7:d2:d6:7f:fc:2e:43: f3:13:9b:86:5a:35:fe:9e:80:f0:23:a9:bf:1e:ac:50:af:82: bb:d7:47:c2:33:71:76:60:48:d6:ee:72:e3:4c:ba:88:15:94: 3c:40:8e:d5:4a:23:62:91:06:00:c0:3a:f9:77:23:b6:bc:11: 18:63:9d:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUxMjIyMTYzNjU5WhcNMjUxMjI5MTYzNjU5WjAYMRYwFAYD VQQDDA02OTQ5NzNhYi01NjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjrYnazFH/lhhofaRyTeqt3CLt4XhI62exMWKPcYcZ44q1q0qmcMK6ipvuDKU cXP5pDzmwEFtV+YK7YSDZecT+Y+EowI1zhPwxCb+QVSmACV6HRruCHG9CKiS0UAG O0WGmnSH5CbKfYlj08P7haU4EXYq0ThVWzwKeRz2LPZbA74aOF7K2wr9ked+9Dv1 gOgmUhvVfKKJhwGKD2P6CssCg7XQlwp/VG+LYZQDlui97JTOi+KQ7IWBsilWT6Y/ +LPpK/dkP8fHn8KAsHRdDJ5s9MFzCAIhzSCOAPBy0L2Zk6UsEBaLycsKANBbZFq1 9G/nQ2G4uUf+uIBuuVmhFmsjMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXWW8Wi q4MaYlzQdVYjjK/tvIriMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs8T0LIRmf2nUoG2nm5RlIoXbgnP/8ggzH46OkrzvsXvcQl67r7YQx oj7+NTcpINq2JDhHmfGo3lsNQn+nGI5y6HNjZNkt1ClICfH/gyNxu06O30qnJd9K NOX3QZ/kd3pC3hTwWyoiAXTGc5eWhwxPI6eU7v0XSy8awFgEfyZcuKRXp7iL8VO2 KwUb7dS7IGJ3ywUfDUakZ9R4OllmyaE7SIkg4h9D9iVEtKYoSzL9hXbeJC4cg1Sw tzRzAdJR8rfS1n/8LkPzE5uGWjX+noDwI6m/HqxQr4K710fCM3F2YEjW7nLjTLqI FZQ8QI7VSiNikQYAwDr5dyO2vBEYY52u -----END CERTIFICATE-----Generated at Wed Dec 24 08:47:08 2025 by rpki-client