This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: +I7GHrAwiswzAvRhqCbsYKDDBIRZQxqbiYy+irG1EzA= Subject key identifier: CB:55:CE:C7:7C:13:E5:83:AB:6A:B7:85:5B:C1:CA:57:CF:61:67:5B Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 96 Signing time: Tue 23 Dec 2025 05:23:28 +0000 Manifest this update: Tue 23 Dec 2025 05:23:27 +0000 Manifest next update: Tue 30 Dec 2025 05:23:27 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: LJ4Algl9ToKT1MVI3v5dV9zALihlM+OXXh3REBo9Pg0=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: 0M63JvIdFfuu35AAppLF2AY+BsaEXFTD4uLQ+gUHRuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Dec 23 05:23:27 2025 GMT Not After : Dec 30 05:23:27 2025 GMT Subject: CN=694a274f-ac19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3d:6f:14:2a:ec:bb:4b:15:72:5a:a2:36:59: d2:9c:8c:3b:0c:d0:99:56:44:6c:0a:ac:57:cd:11: d5:d3:5e:6a:c3:40:6a:c5:1b:d6:c9:79:c4:7a:ab: 33:9b:5c:dc:90:ed:a3:33:9d:fa:e1:fd:49:48:f1: 35:46:f6:65:d5:d3:20:0a:32:63:a9:16:ac:e4:70: 08:7d:9e:24:43:16:31:06:d1:d3:0e:41:2c:67:17: d7:c1:06:7d:43:89:f5:3c:03:46:4f:e7:d5:cd:6f: 22:28:4a:8b:47:69:28:4a:81:7b:e4:cb:07:44:a8: cd:d8:b5:63:66:64:f9:69:c4:05:20:a6:2e:ef:87: 46:6d:d9:97:ea:7d:ed:25:27:ca:7d:f1:39:2e:de: 53:e8:c6:11:d8:db:8f:50:59:0c:aa:82:24:30:cb: af:f4:1e:ac:05:ce:d1:df:0d:cc:9c:b7:24:76:24: 64:15:09:3d:bf:9e:0e:a7:4d:f7:7f:f4:8a:da:0e: b3:94:7d:e1:b4:91:42:3f:b3:a9:82:1d:4c:f8:2d: 10:ff:48:ff:e2:1f:11:f7:4f:68:99:9a:b9:51:dd: ef:4f:8a:bd:37:67:1c:84:f4:90:1f:4b:ea:75:50: d2:5b:97:5c:3b:f7:0a:43:ff:d9:91:21:b4:15:d0: 1f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:55:CE:C7:7C:13:E5:83:AB:6A:B7:85:5B:C1:CA:57:CF:61:67:5B X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:65:0a:77:42:41:94:65:d8:13:a8:a6:1f:fe:f5:eb:16:38: 90:85:15:e7:6e:0b:c6:33:fd:12:04:6f:5d:54:98:ff:fb:f2: 1f:6b:73:6e:71:3f:9c:63:69:11:32:d5:c9:88:8a:8e:12:e3: 68:09:c6:6f:af:d1:23:6a:de:13:4b:f8:55:57:e7:a6:58:b9: 23:11:25:0f:31:8f:ec:09:1e:c3:e3:db:ea:ca:3e:d8:75:61: 24:e6:2d:5f:75:05:90:76:b7:92:52:5e:15:b0:c9:3a:90:89: e4:5f:a0:e5:13:b9:39:3b:db:f2:c7:0b:45:0f:2f:73:e9:77: 80:11:a5:58:47:85:33:b7:aa:98:9d:0a:89:77:5b:fc:a4:f6: 51:17:27:63:d4:18:f4:43:97:bf:13:1b:63:7f:85:be:a6:15: 3a:94:31:ce:b2:92:04:b8:73:11:70:b2:75:17:24:6a:2f:8c: 1d:5d:3f:d2:ca:31:b1:a9:df:f6:d9:e3:75:87:1c:45:3e:7e: 8d:5e:51:57:0f:92:0d:65:3d:4e:e9:de:17:81:02:94:13:4a: 11:c2:f6:5b:01:ec:83:09:d0:04:b0:76:18:4a:90:32:1c:e1: 31:ad:c0:c7:35:23:b8:99:7e:14:b8:f6:1c:4d:92:f7:a1:52: aa:73:5f:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwNjYxMTAvBgNVBAUTKDFENEVDNDI1MzMxM0I2MkM0ODQ0OTE2Qjg1REMwRkZF NEIwN0Q1MDgwHhcNMjUxMjIzMDUyMzI3WhcNMjUxMjMwMDUyMzI3WjAYMRYwFAYD VQQDDA02OTRhMjc0Zi1hYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4z1vFCrsu0sVclqiNlnSnIw7DNCZVkRsCqxXzRHV015qw0BqxRvWyXnEeqsz m1zckO2jM5364f1JSPE1RvZl1dMgCjJjqRas5HAIfZ4kQxYxBtHTDkEsZxfXwQZ9 Q4n1PANGT+fVzW8iKEqLR2koSoF75MsHRKjN2LVjZmT5acQFIKYu74dGbdmX6n3t JSfKffE5Lt5T6MYR2NuPUFkMqoIkMMuv9B6sBc7R3w3MnLckdiRkFQk9v54Op033 f/SK2g6zlH3htJFCP7Opgh1M+C0Q/0j/4h8R909omZq5Ud3vT4q9N2cchPSQH0vq dVDSW5dcO/cKQ//ZkSG0FdAfowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtVzsd8 E+WDq2q3hVvBylfPYWdbMB8GA1UdIwQYMBaAFB1OxCUzE7YsSESRa4XcD/5LB9UI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjA2Ni82NDhBODgzMkZC NjQxMUVGQkM5QjM1MjlDNEY5QUUwMi9IVTdFSlRNVHRpeElSSkZyaGR3UF9rc0gx UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjA2Ni82NDhBODgzMkZCNjQxMUVGQkM5QjM1MjlDNEY5QUUwMi9IVTdFSlRNVHRp eElSSkZyaGR3UF9rc0gxUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqZQp3QkGUZdgTqKYf/vXrFjiQhRXnbgvGM/0SBG9dVJj/+/Ifa3Nu cT+cY2kRMtXJiIqOEuNoCcZvr9Ejat4TS/hVV+emWLkjESUPMY/sCR7D49vqyj7Y dWEk5i1fdQWQdreSUl4VsMk6kInkX6DlE7k5O9vyxwtFDy9z6XeAEaVYR4Uzt6qY nQqJd1v8pPZRFydj1Bj0Q5e/Extjf4W+phU6lDHOspIEuHMRcLJ1FyRqL4wdXT/S yjGxqd/22eN1hxxFPn6NXlFXD5INZT1O6d4XgQKUE0oRwvZbAeyDCdAEsHYYSpAy HOExrcDHNSO4mX4UuPYcTZL3oVKqc19j -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:06 2025 by rpki-client