This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: TeP1SoZI85CnrSIkSqdyFl1QI7wOgu5TcLMMvY9EhiM= Subject key identifier: 12:33:B4:7D:29:BC:20:6B:46:D0:D9:68:C0:B9:AB:58:E3:47:E3:01 Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 02D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 02CA Signing time: Tue 23 Dec 2025 00:25:52 +0000 Manifest this update: Tue 23 Dec 2025 00:25:51 +0000 Manifest next update: Tue 30 Dec 2025 00:25:51 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: c2sg+IkT3lU2xRnqSdAUySsjwAMtpvxeRRAsIloJxvU=) 2: 9A59F7D670E411F0A8BFEE2AC4F9AE02.roa (hash: WJqsk6AcOsT6swR6sit9xUG2kzzl+g8zMFEk5jMyaa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Dec 23 00:25:51 2025 GMT Not After : Dec 30 00:25:51 2025 GMT Subject: CN=6949e190-4726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bc:11:a6:99:dc:ba:9a:fa:16:e2:e7:a7:44: 06:aa:3c:89:85:24:e7:38:fc:92:3e:b4:ed:ce:be: a9:ee:04:51:26:e1:58:d3:00:74:cb:7a:57:95:41: ce:77:ea:bd:c0:fe:03:0d:c1:38:3f:e6:2a:6c:fc: 33:98:5b:5f:e0:ab:83:2a:29:0e:40:2b:0d:f8:07: 6b:89:6c:de:f7:2a:7e:b2:6d:59:2d:ec:31:e8:0f: 0f:c8:66:cf:b2:e4:0e:10:db:7f:da:44:18:88:fc: 61:63:82:08:6f:8a:e0:ba:42:6b:c9:d9:55:ad:57: 18:6a:2d:f7:e6:92:ae:ae:70:db:6d:6f:f8:79:3a: d1:90:75:8f:fb:a8:01:7b:82:5a:49:ac:48:67:d5: 41:f3:78:16:d5:69:0e:3d:ae:dc:8f:01:5b:76:49: fe:45:8e:c2:0a:6e:33:5f:2f:34:01:aa:a8:69:15: 53:ab:c5:22:fe:c2:65:84:f0:38:a1:d4:0d:73:07: bd:bb:92:5e:94:f3:19:1c:12:af:bd:ae:fe:ad:22: 1a:5e:a7:13:f8:61:65:99:e0:b2:2b:51:8e:e4:f3: b5:6c:7a:a4:68:de:b5:6d:fd:29:27:9d:a7:b2:f9: 97:6e:a4:97:ed:2c:da:30:06:ed:18:ab:d1:89:ff: 01:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:33:B4:7D:29:BC:20:6B:46:D0:D9:68:C0:B9:AB:58:E3:47:E3:01 X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:c3:eb:ae:a2:6d:45:ae:58:ba:99:cc:d4:5f:20:77:f2:04: 5b:49:51:0d:48:f5:44:30:ac:f1:1b:54:54:dd:8c:a3:91:e9: 83:04:28:0e:70:82:08:a4:c1:7c:3f:a5:15:57:f6:c2:17:66: cf:b0:47:c0:b0:9a:92:8e:e3:e8:80:ed:85:56:ee:f0:e0:af: e6:3e:ad:f5:45:65:65:60:28:94:5d:03:d0:de:32:fa:2b:dc: 71:2d:8a:77:72:c1:76:fb:90:2d:b1:5d:b5:16:ea:0d:b5:a1: 7e:f5:61:c3:27:88:82:f4:79:14:68:aa:31:f0:41:da:96:40: 4c:77:1f:6f:23:86:ea:8b:a0:29:a7:6a:3f:0e:b4:c8:fe:04: 11:d1:83:8a:e4:1c:7e:60:9a:50:eb:2c:c8:72:e1:59:68:da: fc:05:f1:b7:b8:1d:66:1e:21:fa:b4:87:2f:68:fc:46:df:66: 8b:e9:1e:0e:76:7c:65:a0:a6:06:3b:39:4c:b2:ba:17:3c:35: fb:a6:66:84:9f:e6:e9:4e:71:5a:1c:25:e3:0d:55:f6:c5:90: 2f:81:e9:68:b7:ae:8f:8d:03:df:15:2b:70:d0:d3:aa:56:17: 7f:6e:d0:ce:63:cb:d9:e6:55:4a:0b:52:66:ac:28:f7:e9:ba: ab:b5:cc:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUxMjIzMDAyNTUxWhcNMjUxMjMwMDAyNTUxWjAYMRYwFAYD VQQDDA02OTQ5ZTE5MC00NzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLwRppncupr6FuLnp0QGqjyJhSTnOPySPrTtzr6p7gRRJuFY0wB0y3pXlUHO d+q9wP4DDcE4P+YqbPwzmFtf4KuDKikOQCsN+AdriWze9yp+sm1ZLewx6A8PyGbP suQOENt/2kQYiPxhY4IIb4rgukJrydlVrVcYai335pKurnDbbW/4eTrRkHWP+6gB e4JaSaxIZ9VB83gW1WkOPa7cjwFbdkn+RY7CCm4zXy80AaqoaRVTq8Ui/sJlhPA4 odQNcwe9u5JelPMZHBKvva7+rSIaXqcT+GFlmeCyK1GO5PO1bHqkaN61bf0pJ52n svmXbqSX7SzaMAbtGKvRif8BJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIztH0p vCBrRtDZaMC5q1jjR+MBMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIw+uuom1Frli6mczUXyB38gRbSVENSPVEMKzxG1RU3YyjkemDBCgO cIIIpMF8P6UVV/bCF2bPsEfAsJqSjuPogO2FVu7w4K/mPq31RWVlYCiUXQPQ3jL6 K9xxLYp3csF2+5AtsV21FuoNtaF+9WHDJ4iC9HkUaKox8EHalkBMdx9vI4bqi6Ap p2o/DrTI/gQR0YOK5Bx+YJpQ6yzIcuFZaNr8BfG3uB1mHiH6tIcvaPxG32aL6R4O dnxloKYGOzlMsroXPDX7pmaEn+bpTnFaHCXjDVX2xZAvgelot66PjQPfFStw0NOq Vhd/btDOY8vZ5lVKC1JmrCj36bqrtcyN -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:59 2025 by rpki-client