This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: CXYsS9tbn/Pp84mkwskfFNP0NIm41TCFDCDM4bTNGgA= Subject key identifier: 5D:DE:81:29:3B:E1:3A:C8:ED:44:70:21:3A:E5:EF:E6:AA:71:0D:A9 Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 34EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 34EE Signing time: Wed 24 Dec 2025 14:51:48 +0000 Manifest this update: Wed 24 Dec 2025 14:51:48 +0000 Manifest next update: Wed 31 Dec 2025 14:51:48 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: F7oFNuZOn8zTrS5G/IK9cRG4I0IqgfNm+oV7uwjUZE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13550 (0x34ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: Dec 24 14:51:48 2025 GMT Not After : Dec 31 14:51:48 2025 GMT Subject: CN=694bfe04-2cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b2:2c:54:ba:a2:42:7c:c6:c1:7d:23:0e:3d: ff:67:f0:81:58:02:e3:98:71:a7:ed:c7:cb:df:9e: 88:6f:28:63:4c:ec:1e:41:ec:14:95:f3:ae:8f:d9: 7f:1c:73:fa:65:15:37:f1:9c:54:f0:71:36:8a:16: 3e:93:07:86:34:53:3c:6d:52:60:c4:0c:1d:25:4d: 41:22:94:91:af:2c:9b:fc:72:b3:85:fc:b0:69:01: 00:f3:70:79:a5:7e:c4:ad:26:ec:dc:12:bc:4b:12: 19:9b:d9:02:73:8b:bc:10:9a:83:de:35:1f:23:ca: 4b:ea:9d:f7:5a:59:5d:06:e0:39:14:3d:d7:17:51: 68:b8:6c:33:10:76:0c:0b:7e:18:b9:15:30:63:c8: 95:38:4c:84:8e:be:f1:e4:aa:ca:fd:2a:f0:55:28: 55:70:cb:9b:0f:08:3c:eb:49:74:a8:2f:ca:62:7b: 40:ac:17:4a:a2:2f:45:2c:57:3e:d6:82:4f:a8:ca: 93:14:ac:fe:9b:79:6d:be:17:b1:91:3a:e1:e9:5e: 15:0a:e1:31:5a:c7:ed:c6:ba:68:94:5e:01:cb:d4: fd:82:fe:d8:20:90:cd:6d:a5:34:2b:40:27:be:5c: 4d:fe:31:41:83:25:41:4d:18:47:9c:e6:98:19:33: 74:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DE:81:29:3B:E1:3A:C8:ED:44:70:21:3A:E5:EF:E6:AA:71:0D:A9 X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:12:63:87:ee:74:44:de:5c:f4:dd:2e:c0:49:6d:33:36:24: 49:62:05:89:69:96:3e:4d:87:6e:b1:50:06:aa:eb:d6:4f:ee: 0b:d8:80:b5:04:a6:72:0b:cb:c1:6e:5f:89:5a:ee:6b:e0:ba: 6b:4a:32:1a:2f:ef:11:c5:63:1f:4e:02:35:b6:f9:34:45:ca: 4d:de:94:96:cf:14:ea:2b:7f:95:5e:47:23:10:72:32:87:4c: 47:d1:7a:05:0a:20:00:c7:fe:e7:f1:ac:ab:07:60:e6:94:5b: dd:72:82:61:83:d4:5b:23:ca:14:66:05:2e:6b:f6:1c:aa:56: c5:10:da:e2:9a:a7:d9:b1:2d:0c:85:cc:05:83:c7:f7:0e:54: 05:30:78:e3:d8:e5:0c:ca:30:62:b6:c4:a9:f2:27:4e:15:c1: c7:fd:4f:15:82:4e:20:de:b8:d0:0f:f3:ba:46:4c:a9:43:e6: 7e:14:73:2e:af:c8:cb:a5:40:5b:cf:0c:23:45:76:75:ff:94: 1d:43:80:39:9e:5b:29:06:b1:b3:46:3a:f8:07:ef:9b:f2:eb: f6:e2:0a:38:67:d4:a6:9e:ee:5a:13:fd:b2:bc:c3:c0:57:64: b9:c7:d2:90:fb:28:96:70:b1:e9:34:84:f4:5a:12:31:11:3a: 1f:74:6d:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjUxMjI0MTQ1MTQ4WhcNMjUxMjMxMTQ1MTQ4WjAYMRYwFAYD VQQDDA02OTRiZmUwNC0yY2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77IsVLqiQnzGwX0jDj3/Z/CBWALjmHGn7cfL356IbyhjTOweQewUlfOuj9l/ HHP6ZRU38ZxU8HE2ihY+kweGNFM8bVJgxAwdJU1BIpSRryyb/HKzhfywaQEA83B5 pX7ErSbs3BK8SxIZm9kCc4u8EJqD3jUfI8pL6p33WlldBuA5FD3XF1FouGwzEHYM C34YuRUwY8iVOEyEjr7x5KrK/SrwVShVcMubDwg860l0qC/KYntArBdKoi9FLFc+ 1oJPqMqTFKz+m3ltvhexkTrh6V4VCuExWsftxrpolF4By9T9gv7YIJDNbaU0K0An vlxN/jFBgyVBTRhHnOaYGTN08wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3egSk7 4TrI7URwITrl7+aqcQ2pMB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEEmOH7nRE3lz03S7ASW0zNiRJYgWJaZY+TYdusVAGquvWT+4L2IC1 BKZyC8vBbl+JWu5r4LprSjIaL+8RxWMfTgI1tvk0RcpN3pSWzxTqK3+VXkcjEHIy h0xH0XoFCiAAx/7n8ayrB2DmlFvdcoJhg9RbI8oUZgUua/YcqlbFENrimqfZsS0M hcwFg8f3DlQFMHjj2OUMyjBitsSp8idOFcHH/U8Vgk4g3rjQD/O6RkypQ+Z+FHMu r8jLpUBbzwwjRXZ1/5QdQ4A5nlspBrGzRjr4B++b8uv24go4Z9Smnu5aE/2yvMPA V2S5x9KQ+yiWcLHpNIT0WhIxETofdG0I -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:34 2025 by rpki-client