This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: 5SXOo9TRiSVzhUcYlHLLhFZ+uPcnQB6sXxsYXukbkrs= Subject key identifier: CF:BF:C2:F8:01:7B:6A:53:74:8A:EF:C2:45:76:53:FD:33:F8:7A:FA Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 027A Signing time: Tue 23 Dec 2025 00:45:08 +0000 Manifest this update: Tue 23 Dec 2025 00:45:08 +0000 Manifest next update: Tue 30 Dec 2025 00:45:08 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: IBe4N6u5//DlHRU+um1SUuNG/ext+sjihwh/vFS5OLU=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: Gu/kywKpuic7wgF2QL39qaRHTk8r7+a6HC5vsZOxOeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Dec 23 00:45:08 2025 GMT Not After : Dec 30 00:45:08 2025 GMT Subject: CN=6949e614-69bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:80:64:12:60:87:90:f4:71:40:e4:e8:6c:a2: 25:48:df:9c:28:37:27:c5:bf:78:93:56:3e:bb:7a: 5b:ef:f9:f4:9e:bc:de:41:d1:36:81:6b:ef:ac:64: fd:74:99:ad:f0:9e:a6:44:52:d4:48:0e:a0:f6:c8: e4:2c:d7:b2:aa:db:2a:1b:f1:b0:03:72:60:05:14: 33:04:f4:59:43:47:ef:6b:24:7b:14:ee:37:fe:39: c4:c8:a1:db:7f:5a:e4:39:03:00:a5:1d:87:29:d1: 6e:6f:dd:c9:f0:ae:00:71:92:74:aa:f7:92:9c:a0: 28:2e:f9:9d:55:8e:c0:ce:27:9d:8c:ea:30:b9:a8: 18:d2:75:c0:e4:b3:f1:25:ff:2b:8b:57:59:a3:bf: fa:3f:f9:be:33:ef:36:2c:ff:9c:e2:16:bd:0d:cb: df:ac:d8:19:ba:1d:1f:72:6a:d4:b2:3b:9f:3f:fa: 6a:4e:52:02:bb:d8:49:51:74:29:03:59:c4:bc:71: 4b:f7:84:a4:f9:cc:a7:52:39:5f:06:9c:c5:bf:98: eb:49:76:57:d7:b8:30:43:a7:12:54:9f:85:89:29: 61:09:9c:02:93:c8:01:7a:30:00:ff:08:0f:fc:bc: 14:eb:12:1d:a3:3b:46:07:dc:cb:c5:8a:19:5c:47: 08:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BF:C2:F8:01:7B:6A:53:74:8A:EF:C2:45:76:53:FD:33:F8:7A:FA X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:93:5e:b8:83:46:a6:71:64:f0:5c:c8:a8:bb:e6:46:f9:c2: 93:0a:67:6d:0c:79:d2:0a:6d:71:90:38:1a:83:11:85:5b:52: fe:80:a1:e1:e9:25:51:47:8d:60:86:0e:97:81:53:f5:5b:f2: b1:c5:e3:d9:20:61:5e:0c:bc:d7:a0:c2:76:75:db:96:f5:54: 6e:c0:6a:8a:85:dd:93:09:c7:6b:f6:a6:8e:1e:50:5e:24:87: 00:d8:0f:a8:4f:98:af:09:ca:6e:84:81:3e:86:65:de:ad:3d: 55:9e:ee:20:b2:8e:73:22:c0:7f:dd:f0:20:f0:a3:2d:9b:00: 21:a6:e4:b7:5c:52:54:4a:43:17:86:6d:46:df:e7:18:e3:3b: 77:1f:a9:ad:cb:57:fe:93:b9:6f:2d:96:37:16:ca:e5:0a:68: 6e:b3:33:3b:11:0f:ca:2e:88:70:1b:d6:ce:25:77:30:48:2a: 10:bd:de:03:e3:ea:c4:05:d9:d5:4b:a0:6e:9e:33:19:7c:6e: a4:89:2d:d0:e3:4f:55:e2:37:59:b5:54:97:1c:8d:f7:a0:bd: df:f5:44:c5:fc:cd:4c:b1:2e:e8:7a:f4:72:78:55:05:3b:00: 93:45:fc:87:47:b9:23:9f:85:3a:6a:1c:c9:1c:6e:cd:dc:07: b7:bc:f0:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjUxMjIzMDA0NTA4WhcNMjUxMjMwMDA0NTA4WjAYMRYwFAYD VQQDDA02OTQ5ZTYxNC02OWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoBkEmCHkPRxQOTobKIlSN+cKDcnxb94k1Y+u3pb7/n0nrzeQdE2gWvvrGT9 dJmt8J6mRFLUSA6g9sjkLNeyqtsqG/GwA3JgBRQzBPRZQ0fvayR7FO43/jnEyKHb f1rkOQMApR2HKdFub93J8K4AcZJ0qveSnKAoLvmdVY7AziedjOowuagY0nXA5LPx Jf8ri1dZo7/6P/m+M+82LP+c4ha9DcvfrNgZuh0fcmrUsjufP/pqTlICu9hJUXQp A1nEvHFL94Sk+cynUjlfBpzFv5jrSXZX17gwQ6cSVJ+FiSlhCZwCk8gBejAA/wgP /LwU6xIdoztGB9zLxYoZXEcIawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+/wvgB e2pTdIrvwkV2U/0z+Hr6MB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7k164g0amcWTwXMiou+ZG+cKTCmdtDHnSCm1xkDgagxGFW1L+gKHh 6SVRR41ghg6XgVP1W/KxxePZIGFeDLzXoMJ2dduW9VRuwGqKhd2TCcdr9qaOHlBe JIcA2A+oT5ivCcpuhIE+hmXerT1Vnu4gso5zIsB/3fAg8KMtmwAhpuS3XFJUSkMX hm1G3+cY4zt3H6mty1f+k7lvLZY3FsrlCmhuszM7EQ/KLohwG9bOJXcwSCoQvd4D 4+rEBdnVS6BunjMZfG6kiS3Q409V4jdZtVSXHI33oL3f9UTF/M1MsS7oevRyeFUF OwCTRfyHR7kjn4U6ahzJHG7N3Ae3vPDb -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:47 2025 by rpki-client