This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: jMLOdubVnXCHjbfE7JAHsaMd4V/KrYt0GKLezzkDzrA= Subject key identifier: F9:B9:24:FE:EB:EE:C4:67:ED:E0:9F:30:20:67:62:82:2E:0B:F2:EA Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: D6 Signing time: Wed 03 Dec 2025 04:01:45 +0000 Manifest this update: Wed 03 Dec 2025 04:01:45 +0000 Manifest next update: Wed 10 Dec 2025 04:01:45 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: okZjjgelQ2KCwobMtiSYNZc/nvj8VE/qByIFJegHh5I=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: X+68fVuVtHa5fnoo84w/HjubbFGCJvnyWNu2O/OuVfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Dec 3 04:01:45 2025 GMT Not After : Dec 10 04:01:45 2025 GMT Subject: CN=692fb629-a3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:d9:53:0f:f1:fb:96:3b:c3:d2:c0:48:9b: 13:23:24:93:68:22:86:cb:d3:d7:7d:b0:88:0c:5d: 82:cd:26:96:3e:59:8d:bf:83:21:13:56:ac:fd:23: 0b:7f:b3:24:38:ca:b2:2c:8b:a8:49:2d:d7:a1:25: d4:ef:9a:c0:09:c0:6f:32:20:1a:9c:fb:22:14:d7: d2:81:45:71:df:7c:c1:9c:cc:fd:44:07:c9:b4:81: a1:7d:d7:62:df:f0:21:8a:7b:46:95:da:76:88:09: d4:35:3e:eb:72:b5:3a:b5:68:9e:63:09:c6:dd:3c: 8f:3e:ca:77:e2:b5:0c:97:ed:09:bc:1a:fc:e7:b1: cf:f3:59:b9:22:8e:f5:82:28:60:9c:21:6d:3d:99: a1:2c:7e:a5:33:5d:fb:96:71:3d:3c:91:bf:3d:77: a3:6d:e5:4a:f4:0b:52:e2:e2:31:bb:f3:39:37:4b: 36:77:2e:56:67:6c:16:eb:3e:0a:4d:ea:7d:fc:7b: 7f:22:82:78:c1:90:02:fc:b4:20:05:b9:3c:53:25: c9:ef:fd:65:ab:f6:94:a4:de:08:20:f8:18:42:34: a3:71:a6:a3:10:90:bc:47:5d:25:5f:d1:03:ff:36: f5:4f:65:0b:4c:9b:f9:f8:85:eb:83:55:3e:fd:8d: 68:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B9:24:FE:EB:EE:C4:67:ED:E0:9F:30:20:67:62:82:2E:0B:F2:EA X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:0e:4c:08:80:d8:be:b8:0f:45:9c:c5:26:97:bf:a7:b9:90: 96:99:2a:c8:b4:59:46:f1:22:78:bc:df:0c:5d:f4:d7:cb:b7: df:cf:aa:cf:1a:59:68:a7:50:54:df:45:61:aa:dc:c5:59:bb: 1f:47:21:79:25:8b:cd:15:f2:0b:1a:ce:83:47:c4:3d:77:e2: 0e:0c:9b:23:7b:4d:d2:21:14:96:7d:ab:30:15:16:13:3b:17: 4b:8b:a9:b1:51:b6:d2:01:0a:ed:49:39:96:b3:35:bf:60:53: 97:db:66:16:20:89:e4:fa:4b:d0:ca:b9:65:68:93:52:c2:51: 49:f7:1d:47:3a:ac:08:93:73:0a:c7:00:54:9e:db:7a:35:91: c5:71:0d:fe:d7:3a:8c:75:a0:f1:c9:cf:28:73:9b:c5:02:5c: b6:0f:a9:6c:e2:eb:c8:ca:f9:44:e3:89:a5:03:1d:78:1f:35: e6:69:32:67:6d:54:2c:09:7d:0a:99:a4:c4:c0:95:e7:a5:4b: da:1e:21:8b:43:f0:7c:ee:7e:0d:80:b6:f7:08:e8:d1:42:52: b7:fa:a0:86:da:9d:57:65:c8:ec:94:f1:82:1e:c2:0c:06:db: 47:a0:80:08:c1:94:e5:43:36:f6:6a:3a:13:3c:e9:50:5a:4b: 42:de:37:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMTkxMTAvBgNVBAUTKDFERDMzQTY4QkMwQjVDOTMxMEZGRjUyQUQ3Mzk0MTIw RDEwMkE2MjcwHhcNMjUxMjAzMDQwMTQ1WhcNMjUxMjEwMDQwMTQ1WjAYMRYwFAYD VQQDEw02OTJmYjYyOS1hM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtanZUw/x+5Y7w9LASJsTIySTaCKGy9PXfbCIDF2CzSaWPlmNv4MhE1as/SML f7MkOMqyLIuoSS3XoSXU75rACcBvMiAanPsiFNfSgUVx33zBnMz9RAfJtIGhfddi 3/AhintGldp2iAnUNT7rcrU6tWieYwnG3TyPPsp34rUMl+0JvBr857HP81m5Io71 gihgnCFtPZmhLH6lM137lnE9PJG/PXejbeVK9AtS4uIxu/M5N0s2dy5WZ2wW6z4K Tep9/Ht/IoJ4wZAC/LQgBbk8UyXJ7/1lq/aUpN4IIPgYQjSjcaajEJC8R10lX9ED /zb1T2ULTJv5+IXrg1U+/Y1oiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPm5JP7r 7sRn7eCfMCBnYoIuC/LqMB8GA1UdIwQYMBaAFB3TOmi8C1yTEP/1Ktc5QSDRAqYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMxOS9GOTRENDFDODhD MkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhKTVFfX1VxMXpsQklORUNw aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3BpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMxOS9GOTRENDFDODhDMkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhK TVFfX1VxMXpsQklORUNwaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSDkwIgNi+uA9FnMUml7+nuZCWmSrItFlG8SJ4vN8MXfTXy7ffz6rP Gllop1BU30VhqtzFWbsfRyF5JYvNFfILGs6DR8Q9d+IODJsje03SIRSWfaswFRYT OxdLi6mxUbbSAQrtSTmWszW/YFOX22YWIInk+kvQyrllaJNSwlFJ9x1HOqwIk3MK xwBUntt6NZHFcQ3+1zqMdaDxyc8oc5vFAly2D6ls4uvIyvlE44mlAx14HzXmaTJn bVQsCX0KmaTEwJXnpUvaHiGLQ/B87n4NgLb3COjRQlK3+qCG2p1XZcjslPGCHsIM BttHoIAIwZTlQzb2ajoTPOlQWktC3jeM -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:54 2025 by rpki-client