This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft File: HRIX74_oS1glUWcbyjXmhEhpJJc.mft (raw, json) Hash identifier: TMK8i2IwcDD1Yyz46Nt4gp6//U66P3+hJmXD7NVGPws= Subject key identifier: 2E:E2:9B:C6:87:6B:E7:4D:3B:BE:34:78:60:8D:25:7F:3C:87:F2:F7 Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 0AB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft Manifest number: 0AAB Signing time: Sat 06 Dec 2025 18:47:11 +0000 Manifest this update: Sat 06 Dec 2025 18:47:11 +0000 Manifest next update: Sat 13 Dec 2025 18:47:11 +0000 Files and hashes: 1: HRIX74_oS1glUWcbyjXmhEhpJJc.crl (hash: R4yX8iiyicPxt+gSax3Egbis1C86gwNMCqL6DVoUyqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2741 (0xab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4, serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Dec 6 18:47:11 2025 GMT Not After : Dec 13 18:47:11 2025 GMT Subject: CN=69347a2f-ad4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:75:02:d9:2d:b6:25:9e:4d:71:e6:3e:4e:b8: 53:50:c2:42:be:61:64:45:ae:0b:20:7a:34:78:e5: 21:d2:57:5c:5e:57:ae:04:ae:d3:fd:b0:43:90:93: bd:61:eb:df:c0:40:67:a0:08:84:d6:4d:eb:ac:2a: b3:28:97:7f:e6:02:8a:31:fd:db:d1:ab:65:05:e7: f4:38:d8:71:36:ae:5d:64:b1:03:a3:79:a3:4e:0f: 3f:8f:08:f6:92:62:20:89:1d:c1:22:bf:7a:5e:c9: 5c:fd:4e:e9:d1:46:ae:e8:11:bf:7c:3a:85:b2:22: a8:1a:b6:0d:5a:12:91:a1:a8:87:d3:4f:8d:7a:1e: a7:c0:51:c0:ab:23:a6:18:e3:92:58:6f:61:f3:3d: 59:62:96:86:47:f2:4b:60:44:4a:a9:fd:d2:fa:c6: 43:8b:99:12:60:89:41:d6:14:82:3b:e4:1b:7a:09: 39:5a:af:4d:19:ca:e0:32:cd:ea:f2:64:4c:2e:6c: 4e:a6:21:54:a8:36:eb:3d:db:fb:e0:36:24:a2:55: 5c:17:86:00:fb:8a:36:a0:a6:f5:a3:26:d8:a4:70: 06:80:2e:a8:63:bc:cf:73:a8:cf:90:44:5c:dd:f7: 61:40:71:f9:5c:3d:8f:31:74:c4:e2:b8:b5:27:da: 6b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E2:9B:C6:87:6B:E7:4D:3B:BE:34:78:60:8D:25:7F:3C:87:F2:F7 X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:c2:b3:a1:d1:4e:9d:0d:56:be:74:4e:72:d9:9c:9a:d0:2c: 53:3c:dd:6a:46:df:7f:fb:e1:4a:18:c6:40:d5:6f:ae:27:d6: a1:4e:0e:3c:d5:7c:a5:f5:61:77:e0:b7:2c:58:32:17:ad:23: 13:1d:6e:e3:ce:9a:31:e4:50:fc:8b:b2:87:d4:13:3f:21:41: c7:0c:9b:be:cf:24:2e:01:b7:e7:d4:6d:47:77:78:90:49:b6: 1f:d1:0f:91:58:9f:6f:c6:21:a3:f0:c8:df:94:a8:c9:37:4c: 89:81:38:80:6a:55:28:4c:29:1e:54:34:d0:3b:86:7d:32:28: 3c:2d:2f:91:a2:7e:fd:d9:14:ec:c5:1a:f3:fa:7a:37:0d:12: 5c:07:0c:59:39:83:26:4f:71:58:70:04:3f:dd:bb:92:35:49: db:6d:96:14:be:cd:c0:d9:7e:5d:19:61:de:f0:e1:19:ef:d8: ce:8f:78:6f:a6:ce:bf:9b:b0:af:48:98:5a:92:e5:3a:66:59: 4e:c9:7d:53:35:3b:32:34:3c:7d:c5:c8:6f:8c:3c:ca:50:25: 31:7f:4b:0d:50:1d:5b:53:50:e6:7b:a1:71:ac:7d:59:dc:4d: f4:1a:08:34:6e:c1:26:75:9e:d6:65:a9:a8:46:8f:36:6e:e7: fb:1d:15:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjUxMjA2MTg0NzExWhcNMjUxMjEzMTg0NzExWjAYMRYwFAYD VQQDEw02OTM0N2EyZi1hZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63UC2S22JZ5NceY+TrhTUMJCvmFkRa4LIHo0eOUh0ldcXleuBK7T/bBDkJO9 YevfwEBnoAiE1k3rrCqzKJd/5gKKMf3b0atlBef0ONhxNq5dZLEDo3mjTg8/jwj2 kmIgiR3BIr96Xslc/U7p0Uau6BG/fDqFsiKoGrYNWhKRoaiH00+Neh6nwFHAqyOm GOOSWG9h8z1ZYpaGR/JLYERKqf3S+sZDi5kSYIlB1hSCO+Qbegk5Wq9NGcrgMs3q 8mRMLmxOpiFUqDbrPdv74DYkolVcF4YA+4o2oKb1oybYpHAGgC6oY7zPc6jPkERc 3fdhQHH5XD2PMXTE4ri1J9pr1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7im8aH a+dNO740eGCNJX88h/L3MB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJCNC9EOTU0QkFCRTY5QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1Mx Z2xVV2NieWpYbWhFaHBKSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmwrOh0U6dDVa+dE5y2Zya0CxTPN1qRt9/++FKGMZA1W+uJ9ahTg48 1Xyl9WF34LcsWDIXrSMTHW7jzpox5FD8i7KH1BM/IUHHDJu+zyQuAbfn1G1Hd3iQ SbYf0Q+RWJ9vxiGj8MjflKjJN0yJgTiAalUoTCkeVDTQO4Z9Mig8LS+Ron792RTs xRrz+no3DRJcBwxZOYMmT3FYcAQ/3buSNUnbbZYUvs3A2X5dGWHe8OEZ79jOj3hv ps6/m7CvSJhakuU6ZllOyX1TNTsyNDx9xchvjDzKUCUxf0sNUB1bU1Dme6FxrH1Z 3E30Ggg0bsEmdZ7WZamoRo82buf7HRWK -----END CERTIFICATE-----Generated at Mon Dec 8 06:12:00 2025 by rpki-client