This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: JjwYM6egBYUXF9rKxdlQ4PmlDGPafld55A9puncUie8= Subject key identifier: 2B:8D:90:EA:B5:C5:16:AF:6D:DA:1C:F6:60:86:08:9A:6A:71:20:B8 Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 359F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 3552 Signing time: Sat 20 Dec 2025 14:16:06 +0000 Manifest this update: Sat 20 Dec 2025 14:16:05 +0000 Manifest next update: Sat 27 Dec 2025 14:16:05 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: QAhiiTvv/7Pk1VGH0VWYJzw2ARYtyoJSxHjWQYYP0Rc=) 2: 0997A5828A1511F09F6EBD2BC4F9AE02.roa (hash: OnxDy/55jjMCiBnkBT8Gsibkcizt1adU0FH5L5R2Oyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13727 (0x359f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Dec 20 14:16:05 2025 GMT Not After : Dec 27 14:16:05 2025 GMT Subject: CN=6946afa6-7b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:15:ef:7f:30:d5:bc:0b:88:c3:6f:1f:04:12: 08:de:9f:e1:fd:34:dc:54:2e:69:98:85:d0:f6:cf: f4:ab:a3:15:46:9a:7c:0f:11:7f:e5:21:54:5e:21: 00:22:31:71:6d:8e:84:7f:49:87:ca:16:1a:85:90: 10:fb:f4:44:32:b4:01:97:22:4d:8e:5c:d3:e0:92: 53:f7:90:29:6c:68:4b:92:71:6d:8a:bd:9c:2e:52: 0f:b0:b7:11:c4:71:12:3e:41:63:12:6c:88:99:fc: 36:d0:40:fd:93:fc:49:bd:82:af:5e:00:88:f3:ff: a1:8d:a0:1f:86:cb:04:a8:ef:2c:5c:f3:fa:4c:9e: a0:5a:f1:20:53:a4:c6:1d:08:e5:60:32:04:7b:8f: 01:f1:d3:54:a6:1f:7f:cc:75:8a:bc:f0:40:3c:da: dd:c8:03:ff:ea:78:28:b0:7a:7a:9e:6b:e1:e9:83: 38:c8:c2:ba:07:98:29:b2:36:95:04:0e:24:56:1d: 61:d4:28:8f:35:f3:d0:12:71:9a:ec:59:73:50:18: a7:84:32:3f:bf:54:e2:72:8c:63:f7:f5:64:2c:80: 21:42:3b:55:9f:ee:8d:03:b2:f5:2d:a7:72:5b:e4: b8:73:80:bf:aa:5d:a8:70:0f:d9:6d:0a:5b:3e:37: 84:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8D:90:EA:B5:C5:16:AF:6D:DA:1C:F6:60:86:08:9A:6A:71:20:B8 X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:42:5d:19:7d:25:34:1d:43:da:42:30:a9:0e:9a:38:b8:32: c3:2a:de:e1:51:fa:cb:6b:54:6e:fa:71:bc:28:47:68:72:5f: c0:49:84:db:27:39:8f:66:0c:a1:af:2e:17:1f:f7:88:4b:98: 06:73:ff:0b:55:87:2e:b9:f4:ee:e5:e6:24:35:25:bd:27:15: 58:d8:fd:6d:4f:63:5c:79:28:01:de:0a:a7:f1:01:01:02:58: ad:e9:96:02:6d:78:f0:66:f8:1a:cd:de:86:51:9e:bb:61:ed: 01:0c:fa:bd:85:31:49:42:0e:6d:73:c0:93:05:c8:0f:a6:02: 42:38:23:59:3b:8f:2a:41:8a:24:a1:b9:17:74:d4:80:d7:16: 1a:2d:65:e1:a2:95:7f:ef:b4:c5:ff:6a:78:a3:b0:9c:97:ba: ea:d6:2a:99:08:41:d6:ae:0d:db:52:b0:84:16:b2:e5:96:fc: 2c:f4:61:03:a4:2f:ba:1b:49:96:11:c7:e4:d1:25:3c:da:fe: 18:70:e0:b5:10:bf:58:35:56:61:55:c5:e4:da:71:53:58:50: 86:02:1d:46:be:85:80:2f:da:39:99:07:a0:6f:bf:15:85:94: be:f4:6e:5b:04:d8:17:17:64:32:76:37:4e:67:1c:10:d1:67: 1e:06:8d:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjUxMjIwMTQxNjA1WhcNMjUxMjI3MTQxNjA1WjAYMRYwFAYD VQQDDA02OTQ2YWZhNi03YjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhXvfzDVvAuIw28fBBII3p/h/TTcVC5pmIXQ9s/0q6MVRpp8DxF/5SFUXiEA IjFxbY6Ef0mHyhYahZAQ+/REMrQBlyJNjlzT4JJT95ApbGhLknFtir2cLlIPsLcR xHESPkFjEmyImfw20ED9k/xJvYKvXgCI8/+hjaAfhssEqO8sXPP6TJ6gWvEgU6TG HQjlYDIEe48B8dNUph9/zHWKvPBAPNrdyAP/6ngosHp6nmvh6YM4yMK6B5gpsjaV BA4kVh1h1CiPNfPQEnGa7FlzUBinhDI/v1Ticoxj9/VkLIAhQjtVn+6NA7L1Lady W+S4c4C/ql2ocA/ZbQpbPjeE2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuNkOq1 xRavbdoc9mCGCJpqcSC4MB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIQl0ZfSU0HUPaQjCpDpo4uDLDKt7hUfrLa1Ru+nG8KEdocl/ASYTb JzmPZgyhry4XH/eIS5gGc/8LVYcuufTu5eYkNSW9JxVY2P1tT2NceSgB3gqn8QEB Alit6ZYCbXjwZvgazd6GUZ67Ye0BDPq9hTFJQg5tc8CTBcgPpgJCOCNZO48qQYok obkXdNSA1xYaLWXhopV/77TF/2p4o7Ccl7rq1iqZCEHWrg3bUrCEFrLllvws9GED pC+6G0mWEcfk0SU82v4YcOC1EL9YNVZhVcXk2nFTWFCGAh1GvoWAL9o5mQegb78V hZS+9G5bBNgXF2QydjdOZxwQ0WceBo2u -----END CERTIFICATE-----Generated at Sat Dec 20 23:09:39 2025 by rpki-client