This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: hLNaN9XzkRRwdF+az5sKde9Nyx8HaIsNZMgnd7ORCiA= Subject key identifier: C9:9A:5D:29:C7:0E:6B:DF:DC:42:7C:4E:01:43:A9:87:60:89:FF:65 Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 0452 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 044C Signing time: Mon 22 Dec 2025 23:16:55 +0000 Manifest this update: Mon 22 Dec 2025 23:16:55 +0000 Manifest next update: Mon 29 Dec 2025 23:16:55 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: Jb+vCwVfAQgaSBKDt3QzMJSRuGIzrSGxVyMgRiu6HFk=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Dec 22 23:16:55 2025 GMT Not After : Dec 29 23:16:55 2025 GMT Subject: CN=6949d167-3987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:85:2a:a7:2a:1d:e1:38:24:77:2b:60:12:cb: cf:18:1a:12:2c:d3:7f:e3:3f:d4:09:0a:86:00:bc: 67:de:bb:54:79:76:06:77:7c:46:ba:58:25:e1:19: 49:ab:4b:48:3f:47:62:33:d0:fe:ff:5a:b4:fd:6d: c1:d9:05:5e:03:8a:d1:da:18:a4:f3:d6:b6:6a:75: e1:ad:60:10:9c:d1:5c:4e:ed:05:e9:ca:92:ab:c0: 3f:44:2e:9f:7d:41:64:c0:4e:88:6b:db:b9:1d:9a: 0a:9e:7c:70:cc:3e:d0:62:44:61:fd:cb:0b:e1:c3: b4:3d:a6:26:30:8b:b9:7f:a5:d4:82:f4:0e:00:2a: 0f:ea:f4:64:7e:1e:2a:35:26:51:eb:68:2b:8b:51: 44:76:8b:35:bc:1d:07:30:68:e5:11:da:04:80:e6: d3:2a:ab:03:33:7b:b3:3a:3a:bc:cf:a8:7f:c2:9a: 62:69:24:f1:ad:ea:67:e9:c2:16:61:a4:ba:79:79: 70:b6:ae:34:0c:1c:06:11:f0:fc:1a:de:30:f8:0d: 70:9d:8c:8a:0b:37:36:f6:6d:c8:aa:b3:71:9a:f1: 55:2a:74:d4:0c:cb:dc:45:e0:ed:f9:ae:28:53:b2: 91:24:30:56:e6:ed:ae:6f:04:be:85:ef:91:40:8e: 68:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9A:5D:29:C7:0E:6B:DF:DC:42:7C:4E:01:43:A9:87:60:89:FF:65 X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:41:56:e4:08:40:75:16:37:ef:0f:69:e6:e7:c0:94:82:bb: 04:12:3b:96:12:8a:9e:eb:fb:67:f6:3c:41:a4:e8:a8:79:58: f4:cb:9f:1b:2c:4e:2d:d7:03:c1:77:8a:09:0e:e7:89:94:f9: 9a:74:f6:bb:36:91:82:6b:20:df:77:91:42:85:dc:2e:13:8c: d0:5a:55:b2:86:b3:53:0d:cb:1e:88:f3:9f:40:d1:7b:7e:52: a2:24:72:9c:cc:fa:bf:49:66:2f:73:6d:b8:82:5c:84:5d:d9: 7d:b9:c9:8d:8a:fe:4a:ad:59:bf:bc:1a:99:11:54:0b:2f:f3: 86:8b:2a:23:25:39:06:07:de:a8:71:fb:bf:60:19:46:ad:a2: cc:b1:10:1a:3e:91:17:ba:60:85:56:d2:77:6f:8f:f9:e5:2b: c0:c2:16:7d:57:b9:39:a3:64:2a:e0:b3:2e:73:63:dd:9c:74: 47:d1:53:84:31:d3:24:2c:a6:82:7f:f7:74:ff:61:48:c8:15: 86:eb:2d:8f:08:19:02:15:48:6c:3b:bb:08:3f:ce:9d:3d:a1: 3a:98:f6:55:0e:36:6c:9a:c4:b5:8f:16:5f:f3:42:07:48:3c: 6f:87:bb:b5:31:de:cd:a5:31:fd:30:ea:e6:70:96:58:44:a4: a3:b7:51:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUxMjIyMjMxNjU1WhcNMjUxMjI5MjMxNjU1WjAYMRYwFAYD VQQDDA02OTQ5ZDE2Ny0zOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IUqpyod4TgkdytgEsvPGBoSLNN/4z/UCQqGALxn3rtUeXYGd3xGulgl4RlJ q0tIP0diM9D+/1q0/W3B2QVeA4rR2hik89a2anXhrWAQnNFcTu0F6cqSq8A/RC6f fUFkwE6Ia9u5HZoKnnxwzD7QYkRh/csL4cO0PaYmMIu5f6XUgvQOACoP6vRkfh4q NSZR62gri1FEdos1vB0HMGjlEdoEgObTKqsDM3uzOjq8z6h/wppiaSTxrepn6cIW YaS6eXlwtq40DBwGEfD8Gt4w+A1wnYyKCzc29m3IqrNxmvFVKnTUDMvcReDt+a4o U7KRJDBW5u2ubwS+he+RQI5oxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmaXSnH Dmvf3EJ8TgFDqYdgif9lMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9QVbkCEB1FjfvD2nm58CUgrsEEjuWEoqe6/tn9jxBpOioeVj0y58b LE4t1wPBd4oJDueJlPmadPa7NpGCayDfd5FChdwuE4zQWlWyhrNTDcseiPOfQNF7 flKiJHKczPq/SWYvc224glyEXdl9ucmNiv5KrVm/vBqZEVQLL/OGiyojJTkGB96o cfu/YBlGraLMsRAaPpEXumCFVtJ3b4/55SvAwhZ9V7k5o2Qq4LMuc2PdnHRH0VOE MdMkLKaCf/d0/2FIyBWG6y2PCBkCFUhsO7sIP86dPaE6mPZVDjZsmsS1jxZf80IH SDxvh7u1Md7NpTH9MOrmcJZYRKSjt1Eb -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:46 2025 by rpki-client