This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: wydX5Kb/scP7EQKiCtzzlpYb5xsbSiS+GLeI6nE2EfM= Subject key identifier: AF:99:74:F1:83:BA:07:7D:FE:FE:24:FA:EC:1A:17:44:C9:5D:AD:32 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0947 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0940 Signing time: Sun 14 Dec 2025 19:38:46 +0000 Manifest this update: Sun 14 Dec 2025 19:38:45 +0000 Manifest next update: Sun 21 Dec 2025 19:38:45 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: z+8h0M+tvDfg0ybsxLIT8i/tCIceEXXKeR8kGpuV2y4=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 19:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2375 (0x947) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Dec 14 19:38:45 2025 GMT Not After : Dec 21 19:38:45 2025 GMT Subject: CN=693f1246-2258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:af:1d:f8:21:f6:1b:38:6d:a4:f3:14:ba:ba: 67:73:0f:a8:1a:46:54:f1:86:73:88:32:88:c4:88: a2:2c:e9:ed:59:d7:5e:09:a9:58:18:ed:97:5c:c7: e7:52:1f:b0:a7:51:56:9f:ec:eb:25:1c:46:b7:bc: 03:80:ab:5e:69:0a:c9:17:84:1e:b2:66:20:3f:fc: e6:52:86:33:72:73:46:56:f3:bc:93:57:05:11:d4: ae:78:4e:a2:81:86:a6:07:63:8d:9e:01:f8:9e:3d: 07:f8:78:a7:bd:2b:0f:3e:99:e7:e6:56:e5:0e:e3: 65:f2:17:56:9f:91:db:1f:02:eb:44:c8:ba:a5:ae: 28:3b:39:22:3f:94:d8:da:ae:c2:55:ec:44:77:86: b7:2f:62:76:3c:c0:5f:cf:2b:0e:9c:14:46:1b:c4: 1b:86:68:40:b5:75:23:4e:72:b9:0d:72:92:cd:b7: c3:d3:55:39:dc:93:74:ec:6c:8f:b1:28:c0:8b:70: 5b:b4:7f:a0:96:af:2e:42:47:6e:4b:dc:41:fd:c5: 0b:07:0b:20:a9:a4:ca:83:0e:e7:0b:e0:e7:a8:47: 54:17:f5:06:f9:4b:72:36:8a:6e:35:d8:ae:bb:06: 65:34:8b:6e:b4:0f:de:72:b2:e9:d0:91:c2:57:5d: a2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:99:74:F1:83:BA:07:7D:FE:FE:24:FA:EC:1A:17:44:C9:5D:AD:32 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:12:ac:5e:63:1f:9b:85:7a:f6:cc:c6:fd:0f:1d:bb:07:cc: 23:c2:ec:11:a7:24:e8:22:7b:c1:f4:46:69:f6:58:3b:0c:b7: f8:f7:71:a8:ca:2d:eb:1d:20:f4:9d:57:b7:d2:ec:32:b5:d6: fe:c5:4f:37:5c:89:c3:8f:45:f9:3c:e7:8c:cc:20:c0:41:04: 2d:f3:c4:63:c8:49:96:eb:4d:45:3f:00:72:ed:06:c1:7b:d6: be:43:1e:be:0a:f5:b1:66:f7:81:59:fc:44:d9:cc:c8:87:05: cf:7d:77:1b:fd:d2:d2:e8:db:0d:e2:9f:08:4f:3f:29:81:ca: 7e:13:79:cc:1c:b0:f4:e7:8f:1f:c5:a3:70:f1:dc:05:ba:6e: 2f:e5:99:d7:45:94:c5:2e:75:7f:e5:e0:4e:97:f2:c8:7f:44: b3:fe:ec:7a:45:92:cc:0e:19:67:96:95:c1:17:c4:cc:21:a3: 9c:ce:62:1d:0e:88:35:bf:ac:72:6a:de:76:38:37:c0:28:24: 49:0a:3c:f4:86:70:48:90:5b:59:d7:83:28:9d:2e:77:7b:43: 2c:07:8a:ef:18:e2:66:db:79:65:5c:89:9b:45:59:31:d7:c9: 62:82:ce:99:52:3e:72:ba:68:18:a8:d2:c9:02:f8:cd:dc:48: dc:15:84:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUxMjE0MTkzODQ1WhcNMjUxMjIxMTkzODQ1WjAYMRYwFAYD VQQDDA02OTNmMTI0Ni0yMjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA568d+CH2GzhtpPMUurpncw+oGkZU8YZziDKIxIiiLOntWddeCalYGO2XXMfn Uh+wp1FWn+zrJRxGt7wDgKteaQrJF4QesmYgP/zmUoYzcnNGVvO8k1cFEdSueE6i gYamB2ONngH4nj0H+HinvSsPPpnn5lblDuNl8hdWn5HbHwLrRMi6pa4oOzkiP5TY 2q7CVexEd4a3L2J2PMBfzysOnBRGG8QbhmhAtXUjTnK5DXKSzbfD01U53JN07GyP sSjAi3BbtH+glq8uQkduS9xB/cULBwsgqaTKgw7nC+DnqEdUF/UG+UtyNopuNdiu uwZlNItutA/ecrLp0JHCV12iswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+ZdPGD ugd9/v4k+uwaF0TJXa0yMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCEqxeYx+bhXr2zMb9Dx27B8wjwuwRpyToInvB9EZp9lg7DLf493Go yi3rHSD0nVe30uwytdb+xU83XInDj0X5POeMzCDAQQQt88RjyEmW601FPwBy7QbB e9a+Qx6+CvWxZveBWfxE2czIhwXPfXcb/dLS6NsN4p8ITz8pgcp+E3nMHLD0548f xaNw8dwFum4v5ZnXRZTFLnV/5eBOl/LIf0Sz/ux6RZLMDhlnlpXBF8TMIaOczmId Dog1v6xyat52ODfAKCRJCjz0hnBIkFtZ14MonS53e0MsB4rvGOJm23llXImbRVkx 18ligs6ZUj5yumgYqNLJAvjN3EjcFYRm -----END CERTIFICATE-----Generated at Tue Dec 16 09:02:46 2025 by rpki-client