This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: /o/MMhYp6u53WdaYbXulSX3KB8aJDcRSQ9srS4EEauo= Subject key identifier: E7:2D:D1:5A:E4:25:64:08:9F:E8:7E:F3:9B:A9:96:AE:DE:DB:B2:F8 Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 03 Signing time: Tue 23 Dec 2025 06:59:32 +0000 Manifest this update: Tue 23 Dec 2025 06:59:32 +0000 Manifest next update: Tue 30 Dec 2025 06:59:32 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: t+rmrCBa2emZvpbrfVgNf4eXUzfyqOXYO7RSYrHqCiY=) 2: 8BD90056DEF511F0A9861D4A586F56BC.roa (hash: lmUYfWo8TkNIhfrRYjb+XM0oehecT+kQ2RzWxyR8Vyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Dec 23 06:59:32 2025 GMT Not After : Dec 30 06:59:32 2025 GMT Subject: CN=694a3dd4-4a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f1:cb:93:80:90:ba:56:04:d9:66:08:da:d9: 30:2f:a6:25:2c:78:a5:08:e3:88:95:ff:24:07:f2: 36:f7:92:0f:1d:26:ff:db:bd:19:d2:bf:fc:9b:8f: 94:bf:78:a4:f4:da:9a:40:d1:36:f6:e7:65:63:8e: 32:12:f6:8d:89:5b:c7:6c:02:68:4f:19:47:a1:2e: bd:97:2c:05:b7:da:4c:66:8a:95:e1:5d:0f:5c:01: 14:6f:aa:91:77:d5:0a:53:9d:ae:ac:56:bd:b1:38: a2:85:25:43:c4:7c:aa:aa:f9:e3:eb:ed:69:7a:09: fd:47:e2:95:57:42:e5:0a:38:b8:b6:29:d7:2d:00: b6:63:1f:d9:9f:b9:a0:20:da:b2:c8:b5:43:87:c6: e2:dc:b4:da:de:c2:88:c8:43:de:21:cb:dc:18:de: 15:d8:75:49:35:d2:79:03:6a:ad:a3:33:17:d1:ba: 08:bb:5b:b7:df:23:31:8c:fe:7c:38:7c:37:ab:3b: 49:1e:b8:26:36:08:e7:1a:f0:43:31:a3:8d:13:d4: b4:85:49:00:5a:87:11:17:be:0d:3e:8b:e5:de:1c: 4b:2a:e6:29:5d:36:5a:2e:d8:15:4f:71:e8:59:93: a7:2c:65:25:71:6a:4d:29:17:d8:97:f2:b8:a1:07: f5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:2D:D1:5A:E4:25:64:08:9F:E8:7E:F3:9B:A9:96:AE:DE:DB:B2:F8 X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:47:04:e9:ed:ce:58:8a:2e:65:d1:aa:4c:1c:1a:5d:f4:79: 50:8b:31:e0:82:0f:63:53:62:d2:b0:7c:80:1b:75:23:32:07: 1c:c4:8d:ac:53:5d:83:fe:04:a2:6d:6c:7d:7c:1d:0a:5f:f1: 9b:92:28:6c:a4:21:3b:d1:d1:f2:88:21:47:45:d4:c2:92:9d: 1d:3e:4e:4b:97:ca:09:7b:f0:63:09:89:ad:5d:52:e3:ec:67: 4c:bf:b6:a3:1e:9d:ad:f4:f9:e4:2b:b8:19:16:cf:ac:4d:8a: 55:91:c6:c0:b0:9e:ee:e6:3a:5a:9d:13:d4:b2:f9:69:85:7f: 25:07:61:93:64:6a:9c:c0:43:19:17:ac:f7:23:e2:41:b9:18: df:af:21:b0:43:f3:b6:80:74:aa:88:57:ec:87:a6:a6:83:a5: c3:6c:f9:8f:bb:66:42:5b:22:05:d1:0c:e4:9d:a7:01:ac:b6: 1e:8c:b5:c6:5d:59:ee:ac:99:42:eb:3c:9b:c5:37:b8:3d:11: 82:22:13:a9:fc:25:94:9f:23:a1:d5:d1:bc:70:d2:fb:25:85: 8f:66:5f:25:35:38:1f:85:ea:aa:40:61:b6:dc:d0:4d:8c:31: 98:48:08:2d:be:b2:d0:80:47:d2:10:5d:e5:20:f2:a5:5b:48: 50:79:67:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNTEyMjMwNjU5MzJaFw0yNTEyMzAwNjU5MzJaMBgxFjAUBgNV BAMMDTY5NGEzZGQ0LTRhMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCk8cuTgJC6VgTZZgja2TAvpiUseKUI44iV/yQH8jb3kg8dJv/bvRnSv/ybj5S/ eKT02ppA0Tb252VjjjIS9o2JW8dsAmhPGUehLr2XLAW32kxmipXhXQ9cARRvqpF3 1QpTna6sVr2xOKKFJUPEfKqq+ePr7Wl6Cf1H4pVXQuUKOLi2KdctALZjH9mfuaAg 2rLItUOHxuLctNrewojIQ94hy9wY3hXYdUk10nkDaq2jMxfRugi7W7ffIzGM/nw4 fDerO0keuCY2COca8EMxo40T1LSFSQBahxEXvg0+i+XeHEsq5ildNlou2BVPcehZ k6csZSVxak0pF9iX8rihB/V3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5y3RWuQl ZAif6H7zm6mWrt7bsvgwHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ9HBOntzliKLmXRqkwcGl30eVCLMeCCD2NTYtKwfIAbdSMyBxzEjaxT XYP+BKJtbH18HQpf8ZuSKGykITvR0fKIIUdF1MKSnR0+TkuXygl78GMJia1dUuPs Z0y/tqMena30+eQruBkWz6xNilWRxsCwnu7mOlqdE9Sy+WmFfyUHYZNkapzAQxkX rPcj4kG5GN+vIbBD87aAdKqIV+yHpqaDpcNs+Y+7ZkJbIgXRDOSdpwGsth6MtcZd We6smULrPJvFN7g9EYIiE6n8JZSfI6HV0bxw0vslhY9mXyU1OB+F6qpAYbbc0E2M MZhICC2+stCAR9IQXeUg8qVbSFB5Zw4= -----END CERTIFICATE-----Generated at Wed Dec 24 21:01:27 2025 by rpki-client