This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: KyJTy81q0hLaxGbmG30MKBqjVQqI/eBrsaZHAl0q0fE= Subject key identifier: 19:93:D5:81:4E:B9:F8:4D:74:C0:86:E4:E0:8B:EF:76:F9:E2:B4:AE Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: AE Signing time: Tue 23 Dec 2025 05:05:39 +0000 Manifest this update: Tue 23 Dec 2025 05:05:39 +0000 Manifest next update: Tue 30 Dec 2025 05:05:39 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: a0dZUeRuvXpUqdkKIbjVs7dgOFcyQfo2mAg0tX8WewE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: Dec 23 05:05:39 2025 GMT Not After : Dec 30 05:05:39 2025 GMT Subject: CN=694a2323-0528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ad:63:a8:54:a1:db:aa:91:eb:1b:20:27:af: 85:db:4e:5b:d3:bb:2f:02:af:4c:e9:0a:1c:b5:ea: 76:db:6a:86:a9:61:5b:f6:51:99:68:f2:89:0a:11: e1:85:0e:bc:3d:12:a8:4a:57:f4:7e:35:1a:71:cf: 2b:56:b5:73:0c:4a:8c:9e:f3:8c:e0:11:8d:84:68: f4:a3:ff:e9:e0:08:07:18:c7:99:df:3d:67:ec:d8: ee:59:ad:0b:cc:32:dd:1d:1b:fc:bf:5e:97:44:19: e1:ac:c6:58:07:a1:53:66:8f:63:df:98:a0:6c:09: aa:2c:3e:07:d4:e5:17:d8:99:2f:f2:71:39:32:1d: c6:5c:bb:81:a5:a1:6b:fd:61:0a:35:18:aa:3d:8e: 08:d7:9d:d2:15:2b:9c:3c:23:0c:cf:76:bf:ac:98: 5b:8f:6c:7b:79:37:37:74:09:64:cc:6a:f2:cc:32: 5d:1a:74:d4:16:91:c7:ba:e5:29:fb:45:c4:c3:84: b4:93:fa:69:d2:e0:e4:bf:3e:7c:0b:3e:2b:5c:d5: 71:bb:8f:f7:59:2a:d1:30:b4:69:16:e6:15:cf:5f: 1c:3e:bd:9f:64:bc:71:b4:7b:9c:23:16:8c:04:8b: 57:6b:6f:29:ec:c9:d8:c4:67:4f:07:1a:88:dc:dc: b4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:93:D5:81:4E:B9:F8:4D:74:C0:86:E4:E0:8B:EF:76:F9:E2:B4:AE X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:7e:d4:95:8d:d9:e0:8f:ba:bc:7c:44:e5:f9:28:a9:75:b8: 67:2c:39:e9:bb:4c:23:35:06:56:f9:d7:b8:82:52:fc:a8:18: db:09:d7:4c:ad:1e:7e:f9:a5:fc:8b:dc:78:b7:8d:25:77:34: 09:53:d2:02:e1:d0:28:63:3b:8c:07:f7:fd:0f:93:ee:d9:9a: 1a:ce:ea:0a:57:6f:43:1c:8c:35:bb:42:b6:c3:8b:da:cd:d0: ae:52:24:0e:c3:4b:35:47:e3:ca:da:92:88:da:10:f8:0f:49: f8:5d:64:c0:ec:05:91:10:d3:c9:47:70:fa:73:a2:91:11:fd: 5c:f2:79:67:3a:ba:9f:48:a5:79:02:b6:90:40:e8:06:bf:7b: 19:cd:2a:53:3c:8a:21:dd:a8:23:b4:70:34:71:ea:6b:f7:ca: a9:20:a5:24:89:d7:02:2f:75:38:bb:13:8b:57:3c:3f:a5:95: 12:73:d5:bb:44:e9:9d:72:e0:f1:fa:16:ed:a2:67:66:1f:21: 86:98:07:0a:e6:7a:ff:67:41:53:79:93:c8:73:70:aa:6b:2a: 39:03:fc:c0:b3:7b:8e:50:53:b7:cd:41:13:7a:0c:39:bb:31: 36:8f:e3:3e:d0:bd:e2:c0:8d:eb:77:40:8b:a4:f3:45:ee:0e: 37:22:4f:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVFRUExMTAvBgNVBAUTKDg1Nzc5MDRDNDNDMkE5QkUxMThGRERENUJBN0JCOEI2 MDQ0MzgwRkUwHhcNMjUxMjIzMDUwNTM5WhcNMjUxMjMwMDUwNTM5WjAYMRYwFAYD VQQDDA02OTRhMjMyMy0wNTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuK1jqFSh26qR6xsgJ6+F205b07svAq9M6Qoctep222qGqWFb9lGZaPKJChHh hQ68PRKoSlf0fjUacc8rVrVzDEqMnvOM4BGNhGj0o//p4AgHGMeZ3z1n7NjuWa0L zDLdHRv8v16XRBnhrMZYB6FTZo9j35igbAmqLD4H1OUX2Jkv8nE5Mh3GXLuBpaFr /WEKNRiqPY4I153SFSucPCMMz3a/rJhbj2x7eTc3dAlkzGryzDJdGnTUFpHHuuUp +0XEw4S0k/pp0uDkvz58Cz4rXNVxu4/3WSrRMLRpFuYVz18cPr2fZLxxtHucIxaM BItXa28p7MnYxGdPBxqI3Ny0dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmT1YFO ufhNdMCG5OCL73b54rSuMB8GA1UdIwQYMBaAFIV3kExDwqm+EY/d1bp7uLYEQ4D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUVFQS9FQ0EyQzdENkQ0 Q0YxMUVGOThERjk4MkJDNEY5QUUwMi9oWGVRVEVQQ3FiNFJqOTNWdW51NHRnUkRn UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUVFQS9FQ0EyQzdENkQ0Q0YxMUVGOThERjk4MkJDNEY5QUUwMi9oWGVRVEVQQ3Fi NFJqOTNWdW51NHRnUkRnUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEftSVjdngj7q8fETl+SipdbhnLDnpu0wjNQZW+de4glL8qBjbCddM rR5++aX8i9x4t40ldzQJU9IC4dAoYzuMB/f9D5Pu2ZoazuoKV29DHIw1u0K2w4va zdCuUiQOw0s1R+PK2pKI2hD4D0n4XWTA7AWRENPJR3D6c6KREf1c8nlnOrqfSKV5 AraQQOgGv3sZzSpTPIoh3agjtHA0cepr98qpIKUkidcCL3U4uxOLVzw/pZUSc9W7 ROmdcuDx+hbtomdmHyGGmAcK5nr/Z0FTeZPIc3Cqayo5A/zAs3uOUFO3zUETegw5 uzE2j+M+0L3iwI3rd0CLpPNF7g43Ik+m -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:55 2025 by rpki-client