This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: R/JznhZEaQev9x18w9xjqifY/jaMLCPWl1jNGXUa2OE= Subject key identifier: FE:84:53:90:57:B1:0E:A9:7E:73:C7:E0:16:3C:F0:CD:82:87:08:43 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 6D Signing time: Tue 23 Dec 2025 05:48:54 +0000 Manifest this update: Tue 23 Dec 2025 05:48:53 +0000 Manifest next update: Tue 30 Dec 2025 05:48:53 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: df19SJ+gN+95QcNA+55MU6Gl7nrXDn0qfRWOqwwRXdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Dec 23 05:48:53 2025 GMT Not After : Dec 30 05:48:53 2025 GMT Subject: CN=694a2d46-6fa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:43:cc:b6:3d:ec:0c:3b:e3:73:f2:d5:f5:58: db:4e:e5:0f:e6:20:ab:8e:8c:36:f4:37:ad:30:3d: 95:c7:62:bf:64:cf:31:15:6d:54:2e:d4:38:92:d0: 0c:0d:77:c0:81:fc:3e:7f:6f:11:22:fa:ea:f1:2d: 7f:dc:5b:fb:47:c3:e4:5d:93:06:93:86:fa:76:e4: c7:fd:6e:12:16:f0:82:62:ba:1a:18:06:27:35:dc: 30:69:9d:eb:01:9f:c2:27:1b:0d:ee:35:9d:bc:4d: 26:3b:2d:1c:46:6c:37:cd:ba:ab:1b:12:90:11:7f: e2:ea:c1:92:80:d2:df:62:4c:47:8f:52:c6:a0:ac: 27:2b:32:d6:ab:ed:63:cb:8e:4b:a6:8b:de:29:47: 65:0a:29:f3:89:e7:95:67:f0:89:7b:09:03:ab:b3: c1:22:22:3e:3f:1d:36:71:bd:7c:25:ed:b3:e4:72: 1c:ea:d9:61:57:33:d9:82:99:18:47:83:0b:f8:22: 04:10:66:04:48:e0:6e:23:90:e8:f8:97:20:54:d5: ef:06:a0:44:e7:d3:bc:72:9e:2c:70:94:80:b9:da: 70:27:38:31:de:15:68:bd:34:61:2e:a5:83:3f:17: 5b:a9:e2:41:38:7a:7e:c6:b2:8e:1a:eb:27:bc:cd: 03:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:84:53:90:57:B1:0E:A9:7E:73:C7:E0:16:3C:F0:CD:82:87:08:43 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:17:fc:78:cd:5b:92:c7:fa:3d:2b:97:d0:45:27:ad:73:f0: 48:06:af:25:6b:06:fd:b2:35:65:9d:41:9f:31:0a:89:34:63: be:e0:17:f3:18:53:2e:44:3a:12:c0:c5:51:d0:c5:c3:ed:2b: 16:15:f3:c9:c5:20:4a:fd:ce:dc:a7:bb:16:f5:f1:a7:00:c0: f7:d9:22:98:ce:bc:7e:36:98:20:35:61:a7:48:7b:1e:f6:65: 13:82:c3:98:ec:c1:cc:84:9e:26:62:10:e4:2e:18:b7:c9:75: 0e:b2:6f:7c:67:2d:61:58:4a:1f:bf:8e:fa:72:58:b6:ce:88: 20:2b:1d:c5:f4:a4:ee:9b:14:e0:c3:32:87:fd:a1:4a:ac:65: 3d:d3:2e:12:04:9b:61:b8:d5:11:79:ee:eb:a7:86:e0:59:19: 9d:ff:72:40:45:af:72:99:19:1e:e4:8d:77:f3:9c:50:20:5a: 50:a3:71:5f:a6:9f:60:21:fc:57:3e:76:6f:cd:10:65:65:58: 6f:6b:57:aa:4e:07:19:6e:23:04:9d:7a:ca:58:b2:42:a0:cd: d5:85:2d:71:7e:a2:24:ea:cc:0c:ae:3d:93:32:ea:f5:bb:cb: fc:3d:d9:58:ce:99:8b:e0:eb:12:fb:fc:09:3d:6e:e9:82:4a: 51:47:a9:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoMUQwREFDMTFFRDgyRTM1QzIzQjBDQkVGRkJFRTAwNjI2 M0IwOTk1NzAeFw0yNTEyMjMwNTQ4NTNaFw0yNTEyMzAwNTQ4NTNaMBgxFjAUBgNV BAMMDTY5NGEyZDQ2LTZmYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5Q8y2PewMO+Nz8tX1WNtO5Q/mIKuOjDb0N60wPZXHYr9kzzEVbVQu1DiS0AwN d8CB/D5/bxEi+urxLX/cW/tHw+RdkwaThvp25Mf9bhIW8IJiuhoYBic13DBpnesB n8InGw3uNZ28TSY7LRxGbDfNuqsbEpARf+LqwZKA0t9iTEePUsagrCcrMtar7WPL jkumi94pR2UKKfOJ55Vn8Il7CQOrs8EiIj4/HTZxvXwl7bPkchzq2WFXM9mCmRhH gwv4IgQQZgRI4G4jkOj4lyBU1e8GoETn07xynixwlIC52nAnODHeFWi9NGEupYM/ F1up4kE4en7Gso4a6ye8zQOVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/oRTkFex Dql+c8fgFjzwzYKHCEMwHwYDVR0jBBgwFoAUHQ2sEe2C41wjsMvv++4AYmOwmVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzVBRkIxNDhFMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21W Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFEyc0VlMkM0MXdqc012di0tNEFZbU93bVZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB OUMwLzVBRkIxNDhFMzg4MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3 anNNdnYtLTRBWW1Pd21WYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABQX/HjNW5LH+j0rl9BFJ61z8EgGryVrBv2yNWWdQZ8xCok0Y77gF/MY Uy5EOhLAxVHQxcPtKxYV88nFIEr9ztynuxb18acAwPfZIpjOvH42mCA1YadIex72 ZROCw5jswcyEniZiEOQuGLfJdQ6yb3xnLWFYSh+/jvpyWLbOiCArHcX0pO6bFODD Mof9oUqsZT3TLhIEm2G41RF57uunhuBZGZ3/ckBFr3KZGR7kjXfznFAgWlCjcV+m n2Ah/Fc+dm/NEGVlWG9rV6pOBxluIwSdespYskKgzdWFLXF+oiTqzAyuPZMy6vW7 y/w92VjOmYvg6xL7/Ak9bumCSlFHqVY= -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:10 2025 by rpki-client