This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: 3qlT9cXBjF7PFEXECxyHOOMchazf9j7kIy6EMywjT1I= Subject key identifier: 5C:2D:E8:B3:A7:C4:82:DF:61:DE:E8:07:5E:22:EE:EE:D0:50:7C:42 Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: B1 Signing time: Sun 21 Dec 2025 05:11:59 +0000 Manifest this update: Sun 21 Dec 2025 05:11:58 +0000 Manifest next update: Sun 28 Dec 2025 05:11:58 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: n7p0ZNdXaAGNRSTdlJVSNNDGWZB45RhusMbt0bcZA4s=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Dec 21 05:11:58 2025 GMT Not After : Dec 28 05:11:58 2025 GMT Subject: CN=6947819f-5e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:bc:5a:58:90:fb:7d:b7:e4:65:de:e1:07:64: ad:84:4c:c3:d6:a0:5a:33:15:68:81:89:93:d4:ec: be:43:49:3d:36:c0:d5:f7:08:94:dc:ca:56:1e:1f: 46:38:4c:cb:29:b3:da:6d:71:d4:b2:7b:35:fe:66: 23:3c:64:65:84:b7:59:63:c4:03:da:c5:28:ac:c5: 11:b5:df:09:78:31:73:47:3d:2d:13:ae:7e:d4:9a: 98:47:31:d3:e5:b2:98:d0:d1:cb:e7:cd:75:22:92: ec:67:a4:bb:93:9e:22:07:e5:64:8a:a5:e5:2e:a0: 28:8f:99:90:fb:7c:a9:a3:48:33:3c:55:34:af:a9: b0:59:5e:e2:dc:a8:4f:28:eb:8f:b1:b6:b1:3d:47: 0a:0c:e7:08:93:e5:d8:82:6f:8e:c6:9b:11:cf:c7: 3a:eb:28:4a:57:8a:7e:20:d6:bc:9c:45:6a:f7:9a: 64:0e:67:9e:da:35:ed:99:95:4c:21:c5:a3:72:cc: 2b:1a:47:ca:7f:e3:89:0d:49:bc:27:a8:62:15:85: cb:43:f3:1e:3d:e3:15:cd:c9:d4:a9:12:a1:bd:c2: bd:6a:7e:53:c5:64:77:cd:2a:40:ed:92:61:26:d1: d6:1a:5c:f9:48:c2:74:f5:4c:d8:aa:67:7f:7f:c7: 66:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2D:E8:B3:A7:C4:82:DF:61:DE:E8:07:5E:22:EE:EE:D0:50:7C:42 X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f5:73:32:2f:89:06:79:2e:31:36:73:d5:3e:fe:8d:a5:30: 3b:02:e8:be:03:86:94:e4:1b:b1:94:64:c6:0d:5a:62:27:41: 5e:87:6a:4f:5f:4c:70:9d:3a:74:e4:72:a5:98:a3:7a:76:aa: e4:aa:d2:6e:e6:4f:5b:ea:0c:fe:5b:2e:ad:64:d9:27:c9:40: eb:b1:b1:60:3c:b0:4e:d3:2b:9d:74:4b:dc:e3:df:0d:e5:6f: 27:0f:db:c5:f4:ae:17:57:8b:4b:f2:ef:97:2f:ca:63:3f:74: 0e:d5:37:92:25:9c:e0:5c:d5:88:d5:bf:fc:e2:14:0a:8d:bf: 34:09:d1:96:da:f5:2c:9e:5b:1c:3f:73:33:a6:3d:86:5f:3c: 83:e2:aa:a1:b9:66:8d:05:89:f5:1f:5e:35:a5:a2:24:3a:b1: f4:49:2b:85:bf:b5:db:4a:62:b8:d0:ce:14:e2:0e:33:e5:14: 29:4d:85:9f:38:e7:6b:e1:21:89:a9:fc:42:d0:48:ff:80:b8: 1b:69:e3:46:c5:10:93:75:ea:bb:51:30:1d:2e:5f:8b:de:0e: 58:a4:46:15:e4:8f:f7:33:aa:2b:88:d7:2d:40:6d:10:38:d0: b6:10:ea:16:4b:75:38:bf:11:2b:ef:01:a2:d1:5b:29:41:f4: b3:96:9b:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVCQ0MxMTAvBgNVBAUTKDFFNDhFRkU1M0U2MkVEMjA0QkE3QTY5NDM4NENCQUM5 MjQ2Nzk0QTcwHhcNMjUxMjIxMDUxMTU4WhcNMjUxMjI4MDUxMTU4WjAYMRYwFAYD VQQDDA02OTQ3ODE5Zi01ZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67xaWJD7fbfkZd7hB2SthEzD1qBaMxVogYmT1Oy+Q0k9NsDV9wiU3MpWHh9G OEzLKbPabXHUsns1/mYjPGRlhLdZY8QD2sUorMURtd8JeDFzRz0tE65+1JqYRzHT 5bKY0NHL5811IpLsZ6S7k54iB+VkiqXlLqAoj5mQ+3ypo0gzPFU0r6mwWV7i3KhP KOuPsbaxPUcKDOcIk+XYgm+OxpsRz8c66yhKV4p+INa8nEVq95pkDmee2jXtmZVM IcWjcswrGkfKf+OJDUm8J6hiFYXLQ/MePeMVzcnUqRKhvcK9an5TxWR3zSpA7ZJh JtHWGlz5SMJ09UzYqmd/f8dmJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwt6LOn xILfYd7oB14i7u7QUHxCMB8GA1UdIwQYMBaAFB5I7+U+Yu0gS6emlDhMuskkZ5Sn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUJDQy9COTU4OEJBQ0NF NzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdTQkxwNmFVT0V5NnlTUm5s S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUJDQy9COTU4OEJBQ0NFNzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdT QkxwNmFVT0V5NnlTUm5sS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB79XMyL4kGeS4xNnPVPv6NpTA7Aui+A4aU5BuxlGTGDVpiJ0Feh2pP X0xwnTp05HKlmKN6dqrkqtJu5k9b6gz+Wy6tZNknyUDrsbFgPLBO0yuddEvc498N 5W8nD9vF9K4XV4tL8u+XL8pjP3QO1TeSJZzgXNWI1b/84hQKjb80CdGW2vUsnlsc P3Mzpj2GXzyD4qqhuWaNBYn1H141paIkOrH0SSuFv7XbSmK40M4U4g4z5RQpTYWf OOdr4SGJqfxC0Ej/gLgbaeNGxRCTdeq7UTAdLl+L3g5YpEYV5I/3M6oriNctQG0Q ONC2EOoWS3U4vxEr7wGi0VspQfSzlpuZ -----END CERTIFICATE-----Generated at Mon Dec 22 07:27:01 2025 by rpki-client