This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: aMinlQ1L849pT5DbftY5QLIElRTbf0kfrUxxSgXPq3A= Subject key identifier: 5C:29:38:40:A8:A4:18:A6:3A:CA:BB:E2:76:93:DB:DC:AA:E1:74:FF Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 65 Signing time: Tue 09 Dec 2025 04:55:52 +0000 Manifest this update: Tue 09 Dec 2025 04:55:51 +0000 Manifest next update: Tue 16 Dec 2025 04:55:51 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: BgB6wZU8w8xH06zT381oI76pmm93CkwDjEdwZz2KzME=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 04:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Dec 9 04:55:51 2025 GMT Not After : Dec 16 04:55:51 2025 GMT Subject: CN=6937abd7-fb51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2a:91:f4:cb:2c:d7:75:d3:cb:d9:98:18:74: 11:ea:d5:77:e3:41:ec:dd:87:4c:e5:e2:e1:3f:ab: 8f:df:9a:b7:de:31:cc:36:a4:b6:a8:da:9b:51:5f: de:27:e8:dd:af:f6:11:9b:b7:a2:4c:dc:6e:41:8a: ac:ca:85:6b:3b:f5:65:bc:f9:4b:ab:83:fe:7e:2c: 70:e9:49:33:24:fd:9d:7c:88:08:6d:25:7a:f8:33: 42:85:27:ea:c8:2c:43:cc:4d:ec:de:f0:af:21:a6: 2d:60:5a:bb:42:84:2c:7a:ee:e0:a1:40:39:56:4d: e0:29:61:12:ec:c6:93:67:7e:6e:ec:16:f2:c5:08: 79:ac:db:7c:6c:72:9c:3d:39:d2:5d:ab:d1:c9:04: 6f:d5:2a:e1:e1:89:25:52:80:8a:fa:1f:6d:da:32: 47:46:79:fa:d8:71:35:e5:fa:ab:b6:27:ed:e8:87: b3:4a:d8:46:42:57:ed:5b:d8:7f:60:1a:c6:87:1d: 02:ac:3a:55:20:c2:a1:83:87:b5:14:92:e1:79:2f: 1b:0d:67:23:63:b1:04:c4:99:3b:95:76:f6:1e:e2: 08:2f:12:46:b8:85:d9:1f:3c:d8:d5:3a:b7:e2:16: 93:42:d5:4e:d2:3d:5a:8e:1e:6b:9f:37:e9:7d:12: 48:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:29:38:40:A8:A4:18:A6:3A:CA:BB:E2:76:93:DB:DC:AA:E1:74:FF X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:fb:27:a7:d1:e3:00:b1:8c:94:2d:c5:30:e9:20:9c:29:36: 32:80:87:66:53:6a:10:98:56:c9:cd:18:2e:62:06:22:1b:2d: 24:06:65:9c:6d:49:2a:b6:11:16:71:a7:18:79:ba:5e:3a:32: 3a:f3:b5:72:d0:ba:98:00:f9:58:46:57:b3:ad:f1:9c:36:23: b2:d6:eb:c2:7f:d0:e1:a2:06:ff:68:9b:63:c8:55:7e:ba:cc: 58:9f:f5:40:a3:0b:25:a1:46:a6:5c:fa:39:d0:da:0e:c0:4e: 25:31:51:bb:92:44:1f:ee:f0:31:48:c8:96:55:7c:16:a7:da: 2b:40:c5:d3:f7:9d:b8:4d:32:a1:7e:2d:ad:7f:8c:62:3a:f9: 80:03:05:f2:3e:4f:cf:59:95:29:31:12:43:d4:7f:67:cd:e3: e5:17:e5:f2:bf:e0:4c:64:4e:11:96:61:88:f3:43:ee:c5:a5: ef:a5:3a:c7:39:cc:f0:ba:5e:c5:06:f3:97:20:0b:1e:e2:e2: 2b:6e:5d:fe:cd:95:a3:9d:7f:03:9c:a0:8b:d5:1f:ea:da:dd: 32:c3:92:0c:da:98:8b:96:1c:86:5c:02:b0:11:8d:38:e1:af: 79:e7:7d:13:55:83:e5:6f:a8:d7:fc:e7:16:10:53:e5:88:a1: 83:3d:da:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTEyMDkwNDU1NTFaFw0yNTEyMTYwNDU1NTFaMBgxFjAUBgNV BAMTDTY5MzdhYmQ3LWZiNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuKpH0yyzXddPL2ZgYdBHq1XfjQezdh0zl4uE/q4/fmrfeMcw2pLao2ptRX94n 6N2v9hGbt6JM3G5BiqzKhWs79WW8+Uurg/5+LHDpSTMk/Z18iAhtJXr4M0KFJ+rI LEPMTeze8K8hpi1gWrtChCx67uChQDlWTeApYRLsxpNnfm7sFvLFCHms23xscpw9 OdJdq9HJBG/VKuHhiSVSgIr6H23aMkdGefrYcTXl+qu2J+3oh7NK2EZCV+1b2H9g GsaHHQKsOlUgwqGDh7UUkuF5LxsNZyNjsQTEmTuVdvYe4ggvEka4hdkfPNjVOrfi FpNC1U7SPVqOHmufN+l9EkjxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXCk4QKik GKY6yrvidpPb3KrhdP8wHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKb7J6fR4wCxjJQtxTDpIJwpNjKAh2ZTahCYVsnNGC5iBiIbLSQGZZxt SSq2ERZxpxh5ul46MjrztXLQupgA+VhGV7Ot8Zw2I7LW68J/0OGiBv9om2PIVX66 zFif9UCjCyWhRqZc+jnQ2g7ATiUxUbuSRB/u8DFIyJZVfBan2itAxdP3nbhNMqF+ La1/jGI6+YADBfI+T89ZlSkxEkPUf2fN4+UX5fK/4ExkThGWYYjzQ+7Fpe+lOsc5 zPC6XsUG85cgCx7i4ituXf7NlaOdfwOcoIvVH+ra3TLDkgzamIuWHIZcArARjTjh r3nnfRNVg+VvqNf85xYQU+WIoYM92iM= -----END CERTIFICATE-----Generated at Wed Dec 10 15:11:17 2025 by rpki-client