This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: 9mP4yH3K46Z9aws5oat2x/M7DSmMTvyRAfV2FZuOVU0= Subject key identifier: 67:B4:DC:66:66:F3:18:A1:87:81:57:64:4A:08:BE:45:C8:1F:5D:4C Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 03B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 03AF Signing time: Thu 04 Dec 2025 23:08:01 +0000 Manifest this update: Thu 04 Dec 2025 23:08:01 +0000 Manifest next update: Thu 11 Dec 2025 23:08:01 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: 5Tgla51bUkHYajohTZYGT4N2St6enpoN0/V/61kqz1E=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 947 (0x3b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Dec 4 23:08:01 2025 GMT Not After : Dec 11 23:08:01 2025 GMT Subject: CN=69321451-9876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:da:04:bb:fd:3e:5b:2f:f3:8e:27:78:4e: 83:33:e4:f5:4e:83:ef:8e:48:5d:92:ce:22:28:02: b2:01:0a:8f:8f:21:66:27:7f:58:d4:19:15:03:f2: 3b:f4:f3:19:ac:b3:a1:59:62:b1:7b:1e:73:f7:9c: f6:fd:d2:32:74:e8:f3:16:fa:e0:b6:28:83:0f:ee: ad:d4:c2:31:5a:2b:4a:85:bf:d4:92:25:98:a4:4d: 1f:18:dc:f4:a1:e3:35:70:ae:93:65:5a:c2:7f:16: aa:5d:2c:b8:41:08:14:de:5d:ab:d0:35:bb:ad:6b: 24:a2:25:74:62:5f:c6:c9:5c:1f:f7:35:60:19:64: 93:3b:40:1f:5a:c1:f0:de:ea:9d:43:01:6f:2d:e4: 02:a1:c9:76:12:a6:22:1a:4e:2c:6e:0e:00:a1:d7: b7:2f:94:0a:92:c1:87:36:42:82:af:7d:21:10:2f: f1:8f:24:dc:52:fc:ec:87:03:cf:ae:4d:64:55:ae: 71:a7:ed:28:e8:bb:c2:fe:1b:17:9a:50:40:51:1b: 9d:35:ef:46:91:25:5d:d4:11:1f:50:27:2b:0a:15: 54:bb:6d:c6:4a:6c:c7:4b:72:c2:8b:9c:99:b1:d9: 10:aa:6b:d6:70:25:fa:0b:9c:fe:78:4d:ea:38:70: 5c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B4:DC:66:66:F3:18:A1:87:81:57:64:4A:08:BE:45:C8:1F:5D:4C X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:1a:85:3f:68:46:40:e8:1b:dd:d5:a7:b7:2c:18:7e:42:4d: 8b:ff:65:bb:03:ed:85:52:65:5b:94:e7:7f:26:9f:a0:a6:0b: 88:18:54:94:11:27:e2:b3:9f:72:09:0b:33:8d:52:ae:7c:7e: a6:cd:13:b0:5c:7e:e1:4c:ff:ed:1c:74:dc:6f:03:97:7d:54: 9b:c0:fd:a4:17:25:f1:f3:53:21:a4:da:55:c5:c8:83:9d:c2: 66:94:f5:51:73:be:1c:01:26:0b:19:50:01:8a:23:ce:0b:a0: 56:f5:c8:19:0d:3c:a8:a9:46:50:f0:72:74:d5:fc:7a:18:5b: 9d:ff:03:63:2f:9d:57:49:b2:fd:fb:a5:f9:29:f5:8f:bc:0a: ff:a4:48:c8:e0:a7:4f:63:5b:01:39:69:d8:2d:67:b7:85:a3: 14:94:f9:73:bb:d8:83:2e:bc:1c:61:66:e7:69:58:c6:67:47: 62:d6:6f:7a:47:bd:40:c3:32:df:10:f1:c7:a1:e6:9e:0f:20: f7:bd:79:ea:54:29:84:fb:a5:c8:10:18:1d:8f:49:fe:c3:cb: 3d:75:61:26:5e:2d:61:ee:ae:b6:ba:28:9b:15:15:b3:ac:2a: 8e:d9:f2:22:d3:1b:53:d5:5d:9f:b6:66:98:04:84:6c:96:89: 1e:e5:dd:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjUxMjA0MjMwODAxWhcNMjUxMjExMjMwODAxWjAYMRYwFAYD VQQDEw02OTMyMTQ1MS05ODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqnaBLv9Plsv844neE6DM+T1ToPvjkhdks4iKAKyAQqPjyFmJ39Y1BkVA/I7 9PMZrLOhWWKxex5z95z2/dIydOjzFvrgtiiDD+6t1MIxWitKhb/UkiWYpE0fGNz0 oeM1cK6TZVrCfxaqXSy4QQgU3l2r0DW7rWskoiV0Yl/GyVwf9zVgGWSTO0AfWsHw 3uqdQwFvLeQCocl2EqYiGk4sbg4Aode3L5QKksGHNkKCr30hEC/xjyTcUvzshwPP rk1kVa5xp+0o6LvC/hsXmlBAURudNe9GkSVd1BEfUCcrChVUu23GSmzHS3LCi5yZ sdkQqmvWcCX6C5z+eE3qOHBcdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGe03GZm 8xihh4FXZEoIvkXIH11MMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXGoU/aEZA6Bvd1ae3LBh+Qk2L/2W7A+2FUmVblOd/Jp+gpguIGFSU ESfis59yCQszjVKufH6mzROwXH7hTP/tHHTcbwOXfVSbwP2kFyXx81MhpNpVxciD ncJmlPVRc74cASYLGVABiiPOC6BW9cgZDTyoqUZQ8HJ01fx6GFud/wNjL51XSbL9 +6X5KfWPvAr/pEjI4KdPY1sBOWnYLWe3haMUlPlzu9iDLrwcYWbnaVjGZ0di1m96 R71AwzLfEPHHoeaeDyD3vXnqVCmE+6XIEBgdj0n+w8s9dWEmXi1h7q62uiibFRWz rCqO2fIi0xtT1V2ftmaYBIRsloke5d1K -----END CERTIFICATE-----Generated at Sat Dec 6 11:23:22 2025 by rpki-client