This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft File: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft (raw, json) Hash identifier: Pk9D/ONmACA669OuuojFi4vKtoDnpRD+Lv0I6KvkJUs= Subject key identifier: 0D:E8:7A:06:F7:D2:35:E0:5D:09:06:E3:DF:41:81:F6:A9:39:3A:11 Authority key identifier: 84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D Certificate issuer: /CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Certificate serial: 0EAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft Manifest number: 0EA0 Signing time: Sat 06 Dec 2025 17:08:56 +0000 Manifest this update: Sat 06 Dec 2025 17:08:56 +0000 Manifest next update: Sat 13 Dec 2025 17:08:56 +0000 Files and hashes: 1: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl (hash: qUIZtKu+ZaSKL5u1GJCQeU6nTnshIJv41jxYxP8VqqU=) 2: 2B21EC2EE4E111E981365C17C4F9AE02.roa (hash: MmZvnPTLEUK2uOO8LldttqheyhLmSNsa1D7UmikJt9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:08:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3758 (0xeae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C743, serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Validity Not Before: Dec 6 17:08:56 2025 GMT Not After : Dec 13 17:08:56 2025 GMT Subject: CN=69346328-d278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b1:91:71:ba:ac:d9:03:e0:71:2f:72:d1:c3: 74:0d:ab:27:65:6a:cd:bb:34:cf:c3:0b:9c:5a:68: 35:35:6c:21:30:5b:10:23:09:6a:86:e6:c6:2c:30: be:c4:40:1f:b8:ae:9d:13:cc:f5:83:e5:e4:c6:06: 44:23:62:89:4b:7d:ff:de:63:00:de:e9:bf:1a:6e: 62:99:5f:d4:08:0d:7e:69:8d:f5:ee:2e:99:e3:b3: 41:90:a4:62:2e:44:b3:94:21:93:3c:c6:da:63:06: eb:0d:80:b0:c9:05:10:45:ba:d5:bc:a6:c8:6c:98: 21:12:5c:a8:a3:90:ea:bb:f3:21:3a:a8:69:c0:6c: f8:03:8f:f1:b6:bf:9c:38:02:a5:dd:1f:05:1c:d6: 32:ed:4f:bd:e9:a9:55:40:00:0e:39:af:bb:70:ac: 69:99:32:46:c3:c7:18:b0:35:8c:e7:38:05:7d:16: 43:c8:60:ed:88:6c:dc:51:38:a1:10:ab:89:fe:79: 7f:1d:4a:b6:ee:a0:9f:a0:2e:f1:e4:ff:48:2a:eb: b5:13:79:19:d7:69:92:15:7e:86:34:c7:9b:66:73: 77:16:a1:b6:2d:9c:5a:b9:51:07:ef:66:b6:6a:6c: 58:32:72:17:f5:6d:c4:aa:34:df:b2:1b:35:a9:5d: 8e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E8:7A:06:F7:D2:35:E0:5D:09:06:E3:DF:41:81:F6:A9:39:3A:11 X509v3 Authority Key Identifier: keyid:84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:5c:f5:f0:ec:d0:38:cf:f2:fc:4c:01:e1:20:58:f5:b6:9b: 5b:30:1c:84:17:fa:29:46:5d:87:21:a1:80:46:2b:f8:b4:1a: de:7e:e7:dd:60:45:1d:5b:e2:6c:c9:c2:9f:d7:f5:63:3e:b4: 8f:e7:67:84:9e:59:af:93:f4:ce:3a:91:f0:09:1e:0f:df:15: 90:f5:67:90:28:e0:a0:b6:c5:f7:fd:03:6d:b6:63:f0:ca:5d: 98:b1:cf:d2:f9:ac:6e:98:a7:f9:c6:9d:a9:9e:fb:03:a9:86: c9:2e:fc:5e:cb:22:f3:16:3c:39:2a:e8:09:81:ae:be:d2:51: d7:55:56:89:ad:24:bb:24:ec:30:7b:12:6c:a8:f1:db:d5:b8: 93:4f:eb:34:db:f1:8f:6c:aa:7f:06:66:f4:e5:38:be:b4:38: 0f:8f:93:6e:2f:bc:47:7e:83:9b:9c:12:fe:f7:17:d8:97:da: 6a:a6:00:fc:06:e6:ad:c9:8b:db:8a:8a:40:fb:1d:08:b0:31: 8e:19:ba:30:a9:4a:ca:a4:6d:63:a8:7d:1f:a2:c6:72:9b:86: 39:c0:31:6c:a8:b0:bc:3d:a8:25:38:bb:76:d0:9c:ba:ce:00: c6:2b:b3:80:43:78:1d:83:e4:28:03:4b:39:ef:38:bd:3a:9f: ef:05:4f:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3NDMxMTAvBgNVBAUTKDg0RTRGRkI2OTI3Rjc3RjVDM0YwQTI1MjY4MkY3MURE QjM3N0IxMUQwHhcNMjUxMjA2MTcwODU2WhcNMjUxMjEzMTcwODU2WjAYMRYwFAYD VQQDEw02OTM0NjMyOC1kMjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbGRcbqs2QPgcS9y0cN0DasnZWrNuzTPwwucWmg1NWwhMFsQIwlqhubGLDC+ xEAfuK6dE8z1g+XkxgZEI2KJS33/3mMA3um/Gm5imV/UCA1+aY317i6Z47NBkKRi LkSzlCGTPMbaYwbrDYCwyQUQRbrVvKbIbJghElyoo5Dqu/MhOqhpwGz4A4/xtr+c OAKl3R8FHNYy7U+96alVQAAOOa+7cKxpmTJGw8cYsDWM5zgFfRZDyGDtiGzcUTih EKuJ/nl/HUq27qCfoC7x5P9IKuu1E3kZ12mSFX6GNMebZnN3FqG2LZxauVEH72a2 amxYMnIX9W3EqjTfshs1qV2O+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3oegb3 0jXgXQkG499BgfapOToRMB8GA1UdIwQYMBaAFITk/7aSf3f1w/CiUmgvcd2zd7Ed MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzc0My9GOEFFMjg4MEEy MUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2RfWEQ4S0pTYUM5eDNiTjNz UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hPVF90cEpfZF9YRDhLSlNhQzl4M2JOM3NSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qzc0My9GOEFFMjg4MEEyMUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2Rf WEQ4S0pTYUM5eDNiTjNzUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5XPXw7NA4z/L8TAHhIFj1tptbMByEF/opRl2HIaGARiv4tBrefufd YEUdW+JsycKf1/VjPrSP52eEnlmvk/TOOpHwCR4P3xWQ9WeQKOCgtsX3/QNttmPw yl2Ysc/S+axumKf5xp2pnvsDqYbJLvxeyyLzFjw5KugJga6+0lHXVVaJrSS7JOww exJsqPHb1biTT+s02/GPbKp/Bmb05Ti+tDgPj5NuL7xHfoObnBL+9xfYl9pqpgD8 BuatyYvbiopA+x0IsDGOGbowqUrKpG1jqH0fosZym4Y5wDFsqLC8PaglOLt20Jy6 zgDGK7OAQ3gdg+QoA0s57zi9Op/vBU8C -----END CERTIFICATE-----Generated at Sun Dec 7 01:56:50 2025 by rpki-client