This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: HCYUMi0A4WZIjizxDwaHtS01Mcdcm/Rdwo+otWCGuuE= Subject key identifier: CA:BC:58:EC:53:D3:65:A7:28:CA:59:3D:C5:1D:85:E8:FC:6E:09:E5 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: D7 Signing time: Fri 05 Dec 2025 03:45:52 +0000 Manifest this update: Fri 05 Dec 2025 03:45:51 +0000 Manifest next update: Fri 12 Dec 2025 03:45:51 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: M5QtWWyNUAFZCK8V9peK+tEroD9BCk4hnJe00w/J6R0=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: pGqkeCwicqjTqpVAd+nv6sW9bSd6/F8SqrVl+2o3VCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Dec 5 03:45:51 2025 GMT Not After : Dec 12 03:45:51 2025 GMT Subject: CN=69325570-3a2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3d:78:47:47:98:c3:a7:b5:3b:e0:c1:35:bf: ee:63:ae:7e:5e:22:2d:b2:8d:c2:32:8a:0b:42:c4: 95:38:17:68:97:09:f2:c8:c1:ae:4b:9a:42:c7:c8: b6:04:e3:66:c2:4a:dc:1a:54:dd:5f:a2:4e:77:d6: f1:fa:e2:29:20:21:84:82:c6:0a:42:48:9d:f4:9a: c6:5f:ba:9b:31:dc:c6:c7:5e:da:fc:ff:ab:23:68: 1f:f9:38:c2:fd:35:4a:71:c1:bd:ff:93:ad:0f:4d: 46:2b:3d:ff:3b:27:50:91:87:1f:20:56:30:aa:59: 62:3c:c8:d5:74:4c:5c:3f:14:eb:4c:4d:e9:da:54: 2e:a9:e3:6b:e9:9c:da:30:b8:b8:a8:e0:7e:50:c4: 6a:1b:16:21:5e:41:84:70:db:17:cb:2e:7c:d2:7e: c5:d8:e1:30:bf:88:df:7a:6d:97:44:e5:5b:c3:fa: 38:9e:41:b8:25:80:6d:0e:b5:64:1f:7b:1c:8b:6f: b8:71:b4:7f:29:36:32:87:76:6e:11:73:41:97:e6: 5a:5a:6d:3e:f9:c7:f2:0e:8a:26:54:60:eb:32:2d: b3:25:fb:d4:e7:7e:41:ae:37:e6:35:11:3b:7d:46: d5:e9:da:71:1b:bb:71:50:2c:82:99:d9:b0:5f:2f: 77:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:BC:58:EC:53:D3:65:A7:28:CA:59:3D:C5:1D:85:E8:FC:6E:09:E5 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:7e:58:5f:27:55:9f:aa:9e:a8:50:fe:4b:62:09:3f:6e:53: 76:a0:ef:b3:1d:90:c8:db:36:1d:27:87:ee:d8:94:83:6a:08: ed:90:a5:cf:ca:08:c4:78:9d:35:e2:55:ce:d2:04:9f:1b:5d: 57:02:10:28:1a:6b:a5:04:c4:e0:ba:8e:d3:e6:13:e0:a5:02: 61:f5:0d:88:f6:51:4e:d0:d3:92:ed:5c:26:9f:12:57:1e:28: 67:ce:ec:ce:03:2c:f0:c3:ac:d2:5e:68:51:c8:2a:fb:c8:71: bd:2b:50:05:68:90:eb:a1:72:24:d8:8c:27:0a:93:71:22:c6: 7f:e6:7f:83:49:2b:5d:32:40:4d:fb:9e:03:b8:fb:72:48:cc: c5:ba:07:33:48:bd:14:60:ac:31:11:4e:f0:30:6b:85:97:2e: 13:47:dd:a9:ed:bd:6d:a3:74:75:89:9b:35:38:e6:8f:e7:4a: 32:d6:c3:84:48:79:55:a3:d1:14:96:49:be:84:cb:08:62:49: 13:fa:02:61:3a:a4:c9:cb:48:52:03:d5:d6:41:1e:91:12:9f: 12:3c:da:9b:f1:b8:ee:bb:87:0c:33:0f:ec:92:79:9b:6d:ca: 87:98:4b:06:f7:c9:d7:65:5b:af:69:09:b8:b6:10:dc:f3:1c: e3:73:36:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjUxMjA1MDM0NTUxWhcNMjUxMjEyMDM0NTUxWjAYMRYwFAYD VQQDEw02OTMyNTU3MC0zYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0z14R0eYw6e1O+DBNb/uY65+XiItso3CMooLQsSVOBdolwnyyMGuS5pCx8i2 BONmwkrcGlTdX6JOd9bx+uIpICGEgsYKQkid9JrGX7qbMdzGx17a/P+rI2gf+TjC /TVKccG9/5OtD01GKz3/OydQkYcfIFYwqlliPMjVdExcPxTrTE3p2lQuqeNr6Zza MLi4qOB+UMRqGxYhXkGEcNsXyy580n7F2OEwv4jfem2XROVbw/o4nkG4JYBtDrVk H3sci2+4cbR/KTYyh3ZuEXNBl+ZaWm0++cfyDoomVGDrMi2zJfvU535BrjfmNRE7 fUbV6dpxG7txUCyCmdmwXy93owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMq8WOxT 02WnKMpZPcUdhej8bgnlMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnflhfJ1Wfqp6oUP5LYgk/blN2oO+zHZDI2zYdJ4fu2JSDagjtkKXP ygjEeJ014lXO0gSfG11XAhAoGmulBMTguo7T5hPgpQJh9Q2I9lFO0NOS7VwmnxJX HihnzuzOAyzww6zSXmhRyCr7yHG9K1AFaJDroXIk2IwnCpNxIsZ/5n+DSStdMkBN +54DuPtySMzFugczSL0UYKwxEU7wMGuFly4TR92p7b1to3R1iZs1OOaP50oy1sOE SHlVo9EUlkm+hMsIYkkT+gJhOqTJy0hSA9XWQR6REp8SPNqb8bjuu4cMMw/sknmb bcqHmEsG98nXZVuvaQm4thDc8xzjczZH -----END CERTIFICATE-----Generated at Sat Dec 6 13:07:41 2025 by rpki-client