This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: V/aWy8dqjDB2XBuU23yNe2OX9bbnPgzAZ3tVETHHqRM= Subject key identifier: 19:53:D3:20:32:E4:83:A5:B0:A7:B2:C8:AD:36:3E:CA:1C:0B:33:C5 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0844 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 082F Signing time: Sat 06 Dec 2025 19:58:10 +0000 Manifest this update: Sat 06 Dec 2025 19:58:09 +0000 Manifest next update: Sat 13 Dec 2025 19:58:09 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: XS/EySlc/2Zg7+EkK8oOVQ3AIyUvX4iRbFGEhSt20RM=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2116 (0x844) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Dec 6 19:58:09 2025 GMT Not After : Dec 13 19:58:09 2025 GMT Subject: CN=69348ad2-7c75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:9e:ec:5f:fa:07:ee:ad:34:15:6f:49:39: 23:63:53:f4:94:2c:74:a0:c1:af:5e:35:b8:9f:93: b1:4a:02:f4:da:ea:94:ea:19:4d:12:74:51:95:22: 73:6c:11:c9:4b:19:e0:2f:6d:f8:4e:14:03:75:47: 10:ea:f8:f3:05:18:ef:04:00:31:51:46:4c:1d:4b: 2c:00:fc:70:ff:2e:e5:eb:32:f3:63:73:83:ca:99: e3:65:a6:1b:5a:87:8c:21:5b:89:98:5a:0e:c3:f5: 54:82:b2:00:09:a1:d9:ae:ca:3d:ba:ef:5a:d1:68: 8d:61:a9:a8:ea:e2:7a:4e:54:8d:ab:d1:a8:5f:27: e9:7c:0c:06:d0:f3:e8:e3:77:7e:92:ef:7c:87:b6: f6:ba:db:1e:54:f6:f2:63:f1:c1:14:7e:3d:09:de: 5d:b1:5c:53:be:f1:2c:23:04:17:4d:e1:a5:cd:5b: c8:de:ec:3d:cd:45:83:fc:2b:49:4f:e4:40:49:70: aa:0b:f7:d4:d5:57:ee:00:2c:d9:73:34:00:76:cc: b1:8c:67:b8:e3:b1:b9:41:27:cb:f7:9d:0b:20:9d: 44:97:ef:bf:fe:95:89:22:d1:35:0b:3c:2a:23:69: e8:76:1b:75:19:29:c2:58:c4:d4:e4:d7:f4:1b:cb: e0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:53:D3:20:32:E4:83:A5:B0:A7:B2:C8:AD:36:3E:CA:1C:0B:33:C5 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:66:04:f2:23:31:fe:e9:74:a6:b2:b7:31:27:83:58:64:3f: 5d:75:ea:c3:cc:48:c4:d4:ae:f3:48:c4:9e:1e:b6:06:de:a7: 8f:93:d4:0d:1d:b9:f4:42:74:4a:2a:bd:d5:26:f3:9f:96:8e: c9:d7:3f:75:e6:77:62:52:9a:af:6a:c4:36:0f:66:1f:6c:00: e3:4b:45:93:d5:2f:e5:6b:9b:2c:7b:e4:18:de:d9:7a:55:a0: 85:47:c5:3c:a6:7b:7b:4f:26:5c:e4:ef:36:c2:64:73:1f:f7: f8:63:ef:1c:d9:c8:19:39:61:43:0d:86:0a:f5:04:f4:0f:82: 5e:85:33:e4:5e:72:19:e2:7c:67:1c:49:ab:7b:69:b4:08:57: da:23:ab:d4:7a:2d:9a:09:64:49:76:51:3f:2c:dd:0a:c1:f0: 6f:6e:d5:fd:9b:6e:77:12:2e:fd:2b:d5:2c:df:68:00:df:e2: c5:b8:7e:df:86:48:69:05:b8:6a:d1:7c:72:27:a4:9f:d6:a0: 9b:2f:d0:63:9d:e0:02:87:ac:8c:67:98:13:5f:25:0b:9d:50: 60:d3:70:50:06:4a:0f:e0:a9:41:50:36:ee:24:01:09:3f:4c: f7:1b:a7:4f:86:a4:56:1c:96:cb:43:e9:b6:8d:20:e6:77:e0: 78:2a:25:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUxMjA2MTk1ODA5WhcNMjUxMjEzMTk1ODA5WjAYMRYwFAYD VQQDEw02OTM0OGFkMi03Yzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtA2e7F/6B+6tNBVvSTkjY1P0lCx0oMGvXjW4n5OxSgL02uqU6hlNEnRRlSJz bBHJSxngL234ThQDdUcQ6vjzBRjvBAAxUUZMHUssAPxw/y7l6zLzY3ODypnjZaYb WoeMIVuJmFoOw/VUgrIACaHZrso9uu9a0WiNYamo6uJ6TlSNq9GoXyfpfAwG0PPo 43d+ku98h7b2utseVPbyY/HBFH49Cd5dsVxTvvEsIwQXTeGlzVvI3uw9zUWD/CtJ T+RASXCqC/fU1VfuACzZczQAdsyxjGe447G5QSfL950LIJ1El++//pWJItE1Czwq I2nodht1GSnCWMTU5Nf0G8vgwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlT0yAy 5IOlsKeyyK02PsocCzPFMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwZgTyIzH+6XSmsrcxJ4NYZD9dderDzEjE1K7zSMSeHrYG3qePk9QN Hbn0QnRKKr3VJvOflo7J1z915ndiUpqvasQ2D2YfbADjS0WT1S/la5sse+QY3tl6 VaCFR8U8pnt7TyZc5O82wmRzH/f4Y+8c2cgZOWFDDYYK9QT0D4JehTPkXnIZ4nxn HEmre2m0CFfaI6vUei2aCWRJdlE/LN0KwfBvbtX9m253Ei79K9Us32gA3+LFuH7f hkhpBbhq0XxyJ6Sf1qCbL9BjneACh6yMZ5gTXyULnVBg03BQBkoP4KlBUDbuJAEJ P0z3G6dPhqRWHJbLQ+m2jSDmd+B4KiV2 -----END CERTIFICATE-----Generated at Sun Dec 7 06:18:40 2025 by rpki-client