This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: HOGNZnBRAVhGkRHCLNAX+Q6rOPd1cg1mYGcDTRXJgBg= Subject key identifier: C2:DC:D6:F0:D8:5A:4A:9D:F3:B4:4A:2D:50:62:93:46:18:3B:C7:85 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0B51 Signing time: Thu 04 Dec 2025 18:39:57 +0000 Manifest this update: Thu 04 Dec 2025 18:39:57 +0000 Manifest next update: Thu 11 Dec 2025 18:39:57 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: h+y0NY/EFfxRJ4cnlw52wyCmUJPtumxdXgLg3P2fvsg=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: kj+LbGbtBvSSpF59xQ/oF6zo99e75Fj59GXX8sxOzfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2945 (0xb81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Dec 4 18:39:57 2025 GMT Not After : Dec 11 18:39:57 2025 GMT Subject: CN=6931d57d-69bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4e:b8:01:b8:29:b1:b3:e8:17:06:37:95:d5: 96:d7:72:c4:89:30:20:6b:ec:00:13:9a:f7:f4:70: f8:6a:99:dd:9b:14:4b:25:56:98:92:ff:1e:45:b4: 15:d8:05:fa:d7:9b:f5:b7:03:45:74:da:e9:a6:42: f6:e8:f3:b2:f2:c6:93:71:bf:38:5c:c3:b3:2f:96: 53:06:98:82:5a:d1:51:f1:73:64:7a:27:9f:18:53: 25:90:38:e1:9e:22:40:27:03:4a:fd:ff:65:1c:4b: fa:09:01:e4:cd:6c:7f:ca:ed:70:58:48:bf:69:64: a7:c8:8d:ed:fa:a1:78:95:58:87:87:c6:84:94:60: d2:32:04:f0:2b:84:75:fa:ff:5b:63:3c:47:c3:20: 83:c7:d3:f1:45:14:07:19:72:b6:01:3d:dc:6f:7d: c0:24:e3:02:a5:b2:d4:a2:d4:e2:10:68:47:d1:f1: 1f:db:97:f6:cb:66:5b:7d:21:99:63:23:c9:22:cc: 07:c2:a9:95:29:2c:0d:31:0b:ac:13:87:c1:47:6d: a5:37:2a:ab:82:71:e1:0a:c8:31:db:7c:54:cf:36: 9d:a4:5f:d6:ba:0d:fd:de:3a:e4:90:33:94:28:9b: 2c:63:b1:79:c9:a2:63:33:d3:57:bb:85:a0:a2:76: 2a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DC:D6:F0:D8:5A:4A:9D:F3:B4:4A:2D:50:62:93:46:18:3B:C7:85 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:41:f9:0a:eb:2c:bb:c3:ed:3b:08:04:ea:bd:92:76:16:93: 81:ab:b2:b1:e4:6f:dc:46:32:06:cc:e0:f6:68:e8:9f:62:67: d9:2d:e3:89:a6:93:c8:42:4f:c5:b4:96:d8:04:e9:e9:10:79: 56:c0:df:75:1b:d0:bc:67:fc:62:24:0f:0f:f8:88:27:2d:78: 88:3a:0a:c6:cc:07:bc:14:15:5a:88:93:23:d0:e9:d4:66:b2: 3c:86:4e:22:91:bf:ec:1d:84:3a:bc:69:aa:05:12:c6:9b:03: 88:18:20:e0:9a:18:51:a9:b4:6e:f7:7b:b5:cd:62:91:8e:c3: 33:be:ad:3d:6d:59:54:5e:eb:30:a4:8b:1b:19:0d:1a:40:04: d3:98:9d:85:b1:95:26:45:12:fb:ce:a4:6e:96:24:1a:29:7a: e7:2a:68:22:c7:8b:02:c2:b5:40:41:73:b0:33:4c:14:b1:e7: 49:77:57:54:65:31:54:7b:c2:7f:e5:e9:75:4c:a5:e0:13:00: df:53:ad:43:29:37:4e:dc:38:e6:ee:89:b3:20:bd:6a:67:80: 21:4d:bd:d7:c4:e0:b6:26:bb:7b:fd:35:13:4f:24:e3:be:47: bb:f1:9e:a6:11:e5:dc:cf:e0:3a:05:e0:bc:88:e3:68:d8:2b: 56:4e:7d:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUxMjA0MTgzOTU3WhcNMjUxMjExMTgzOTU3WjAYMRYwFAYD VQQDEw02OTMxZDU3ZC02OWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApU64AbgpsbPoFwY3ldWW13LEiTAga+wAE5r39HD4apndmxRLJVaYkv8eRbQV 2AX615v1twNFdNrppkL26POy8saTcb84XMOzL5ZTBpiCWtFR8XNkeiefGFMlkDjh niJAJwNK/f9lHEv6CQHkzWx/yu1wWEi/aWSnyI3t+qF4lViHh8aElGDSMgTwK4R1 +v9bYzxHwyCDx9PxRRQHGXK2AT3cb33AJOMCpbLUotTiEGhH0fEf25f2y2ZbfSGZ YyPJIswHwqmVKSwNMQusE4fBR22lNyqrgnHhCsgx23xUzzadpF/Wug393jrkkDOU KJssY7F5yaJjM9NXu4WgonYqmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMLc1vDY Wkqd87RKLVBik0YYO8eFMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDQfkK6yy7w+07CATqvZJ2FpOBq7Kx5G/cRjIGzOD2aOifYmfZLeOJ ppPIQk/FtJbYBOnpEHlWwN91G9C8Z/xiJA8P+IgnLXiIOgrGzAe8FBVaiJMj0OnU ZrI8hk4ikb/sHYQ6vGmqBRLGmwOIGCDgmhhRqbRu93u1zWKRjsMzvq09bVlUXusw pIsbGQ0aQATTmJ2FsZUmRRL7zqRuliQaKXrnKmgix4sCwrVAQXOwM0wUsedJd1dU ZTFUe8J/5el1TKXgEwDfU61DKTdO3Djm7omzIL1qZ4AhTb3XxOC2Jrt7/TUTTyTj vke78Z6mEeXcz+A6BeC8iONo2CtWTn0D -----END CERTIFICATE-----Generated at Sat Dec 6 13:29:40 2025 by rpki-client