This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft File: HSQuN7enRsN-RUFFarAJiztXPPw.mft (raw, json) Hash identifier: edH9sGPYx7T/MccOBvK5ldQjh0ra/g/99XtmTdWVzAI= Subject key identifier: 6D:D8:45:4F:B6:9F:E5:38:94:01:C2:90:BE:C8:DF:46:02:27:8B:35 Authority key identifier: 1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC Certificate issuer: /CN=A9142EA4/serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft Manifest number: 4A Signing time: Fri 05 Dec 2025 05:13:12 +0000 Manifest this update: Fri 05 Dec 2025 05:13:11 +0000 Manifest next update: Fri 12 Dec 2025 05:13:11 +0000 Files and hashes: 1: HSQuN7enRsN-RUFFarAJiztXPPw.crl (hash: 7XdtthIljL7IRMydYrYomlJYdlM3vSKXOPDLZhORTVY=) 2: 96E040E063B211F09B18DA38C4F9AE02.roa (hash: RBJCVf8Vhn27huQa1u7FR3jz192DVTd/ur20Jj+Crn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142EA4, serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Validity Not Before: Dec 5 05:13:11 2025 GMT Not After : Dec 12 05:13:11 2025 GMT Subject: CN=693269e8-dd26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f6:0f:92:7a:2b:9c:e6:07:ba:0f:58:a6:52: 6e:fb:82:1f:31:96:37:25:50:6d:41:ab:3b:a8:62: 4f:88:12:a6:dc:4e:5f:a8:65:23:e2:8b:a1:4e:a8: 7d:7d:bc:32:fe:40:55:4f:9b:79:35:61:37:26:39: fc:08:d1:93:fe:65:21:8c:b7:3f:63:35:b6:55:23: 65:03:60:c5:8e:f3:4b:e0:37:a4:84:4c:77:53:db: 5c:69:80:c8:a4:f0:85:98:02:f2:f0:cd:fc:45:e8: 90:6c:7c:83:5e:e3:19:07:19:85:ee:59:ee:d5:3d: 58:4f:75:29:3e:80:b2:b9:62:b1:df:fe:7e:ce:73: 55:69:12:0a:b6:32:45:9a:d8:bb:f3:f6:b3:7c:b6: 05:f7:94:13:b3:02:65:76:c0:6d:41:82:31:ca:3a: f5:0b:7b:77:79:0b:e3:52:d2:e5:96:1d:4e:e4:c1: 30:0b:a6:05:d2:b6:a4:d0:6e:94:78:44:d2:2a:e6: f4:67:07:48:f8:d6:b5:04:d7:bd:56:f4:d5:92:95: 86:16:7e:6e:c7:c1:51:72:f9:8d:17:27:9e:86:97: 8a:ca:64:95:66:4e:26:55:ec:6c:a6:61:e6:92:e4: 30:a0:3a:e5:aa:30:93:3e:31:85:48:4e:6f:a7:2b: ec:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D8:45:4F:B6:9F:E5:38:94:01:C2:90:BE:C8:DF:46:02:27:8B:35 X509v3 Authority Key Identifier: keyid:1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:67:2d:92:9e:15:07:fd:ee:3a:18:47:9d:35:20:8f:ee:c2: 3f:dd:fe:89:b5:4b:ae:8f:51:c7:5d:eb:f6:60:34:4c:04:83: ce:93:96:60:81:24:40:78:fc:d5:7e:a8:d9:6e:4d:c3:68:5f: ac:b7:58:2e:7c:b5:6b:7f:fb:ac:eb:64:74:e9:3f:cd:ca:d4: f8:21:0d:46:5e:3a:69:ee:6c:70:c3:dc:17:75:a3:ec:5f:35: c0:a2:77:bf:cd:0f:90:a6:92:b5:b7:ed:a0:7a:b2:41:a5:d5: e2:f8:6b:c3:f5:32:ba:ee:5b:ef:d3:65:83:d6:52:a5:fc:38: 72:ea:7e:31:d6:58:dd:96:f3:ac:30:9e:e1:8b:34:17:af:c8: 82:f2:0c:d3:cb:c3:fe:78:c8:6e:b1:3f:69:d8:f6:0f:e4:24: ab:1c:b0:53:a4:d5:64:d9:3f:50:68:66:c6:59:fb:30:57:84: 3d:f6:27:bd:50:10:40:9d:94:c0:69:38:8e:d3:b9:37:9a:ff: 4b:c2:a8:cf:f2:b5:62:e4:fc:85:12:3c:d9:fd:ae:f4:f8:05: 86:aa:0b:e5:c4:04:92:63:31:e3:44:6b:dc:98:06:2d:79:6e: d2:48:27:8f:9e:15:bc:fb:73:e3:87:67:17:aa:00:95:ce:98: 2a:eb:ea:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkVBNDExMC8GA1UEBRMoMUQyNDJFMzdCN0E3NDZDMzdFNDU0MTQ1NkFCMDA5OEIz QjU3M0NGQzAeFw0yNTEyMDUwNTEzMTFaFw0yNTEyMTIwNTEzMTFaMBgxFjAUBgNV BAMTDTY5MzI2OWU4LWRkMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv9g+Seiuc5ge6D1imUm77gh8xljclUG1BqzuoYk+IEqbcTl+oZSPii6FOqH19 vDL+QFVPm3k1YTcmOfwI0ZP+ZSGMtz9jNbZVI2UDYMWO80vgN6SETHdT21xpgMik 8IWYAvLwzfxF6JBsfINe4xkHGYXuWe7VPVhPdSk+gLK5YrHf/n7Oc1VpEgq2MkWa 2Lvz9rN8tgX3lBOzAmV2wG1BgjHKOvULe3d5C+NS0uWWHU7kwTALpgXStqTQbpR4 RNIq5vRnB0j41rUE171W9NWSlYYWfm7HwVFy+Y0XJ56Gl4rKZJVmTiZV7GymYeaS 5DCgOuWqMJM+MYVITm+nK+zXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbdhFT7af 5TiUAcKQvsjfRgInizUwHwYDVR0jBBgwFoAUHSQuN7enRsN+RUFFarAJiztXPPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRUE0LzI2NERDRjFDNjNB RjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNOLVJVRkZhckFKaXp0WFBQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFNRdU43ZW5Sc04tUlVGRmFyQUppenRYUFB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RUE0LzI2NERDRjFDNjNBRjExRjA4RTAwMkI0Q0M0RjlBRTAyL0hTUXVON2VuUnNO LVJVRkZhckFKaXp0WFBQdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABlnLZKeFQf97joYR501II/uwj/d/om1S66PUcdd6/ZgNEwEg86TlmCB JEB4/NV+qNluTcNoX6y3WC58tWt/+6zrZHTpP83K1PghDUZeOmnubHDD3Bd1o+xf NcCid7/ND5CmkrW37aB6skGl1eL4a8P1MrruW+/TZYPWUqX8OHLqfjHWWN2W86ww nuGLNBevyILyDNPLw/54yG6xP2nY9g/kJKscsFOk1WTZP1BoZsZZ+zBXhD32J71Q EECdlMBpOI7TuTea/0vCqM/ytWLk/IUSPNn9rvT4BYaqC+XEBJJjMeNEa9yYBi15 btJIJ4+eFbz7c+OHZxeqAJXOmCrr6h8= -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:18 2025 by rpki-client