This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: V9SNmlMat7FAsssNKIvJzyjP+BoCbPJtVA/6fS6XCNk= Subject key identifier: BC:97:E3:F8:AC:1A:55:05:18:5D:20:43:2E:4F:01:B1:43:B3:73:76 Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 51 Signing time: Fri 05 Dec 2025 05:12:34 +0000 Manifest this update: Fri 05 Dec 2025 05:12:34 +0000 Manifest next update: Fri 12 Dec 2025 05:12:34 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: J7eMYpHf8KpkZEFx8azAcNiFIUDUA9Lut1xyg2a6Rb0=) 2: C7A29726A65311F091E2CF10C4F9AE02.roa (hash: H+sz1WV2JCbo6B0gUh55p+qB63Mvx+1vqhNeQo2vgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Dec 5 05:12:34 2025 GMT Not After : Dec 12 05:12:34 2025 GMT Subject: CN=693269c2-0204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fb:64:e4:e4:ef:12:17:48:70:6c:b3:02:01: 71:c6:2b:38:bd:ea:7e:61:7f:09:e4:f9:a4:15:f8: a6:87:ef:05:bf:8e:ef:50:88:e2:63:2c:3b:38:53: 51:a9:b9:52:d1:09:5f:ed:b0:5f:3d:2a:c9:1c:32: 62:44:49:bc:fe:72:fd:ef:80:a5:ab:d1:75:a3:d0: ee:a5:72:96:64:dd:01:78:51:f3:c8:67:93:1b:a8: 0d:50:e5:39:51:e3:eb:29:6e:d0:fb:6d:ca:d5:cd: 09:58:08:27:d5:46:0e:b2:f7:ee:70:9b:d7:60:56: 52:7c:4e:4d:e6:83:6f:07:42:c4:8c:55:1a:6e:b5: e4:25:ed:ea:57:d5:d4:36:b2:4c:f6:e2:6a:ef:5d: 93:b6:f9:36:9a:ee:5b:70:78:45:ca:aa:c2:a7:0b: 58:01:e0:b3:be:20:96:e1:08:85:ca:1f:1b:72:34: bb:7a:9b:ef:09:ce:c2:60:a0:90:5b:6f:b1:cf:2c: 1f:b4:40:1d:86:e9:58:82:76:bf:92:9e:03:14:11: 2a:27:b6:1f:b4:74:9d:ac:ed:89:96:c4:41:76:83: c6:2b:00:d8:73:93:14:cd:b6:7e:aa:5d:b8:1f:aa: ff:38:d3:6b:0a:5e:21:54:cc:bd:ea:53:99:fe:fe: 35:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:97:E3:F8:AC:1A:55:05:18:5D:20:43:2E:4F:01:B1:43:B3:73:76 X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:76:7e:c4:a3:d2:6e:a8:0a:df:80:2b:be:e3:63:4a:0a:e8: ce:bb:83:fa:8b:15:71:31:31:20:1a:08:04:62:30:9e:85:ea: 38:1d:17:0c:f1:a2:d9:de:00:fb:36:71:f3:d2:c3:42:36:47: a5:5e:e0:20:cd:26:62:3e:9c:d1:87:38:b0:f4:27:73:85:0a: 17:36:07:2e:a8:05:b9:79:36:06:ec:c3:b6:74:96:44:20:20: 82:f0:bd:7b:5f:6a:12:51:24:7b:af:13:35:d4:35:d4:cd:91: 33:c5:d7:3c:68:05:c6:d0:d6:c2:9f:d6:43:6a:cf:2d:3e:28: b2:5b:fc:0b:87:52:07:ac:c8:ac:9f:11:35:56:6a:ee:35:11: d6:d1:2f:ce:dc:75:4f:32:96:51:fc:75:8d:a2:24:74:05:b7: 1f:51:79:85:6e:2f:24:5c:88:c3:1d:60:19:4e:cc:47:d6:2a: a4:a3:e8:b1:21:c2:dd:35:5e:9d:c6:55:d3:c1:8c:c5:05:e7: 61:cb:d8:ce:fc:c8:cf:3e:65:90:f5:cd:f5:a6:dd:1e:1f:6f: d4:e3:81:bb:f4:30:59:7f:04:96:d3:8b:b0:5b:54:dd:ea:80: 09:33:19:cb:9d:41:83:93:cf:8d:ad:d2:a5:71:ba:ba:61:c5: c3:0a:dd:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkY1OTExMC8GA1UEBRMoMUNBMzZEQ0ZDM0MwNDMzM0Y4ODNCODM1RjJDOERERDAy NUQ1NDEwNjAeFw0yNTEyMDUwNTEyMzRaFw0yNTEyMTIwNTEyMzRaMBgxFjAUBgNV BAMTDTY5MzI2OWMyLTAyMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf+2Tk5O8SF0hwbLMCAXHGKzi96n5hfwnk+aQV+KaH7wW/ju9QiOJjLDs4U1Gp uVLRCV/tsF89KskcMmJESbz+cv3vgKWr0XWj0O6lcpZk3QF4UfPIZ5MbqA1Q5TlR 4+spbtD7bcrVzQlYCCfVRg6y9+5wm9dgVlJ8Tk3mg28HQsSMVRputeQl7epX1dQ2 skz24mrvXZO2+Taa7ltweEXKqsKnC1gB4LO+IJbhCIXKHxtyNLt6m+8JzsJgoJBb b7HPLB+0QB2G6ViCdr+SngMUESonth+0dJ2s7YmWxEF2g8YrANhzkxTNtn6qXbgf qv8402sKXiFUzL3qU5n+/jWnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvJfj+Kwa VQUYXSBDLk8BsUOzc3YwHwYDVR0jBBgwFoAUHKNtz8PAQzP4g7g18sjd0CXVQQYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRjU5LzA1MjZENjJFNjIz MDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFR WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSEtOdHo4UEFRelA0ZzdnMThzamQwQ1hWUVFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RjU5LzA1MjZENjJFNjIzMDExRjBBMDIwNzYzMEM0RjlBRTAyL0hLTnR6OFBBUXpQ NGc3ZzE4c2pkMENYVlFRWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACx2fsSj0m6oCt+AK77jY0oK6M67g/qLFXExMSAaCARiMJ6F6jgdFwzx otneAPs2cfPSw0I2R6Ve4CDNJmI+nNGHOLD0J3OFChc2By6oBbl5Ngbsw7Z0lkQg IILwvXtfahJRJHuvEzXUNdTNkTPF1zxoBcbQ1sKf1kNqzy0+KLJb/AuHUgesyKyf ETVWau41EdbRL87cdU8yllH8dY2iJHQFtx9ReYVuLyRciMMdYBlOzEfWKqSj6LEh wt01Xp3GVdPBjMUF52HL2M78yM8+ZZD1zfWm3R4fb9Tjgbv0MFl/BJbTi7BbVN3q gAkzGcudQYOTz42t0qVxurphxcMK3Us= -----END CERTIFICATE-----Generated at Sun Dec 7 03:39:32 2025 by rpki-client