This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: 3ayqCRE3OfGDaQI7Izg+ezUYWVWZNS4zGFDMYFGffYU= Subject key identifier: BC:01:A3:7F:9C:89:EE:DF:55:5C:FB:BE:DA:28:60:D6:40:E0:37:09 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 34FB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 34FB Signing time: Sat 06 Dec 2025 14:20:52 +0000 Manifest this update: Sat 06 Dec 2025 14:20:52 +0000 Manifest next update: Sat 13 Dec 2025 14:20:52 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: +Q/bGtwWVdhfWP23tscmHtArRYTmxLT6NZlTRPlRkFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13563 (0x34fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Dec 6 14:20:52 2025 GMT Not After : Dec 13 14:20:52 2025 GMT Subject: CN=69343bc4-7064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c8:62:46:54:fe:fa:13:cb:f0:48:ff:8f:b7: 1a:76:d6:53:3d:d4:81:ef:c3:2d:30:c5:19:df:43: 51:ce:bb:54:af:bd:e2:92:ea:b2:d1:67:6f:be:f7: f2:9b:8e:87:ef:aa:12:5f:94:3c:75:78:26:46:e9: 51:ae:00:f5:34:e2:c9:5c:8b:6f:97:45:86:9d:0b: 35:35:9b:32:b1:c6:3f:9a:86:35:be:92:2e:7c:82: 42:85:08:2b:7c:9a:0a:6a:49:0e:bd:0e:cc:55:38: 17:b3:c2:1e:e3:3c:8a:d3:76:09:c2:cf:7e:89:46: ef:0f:fa:02:d2:7e:27:68:f5:dc:dd:d7:5a:1f:25: ca:92:13:c1:89:e6:f1:db:65:ab:5e:6d:7a:70:34: 8e:27:33:d9:ad:9a:6c:3b:16:f3:b8:18:4a:1b:2c: 8e:14:e3:e7:6c:49:3c:c6:41:4b:cb:48:d6:50:81: f4:c6:4a:ce:2b:84:99:51:be:3c:de:4e:79:d8:6b: d4:60:0b:0f:b9:16:48:3a:02:e9:68:27:7d:d7:e6: ab:64:7c:b1:dd:3e:5d:00:06:b6:a7:c9:8c:e8:92: 38:02:bb:a7:dd:a6:30:bb:7a:bc:2c:4b:80:5c:0b: eb:ce:7b:37:3a:c2:01:86:f2:7b:dd:4c:71:b5:93: dc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:01:A3:7F:9C:89:EE:DF:55:5C:FB:BE:DA:28:60:D6:40:E0:37:09 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:43:81:ee:0c:ce:e0:dc:61:a2:db:d8:1b:3c:cd:1a:eb:f1: e0:b0:44:7e:de:2a:ee:ec:1c:38:13:1f:90:1d:29:32:b7:d0: 43:86:86:04:c3:bd:9b:16:00:8b:b9:ed:f3:37:09:cc:16:e2: cb:cd:bc:10:b9:da:95:77:57:9d:82:cf:a0:4f:ae:12:14:99: d0:8f:42:e4:01:ac:aa:db:7f:51:8f:ea:cf:b7:59:47:55:d2: cc:9c:01:c4:fe:6b:4a:3c:0b:96:b5:0c:6c:0b:8c:f4:a7:c5: 0c:88:4f:d5:0f:5f:79:fd:ac:04:9b:6c:a1:ba:dc:db:63:b7: 96:79:89:ef:f5:94:01:b3:68:e7:ca:ec:b9:4f:4d:91:2d:48: fe:c8:4c:cb:38:f4:fd:a7:fb:ce:70:0d:96:7a:c6:12:26:11: 58:41:ab:a7:3d:83:4c:5f:98:87:b7:49:54:6a:03:31:40:08: 24:89:26:52:51:cd:05:ca:a7:bb:1d:b4:9a:0a:dc:1a:ba:81: 40:51:26:ac:16:77:ff:c4:8a:30:f6:d7:8a:aa:d5:9b:85:55: 55:07:01:2d:61:fe:7a:4b:54:d7:59:7f:54:73:5f:34:db:87: 79:fe:ff:02:4d:96:9b:9f:49:2a:78:e8:ec:57:06:9b:c7:4a: 12:8a:18:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUxMjA2MTQyMDUyWhcNMjUxMjEzMTQyMDUyWjAYMRYwFAYD VQQDEw02OTM0M2JjNC03MDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3shiRlT++hPL8Ej/j7cadtZTPdSB78MtMMUZ30NRzrtUr73ikuqy0Wdvvvfy m46H76oSX5Q8dXgmRulRrgD1NOLJXItvl0WGnQs1NZsyscY/moY1vpIufIJChQgr fJoKakkOvQ7MVTgXs8Ie4zyK03YJws9+iUbvD/oC0n4naPXc3ddaHyXKkhPBiebx 22WrXm16cDSOJzPZrZpsOxbzuBhKGyyOFOPnbEk8xkFLy0jWUIH0xkrOK4SZUb48 3k552GvUYAsPuRZIOgLpaCd91+arZHyx3T5dAAa2p8mM6JI4Arun3aYwu3q8LEuA XAvrzns3OsIBhvJ73UxxtZPc6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwBo3+c ie7fVVz7vtooYNZA4DcJMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0Q4HuDM7g3GGi29gbPM0a6/HgsER+3iru7Bw4Ex+QHSkyt9BDhoYE w72bFgCLue3zNwnMFuLLzbwQudqVd1edgs+gT64SFJnQj0LkAayq239Rj+rPt1lH VdLMnAHE/mtKPAuWtQxsC4z0p8UMiE/VD195/awEm2yhutzbY7eWeYnv9ZQBs2jn yuy5T02RLUj+yEzLOPT9p/vOcA2WesYSJhFYQaunPYNMX5iHt0lUagMxQAgkiSZS Uc0Fyqe7HbSaCtwauoFAUSasFnf/xIow9teKqtWbhVVVBwEtYf56S1TXWX9Uc180 24d5/v8CTZabn0kqeOjsVwabx0oSihgw -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:40 2025 by rpki-client