This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: WCD9fiou+Ta9cyuPie5jlX1nDE2lTv4mMR7C/RyIKmo= Subject key identifier: 8B:18:05:77:8A:8A:68:BB:43:FE:DB:0E:53:C2:03:A6:DA:92:C1:CB Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 13DA Signing time: Sat 06 Dec 2025 16:29:51 +0000 Manifest this update: Sat 06 Dec 2025 16:29:50 +0000 Manifest next update: Sat 13 Dec 2025 16:29:50 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: lHKoafKTx1I5X+y9atDGMPI9cplDqJ4OeipgPyQPaKY=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: uohcAOcE60pEPVtJLM2mjq+61BAF61CBsuLOOzelXqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5103 (0x13ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Dec 6 16:29:50 2025 GMT Not After : Dec 13 16:29:50 2025 GMT Subject: CN=693459ff-0bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:7a:82:d5:92:36:78:54:05:ab:8d:81:4a: 51:57:49:97:6b:46:e8:a0:ec:5c:46:12:b8:97:5d: 67:7f:ab:c5:10:d1:4a:7c:48:a0:e2:5c:65:d2:d7: 24:5a:d5:7b:36:3e:fb:6e:e5:5f:5b:46:e8:a3:4e: 46:50:f8:a0:da:ce:4d:c9:b2:5e:83:90:2a:f3:66: 54:6f:07:22:98:23:38:dc:46:5f:12:2d:44:78:9e: ce:f6:d5:38:d4:af:56:b0:40:16:1c:c0:96:e0:7b: 52:20:27:ac:bb:ec:28:d1:7d:f3:ae:1d:be:b5:33: cf:b7:19:b1:c2:d9:cc:9f:41:c9:2d:0b:76:c5:72: a3:59:45:67:45:7c:70:bb:a6:5e:b7:00:18:89:8e: 08:39:15:a4:81:90:0a:b6:0a:28:e8:6e:95:f6:f1: 38:41:34:f0:db:cd:62:d1:45:cb:ce:bc:6b:5a:c3: ba:10:b6:d1:d7:37:09:23:d8:2d:0f:ac:83:5e:a8: 30:71:f4:a7:8c:60:4e:f0:80:b2:9b:a8:56:2c:fd: 73:8b:13:45:79:2b:a5:3a:e4:db:50:b7:c8:0b:41: 97:34:64:3f:9c:e5:8a:76:c0:ec:f5:8c:28:1d:04: ae:44:bd:68:87:7f:39:23:bb:b1:d2:9a:95:cf:8a: e1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:18:05:77:8A:8A:68:BB:43:FE:DB:0E:53:C2:03:A6:DA:92:C1:CB X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:06:9e:bc:fa:c3:ee:44:fa:73:ca:64:61:91:e8:89:3a:f9: b2:54:da:6b:1f:8c:95:ae:27:9a:ce:77:47:cc:c2:85:de:8a: d8:4d:6e:d5:ac:c9:ab:9a:3b:db:4c:7f:62:c8:62:f1:f6:74: c4:34:3e:af:31:5a:87:fe:85:6f:c6:44:7c:6d:93:48:ad:37: b3:27:12:bd:6f:91:91:13:f5:8b:76:de:be:1f:bb:4a:ad:b9: 05:29:80:e3:6a:e9:33:f6:6a:e9:48:6c:f3:f6:ab:0f:04:43: bf:67:d0:0d:e5:7c:5c:04:c7:f4:15:b1:b5:ab:64:0f:14:a8: 3a:b9:1e:45:0f:17:14:92:59:9d:37:10:b6:93:9b:21:eb:41: c1:a3:07:28:f1:08:f9:59:71:ed:c1:54:19:f9:95:81:55:3a: cd:92:32:b1:b3:3f:dc:38:d2:d8:8a:42:6d:a0:e3:33:7d:2c: 67:18:95:2d:9d:be:68:02:d6:bd:c9:92:d0:36:4a:75:15:69: fe:01:51:c5:65:55:bc:5a:e5:1f:15:85:b6:dc:e7:7b:f4:56: ba:aa:08:44:5a:44:ac:19:53:29:03:dd:50:5e:76:b8:ec:a6: 44:ed:e5:de:dc:f8:46:de:2e:66:48:4a:46:0f:5d:09:28:58: fd:d0:ff:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUxMjA2MTYyOTUwWhcNMjUxMjEzMTYyOTUwWjAYMRYwFAYD VQQDEw02OTM0NTlmZi0wYmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06N6gtWSNnhUBauNgUpRV0mXa0booOxcRhK4l11nf6vFENFKfEig4lxl0tck WtV7Nj77buVfW0boo05GUPig2s5NybJeg5Aq82ZUbwcimCM43EZfEi1EeJ7O9tU4 1K9WsEAWHMCW4HtSICesu+wo0X3zrh2+tTPPtxmxwtnMn0HJLQt2xXKjWUVnRXxw u6ZetwAYiY4IORWkgZAKtgoo6G6V9vE4QTTw281i0UXLzrxrWsO6ELbR1zcJI9gt D6yDXqgwcfSnjGBO8ICym6hWLP1zixNFeSulOuTbULfIC0GXNGQ/nOWKdsDs9Ywo HQSuRL1oh385I7ux0pqVz4rhkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsYBXeK imi7Q/7bDlPCA6baksHLMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5Bp68+sPuRPpzymRhkeiJOvmyVNprH4yVrieazndHzMKF3orYTW7V rMmrmjvbTH9iyGLx9nTEND6vMVqH/oVvxkR8bZNIrTezJxK9b5GRE/WLdt6+H7tK rbkFKYDjaukz9mrpSGzz9qsPBEO/Z9AN5XxcBMf0FbG1q2QPFKg6uR5FDxcUklmd NxC2k5sh60HBowco8Qj5WXHtwVQZ+ZWBVTrNkjKxsz/cONLYikJtoOMzfSxnGJUt nb5oAta9yZLQNkp1FWn+AVHFZVW8WuUfFYW23Od79Fa6qghEWkSsGVMpA91QXna4 7KZE7eXe3PhG3i5mSEpGD10JKFj90P/I -----END CERTIFICATE-----Generated at Sat Dec 6 19:38:55 2025 by rpki-client