This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: q0UbI05T/+eqacX6nnpX6+iv6BLZGHdbCDZ4W8yRHqw= Subject key identifier: 8A:8F:31:2C:D6:7E:54:8E:C2:7E:07:3E:5F:3C:C7:32:F2:1B:10:61 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: DF Signing time: Fri 05 Dec 2025 03:32:53 +0000 Manifest this update: Fri 05 Dec 2025 03:32:52 +0000 Manifest next update: Fri 12 Dec 2025 03:32:52 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: BjGZhB1HKNG9J528yxeQFaNtNt3AD7h8v3KTjqMd+9U=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Dec 5 03:32:52 2025 GMT Not After : Dec 12 03:32:52 2025 GMT Subject: CN=69325264-1492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9a:aa:30:e0:aa:55:df:76:15:90:74:bd:0b: 10:ea:6c:30:d4:9d:0c:8a:15:c1:71:7e:34:ca:e7: 82:ae:21:12:49:ee:8a:3c:92:24:fc:cd:95:fa:21: 5a:3f:19:e4:aa:fc:b4:ad:2f:49:42:a9:6b:df:b2: e1:22:d1:c8:f8:a0:7a:0d:d5:0f:b2:6b:e1:65:3f: a6:7d:a5:d4:3a:16:f9:0d:35:a1:49:09:ca:17:91: fe:98:9d:bb:f4:6d:08:e2:40:6d:96:b3:18:91:bb: 98:73:0f:43:11:ef:d5:a8:b5:8f:46:8d:f1:ec:05: 89:99:c4:98:7c:e9:76:e6:39:af:de:7a:ef:e7:d6: 99:8e:c3:30:9a:34:fc:cb:2e:76:f1:6f:e3:46:28: 88:bb:90:49:36:9f:8c:54:e8:24:1e:e2:c4:f4:3a: 58:e3:a9:24:31:64:3f:fc:e6:d2:f0:9a:fe:a1:12: 01:e0:af:ee:4e:a6:84:c5:91:d0:73:34:eb:25:00: 29:bc:94:24:92:32:7d:09:bb:43:5f:4e:89:e9:53: 33:1e:71:2f:fd:7d:f1:92:a0:44:60:b0:56:04:5c: df:1c:41:7c:75:56:76:8e:00:9b:5e:fd:43:ec:8f: 50:f5:89:55:39:36:48:0c:62:9b:c8:c7:7e:ae:95: 94:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:8F:31:2C:D6:7E:54:8E:C2:7E:07:3E:5F:3C:C7:32:F2:1B:10:61 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:9b:5b:1d:96:0c:cb:14:95:5a:e9:53:5a:f1:3e:89:52:a0: 51:27:b2:7a:ad:b2:dd:d3:f9:78:41:69:75:1a:63:4f:9b:f7: e6:45:01:42:aa:f8:c6:95:ca:70:a8:9b:7e:b1:5d:66:78:1c: 29:d9:59:77:f8:0d:4e:71:a9:b8:d4:70:34:1f:5c:3b:d4:d0: f1:65:10:57:47:b9:fe:0c:da:3b:91:ef:dc:e5:6e:17:92:7e: 05:1e:aa:00:44:2c:39:6a:ba:30:b9:8c:be:b9:65:87:f4:82: 62:b4:b5:d5:52:e7:c1:d0:b8:6a:af:10:26:d6:2d:7b:83:0f: 24:bf:57:73:f0:6a:13:f1:09:92:f2:61:a5:b7:47:b4:24:db: 72:ea:46:a3:95:a1:ff:cd:00:e2:c4:4b:24:95:76:3f:46:6f: d3:52:80:08:5b:d3:d8:c9:a1:0e:26:4f:2d:58:f2:60:6e:68: 10:90:8b:43:7f:fa:71:7d:48:fb:bb:36:49:6d:71:be:d0:71: 53:86:25:82:31:7b:af:9a:cf:01:1f:94:7e:58:08:93:a5:4b: 3d:b4:f3:16:77:88:e3:c0:de:05:03:fa:57:11:ac:42:0e:9a: 96:b3:05:cb:c0:0e:c1:03:f3:6d:4f:64:6b:2b:a0:cb:f1:ff: 18:55:8b:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUxMjA1MDMzMjUyWhcNMjUxMjEyMDMzMjUyWjAYMRYwFAYD VQQDEw02OTMyNTI2NC0xNDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZqqMOCqVd92FZB0vQsQ6mww1J0MihXBcX40yueCriESSe6KPJIk/M2V+iFa Pxnkqvy0rS9JQqlr37LhItHI+KB6DdUPsmvhZT+mfaXUOhb5DTWhSQnKF5H+mJ27 9G0I4kBtlrMYkbuYcw9DEe/VqLWPRo3x7AWJmcSYfOl25jmv3nrv59aZjsMwmjT8 yy528W/jRiiIu5BJNp+MVOgkHuLE9DpY46kkMWQ//ObS8Jr+oRIB4K/uTqaExZHQ czTrJQApvJQkkjJ9CbtDX06J6VMzHnEv/X3xkqBEYLBWBFzfHEF8dVZ2jgCbXv1D 7I9Q9YlVOTZIDGKbyMd+rpWUyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqPMSzW flSOwn4HPl88xzLyGxBhMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBym1sdlgzLFJVa6VNa8T6JUqBRJ7J6rbLd0/l4QWl1GmNPm/fmRQFC qvjGlcpwqJt+sV1meBwp2Vl3+A1Ocam41HA0H1w71NDxZRBXR7n+DNo7ke/c5W4X kn4FHqoARCw5arowuYy+uWWH9IJitLXVUufB0LhqrxAm1i17gw8kv1dz8GoT8QmS 8mGlt0e0JNty6kajlaH/zQDixEsklXY/Rm/TUoAIW9PYyaEOJk8tWPJgbmgQkItD f/pxfUj7uzZJbXG+0HFThiWCMXuvms8BH5R+WAiTpUs9tPMWd4jjwN4FA/pXEaxC DpqWswXLwA7BA/NtT2RrK6DL8f8YVYtT -----END CERTIFICATE-----Generated at Sat Dec 6 18:06:22 2025 by rpki-client