This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: OjJaXNVZVs5vGK8UbbacqTPbvk2Yt52HYirseTNo6co= Subject key identifier: A2:5D:C9:E2:B9:3D:1E:43:36:58:F7:14:51:B2:3A:DF:E3:2A:F4:5E Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0998 Signing time: Sat 06 Dec 2025 19:15:45 +0000 Manifest this update: Sat 06 Dec 2025 19:15:45 +0000 Manifest next update: Sat 13 Dec 2025 19:15:45 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: f5ah5r/I8F3lCzKu5dyBNRBM0cz5RGJ0xCKv0oDSa1o=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 6YMCbYV0HjEFxQW7Rqr8k/qQPvulelScO8qALM4FUVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Dec 6 19:15:45 2025 GMT Not After : Dec 13 19:15:45 2025 GMT Subject: CN=693480e1-c3aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7e:02:76:28:5c:0c:ce:a3:0e:b6:ae:20:3e: 83:46:ad:7d:66:0f:fe:f0:af:62:65:90:3d:af:75: 72:d7:84:c9:4c:ec:da:29:f1:8b:3f:2a:cd:47:8d: 30:8e:6d:9e:a5:c9:db:d4:8c:ee:cd:77:7c:95:28: ff:66:b3:8f:4f:a8:70:2c:ec:01:84:41:66:b4:e8: d4:2e:0a:99:97:b5:12:e7:90:78:af:07:c0:39:3a: a7:3c:d9:18:2f:60:ce:80:e5:58:4a:3b:2f:4b:e5: 76:96:98:30:f4:88:a5:4b:7b:65:f8:09:3c:be:3e: 68:ba:3e:29:a7:e1:e0:3c:3e:98:71:19:2c:40:bc: d9:8c:63:8f:f8:2a:e2:39:65:4f:e9:eb:7a:49:af: 17:6e:91:b7:16:aa:31:51:f4:36:c9:7b:0d:f8:d4: 25:c4:3b:21:59:49:34:95:66:f1:7b:5a:02:3d:a1: ca:b3:82:a1:fe:81:cf:9a:5c:c5:48:c7:8f:61:2c: 85:31:f4:27:dd:6b:02:e8:e1:d9:8e:ed:19:20:8f: 8a:3a:82:7a:16:87:c1:48:ce:40:68:0b:da:cb:fe: f1:74:bd:bf:d1:00:17:a0:78:7e:ca:24:96:67:bd: 49:98:d7:ba:e1:30:cf:c6:0a:01:61:93:bd:ae:9c: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:5D:C9:E2:B9:3D:1E:43:36:58:F7:14:51:B2:3A:DF:E3:2A:F4:5E X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:bc:06:7d:99:f7:a2:26:ed:6c:2e:da:95:0e:b9:71:64:87: d7:88:89:4d:7d:ff:85:5a:91:82:c1:11:6a:62:33:e9:8f:77: 5b:6c:31:d9:de:f3:14:05:cf:3c:de:95:f9:9b:be:89:7d:e6: b7:fd:09:ba:94:02:9d:f4:cd:25:82:67:0d:f1:16:80:10:e2: 8f:db:03:f6:e0:eb:aa:57:43:93:ce:17:d0:33:0c:87:b7:61: b1:1f:3e:fa:63:ae:f8:54:da:fa:1c:6e:9f:7e:2f:e1:f3:4e: 17:9e:a8:bb:f6:54:2a:09:22:9d:84:11:20:ea:5d:6b:10:a4: 6a:a9:2d:23:9d:4f:15:de:d1:66:c0:f5:20:9f:53:5c:89:5e: 27:e0:1c:24:0f:03:ab:db:46:e0:db:f1:39:8c:5f:fc:5d:07: 2e:d5:a9:da:83:83:c8:d8:cd:28:1b:ad:67:81:40:3f:18:12: 67:88:1e:57:ba:c3:9b:fc:61:c8:3a:9b:83:a0:12:4b:b8:e6: 5e:03:e2:a8:2c:14:a2:2d:90:7f:fc:e7:51:db:93:2a:d0:ba: 65:3d:d3:86:b8:90:3b:01:57:8f:31:a2:a6:b9:da:2a:6c:ee: 59:dd:4e:bf:d0:21:00:5d:c3:f5:26:9d:3a:e6:3c:27:7e:88: b6:45:1a:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUxMjA2MTkxNTQ1WhcNMjUxMjEzMTkxNTQ1WjAYMRYwFAYD VQQDEw02OTM0ODBlMS1jM2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu34CdihcDM6jDrauID6DRq19Zg/+8K9iZZA9r3Vy14TJTOzaKfGLPyrNR40w jm2epcnb1IzuzXd8lSj/ZrOPT6hwLOwBhEFmtOjULgqZl7US55B4rwfAOTqnPNkY L2DOgOVYSjsvS+V2lpgw9IilS3tl+Ak8vj5ouj4pp+HgPD6YcRksQLzZjGOP+Cri OWVP6et6Sa8XbpG3FqoxUfQ2yXsN+NQlxDshWUk0lWbxe1oCPaHKs4Kh/oHPmlzF SMePYSyFMfQn3WsC6OHZju0ZII+KOoJ6FofBSM5AaAvay/7xdL2/0QAXoHh+yiSW Z71JmNe64TDPxgoBYZO9rpyxHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJdyeK5 PR5DNlj3FFGyOt/jKvReMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgvAZ9mfeiJu1sLtqVDrlxZIfXiIlNff+FWpGCwRFqYjPpj3dbbDHZ 3vMUBc883pX5m76Jfea3/Qm6lAKd9M0lgmcN8RaAEOKP2wP24OuqV0OTzhfQMwyH t2GxHz76Y674VNr6HG6ffi/h804Xnqi79lQqCSKdhBEg6l1rEKRqqS0jnU8V3tFm wPUgn1NciV4n4BwkDwOr20bg2/E5jF/8XQcu1anag4PI2M0oG61ngUA/GBJniB5X usOb/GHIOpuDoBJLuOZeA+KoLBSiLZB//OdR25Mq0LplPdOGuJA7AVePMaKmudoq bO5Z3U6/0CEAXcP1Jp065jwnfoi2RRqf -----END CERTIFICATE-----Generated at Sun Dec 7 04:43:00 2025 by rpki-client