This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: NAL8BJvIqiLqNgBN5boMp6Ysho8Vkf0Exe/XqO+QtT4= Subject key identifier: BC:6C:5E:86:32:C4:A7:95:36:74:FC:C2:98:21:4E:75:60:98:1C:76 Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: C6 Signing time: Fri 05 Dec 2025 03:50:13 +0000 Manifest this update: Fri 05 Dec 2025 03:50:12 +0000 Manifest next update: Fri 12 Dec 2025 03:50:12 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: yQUv10volEpUZCg5aRZ+xkW8mXXK0zAcmHIn0lE8Kd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F, serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Dec 5 03:50:12 2025 GMT Not After : Dec 12 03:50:12 2025 GMT Subject: CN=69325675-d14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:12:e1:81:af:83:4a:48:49:e4:a2:42:51:63: 8e:55:a2:cf:9d:8b:41:9e:f8:d6:5c:65:86:69:8d: 16:c7:3b:68:ac:1e:ec:a4:b8:bd:d8:b9:e8:e4:fa: fc:3f:8d:66:dc:3c:77:f7:bd:52:0f:c0:08:13:eb: 03:09:bc:60:bc:c2:87:75:15:24:4a:ce:e3:92:3f: 9c:be:fc:e0:57:16:44:aa:ad:1a:42:3b:2c:7f:00: 9a:b6:49:28:02:96:34:bb:cd:40:eb:18:ab:6e:41: 64:5d:93:8c:a0:c8:76:d8:2c:6b:53:b2:76:05:a5: 25:ac:e9:cd:17:3e:0d:4f:da:a0:22:00:18:1e:ac: 8c:ef:55:b4:ca:81:c7:99:79:50:42:e9:ef:39:85: f4:ea:22:62:c9:8f:44:11:2d:69:61:d7:ad:68:18: 0a:29:52:e9:53:da:87:78:1e:71:e6:31:0d:b0:26: af:5d:fb:c3:73:78:11:89:18:fa:2d:b0:48:29:37: 23:9c:5c:65:d4:0b:5b:c8:dd:80:3d:32:63:68:e3: a1:d5:94:c9:2a:2f:39:c4:f5:e2:a3:06:0e:b5:0a: eb:a8:af:a8:c4:cc:3e:50:1c:6f:cd:81:3e:9f:04: ef:d4:1e:49:d6:85:5b:35:be:8a:cf:cf:b3:0d:05: be:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:6C:5E:86:32:C4:A7:95:36:74:FC:C2:98:21:4E:75:60:98:1C:76 X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:97:35:c7:65:75:50:80:ce:b0:7c:f5:33:e2:78:53:fe:0e: 2c:2c:6e:13:34:79:9f:d4:72:bf:ed:0d:17:07:bc:7e:7d:01: 5c:4f:3b:bb:65:4f:42:a6:25:db:ee:7c:92:2a:67:cd:f1:42: 03:73:54:55:31:e3:24:b2:20:fd:74:9d:d9:6c:5b:9a:79:29: 07:df:3d:28:c5:95:b4:69:ec:61:52:54:45:0f:4e:f9:77:0c: 0c:d8:52:c2:fb:71:1e:ce:49:77:2c:8d:f5:62:35:ef:34:47: 85:76:9a:8c:b3:71:a7:10:bf:f9:2d:fb:a6:2e:34:f9:10:1d: 19:8f:e2:0f:32:c5:74:89:cd:d2:bb:e2:1a:9c:7e:92:cc:37: 87:d3:da:5a:0d:d4:ae:0e:81:4a:23:66:0a:e9:70:4d:d1:d5: 65:54:df:89:91:c9:95:c7:ec:bd:df:7b:86:58:b1:b8:22:78: 15:f3:00:32:da:e3:57:e2:6d:8e:5b:96:b1:6d:c2:f2:2a:a5: af:b9:ad:f2:44:27:23:72:fa:33:a4:07:a7:0f:f2:eb:05:1d: 8a:9e:b7:fa:dd:ad:1a:b7:45:57:8d:7d:3d:37:32:27:3e:fc: 24:5f:40:6b:3b:5f:52:31:d0:b9:4a:7e:ee:9b:04:e6:a1:6b: bd:12:89:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBM0YxMTAvBgNVBAUTKDg2QTY0RjJBRDJEREUyQjdEOTYyNEU2OTIyN0FEMDlC MTc3OEM2QzEwHhcNMjUxMjA1MDM1MDEyWhcNMjUxMjEyMDM1MDEyWjAYMRYwFAYD VQQDEw02OTMyNTY3NS1kMTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRLhga+DSkhJ5KJCUWOOVaLPnYtBnvjWXGWGaY0WxztorB7spLi92Lno5Pr8 P41m3Dx3971SD8AIE+sDCbxgvMKHdRUkSs7jkj+cvvzgVxZEqq0aQjssfwCatkko ApY0u81A6xirbkFkXZOMoMh22CxrU7J2BaUlrOnNFz4NT9qgIgAYHqyM71W0yoHH mXlQQunvOYX06iJiyY9EES1pYdetaBgKKVLpU9qHeB5x5jENsCavXfvDc3gRiRj6 LbBIKTcjnFxl1AtbyN2APTJjaOOh1ZTJKi85xPXiowYOtQrrqK+oxMw+UBxvzYE+ nwTv1B5J1oVbNb6Kz8+zDQW+VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxsXoYy xKeVNnT8wpghTnVgmBx2MB8GA1UdIwQYMBaAFIamTyrS3eK32WJOaSJ60JsXeMbB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUEzRi85QjI3NTRGNkEy NEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRyZlpZazVwSW5yUW14ZDR4 c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUEzRi85QjI3NTRGNkEyNEYxMUVGQjZCMEZGNDlDNEY5QUUwMi9ocVpQS3RMZDRy ZlpZazVwSW5yUW14ZDR4c0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqlzXHZXVQgM6wfPUz4nhT/g4sLG4TNHmf1HK/7Q0XB7x+fQFcTzu7 ZU9CpiXb7nySKmfN8UIDc1RVMeMksiD9dJ3ZbFuaeSkH3z0oxZW0aexhUlRFD075 dwwM2FLC+3Eezkl3LI31YjXvNEeFdpqMs3GnEL/5LfumLjT5EB0Zj+IPMsV0ic3S u+IanH6SzDeH09paDdSuDoFKI2YK6XBN0dVlVN+JkcmVx+y933uGWLG4IngV8wAy 2uNX4m2OW5axbcLyKqWvua3yRCcjcvozpAenD/LrBR2Knrf63a0at0VXjX09NzIn PvwkX0BrO19SMdC5Sn7umwTmoWu9Eomq -----END CERTIFICATE-----Generated at Sat Dec 6 14:51:11 2025 by rpki-client