This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: EtEazJ6NOiwL8CV3XRe5+1GFQaTkZ09mRLHpQ+3ViiM= Subject key identifier: 6A:A3:4C:99:50:F5:57:F0:36:0B:87:9D:7D:7F:3E:F2:AA:65:A1:E5 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 0152 Signing time: Fri 05 Dec 2025 02:20:15 +0000 Manifest this update: Fri 05 Dec 2025 02:20:15 +0000 Manifest next update: Fri 12 Dec 2025 02:20:15 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: RZYxoxJH+fhyKH+xx+NEZuv8vIt/sgf1gisE4cCapgY=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: WWVsNPRylFl9Oj5E0+wxXjfLrjfPmxjiDu6REzUJaLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Dec 5 02:20:15 2025 GMT Not After : Dec 12 02:20:15 2025 GMT Subject: CN=6932415f-b72f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:80:e7:2f:49:85:e0:b8:b5:6b:e9:6a:bc:fc: 0c:42:50:5c:74:3c:05:de:1a:9b:01:8d:05:67:27: 27:2f:e6:ae:26:34:a7:5c:7e:e4:53:97:9b:a4:25: 76:82:c7:e4:99:dc:2a:d4:0a:6f:32:de:d3:54:b9: b6:45:0c:be:11:cc:26:b2:92:07:fc:e6:0b:2c:88: bd:0f:c6:98:1f:f0:12:c6:bf:12:3e:39:23:ec:9c: a7:91:fe:27:74:f9:e7:f2:7d:35:3b:55:d4:3a:c6: f8:8b:ef:e4:49:33:94:fb:d6:59:e8:5b:b6:a8:c7: fb:16:a6:39:aa:12:62:a1:8e:19:b0:47:c0:f6:3d: ca:91:34:a5:2b:38:bb:8d:d7:96:0c:68:60:bd:ff: 8c:c7:27:53:9c:a3:1b:7c:f4:7e:ae:e9:0d:d5:21: 8f:0b:6c:74:2f:25:b0:3d:1e:ee:8c:27:b4:dc:69: e1:e2:b6:81:13:47:22:19:bc:6b:08:b0:25:4f:79: 0d:99:d4:45:d9:3b:d6:ac:ff:41:2d:ee:7f:0e:13: bf:71:4c:82:ae:04:2b:19:27:07:9e:19:50:04:cb: e8:75:26:58:27:8b:ef:9c:83:17:15:dc:c4:5b:2b: a0:98:ff:7d:28:cc:74:a1:e7:f1:29:4d:47:fe:f3: ff:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A3:4C:99:50:F5:57:F0:36:0B:87:9D:7D:7F:3E:F2:AA:65:A1:E5 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:3e:f4:23:9c:d0:c5:e2:9d:45:1d:53:19:b1:52:17:14:f0: 58:d2:e4:c5:f5:dc:7e:5a:b5:f0:d5:3c:30:00:7f:f9:c8:82: 54:93:b8:98:d0:b6:73:3c:57:af:be:96:97:db:96:99:71:6c: c8:16:23:c7:13:26:d7:cb:69:64:ff:75:f2:b2:46:81:f9:37: f9:2f:d7:ef:40:6d:b8:42:f1:29:4b:c6:20:31:c5:b1:ca:0b: d7:45:8b:c1:af:a6:4f:07:05:40:69:32:79:7b:80:3d:0b:09: 96:08:9e:85:54:45:85:48:c1:50:4f:7a:a9:6e:7a:55:1d:39: 59:8e:27:f2:cc:66:e0:7b:f6:59:c3:c6:46:b7:41:69:20:19: 48:12:3c:28:0d:65:d7:a2:33:27:a7:bb:35:9d:c6:70:e2:5b: e4:77:6e:3a:27:11:a0:a7:23:a3:37:f0:6c:3d:65:4c:1d:f7: 37:5a:e2:09:bf:10:c8:10:32:9b:05:73:0f:00:fd:a4:94:a3: a7:6b:8c:d3:60:db:2c:2f:b5:f6:20:93:9d:22:4a:1e:a4:b2: e9:bb:07:20:de:5a:57:87:02:0f:31:b6:89:de:a5:1a:3b:3d: 2f:fd:47:b0:db:1e:30:a9:b3:fb:18:c3:22:c0:f7:c4:8d:a4: 39:22:25:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUxMjA1MDIyMDE1WhcNMjUxMjEyMDIyMDE1WjAYMRYwFAYD VQQDEw02OTMyNDE1Zi1iNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA94DnL0mF4Li1a+lqvPwMQlBcdDwF3hqbAY0FZycnL+auJjSnXH7kU5ebpCV2 gsfkmdwq1ApvMt7TVLm2RQy+EcwmspIH/OYLLIi9D8aYH/ASxr8SPjkj7Jynkf4n dPnn8n01O1XUOsb4i+/kSTOU+9ZZ6Fu2qMf7FqY5qhJioY4ZsEfA9j3KkTSlKzi7 jdeWDGhgvf+MxydTnKMbfPR+rukN1SGPC2x0LyWwPR7ujCe03Gnh4raBE0ciGbxr CLAlT3kNmdRF2TvWrP9BLe5/DhO/cUyCrgQrGScHnhlQBMvodSZYJ4vvnIMXFdzE WyugmP99KMx0oefxKU1H/vP/AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqjTJlQ 9VfwNguHnX1/PvKqZaHlMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJPvQjnNDF4p1FHVMZsVIXFPBY0uTF9dx+WrXw1TwwAH/5yIJUk7iY 0LZzPFevvpaX25aZcWzIFiPHEybXy2lk/3XyskaB+Tf5L9fvQG24QvEpS8YgMcWx ygvXRYvBr6ZPBwVAaTJ5e4A9CwmWCJ6FVEWFSMFQT3qpbnpVHTlZjifyzGbge/ZZ w8ZGt0FpIBlIEjwoDWXXojMnp7s1ncZw4lvkd246JxGgpyOjN/BsPWVMHfc3WuIJ vxDIEDKbBXMPAP2klKOna4zTYNssL7X2IJOdIkoepLLpuwcg3lpXhwIPMbaJ3qUa Oz0v/Uew2x4wqbP7GMMiwPfEjaQ5IiXC -----END CERTIFICATE-----Generated at Sat Dec 6 23:02:35 2025 by rpki-client