This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: BY7Tm0NtRIsjPM1gHB0Lk93z/UQMkHJJ8rF9S2Y0iq0= Subject key identifier: 1D:C7:51:13:A2:52:25:99:A7:68:11:0E:82:AA:E4:B6:2C:1B:4A:0B Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 062F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 0628 Signing time: Thu 04 Dec 2025 21:32:10 +0000 Manifest this update: Thu 04 Dec 2025 21:32:09 +0000 Manifest next update: Thu 11 Dec 2025 21:32:09 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: P7QbyRv8YMrTF+kG/SqkqAdUa+S629WJX1BZ1I2fyzM=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: an7WXAxX+jv7oF31g7hZpPAQEGzXt/L0AOIi2ZabL2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Dec 4 21:32:09 2025 GMT Not After : Dec 11 21:32:09 2025 GMT Subject: CN=6931fdd9-80bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:aa:85:54:a3:b4:18:e2:7c:af:8d:cb:4b: 3a:1a:3f:af:99:74:ac:8b:00:05:99:14:f2:79:ec: 77:df:1b:ad:45:18:7b:fc:96:97:e6:85:c4:b7:6c: c9:66:a1:b2:2b:b5:c1:91:e8:b6:44:a9:d3:a2:7e: 82:ea:06:92:4a:2a:2f:4e:28:56:e8:c0:8a:64:e8: 21:14:90:70:b5:9c:df:9f:5d:c8:51:22:e0:b6:bf: a7:cc:81:fe:e3:47:15:c5:ea:35:a5:56:47:11:aa: d1:96:90:83:7d:06:f7:7a:cc:29:ac:0d:ed:39:dc: b3:22:d9:82:eb:20:7a:2c:0c:b7:b2:5f:74:55:ae: 8a:fa:3c:f3:42:c9:91:a7:34:82:79:bc:5c:62:77: 65:5c:d1:47:83:ce:d9:4e:31:0f:9a:b2:80:32:9c: 9c:d3:60:f2:d0:da:ec:a1:e1:88:9e:78:f9:a2:7e: 93:58:99:b1:2e:9b:e8:be:0f:ed:e5:d5:24:90:ac: 69:e2:89:e8:b0:5b:78:fa:de:15:5c:a9:5b:cc:f4: df:ae:6a:d8:41:9c:c3:59:a0:8e:68:ea:20:f3:5e: 48:4f:6f:c1:ec:d7:a7:7d:ea:4b:77:a6:5c:45:f1: 1b:e5:1b:1c:c0:9e:fa:c3:9e:57:bf:6f:30:6b:64: fd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C7:51:13:A2:52:25:99:A7:68:11:0E:82:AA:E4:B6:2C:1B:4A:0B X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:67:9a:22:b9:1a:6a:48:8b:8d:ae:e9:7d:74:cb:03:72:d7: 98:ae:71:e9:7d:56:71:09:a1:9a:61:01:08:05:b5:db:15:50: 74:55:20:9c:d8:72:1e:b7:89:2b:85:1f:dd:40:d5:60:af:65: 63:a5:73:e9:82:a0:26:30:1d:92:e7:d2:d8:2c:0e:55:c0:35: 46:57:fa:7c:9e:7c:d3:90:b7:4b:aa:80:f2:a2:75:4c:c7:28: b2:bb:0b:05:3b:62:6b:22:7e:f7:ce:94:97:7e:9e:b7:62:96: 26:cd:d2:5c:a0:e8:4d:10:ae:51:8b:b9:a3:34:90:ba:f2:19: 27:c4:bd:74:29:55:6e:d4:ad:dd:f1:3a:f8:38:f2:3d:be:79: 10:d7:fc:2c:d6:fe:ef:c6:66:12:ba:28:65:5b:28:fa:d6:26: c8:d0:74:aa:55:95:97:c6:a6:9d:93:ac:1f:7b:33:6b:83:9e: 93:0b:df:d5:45:a5:32:3d:d0:44:c6:7a:38:b3:c6:8b:c3:63: 6d:71:10:e2:53:c5:ac:60:38:d4:b8:9f:77:48:17:85:52:83: e9:df:43:e5:5d:74:de:6d:e6:32:29:ed:01:f1:66:48:d6:13: 9f:09:f1:08:f0:65:ec:a3:b7:73:8e:d7:95:dd:74:bc:e1:93: cd:70:f8:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjUxMjA0MjEzMjA5WhcNMjUxMjExMjEzMjA5WjAYMRYwFAYD VQQDEw02OTMxZmRkOS04MGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTWqhVSjtBjifK+Ny0s6Gj+vmXSsiwAFmRTyeex33xutRRh7/JaX5oXEt2zJ ZqGyK7XBkei2RKnTon6C6gaSSiovTihW6MCKZOghFJBwtZzfn13IUSLgtr+nzIH+ 40cVxeo1pVZHEarRlpCDfQb3eswprA3tOdyzItmC6yB6LAy3sl90Va6K+jzzQsmR pzSCebxcYndlXNFHg87ZTjEPmrKAMpyc02Dy0NrsoeGInnj5on6TWJmxLpvovg/t 5dUkkKxp4onosFt4+t4VXKlbzPTfrmrYQZzDWaCOaOog815IT2/B7NenfepLd6Zc RfEb5RscwJ76w55Xv28wa2T9fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3HUROi UiWZp2gRDoKq5LYsG0oLMB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzZ5oiuRpqSIuNrul9dMsDcteYrnHpfVZxCaGaYQEIBbXbFVB0VSCc 2HIet4krhR/dQNVgr2VjpXPpgqAmMB2S59LYLA5VwDVGV/p8nnzTkLdLqoDyonVM xyiyuwsFO2JrIn73zpSXfp63YpYmzdJcoOhNEK5Ri7mjNJC68hknxL10KVVu1K3d 8Tr4OPI9vnkQ1/ws1v7vxmYSuihlWyj61ibI0HSqVZWXxqadk6wfezNrg56TC9/V RaUyPdBExno4s8aLw2NtcRDiU8WsYDjUuJ93SBeFUoPp30PlXXTebeYyKe0B8WZI 1hOfCfEI8GXso7dzjteV3XS84ZPNcPj6 -----END CERTIFICATE-----Generated at Sat Dec 6 18:50:21 2025 by rpki-client