This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: t2Z+xGSCF0w3DU69ETQnPkpp0evMIVbIL/d1VUBzi54= Subject key identifier: 64:3C:44:2E:D4:49:A4:66:BC:00:49:DD:AD:EE:8E:2F:26:EF:34:FE Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: 0171 Signing time: Fri 05 Dec 2025 02:01:17 +0000 Manifest this update: Fri 05 Dec 2025 02:01:17 +0000 Manifest next update: Fri 12 Dec 2025 02:01:17 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: wtonNkMIajWhsUzEm02WrdMGbEbcO8vajboL+hyvQB4=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: vxxrjf6mh6He/Qk48r/ND4XKn6+HAksWQduimGVP494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A, serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: Dec 5 02:01:17 2025 GMT Not After : Dec 12 02:01:17 2025 GMT Subject: CN=69323ced-8066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:97:c9:3d:70:6c:06:d4:61:0c:a2:f5:00: 0b:a9:a6:5b:b1:03:37:3d:fd:66:f1:b5:47:31:ca: 13:b0:a7:cb:00:d4:b3:52:6c:d0:b2:fe:ff:bc:43: db:40:ca:45:ac:52:c6:2f:99:c0:31:53:b6:f6:47: 4f:6c:3d:b5:b3:14:7e:5e:cf:b9:ec:5a:a5:1e:a0: c9:5b:77:5f:3f:14:4a:2a:9c:75:a9:2f:dc:10:c9: 1f:04:37:d5:32:6e:75:fd:24:c8:58:ef:31:34:96: b0:d0:bf:45:11:65:70:2c:51:5f:99:23:fe:cd:0e: f1:20:ba:0c:a3:00:bc:f5:f2:e6:8d:1a:80:06:b6: d6:cf:a2:c5:b7:c9:70:64:c8:2b:46:dc:68:e3:ec: 39:9a:59:f0:78:0a:2e:f5:20:23:c2:19:83:8d:9c: b1:06:ca:57:d7:ca:ca:89:74:df:c4:f6:a3:5b:eb: 25:4c:15:8d:2a:e4:a0:8c:a9:2e:df:a7:92:48:4e: fc:54:67:a5:f0:92:60:46:17:72:f8:69:1a:e4:7b: 38:5b:36:5a:a6:a2:0f:a2:7c:cb:52:f9:7f:2e:bc: 56:11:c0:be:a4:3c:ab:0f:fa:11:65:59:f5:fd:9b: ec:e1:cb:67:d8:f3:1c:d5:72:a3:18:c3:28:c3:33: b6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3C:44:2E:D4:49:A4:66:BC:00:49:DD:AD:EE:8E:2F:26:EF:34:FE X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:0a:31:2d:de:ec:e6:c1:a5:d4:49:9e:3e:3a:43:91:1c:85: d2:04:19:e9:45:3d:8d:27:ae:5b:f2:ef:6e:8a:23:90:95:ab: 78:e4:af:23:75:05:de:c6:13:16:c8:d7:11:21:6c:86:fa:4a: d0:f0:d0:d6:e9:4e:23:23:2f:86:0b:d8:5c:05:12:c3:ac:d0: 68:4f:35:2a:14:29:90:ee:b2:93:6c:3e:7a:29:47:ea:a5:67: d0:cd:a0:59:d8:f9:bd:26:4b:27:44:c9:7d:f1:73:af:cc:76: 81:28:48:b8:ca:36:88:4d:63:bd:26:86:d3:47:85:14:aa:27: 5e:45:ad:84:61:87:51:67:ea:ca:0d:f0:30:78:9e:ef:88:8f: 5e:6d:89:00:5b:4d:7c:b7:de:e3:0f:d1:a0:3e:0e:79:63:04: 6f:eb:f8:d2:4d:05:77:bc:a4:52:28:09:e1:03:48:25:f1:1a: 47:7b:df:56:a7:87:a5:b0:20:c2:11:5d:ce:93:49:ff:16:75: 3b:fd:59:e7:09:62:bc:25:a9:7d:41:c6:30:f7:9f:86:5a:73: 2b:5b:b8:7c:43:b2:05:20:16:80:93:38:a9:b6:35:b1:5d:76: b9:e5:a6:1d:04:41:9d:03:cd:ce:b7:5b:9c:cf:0d:ab:60:19: 3a:ca:dd:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDOUExMTAvBgNVBAUTKDg3MjhCODI4RjMxODYwM0U0NDcxMTA3MEMyNEVDQzA4 OEExOTAwNjAwHhcNMjUxMjA1MDIwMTE3WhcNMjUxMjEyMDIwMTE3WjAYMRYwFAYD VQQDEw02OTMyM2NlZC04MDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1OXyT1wbAbUYQyi9QALqaZbsQM3Pf1m8bVHMcoTsKfLANSzUmzQsv7/vEPb QMpFrFLGL5nAMVO29kdPbD21sxR+Xs+57FqlHqDJW3dfPxRKKpx1qS/cEMkfBDfV Mm51/STIWO8xNJaw0L9FEWVwLFFfmSP+zQ7xILoMowC89fLmjRqABrbWz6LFt8lw ZMgrRtxo4+w5mlnweAou9SAjwhmDjZyxBspX18rKiXTfxPajW+slTBWNKuSgjKku 36eSSE78VGel8JJgRhdy+Gka5Hs4WzZapqIPonzLUvl/LrxWEcC+pDyrD/oRZVn1 /Zvs4ctn2PMc1XKjGMMowzO2eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQ8RC7U SaRmvABJ3a3uji8m7zT+MB8GA1UdIwQYMBaAFIcouCjzGGA+RHEQcMJOzAiKGQBg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUM5QS9FMTlBMjU3ODk3 RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlENUVjUkJ3d2s3TUNJb1pB R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUM5QS9FMTlBMjU3ODk3RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlE NUVjUkJ3d2s3TUNJb1pBR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvCjEt3uzmwaXUSZ4+OkORHIXSBBnpRT2NJ65b8u9uiiOQlat45K8j dQXexhMWyNcRIWyG+krQ8NDW6U4jIy+GC9hcBRLDrNBoTzUqFCmQ7rKTbD56KUfq pWfQzaBZ2Pm9JksnRMl98XOvzHaBKEi4yjaITWO9JobTR4UUqideRa2EYYdRZ+rK DfAweJ7viI9ebYkAW018t97jD9GgPg55YwRv6/jSTQV3vKRSKAnhA0gl8RpHe99W p4elsCDCEV3Ok0n/FnU7/VnnCWK8Jal9QcYw95+GWnMrW7h8Q7IFIBaAkziptjWx XXa55aYdBEGdA83Ot1uczw2rYBk6yt33 -----END CERTIFICATE-----Generated at Sat Dec 6 19:14:39 2025 by rpki-client