This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: k6iVQZa+GZqr5L4SF/G7xrMqRCL6CLW8+n2PYQ83YIQ= Subject key identifier: E2:30:A2:45:F6:77:D5:6B:98:3A:11:4C:25:80:8E:41:97:BB:7E:BB Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 032F Signing time: Sat 06 Dec 2025 23:38:05 +0000 Manifest this update: Sat 06 Dec 2025 23:38:05 +0000 Manifest next update: Sat 13 Dec 2025 23:38:05 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: a7vhkmOOWIBRHr7kX+LTBjDqTMrdiNj+XkgzQfY+gS8=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Dec 6 23:38:05 2025 GMT Not After : Dec 13 23:38:05 2025 GMT Subject: CN=6934be5d-1c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:5d:d6:03:a9:12:a2:ce:3d:25:64:a2:e8:a9: b6:87:68:e5:58:0e:e0:76:e1:ab:ce:d5:13:1d:f0: 64:56:8c:87:16:e1:4c:51:bb:b7:95:2b:01:d1:4b: 64:b5:97:2b:f2:fa:c8:31:07:ec:e9:f4:26:5e:38: 32:40:35:6a:a7:36:c9:0c:8b:c3:fc:37:40:98:9c: bc:47:a5:fb:bd:fc:99:1d:4b:6f:57:e3:bb:ff:47: b5:05:32:76:56:d2:a9:4c:68:fa:71:e1:4e:a1:4d: a3:ec:f6:ad:2b:77:dd:ce:3d:1d:56:1b:6a:f5:f3: 7a:75:4c:c0:37:c9:c3:ff:d6:c3:5a:14:2b:4b:e2: 64:c1:3d:d7:8f:e7:40:f9:8c:7c:38:f1:80:8b:2e: da:16:56:78:41:2b:e0:e0:88:b9:5a:e6:ba:c6:31: 32:b1:c0:90:51:50:b5:b9:0a:4b:d8:32:8c:aa:59: 27:95:8b:78:93:a9:15:d7:74:62:bb:26:af:47:31: 27:03:34:b9:9c:93:b9:ad:c2:17:ec:09:55:4e:4c: 05:6d:4d:06:85:5d:cf:53:0a:3d:12:e3:8c:ea:2b: 36:3b:46:14:6a:16:a5:ad:40:35:ea:df:e2:ce:5c: a0:a3:94:fb:5f:50:cf:c1:08:d0:2d:99:6b:20:1c: 7e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:30:A2:45:F6:77:D5:6B:98:3A:11:4C:25:80:8E:41:97:BB:7E:BB X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:ee:4c:25:c3:b2:59:41:22:8b:bf:3e:f9:6f:a9:04:27:f0: 0c:73:f4:f3:05:73:51:ab:96:29:0e:4a:4e:37:25:e2:e5:55: 70:db:7a:75:6c:64:22:f8:04:26:47:b7:74:e9:65:54:0e:2f: 49:ca:26:04:62:d7:d2:00:13:5c:c4:19:87:8d:e6:67:85:d4: f6:d5:b7:88:bb:3d:fd:79:57:f9:e1:52:36:07:6f:1e:76:49: ff:52:a6:c3:34:9e:95:a5:7b:d2:02:76:2d:46:d9:0d:fe:fc: 4f:3b:e6:22:4d:b2:42:60:9c:66:45:50:21:99:e7:46:04:62: b0:cb:fa:94:db:a2:d7:d4:e9:21:6d:0d:4a:63:d7:b5:00:5a: e1:64:1e:d6:07:be:5a:cb:35:b2:6c:9b:f1:a8:71:92:fe:64: f8:62:14:f8:4e:df:55:94:ad:6a:0e:c9:0d:e8:6c:ed:76:9d: bd:c6:73:22:2a:11:56:bd:64:51:dc:aa:c8:a2:aa:a3:fe:f8: aa:7e:8d:66:b5:a3:4a:0e:d2:8e:80:9c:bc:46:59:a6:82:65: df:96:b4:e1:0f:b4:8f:21:08:fe:f1:2a:5d:06:db:b7:b8:7d: 4f:8e:9d:df:a3:67:22:a2:22:6a:98:07:70:d8:89:65:e0:7d: f9:0f:49:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUxMjA2MjMzODA1WhcNMjUxMjEzMjMzODA1WjAYMRYwFAYD VQQDEw02OTM0YmU1ZC0xYzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk13WA6kSos49JWSi6Km2h2jlWA7gduGrztUTHfBkVoyHFuFMUbu3lSsB0Utk tZcr8vrIMQfs6fQmXjgyQDVqpzbJDIvD/DdAmJy8R6X7vfyZHUtvV+O7/0e1BTJ2 VtKpTGj6ceFOoU2j7PatK3fdzj0dVhtq9fN6dUzAN8nD/9bDWhQrS+JkwT3Xj+dA +Yx8OPGAiy7aFlZ4QSvg4Ii5Wua6xjEyscCQUVC1uQpL2DKMqlknlYt4k6kV13Ri uyavRzEnAzS5nJO5rcIX7AlVTkwFbU0GhV3PUwo9EuOM6is2O0YUahalrUA16t/i zlygo5T7X1DPwQjQLZlrIBx+vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIwokX2 d9VrmDoRTCWAjkGXu367MB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB7kwlw7JZQSKLvz75b6kEJ/AMc/TzBXNRq5YpDkpONyXi5VVw23p1 bGQi+AQmR7d06WVUDi9JyiYEYtfSABNcxBmHjeZnhdT21beIuz39eVf54VI2B28e dkn/UqbDNJ6VpXvSAnYtRtkN/vxPO+YiTbJCYJxmRVAhmedGBGKwy/qU26LX1Okh bQ1KY9e1AFrhZB7WB75ayzWybJvxqHGS/mT4YhT4Tt9VlK1qDskN6Gztdp29xnMi KhFWvWRR3KrIoqqj/viqfo1mtaNKDtKOgJy8RlmmgmXflrThD7SPIQj+8SpdBtu3 uH1Pjp3fo2cioiJqmAdw2Ill4H35D0nT -----END CERTIFICATE-----Generated at Sun Dec 7 01:32:45 2025 by rpki-client