This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft File: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft (raw, json) Hash identifier: HIz/CLnGavrrPZIaifUzL8YnH58sihVaMx1XqP/YNrc= Subject key identifier: C0:8F:5F:CD:17:06:46:7B:B6:E0:F4:2E:F9:1B:83:7E:5D:85:A9:9F Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 3584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft Manifest number: 353B Signing time: Sat 06 Dec 2025 14:35:31 +0000 Manifest this update: Sat 06 Dec 2025 14:35:30 +0000 Manifest next update: Sat 13 Dec 2025 14:35:30 +0000 Files and hashes: 1: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl (hash: Zw4n/tTen/ErBoazuSdcHQm9dAXkCrj2BZ95nGI2kPM=) 2: 87EFB95AC01811EF90CE8B0EC4F9AE02.roa (hash: qZJPfG2amv1YRehnUzdlHxLOWwvXz8+dMtqCKRYUJpM=) 3: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (hash: uxN4zJEmGXmB/qpIp2ey6SpNrf4s6W/tukdRHW9gvLc=) 4: 0FCDEA68113B11F09E3A4157C4F9AE02.roa (hash: HhPaW5eoa8YAXMCyUgrMCG4GBbrYuP09obNUWTvTJmo=) 5: 2B622E1282F511EF9090F681C4F9AE02.roa (hash: o+SVOkw4B+Pgr5TLQfMcQYEp6f3Jn3P38kWJLEEf/tQ=) 6: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (hash: Kgqe2j6IHwMDhGgmbFi5UiveUmKiCe0XXLEEC0ovFyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13700 (0x3584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Dec 6 14:35:30 2025 GMT Not After : Dec 13 14:35:30 2025 GMT Subject: CN=69343f32-97cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4d:23:cb:49:7a:fd:27:6d:52:82:ad:dd:48: fa:5d:db:0f:4c:7e:42:52:81:65:19:af:40:2c:22: 83:4e:6c:5a:f5:ac:84:c6:44:4b:64:d0:c5:f5:76: 48:1b:74:0c:53:10:7e:f8:12:b2:23:ed:ef:c0:05: 4e:f4:92:3f:b1:ad:c8:2f:e5:e7:85:4a:55:15:78: ef:2d:32:9e:65:b8:3c:9b:ff:a4:82:7b:73:4c:6f: a6:65:3c:cd:a5:86:7d:50:40:2e:d2:dc:bd:ca:8c: 41:ac:d3:58:ea:29:f5:5a:cd:e2:70:1b:be:30:21: 19:e8:d2:a7:fe:78:c7:9b:0b:3e:e1:6f:fc:ef:f0: 76:68:93:a5:52:1a:be:b8:5d:49:bb:07:63:2c:df: c2:bb:91:7c:a1:62:09:26:d6:5a:36:6f:0c:9a:63: e2:bf:f7:54:08:00:87:e1:c4:fc:04:7d:67:13:31: b0:1f:13:03:18:6d:91:22:79:ff:00:d4:1c:30:bb: 9b:97:5e:af:f8:e2:4e:b6:98:b3:7b:bd:0e:e2:ad: 0d:f2:d4:91:9b:ae:cc:b5:43:53:14:4e:46:27:0f: fa:21:08:6f:a5:ec:bf:58:48:09:63:da:f5:60:57: a7:fe:db:08:e2:39:6b:44:16:09:ba:3a:ca:01:d9: a3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8F:5F:CD:17:06:46:7B:B6:E0:F4:2E:F9:1B:83:7E:5D:85:A9:9F X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:89:a8:25:7f:af:68:3a:1a:90:5b:bd:38:d7:19:3c:8a:9e: ec:06:e2:a9:93:a7:4b:86:5e:cf:f8:05:4d:db:7b:fd:02:f6: 88:d5:3f:e4:87:86:c7:9c:de:d0:64:ba:1b:26:23:de:a8:da: 98:90:e4:e4:4b:a2:7e:99:59:12:e5:cd:73:94:3a:11:1d:d6: 41:71:d9:be:9a:5b:ce:a7:c1:b7:9c:88:8b:61:02:35:2f:57: 8b:0f:9c:57:3c:ea:57:02:31:64:fd:be:81:11:24:06:a5:21: 68:64:18:df:0b:65:1c:10:e1:e1:87:61:e9:33:a1:46:e6:dd: 11:b8:50:eb:bd:f7:34:e0:6b:a2:02:78:dd:d8:43:0e:2b:c7: 59:3e:5b:39:a6:eb:68:d2:fd:0e:5e:24:6a:86:a8:db:10:c9: 81:3d:57:af:cd:13:2d:8a:60:a0:2d:b5:cc:90:9c:eb:6a:e3: 0f:dd:d7:4e:b7:f9:03:cb:07:bd:38:e6:8b:22:f3:53:84:86: 4c:49:1b:b0:1f:9d:ef:23:0d:07:33:f9:8f:ba:f6:80:8b:9b: 99:7a:51:04:df:94:6c:66:08:b5:aa:c9:d4:61:17:88:84:b7: 05:5d:c5:78:86:c8:fa:62:9a:40:75:27:48:87:c7:4a:fe:13: 82:c3:b0:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjUxMjA2MTQzNTMwWhcNMjUxMjEzMTQzNTMwWjAYMRYwFAYD VQQDEw02OTM0M2YzMi05N2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqE0jy0l6/SdtUoKt3Uj6XdsPTH5CUoFlGa9ALCKDTmxa9ayExkRLZNDF9XZI G3QMUxB++BKyI+3vwAVO9JI/sa3IL+XnhUpVFXjvLTKeZbg8m/+kgntzTG+mZTzN pYZ9UEAu0ty9yoxBrNNY6in1Ws3icBu+MCEZ6NKn/njHmws+4W/87/B2aJOlUhq+ uF1JuwdjLN/Cu5F8oWIJJtZaNm8MmmPiv/dUCACH4cT8BH1nEzGwHxMDGG2RInn/ ANQcMLubl16v+OJOtpize70O4q0N8tSRm67MtUNTFE5GJw/6IQhvpey/WEgJY9r1 YFen/tsI4jlrRBYJujrKAdmjXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCPX80X BkZ7tuD0Lvkbg35dhamfMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc3MC9DMzM2ODNCNjFEOEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlq aWZwTFpzR1hRMUhqVEVLUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLiaglf69oOhqQW7041xk8ip7sBuKpk6dLhl7P+AVN23v9AvaI1T/k h4bHnN7QZLobJiPeqNqYkOTkS6J+mVkS5c1zlDoRHdZBcdm+mlvOp8G3nIiLYQI1 L1eLD5xXPOpXAjFk/b6BESQGpSFoZBjfC2UcEOHhh2HpM6FG5t0RuFDrvfc04Gui Anjd2EMOK8dZPls5puto0v0OXiRqhqjbEMmBPVevzRMtimCgLbXMkJzrauMP3ddO t/kDywe9OOaLIvNThIZMSRuwH53vIw0HM/mPuvaAi5uZelEE35RsZgi1qsnUYReI hLcFXcV4hsj6YppAdSdIh8dK/hOCw7CG -----END CERTIFICATE-----Generated at Sat Dec 6 20:11:34 2025 by rpki-client