This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: C1vVddmRSgB34mLx0IdC8t+jkjcDUVIz8/pQMUYv0J4= Subject key identifier: 80:0F:D1:A4:96:3D:18:3B:BC:44:07:A7:7B:83:A1:8E:32:4F:63:79 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 146B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 1462 Signing time: Thu 04 Dec 2025 16:32:15 +0000 Manifest this update: Thu 04 Dec 2025 16:32:14 +0000 Manifest next update: Thu 11 Dec 2025 16:32:14 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: 1anASKZxjap1bS+fmQMhpxv2mkyDbySHQ5CuYuuw2uY=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5227 (0x146b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Dec 4 16:32:14 2025 GMT Not After : Dec 11 16:32:14 2025 GMT Subject: CN=6931b78f-66b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:41:eb:b8:ad:a1:7c:70:21:86:2a:6e:05:7f: ba:25:00:34:cb:b0:99:f7:d3:56:20:d5:04:cb:b3: ee:ff:2a:38:72:86:6c:c8:7b:f9:10:13:93:e8:4f: 17:97:42:68:4a:ba:fa:ef:62:42:b3:d7:0d:cf:9c: c9:57:86:01:86:00:59:fe:36:93:5f:31:df:a3:0a: cd:a6:fe:4a:14:79:84:7e:e5:96:6a:6f:70:54:b1: 12:20:79:bb:54:9a:db:75:a2:26:ee:cc:e9:2c:df: a5:f1:14:a6:5b:3c:29:d0:30:7f:c8:42:52:54:be: d9:b3:24:3c:45:bd:d3:ca:bd:b4:07:31:c7:f4:af: 3e:4d:5d:ea:a9:d6:ad:d4:52:bd:0f:08:05:d3:4d: 0d:44:39:42:f0:c8:7b:12:77:c6:61:e4:5c:d9:bf: 39:23:5a:93:3f:15:05:36:e9:a7:43:76:18:9f:f7: f3:06:c7:9d:90:15:a2:43:f9:4b:53:07:c4:53:36: 36:7d:71:80:55:66:f9:4b:83:3f:c7:cb:f4:7c:29: 99:b7:97:00:6f:b2:4c:4f:22:b2:d5:4f:d5:9e:a0: 56:8f:65:7d:a7:7c:1d:6b:e2:df:0d:42:55:55:21: b3:72:d6:50:f7:f2:e4:5a:d9:0d:0c:eb:0c:0c:e8: 83:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0F:D1:A4:96:3D:18:3B:BC:44:07:A7:7B:83:A1:8E:32:4F:63:79 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:a6:da:81:bd:7c:79:86:07:c3:40:e3:44:8c:59:31:35:3c: 56:73:7a:16:eb:9f:11:4c:2d:fe:e7:2f:e5:0e:69:8d:a8:8d: c6:f9:65:eb:c5:5a:30:e4:52:94:b2:62:dc:f4:12:3d:b3:2a: c6:c3:1e:5e:1b:2e:4f:fd:11:b0:af:81:af:d2:72:b2:3d:82: 81:22:99:e6:0b:c0:bf:89:d4:c7:1d:28:f8:62:69:57:28:63: 2e:7b:e3:e2:0b:0d:29:6d:de:c0:99:b5:fa:40:95:56:d8:41: b6:50:fc:1f:6e:e7:fb:fe:7e:f8:b0:33:5f:2f:89:bb:42:f9: 3c:c6:06:d3:93:a2:6f:38:af:33:94:ab:64:ba:09:f4:ac:df: b8:9d:85:e1:e2:76:d7:02:8f:3b:44:7d:9f:f2:fb:97:b7:f2: 6c:90:ab:6e:84:c5:8d:75:ac:67:ef:c9:c0:3b:ff:0c:95:25: 04:da:de:05:96:89:7e:21:99:33:a0:65:f5:40:4a:1d:05:bf: 02:d0:4a:fb:c3:17:4e:71:25:ce:ff:d3:88:f1:88:b4:e4:8c: ef:bb:64:09:5b:8c:8a:84:8f:b8:e3:bd:9d:f7:1a:f1:f5:a1: 07:24:7d:e8:51:e6:5c:ad:3d:d7:b3:a7:19:c2:b2:b6:d4:27: 16:dd:70:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUxMjA0MTYzMjE0WhcNMjUxMjExMTYzMjE0WjAYMRYwFAYD VQQDEw02OTMxYjc4Zi02NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEHruK2hfHAhhipuBX+6JQA0y7CZ99NWINUEy7Pu/yo4coZsyHv5EBOT6E8X l0JoSrr672JCs9cNz5zJV4YBhgBZ/jaTXzHfowrNpv5KFHmEfuWWam9wVLESIHm7 VJrbdaIm7szpLN+l8RSmWzwp0DB/yEJSVL7ZsyQ8Rb3Tyr20BzHH9K8+TV3qqdat 1FK9DwgF000NRDlC8Mh7EnfGYeRc2b85I1qTPxUFNumnQ3YYn/fzBsedkBWiQ/lL UwfEUzY2fXGAVWb5S4M/x8v0fCmZt5cAb7JMTyKy1U/VnqBWj2V9p3wda+LfDUJV VSGzctZQ9/LkWtkNDOsMDOiDfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAP0aSW PRg7vEQHp3uDoY4yT2N5MB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBptqBvXx5hgfDQONEjFkxNTxWc3oW658RTC3+5y/lDmmNqI3G+WXr xVow5FKUsmLc9BI9syrGwx5eGy5P/RGwr4Gv0nKyPYKBIpnmC8C/idTHHSj4YmlX KGMue+PiCw0pbd7AmbX6QJVW2EG2UPwfbuf7/n74sDNfL4m7Qvk8xgbTk6JvOK8z lKtkugn0rN+4nYXh4nbXAo87RH2f8vuXt/JskKtuhMWNdaxn78nAO/8MlSUE2t4F lol+IZkzoGX1QEodBb8C0Er7wxdOcSXO/9OI8Yi05Izvu2QJW4yKhI+4472d9xrx 9aEHJH3oUeZcrT3Xs6cZwrK21CcW3XAO -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:11 2025 by rpki-client