This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft File: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft (raw, json) Hash identifier: dK8AFKa0cfCxCUvAVVgiHGla1sTOn+tZiqpM/pppvWU= Subject key identifier: 01:EB:9D:D1:FE:04:E0:B1:AD:1F:44:D8:5D:2A:90:05:29:55:BD:2E Authority key identifier: 1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB Certificate issuer: /CN=A91B727C/serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Certificate serial: 11EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft Manifest number: 11D9 Signing time: Thu 04 Dec 2025 16:48:59 +0000 Manifest this update: Thu 04 Dec 2025 16:48:58 +0000 Manifest next update: Thu 11 Dec 2025 16:48:58 +0000 Files and hashes: 1: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl (hash: 6wkN/I2HOFr8gdf7tUZpswetJajAhNDjgvxw3U/Ek4I=) 2: B58038B838FF11EAB8D91529C4F9AE02.roa (hash: IU4SG15xY5pa/IoW3wwDCZ3o/ZxiWKB5Df2NzHDteOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4590 (0x11ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B727C, serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Validity Not Before: Dec 4 16:48:58 2025 GMT Not After : Dec 11 16:48:58 2025 GMT Subject: CN=6931bb7b-fb3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:c8:a4:1b:ad:4f:5e:59:08:b4:7e:d9:13:d7: 39:66:17:c5:2b:99:74:88:6e:cb:e8:4f:cb:77:86: 20:9a:0b:05:d0:ae:b8:fe:67:e8:75:df:bc:4a:43: 67:3e:a9:6e:bc:c4:95:b7:5b:37:87:ea:42:1d:bb: de:86:04:e4:51:27:ca:fa:39:a5:3c:bf:30:fd:e4: 3e:98:ee:1b:d8:01:25:a7:85:34:6c:67:c4:0a:fa: 1c:83:d1:c2:98:e0:c4:65:d5:2f:fe:69:48:ff:1b: dd:ed:28:ee:21:38:a8:85:0b:62:4f:88:2a:06:58: 22:2f:74:9c:1f:00:3c:38:75:4b:55:d2:1c:3c:ee: b1:aa:62:95:0c:90:ca:9b:0f:d6:2a:cf:da:fd:79: 5e:76:7a:be:c1:f1:3d:c7:2a:f4:1b:d4:bd:37:0c: 9e:d0:bd:c2:d0:b0:f5:0b:02:b8:b7:19:ad:41:a6: f9:a1:d7:5c:ec:69:38:2d:8b:6c:65:fe:37:4f:5c: d2:7d:e4:0d:81:db:5d:c5:45:d3:1d:fd:46:23:13: 41:86:23:34:c8:c8:17:44:12:c9:08:4b:c9:a8:a5: 4d:f6:44:e8:b4:74:a5:cd:0b:f7:6f:69:09:ab:c4: a6:9e:47:6f:1b:38:87:da:2f:09:21:7e:74:d6:5d: 3d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:EB:9D:D1:FE:04:E0:B1:AD:1F:44:D8:5D:2A:90:05:29:55:BD:2E X509v3 Authority Key Identifier: keyid:1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:30:74:37:70:39:6c:04:80:7a:1f:14:90:fb:20:cf:2b:e0: 9d:6f:f1:32:c5:25:35:01:c6:1e:a1:92:d3:05:be:57:b1:64: 71:b8:c0:e8:d9:1e:0a:d7:98:4f:83:49:86:84:c1:38:01:33: c9:06:1d:01:6c:c7:30:dd:ea:82:37:6f:a2:72:71:35:54:1e: c5:ab:11:b0:23:54:b6:65:67:d0:59:0a:41:c6:8d:a9:12:7a: e6:8a:e5:12:f0:ea:81:34:bd:fa:19:8c:8f:71:1a:5d:32:ba: 8b:e2:ba:2a:f4:f7:58:58:52:f6:ef:ab:07:18:a4:b5:2b:4f: a7:d7:41:ac:2c:50:0b:17:76:a8:d9:15:69:e6:6f:2c:a0:f8: 1a:d6:49:0f:ff:d0:85:b6:54:00:86:76:45:31:34:d7:37:69: 56:ba:ae:5c:e9:48:a0:cd:e2:fa:82:d4:ab:9e:e4:c0:f9:11: 4c:6d:b7:8c:50:a0:14:3e:fd:04:53:00:6f:76:12:a2:33:d3: 26:13:13:b9:1a:b9:45:42:cc:a9:c4:45:49:90:8a:cd:31:fe: e3:4d:e0:39:cd:dd:96:e0:9e:b7:69:4c:1c:f4:79:6a:c6:22: 26:94:88:fa:19:14:fa:72:6b:2f:cb:b7:0d:79:d3:6f:0c:cf: 3f:54:48:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyN0MxMTAvBgNVBAUTKDFEODgyQzhDRjI0MzRDQzlCQkZENzkxOTFEQzJDNjk4 MjkyNkU4QUIwHhcNMjUxMjA0MTY0ODU4WhcNMjUxMjExMTY0ODU4WjAYMRYwFAYD VQQDEw02OTMxYmI3Yi1mYjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+MikG61PXlkItH7ZE9c5ZhfFK5l0iG7L6E/Ld4YgmgsF0K64/mfodd+8SkNn PqluvMSVt1s3h+pCHbvehgTkUSfK+jmlPL8w/eQ+mO4b2AElp4U0bGfECvocg9HC mODEZdUv/mlI/xvd7SjuITiohQtiT4gqBlgiL3ScHwA8OHVLVdIcPO6xqmKVDJDK mw/WKs/a/Xlednq+wfE9xyr0G9S9Nwye0L3C0LD1CwK4txmtQab5oddc7Gk4LYts Zf43T1zSfeQNgdtdxUXTHf1GIxNBhiM0yMgXRBLJCEvJqKVN9kTotHSlzQv3b2kJ q8SmnkdvGziH2i8JIX501l09gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHrndH+ BOCxrR9E2F0qkAUpVb0uMB8GA1UdIwQYMBaAFB2ILIzyQ0zJu/15GR3CxpgpJuir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI3Qy85RDc3QzZENDAy OEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRNbTdfWGtaSGNMR21Da202 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hZZ3NqUEpEVE1tN19Ya1pIY0xHbUNrbTZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzI3Qy85RDc3QzZENDAyOEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRN bTdfWGtaSGNMR21Da202S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmMHQ3cDlsBIB6HxSQ+yDPK+Cdb/EyxSU1AcYeoZLTBb5XsWRxuMDo 2R4K15hPg0mGhME4ATPJBh0BbMcw3eqCN2+icnE1VB7FqxGwI1S2ZWfQWQpBxo2p EnrmiuUS8OqBNL36GYyPcRpdMrqL4roq9PdYWFL276sHGKS1K0+n10GsLFALF3ao 2RVp5m8soPga1kkP/9CFtlQAhnZFMTTXN2lWuq5c6UigzeL6gtSrnuTA+RFMbbeM UKAUPv0EUwBvdhKiM9MmExO5GrlFQsypxEVJkIrNMf7jTeA5zd2W4J63aUwc9Hlq xiImlIj6GRT6cmsvy7cNedNvDM8/VEj8 -----END CERTIFICATE-----Generated at Sat Dec 6 14:31:11 2025 by rpki-client