This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: SDpmVOBhohtvqnT2cFRpTuhdkW8nhFUwpLnqgg2egog= Subject key identifier: 44:93:A8:83:71:73:65:DB:00:21:04:65:84:18:7D:17:F2:A9:71:5B Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 0449 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 0443 Signing time: Thu 04 Dec 2025 22:44:14 +0000 Manifest this update: Thu 04 Dec 2025 22:44:13 +0000 Manifest next update: Thu 11 Dec 2025 22:44:13 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: 2GgaxJY/xd+NQuD2fnALcUcXH581rPrw12i346WV0mQ=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: /pdJUaEubJCV2S3p1KppNWpdc/sERLFGpbX3qSnYD48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Dec 4 22:44:13 2025 GMT Not After : Dec 11 22:44:13 2025 GMT Subject: CN=69320ebd-e7d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3d:fd:c8:62:d1:e9:3c:b4:b9:2e:4e:5d:d7: ea:73:fa:db:a6:56:74:fd:b0:89:0e:a5:a3:8f:a1: ee:ee:d2:89:e5:91:95:b3:fe:06:5d:ef:c0:55:a4: d5:c8:f4:fe:95:bc:39:28:da:de:d4:a3:59:f5:20: 40:19:cf:d3:98:81:55:29:9c:d3:75:0c:7f:dd:c2: 7b:81:de:04:d1:09:93:ec:1a:47:51:e0:ce:52:0d: 81:cb:18:45:14:4c:03:f0:0d:f5:5b:ac:b2:38:26: 73:f2:e7:3e:14:d8:64:cf:2b:8d:d1:14:a1:e2:a7: ff:6e:fb:6f:69:4a:5a:ea:59:0e:8e:b8:f5:c2:c8: 4f:f4:3b:3b:9e:80:73:fb:23:97:62:80:74:30:4b: 9e:3f:4e:b9:cf:9c:74:f6:2a:7d:7a:d6:41:e5:ee: 0c:48:95:00:e0:6e:99:75:32:fd:94:f1:24:7c:3c: 8a:f0:08:a1:46:fb:98:a9:fc:fd:02:9a:7d:66:9d: b5:f4:06:e7:c3:b8:b9:11:b6:6c:fa:1a:49:72:eb: 11:aa:36:5f:fc:ff:61:bf:9f:10:d3:0c:ec:4f:00: 5b:db:0c:4a:e3:ea:22:79:ea:9f:2f:4c:c1:f1:94: 2f:52:7d:d3:1d:56:6e:26:6a:18:28:4d:78:a9:67: 6c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:93:A8:83:71:73:65:DB:00:21:04:65:84:18:7D:17:F2:A9:71:5B X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:bd:3c:fe:9e:4d:7b:6f:34:5a:a3:f5:e1:c9:4c:4c:07:3f: 31:dc:75:51:fa:72:4b:24:79:cd:83:a3:01:b6:fd:98:ac:c7: cc:3e:d5:05:54:1c:d7:6a:52:8a:3b:ce:54:ab:7d:66:5a:ed: 19:d4:73:4f:5a:5e:8f:e9:e2:48:69:2d:a4:40:75:db:34:a4: 99:4b:17:10:7f:55:53:25:33:f9:bf:c5:93:8d:43:6b:5f:77: 93:01:68:9a:14:a9:91:0f:46:5f:a2:08:a3:c0:b3:44:f2:29: 02:08:98:89:03:67:eb:9b:d5:35:04:d5:1d:b2:a8:b7:b0:25: f3:4e:f3:f9:64:4f:4e:3d:1d:98:2f:a3:12:59:34:8f:5d:6b: 7f:9b:b6:ad:10:82:4e:aa:07:59:13:03:e2:ce:3c:c4:b3:a2: df:4d:71:ab:dc:d2:81:0e:84:6a:f0:7a:b5:6e:e5:2c:45:7c: 95:8b:7a:58:1a:45:be:5c:e4:cb:d5:3d:80:9c:ae:89:8b:ab: f8:d4:9a:ad:f4:12:a1:6f:a2:3a:5a:ee:e6:b4:e8:d7:fa:61: 25:56:3e:66:4e:af:7b:67:6f:ba:96:8e:35:72:30:95:93:6d: c4:a9:13:3f:e8:a5:cd:30:9c:5e:24:60:eb:77:f3:e6:13:47: 66:f8:b6:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjUxMjA0MjI0NDEzWhcNMjUxMjExMjI0NDEzWjAYMRYwFAYD VQQDEw02OTMyMGViZC1lN2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsD39yGLR6Ty0uS5OXdfqc/rbplZ0/bCJDqWjj6Hu7tKJ5ZGVs/4GXe/AVaTV yPT+lbw5KNre1KNZ9SBAGc/TmIFVKZzTdQx/3cJ7gd4E0QmT7BpHUeDOUg2ByxhF FEwD8A31W6yyOCZz8uc+FNhkzyuN0RSh4qf/bvtvaUpa6lkOjrj1wshP9Ds7noBz +yOXYoB0MEueP065z5x09ip9etZB5e4MSJUA4G6ZdTL9lPEkfDyK8AihRvuYqfz9 App9Zp219Abnw7i5EbZs+hpJcusRqjZf/P9hv58Q0wzsTwBb2wxK4+oieeqfL0zB 8ZQvUn3THVZuJmoYKE14qWds9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESTqINx c2XbACEEZYQYfRfyqXFbMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZvTz+nk17bzRao/XhyUxMBz8x3HVR+nJLJHnNg6MBtv2YrMfMPtUF VBzXalKKO85Uq31mWu0Z1HNPWl6P6eJIaS2kQHXbNKSZSxcQf1VTJTP5v8WTjUNr X3eTAWiaFKmRD0ZfogijwLNE8ikCCJiJA2frm9U1BNUdsqi3sCXzTvP5ZE9OPR2Y L6MSWTSPXWt/m7atEIJOqgdZEwPizjzEs6LfTXGr3NKBDoRq8Hq1buUsRXyVi3pY GkW+XOTL1T2AnK6Ji6v41Jqt9BKhb6I6Wu7mtOjX+mElVj5mTq97Z2+6lo41cjCV k23EqRM/6KXNMJxeJGDrd/PmE0dm+LaP -----END CERTIFICATE-----Generated at Sat Dec 6 21:26:49 2025 by rpki-client