This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: 2iTKKlQHagqv082E1fyBKQ9zP4O93jFC2L9RvrPHCyw= Subject key identifier: 74:02:5E:8C:BD:0B:67:59:5B:56:D0:A4:C9:D0:71:82:8F:D6:32:22 Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 0908 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 08FA Signing time: Sat 06 Dec 2025 19:29:52 +0000 Manifest this update: Sat 06 Dec 2025 19:29:51 +0000 Manifest next update: Sat 13 Dec 2025 19:29:51 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: It0sIbAaswYPNuHJRg8OxEpGsufAjYudPgyDuDvcfn4=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: +c2DPE0WaPr48QApZCLfEPaMsExO+TZ/BLuuQJmn+Mg=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: /qSqUUquW8P34EzhMbBxrdao9SE8qOtCjPceo9nPsLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: Dec 6 19:29:51 2025 GMT Not After : Dec 13 19:29:51 2025 GMT Subject: CN=69348430-be68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:81:5b:ab:d2:80:20:21:b8:51:b7:57:58:d6: 9f:9d:df:18:b6:38:ca:98:bb:90:5d:dd:b9:04:7c: 1a:8a:29:f5:15:ed:47:dc:1e:74:5a:b0:18:75:5d: 5b:5a:f3:2a:fe:09:8b:83:6d:00:44:a5:f5:41:31: 6f:76:29:1e:69:9a:7d:67:e6:1a:11:bd:80:74:8b: 82:32:3e:ac:9e:8e:a1:ec:20:cf:b2:ec:f8:8b:98: 5d:39:12:97:86:53:d4:90:f3:0b:57:78:81:92:9b: 04:4b:83:6a:fd:e7:71:33:93:f3:df:52:24:20:b8: 6b:c2:44:e9:18:f1:25:f9:b6:89:72:c2:8d:3c:fd: 1b:7b:0e:48:3a:4d:ad:56:4e:0a:65:a1:93:e4:31: 42:81:b3:e8:19:56:4c:6a:9f:c7:ec:22:af:85:f3: b5:49:cf:cb:8e:a5:82:5c:80:c3:14:0e:70:b5:34: 78:af:3d:c8:b7:b8:96:c5:81:6a:e2:e2:6a:75:fb: 31:ba:b1:3f:20:c0:9c:31:65:06:01:6e:ba:95:a3: 55:b5:c0:b6:59:c5:5c:94:15:62:44:08:ca:2e:a4: b7:0f:d0:60:e9:e4:85:81:84:41:22:82:46:3e:29: 5e:f5:57:e5:29:15:a0:c0:10:7f:aa:37:34:f5:1c: d6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:02:5E:8C:BD:0B:67:59:5B:56:D0:A4:C9:D0:71:82:8F:D6:32:22 X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:74:1c:91:72:a4:7e:87:89:1b:97:4f:17:92:6e:39:64:41: 24:08:d8:fd:a5:cd:85:35:a5:a9:e9:44:c4:2e:33:d1:40:61: 01:27:24:68:06:a7:66:1b:07:37:2f:cd:a1:63:f9:ed:c0:22: 1f:7e:3a:96:69:3d:da:64:80:17:68:f1:6b:91:5d:46:64:5d: 2f:0a:e8:88:d2:08:d7:5e:98:90:32:b6:5b:8c:c2:51:bd:77: 92:eb:23:b3:98:ed:c7:db:b5:ad:ad:ca:fc:df:a8:c5:8d:60: 44:26:42:ea:30:a8:16:d4:6d:0a:08:fe:a0:eb:55:95:ac:71: f8:20:0d:38:e4:5e:d4:6f:5e:0b:b4:63:12:e8:3d:f7:95:a9: ec:7b:72:d4:2e:1a:6d:44:c9:21:20:2f:7f:2a:67:98:a2:9e: 54:f5:b6:e2:1e:d4:92:36:ca:2b:0b:71:ce:2f:d0:b3:1a:07: aa:20:60:78:24:22:95:2b:17:3f:0e:3e:73:ff:60:39:80:2d: c5:f1:32:56:ba:79:34:ad:ac:f7:dc:15:95:97:9e:f6:2c:3b: 6d:13:3f:24:61:2f:a6:5a:41:58:25:7d:ed:7b:bd:ba:cd:f5: 1b:ef:c3:0a:9b:ca:5d:b7:65:a0:56:bd:f3:5e:d7:f5:b0:f0: cb:8e:7c:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjUxMjA2MTkyOTUxWhcNMjUxMjEzMTkyOTUxWjAYMRYwFAYD VQQDEw02OTM0ODQzMC1iZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YFbq9KAICG4UbdXWNafnd8YtjjKmLuQXd25BHwaiin1Fe1H3B50WrAYdV1b WvMq/gmLg20ARKX1QTFvdikeaZp9Z+YaEb2AdIuCMj6sno6h7CDPsuz4i5hdORKX hlPUkPMLV3iBkpsES4Nq/edxM5Pz31IkILhrwkTpGPEl+baJcsKNPP0bew5IOk2t Vk4KZaGT5DFCgbPoGVZMap/H7CKvhfO1Sc/LjqWCXIDDFA5wtTR4rz3It7iWxYFq 4uJqdfsxurE/IMCcMWUGAW66laNVtcC2WcVclBViRAjKLqS3D9Bg6eSFgYRBIoJG Pile9VflKRWgwBB/qjc09RzWNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQCXoy9 C2dZW1bQpMnQcYKP1jIiMB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxdByRcqR+h4kbl08Xkm45ZEEkCNj9pc2FNaWp6UTELjPRQGEBJyRo BqdmGwc3L82hY/ntwCIffjqWaT3aZIAXaPFrkV1GZF0vCuiI0gjXXpiQMrZbjMJR vXeS6yOzmO3H27Wtrcr836jFjWBEJkLqMKgW1G0KCP6g61WVrHH4IA045F7Ub14L tGMS6D33lanse3LULhptRMkhIC9/KmeYop5U9bbiHtSSNsorC3HOL9CzGgeqIGB4 JCKVKxc/Dj5z/2A5gC3F8TJWunk0raz33BWVl572LDttEz8kYS+mWkFYJX3te726 zfUb78MKm8pdt2WgVr3zXtf1sPDLjnwT -----END CERTIFICATE-----Generated at Sun Dec 7 01:41:18 2025 by rpki-client