This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: jCEI3zBs05G85hr9+veX+orz/Ld3tzZFvJYFcBvtnmw= Subject key identifier: 4F:F7:90:47:7D:4D:6F:34:33:BC:E4:7D:2B:92:6C:91:48:7C:16:39 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 64 Signing time: Fri 05 Dec 2025 04:54:51 +0000 Manifest this update: Fri 05 Dec 2025 04:54:51 +0000 Manifest next update: Fri 12 Dec 2025 04:54:51 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: eMstYVVw/GzXcDGkjpLqcNZzXI7NEpnNJlesbDejT0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Dec 5 04:54:51 2025 GMT Not After : Dec 12 04:54:51 2025 GMT Subject: CN=6932659b-21e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c9:7c:d3:86:12:a4:cb:49:29:72:7a:dc:62: e1:df:3b:2f:ca:c9:e5:31:23:d7:a7:05:4d:14:eb: 50:b5:78:5f:26:43:9a:0b:ce:86:1e:21:4e:c4:90: 1c:09:2f:34:56:59:2d:4b:bb:d0:c6:ed:f5:bc:03: 3c:5d:7f:e9:ba:a4:e4:62:a7:16:98:56:05:7c:57: db:1a:06:b1:dd:16:bf:7a:02:40:f1:5b:5e:38:1d: 36:43:3c:f2:c8:a2:bc:8b:c3:fa:a3:83:bd:af:77: 93:c6:50:79:ed:cf:a0:d1:7c:96:fc:c3:5a:89:60: 04:b2:50:b5:fd:34:41:cb:06:ec:b3:80:ef:f2:55: 65:c1:9a:4d:17:9c:21:51:5b:8a:2e:29:bb:d7:bd: f0:74:98:9d:19:b8:8d:c2:5b:16:a0:92:07:95:2d: a5:b0:f8:75:38:05:5a:48:62:40:42:fd:de:fe:ed: 14:dd:d9:8c:3e:4c:be:a5:3c:00:f4:e4:ae:91:51: cb:0a:af:b1:b2:c8:76:91:f4:e2:b4:3d:c5:86:99: 95:8e:33:a2:de:14:22:e7:08:0a:fb:16:88:04:68: ee:32:e0:bb:ec:0f:91:99:d3:83:68:37:03:20:79: c2:04:de:d7:98:12:a3:59:b7:44:67:c1:58:29:ea: f8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F7:90:47:7D:4D:6F:34:33:BC:E4:7D:2B:92:6C:91:48:7C:16:39 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:b2:50:4f:81:ba:20:76:b3:4a:30:2c:34:e4:75:25:f7:91: 61:28:33:2b:45:27:36:2d:f2:7b:d4:61:10:22:7d:ca:d3:8d: 81:85:04:0d:ec:d4:21:29:0a:f3:02:21:0a:b2:e4:35:e5:12: ae:99:c7:29:a5:51:ec:92:85:b2:c0:f5:be:be:fe:87:df:37: 86:d5:0b:83:c7:92:1c:56:6f:75:62:bb:32:d8:8d:7f:95:86: f4:90:08:b3:b2:32:cc:9f:2c:da:bb:7e:ae:98:c2:a2:b4:27: e6:96:68:2b:26:71:32:87:10:65:26:8a:d7:bc:9f:18:f0:62: bf:3e:4b:7c:9a:1d:2b:31:3c:bf:97:d6:a1:0d:a5:a4:cf:cc: c4:8d:f8:3f:5b:7a:3e:75:0f:85:d3:37:81:e0:42:74:c7:ea: c0:6f:cf:c4:ed:e3:ea:53:81:60:29:28:da:74:8d:cb:91:b3: 73:0a:15:91:81:f7:d1:89:8b:ab:ce:bf:41:d6:d3:63:f9:0a: 83:1f:c2:5f:49:3e:20:cc:9e:8c:60:ce:ce:01:74:df:fa:7c: 48:e9:82:86:01:97:f4:03:c8:1f:70:cd:ea:d7:62:14:9a:69: fa:1c:0c:3a:3e:69:19:26:05:5d:89:23:ac:cf:14:71:96:04: f4:75:86:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoMUQwREFDMTFFRDgyRTM1QzIzQjBDQkVGRkJFRTAwNjI2 M0IwOTk1NzAeFw0yNTEyMDUwNDU0NTFaFw0yNTEyMTIwNDU0NTFaMBgxFjAUBgNV BAMTDTY5MzI2NTliLTIxZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKyXzThhKky0kpcnrcYuHfOy/KyeUxI9enBU0U61C1eF8mQ5oLzoYeIU7EkBwJ LzRWWS1Lu9DG7fW8Azxdf+m6pORipxaYVgV8V9saBrHdFr96AkDxW144HTZDPPLI oryLw/qjg72vd5PGUHntz6DRfJb8w1qJYASyULX9NEHLBuyzgO/yVWXBmk0XnCFR W4ouKbvXvfB0mJ0ZuI3CWxagkgeVLaWw+HU4BVpIYkBC/d7+7RTd2Yw+TL6lPAD0 5K6RUcsKr7GyyHaR9OK0PcWGmZWOM6LeFCLnCAr7FogEaO4y4LvsD5GZ04NoNwMg ecIE3teYEqNZt0RnwVgp6vjdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT/eQR31N bzQzvOR9K5JskUh8FjkwHwYDVR0jBBgwFoAUHQ2sEe2C41wjsMvv++4AYmOwmVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzVBRkIxNDhFMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21W Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFEyc0VlMkM0MXdqc012di0tNEFZbU93bVZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB OUMwLzVBRkIxNDhFMzg4MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3 anNNdnYtLTRBWW1Pd21WYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKSyUE+BuiB2s0owLDTkdSX3kWEoMytFJzYt8nvUYRAifcrTjYGFBA3s 1CEpCvMCIQqy5DXlEq6ZxymlUeyShbLA9b6+/offN4bVC4PHkhxWb3ViuzLYjX+V hvSQCLOyMsyfLNq7fq6YwqK0J+aWaCsmcTKHEGUmite8nxjwYr8+S3yaHSsxPL+X 1qENpaTPzMSN+D9bej51D4XTN4HgQnTH6sBvz8Tt4+pTgWApKNp0jcuRs3MKFZGB 99GJi6vOv0HW02P5CoMfwl9JPiDMnoxgzs4BdN/6fEjpgoYBl/QDyB9wzerXYhSa afocDDo+aRkmBV2JI6zPFHGWBPR1hhg= -----END CERTIFICATE-----Generated at Sun Dec 7 03:45:32 2025 by rpki-client