This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft File: HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft (raw, json) Hash identifier: aUt+mf2l6/Ev6LID97j9NeSYAQHaZ3g+hw7u0pnJoGo= Subject key identifier: D8:C3:C2:23:74:6E:88:33:8D:22:AB:39:CB:AE:7D:77:37:FB:66:CA Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 Certificate issuer: /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Certificate serial: 3504 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft Manifest number: 34F8 Signing time: Sat 06 Dec 2025 14:49:26 +0000 Manifest this update: Sat 06 Dec 2025 14:49:25 +0000 Manifest next update: Sat 13 Dec 2025 14:49:25 +0000 Files and hashes: 1: HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl (hash: ZAkssIzcW9x+fe9TaUnJvqMwbbZp7buI5qDjBwWbwQk=) 2: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (hash: kYoJR47X3kVYZwmuVMeLLYOoJYr+wMR5mBYYm9JId0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13572 (0x3504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CA8, serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Validity Not Before: Dec 6 14:49:25 2025 GMT Not After : Dec 13 14:49:25 2025 GMT Subject: CN=69344275-3b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e0:da:17:fe:4c:92:71:06:24:4a:74:5f:0e: 57:fb:de:70:32:80:93:11:29:80:18:70:4f:02:03: ba:af:a3:fc:57:e8:c0:9e:b0:49:88:b8:31:07:e7: bb:ff:e9:9a:62:b5:28:e5:cc:75:f1:cf:2b:e6:32: 49:20:c2:81:2f:6e:e8:13:24:11:42:32:eb:38:5d: 9d:f0:c7:89:e6:f5:cf:7c:49:ef:e2:ff:f7:25:ea: 5d:36:40:34:4b:90:4e:cb:90:23:a1:fd:2d:b4:03: 38:f8:0f:fb:17:7e:91:ad:38:31:0e:cc:13:a4:ab: 0e:50:93:90:e6:fe:9d:8b:ac:c4:dd:25:80:39:d6: c2:e1:33:6c:db:2d:9f:32:e7:69:d3:a8:0a:96:3b: 99:77:db:83:be:4e:4d:dd:dd:a9:5b:b0:97:0d:0e: 01:79:37:00:92:18:70:ca:1d:cc:c8:58:fc:54:3f: a8:ed:61:16:68:f1:0e:f9:92:68:36:17:e4:e9:9c: 03:84:f6:82:d2:08:03:89:a4:9c:ba:0e:f4:03:31: 9c:37:23:45:94:c8:77:0b:54:5c:1c:5c:78:27:c8: c3:fc:b6:b6:3d:53:ac:aa:13:e9:7c:eb:46:46:4d: b9:5c:c7:92:08:b6:3d:c4:74:28:9f:20:f4:bc:f5: a2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C3:C2:23:74:6E:88:33:8D:22:AB:39:CB:AE:7D:77:37:FB:66:CA X509v3 Authority Key Identifier: keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:42:42:5e:d9:bc:e9:f5:c0:3f:02:dd:d2:00:54:75:89:3a: e9:27:2c:04:d5:9b:6e:0f:a3:7b:83:08:8d:ab:68:88:b5:fb: b1:b5:da:5b:44:74:19:4d:9e:9b:33:73:ab:a0:c1:eb:dc:58: 5a:fe:77:15:08:d7:26:cf:0e:77:f7:71:ae:6d:8a:51:12:94: 8f:62:7e:ed:94:29:7a:06:51:92:09:cf:1c:78:26:a1:d4:c9: c6:da:67:87:cd:2c:e7:e4:d2:6e:0e:4f:23:54:f3:fe:6e:89: 05:f7:a5:ae:6d:ec:ef:bc:22:93:64:bd:33:df:26:4c:f2:91: 6c:52:d4:57:9e:b4:74:3a:0b:61:45:89:91:7a:cc:4d:d4:ee: 46:e0:91:fb:5e:a4:27:18:7c:72:ac:9b:15:39:8a:73:57:5a: 6b:8e:e8:86:8f:5f:65:eb:45:c5:f0:94:38:a5:f0:bf:e9:64: ce:ab:65:51:d9:4a:9b:67:e0:91:d7:9e:e3:ba:96:58:1f:f0: 9a:b0:e0:b3:22:5f:c1:93:76:05:4b:fa:2e:a1:05:a7:e6:45: 13:66:c6:96:e9:c6:a3:97:90:ef:86:c6:84:ee:87:11:1f:68: cd:9b:51:17:0d:5e:67:18:b3:9d:ab:e6:ef:65:da:96:e6:fb: 90:db:9a:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDQTgxMTAvBgNVBAUTKDFFNzUyQzNEMTYwNDhDM0YzRjYzMjNEMkI5MTA3MEJG MjQ3RDY4NjYwHhcNMjUxMjA2MTQ0OTI1WhcNMjUxMjEzMTQ0OTI1WjAYMRYwFAYD VQQDEw02OTM0NDI3NS0zYjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeDaF/5MknEGJEp0Xw5X+95wMoCTESmAGHBPAgO6r6P8V+jAnrBJiLgxB+e7 /+maYrUo5cx18c8r5jJJIMKBL27oEyQRQjLrOF2d8MeJ5vXPfEnv4v/3JepdNkA0 S5BOy5Ajof0ttAM4+A/7F36RrTgxDswTpKsOUJOQ5v6di6zE3SWAOdbC4TNs2y2f Mudp06gKljuZd9uDvk5N3d2pW7CXDQ4BeTcAkhhwyh3MyFj8VD+o7WEWaPEO+ZJo Nhfk6ZwDhPaC0ggDiaScug70AzGcNyNFlMh3C1RcHFx4J8jD/La2PVOsqhPpfOtG Rk25XMeSCLY9xHQonyD0vPWiNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjDwiN0 bogzjSKrOcuufXc3+2bKMB8GA1UdIwQYMBaAFB51LD0WBIw/P2Mj0rkQcL8kfWhm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNBOC84NzAzMjI1ODFE OUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpEOF9ZeVBTdVJCd3Z5Ujlh R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huVXNQUllFakQ4X1l5UFN1UkJ3dnlSOWFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNBOC84NzAzMjI1ODFEOUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpE OF9ZeVBTdVJCd3Z5UjlhR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATQkJe2bzp9cA/At3SAFR1iTrpJywE1ZtuD6N7gwiNq2iItfuxtdpb RHQZTZ6bM3OroMHr3Fha/ncVCNcmzw5393GubYpREpSPYn7tlCl6BlGSCc8ceCah 1MnG2meHzSzn5NJuDk8jVPP+bokF96WubezvvCKTZL0z3yZM8pFsUtRXnrR0Ogth RYmResxN1O5G4JH7XqQnGHxyrJsVOYpzV1prjuiGj19l60XF8JQ4pfC/6WTOq2VR 2UqbZ+CR157jupZYH/CasOCzIl/Bk3YFS/ouoQWn5kUTZsaW6cajl5DvhsaE7ocR H2jNm1EXDV5nGLOdq+bvZdqW5vuQ25qd -----END CERTIFICATE-----Generated at Sat Dec 6 18:04:56 2025 by rpki-client