This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: raEJCE7ppALjfHd8lkZ6M/snpGx5wD/Adfw8zE7oBfY= Subject key identifier: B2:7D:7E:3E:9D:FD:C0:E0:B1:D5:5E:54:50:B3:EC:6F:88:EE:3C:2A Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 63 Signing time: Fri 05 Dec 2025 04:57:24 +0000 Manifest this update: Fri 05 Dec 2025 04:57:23 +0000 Manifest next update: Fri 12 Dec 2025 04:57:23 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: V76gk0f5qLynz3Ipg9YUwRHcdrdNPa1QdUzWCoGRw4g=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Dec 5 04:57:23 2025 GMT Not After : Dec 12 04:57:23 2025 GMT Subject: CN=69326634-51b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:fb:ad:7b:72:15:94:c1:6f:bb:d6:45:bc:8f: 49:f8:8a:85:5c:83:15:ca:fe:18:59:07:c6:35:22: 20:31:a2:84:18:85:2e:3d:79:d2:d6:fc:ef:fa:42: 0f:e7:04:63:b4:f1:3b:a4:9a:4d:4f:4e:97:7d:4b: c6:1c:bb:84:5b:85:c4:d5:d7:a5:d5:dc:3a:a2:00: bf:ba:00:93:e7:88:32:5e:8b:ee:39:17:ae:2a:a9: 9a:44:e2:1a:c6:a9:3f:6d:f6:45:ad:84:63:09:67: 9e:85:8b:dd:e3:28:1b:cb:ea:fa:46:ac:10:b4:2a: 42:1c:6c:bb:2e:6e:6e:21:b3:b8:63:9f:e9:64:f1: 6a:1c:e9:37:11:e0:e0:f9:26:de:77:13:6c:15:67: 2a:df:fe:0d:47:74:ea:6a:7f:0e:eb:ab:b7:b3:2f: 6a:87:a2:e8:03:a8:9c:78:c3:69:58:d0:b7:c3:35: a9:4e:2e:c7:8f:dd:94:8e:2f:09:da:30:2b:74:7e: ef:73:92:b7:8d:3b:aa:06:88:22:a3:1f:50:e6:ce: ed:a0:a7:e9:f7:a1:6d:31:4c:d2:33:8b:04:f6:27: d8:1e:22:9e:37:93:28:dc:f3:d2:fe:fd:81:26:e7: ac:9f:e2:87:fa:8e:fd:b7:9d:ff:8f:a8:cd:f6:c3: 3e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:7D:7E:3E:9D:FD:C0:E0:B1:D5:5E:54:50:B3:EC:6F:88:EE:3C:2A X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:93:63:2a:8d:1c:73:a1:a4:80:ce:98:b9:ea:90:1a:5a:04: 15:49:d8:4c:71:72:f0:f0:7e:e4:66:9c:1b:03:b4:de:d3:6c: 50:1c:55:0d:fe:1f:e2:be:e8:94:c1:65:a8:1d:c6:31:59:87: 5b:ed:37:26:46:50:56:2a:4d:22:ab:49:ef:db:a8:f6:04:e7: b7:b2:39:87:31:e5:9c:48:cc:ab:c9:b9:80:77:7f:75:47:26: a8:c9:61:af:7b:a5:64:22:cb:cd:92:c8:41:92:d9:28:a1:76: 5a:51:f4:e5:de:25:77:69:52:53:ef:78:1f:20:49:9e:e5:1d: 8a:32:54:37:13:6c:2d:c2:a8:b9:8d:80:bb:09:e6:ad:de:3b: 18:97:66:e4:6c:f0:d7:ec:2a:90:13:21:93:d0:54:79:f8:71: aa:ec:18:ac:34:13:3a:dd:0d:e5:08:38:71:2e:50:d2:f9:31: d9:dd:af:db:f0:d9:95:83:76:b5:56:38:55:ab:0b:39:f3:ca: e4:91:d7:1a:43:96:01:a8:7e:80:34:77:34:dc:7d:56:5d:64: 6e:41:56:80:dd:9e:f5:2b:ed:0e:e6:7d:0f:d0:93:d9:32:7d: 78:a7:a3:93:00:17:67:23:ae:bc:7b:82:69:29:95:c1:19:ec: 19:45:45:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTEyMDUwNDU3MjNaFw0yNTEyMTIwNDU3MjNaMBgxFjAUBgNV BAMTDTY5MzI2NjM0LTUxYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDw+617chWUwW+71kW8j0n4ioVcgxXK/hhZB8Y1IiAxooQYhS49edLW/O/6Qg/n BGO08Tukmk1PTpd9S8Ycu4RbhcTV16XV3DqiAL+6AJPniDJei+45F64qqZpE4hrG qT9t9kWthGMJZ56Fi93jKBvL6vpGrBC0KkIcbLsubm4hs7hjn+lk8Woc6TcR4OD5 Jt53E2wVZyrf/g1HdOpqfw7rq7ezL2qHougDqJx4w2lY0LfDNalOLseP3ZSOLwna MCt0fu9zkreNO6oGiCKjH1Dmzu2gp+n3oW0xTNIziwT2J9geIp43kyjc89L+/YEm 56yf4of6jv23nf+PqM32wz7PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsn1+Pp39 wOCx1V5UULPsb4juPCowHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAGTYyqNHHOhpIDOmLnqkBpaBBVJ2ExxcvDwfuRmnBsDtN7TbFAcVQ3+ H+K+6JTBZagdxjFZh1vtNyZGUFYqTSKrSe/bqPYE57eyOYcx5ZxIzKvJuYB3f3VH JqjJYa97pWQiy82SyEGS2SihdlpR9OXeJXdpUlPveB8gSZ7lHYoyVDcTbC3CqLmN gLsJ5q3eOxiXZuRs8NfsKpATIZPQVHn4carsGKw0EzrdDeUIOHEuUNL5Mdndr9vw 2ZWDdrVWOFWrCznzyuSR1xpDlgGofoA0dzTcfVZdZG5BVoDdnvUr7Q7mfQ/Qk9ky fXino5MAF2cjrrx7gmkplcEZ7BlFRcA= -----END CERTIFICATE-----Generated at Sun Dec 7 02:01:27 2025 by rpki-client