This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: S34S/8V28zUM17zlcNrcyJvnXA9rauXOTJd161Fmbr4= Subject key identifier: 77:35:46:0A:8D:43:34:63:7D:93:0F:BF:B1:9E:FB:FA:64:0B:79:97 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 0898 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 0891 Signing time: Thu 18 Dec 2025 20:04:09 +0000 Manifest this update: Thu 18 Dec 2025 20:04:08 +0000 Manifest next update: Thu 25 Dec 2025 20:04:08 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: XmeBaNWaBEulueo6KpqKlMWrxE5lAxgVY4LMsKAZHbA=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 8ta9HVc8kWnLyV4rQM+6TAEQnoWOLIl1eGvxCBdphDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2200 (0x898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Dec 18 20:04:08 2025 GMT Not After : Dec 25 20:04:08 2025 GMT Subject: CN=69445e39-0a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:93:58:79:2c:c6:92:bd:08:7d:b5:be:fe:4d: 33:f5:9c:d9:9d:2d:f0:49:1b:c8:6a:49:6f:49:a9: 81:db:e3:bf:ad:4a:6e:0e:28:66:54:11:73:81:61: 79:65:d6:16:79:b2:d5:54:f8:51:34:1f:41:63:30: 03:ba:21:0a:f9:ae:ff:f0:60:42:2b:90:f1:03:d2: 3b:ef:14:8d:a7:9e:c8:12:90:81:a4:8e:e9:12:d4: de:d6:1f:80:95:9f:98:2b:5d:b2:96:aa:10:c7:1b: 67:22:e3:ea:cc:ba:62:06:e0:dd:68:c8:8c:e0:bc: d4:c0:8c:c9:91:13:01:01:96:26:b0:86:c8:0c:9e: 0a:ca:db:ca:4e:ac:cc:6c:c8:de:ab:c2:2f:71:17: ce:8a:e3:61:ad:b1:40:ca:85:44:6f:ba:a4:e8:06: 83:b8:5c:11:cc:61:77:05:9e:88:2a:53:13:5b:54: 71:aa:90:94:90:99:16:d8:2c:85:9f:0b:91:b6:fe: 99:ef:4c:af:16:08:61:72:21:ef:3f:d5:b7:87:6a: c2:3b:12:39:e4:a2:92:af:fc:6d:57:69:48:db:d3: 8c:eb:d5:e4:9d:78:b5:9b:4a:1a:02:1c:b9:6f:a5: 7c:b7:52:6b:22:6f:3e:94:1f:a1:4e:80:14:0b:f0: 70:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:35:46:0A:8D:43:34:63:7D:93:0F:BF:B1:9E:FB:FA:64:0B:79:97 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:27:e7:2d:e9:1f:fc:94:8a:15:02:0a:28:a1:bf:1d:c5:87: 3c:e3:66:90:b9:19:7c:b6:8a:8c:4a:82:aa:13:68:04:ea:ea: d3:c3:ea:54:88:4b:51:fe:c0:1f:d7:60:93:64:09:77:27:10: a3:ec:61:40:a1:97:ec:ff:59:da:8e:eb:2a:70:59:44:6d:0e: a2:11:cd:2d:12:ee:31:90:2a:b9:e9:11:a1:8d:b2:8a:05:71: be:dd:1e:88:04:a9:b3:1d:dc:0e:d9:e6:4a:ff:68:39:ec:77: 28:c6:3b:d9:19:30:4a:24:bf:3b:a3:99:c9:14:63:99:84:d0: 49:d6:86:24:70:44:a6:49:38:6a:55:4d:74:00:0f:86:47:38: 22:23:f8:b3:30:7b:18:57:b6:be:39:64:27:c5:79:a8:ea:10: bf:35:18:f7:e6:1a:f7:1b:e4:cd:79:67:5a:56:ea:36:b5:b3: ad:e5:4b:52:2a:e3:5c:69:81:60:ff:ef:df:3d:9d:78:d3:b9: cd:19:85:9d:ca:17:6d:c8:93:fe:16:35:d2:08:ea:ce:6b:3f: f3:ec:e1:86:bd:78:24:4f:2b:26:fe:9b:c2:8b:98:4a:31:62: dd:c1:56:99:fa:e3:27:63:e1:ad:7f:fe:cb:b7:1f:b2:38:f7: 77:92:2e:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUxMjE4MjAwNDA4WhcNMjUxMjI1MjAwNDA4WjAYMRYwFAYD VQQDDA02OTQ0NWUzOS0wYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZNYeSzGkr0IfbW+/k0z9ZzZnS3wSRvIaklvSamB2+O/rUpuDihmVBFzgWF5 ZdYWebLVVPhRNB9BYzADuiEK+a7/8GBCK5DxA9I77xSNp57IEpCBpI7pEtTe1h+A lZ+YK12ylqoQxxtnIuPqzLpiBuDdaMiM4LzUwIzJkRMBAZYmsIbIDJ4KytvKTqzM bMjeq8IvcRfOiuNhrbFAyoVEb7qk6AaDuFwRzGF3BZ6IKlMTW1RxqpCUkJkW2CyF nwuRtv6Z70yvFghhciHvP9W3h2rCOxI55KKSr/xtV2lI29OM69XknXi1m0oaAhy5 b6V8t1JrIm8+lB+hToAUC/BwIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHc1RgqN QzRjfZMPv7Ge+/pkC3mXMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxJ+ct6R/8lIoVAgooob8dxYc842aQuRl8toqMSoKqE2gE6urTw+pU iEtR/sAf12CTZAl3JxCj7GFAoZfs/1najusqcFlEbQ6iEc0tEu4xkCq56RGhjbKK BXG+3R6IBKmzHdwO2eZK/2g57HcoxjvZGTBKJL87o5nJFGOZhNBJ1oYkcESmSThq VU10AA+GRzgiI/izMHsYV7a+OWQnxXmo6hC/NRj35hr3G+TNeWdaVuo2tbOt5UtS KuNcaYFg/+/fPZ1407nNGYWdyhdtyJP+FjXSCOrOaz/z7OGGvXgkTysm/pvCi5hK MWLdwVaZ+uMnY+Gtf/7Ltx+yOPd3ki6D -----END CERTIFICATE-----Generated at Fri Dec 19 18:56:08 2025 by rpki-client