This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: 1KLSSkszoXm9yOSrHfYRFOjRli8dXgt9bDl2oZtEEAM= Subject key identifier: F2:4E:D2:5A:42:32:19:FE:E0:56:02:DA:3B:F2:25:AC:44:C2:50:7C Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 19C2 Signing time: Thu 18 Dec 2025 17:04:16 +0000 Manifest this update: Thu 18 Dec 2025 17:04:16 +0000 Manifest next update: Thu 25 Dec 2025 17:04:16 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: 8rPjf928AfAWWq/xhAH+1NRq8IRH0rz5HE72C6r7WGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4467 (0x1173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Dec 18 17:04:16 2025 GMT Not After : Dec 25 17:04:16 2025 GMT Subject: CN=69443410-d9aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:12:a4:90:c2:5d:0e:45:25:67:57:e0:18:95: ae:e6:cc:5a:6d:cc:0c:ed:a2:5b:7d:4a:df:e3:60: e8:aa:6c:8e:f2:55:df:80:64:09:66:3a:1d:b2:45: 4a:d0:de:3e:15:ab:99:de:a5:2a:66:ff:7d:20:29: a6:91:c3:6b:1b:f0:16:8a:d1:81:3f:73:9a:2f:14: 99:26:62:c3:c1:a5:20:28:68:66:73:17:78:35:14: 2d:03:3b:37:77:fb:e2:cd:85:89:3e:46:5a:be:ca: c0:09:e8:79:34:5b:8d:1a:13:69:63:4f:9f:03:0b: 97:ee:67:b2:07:83:70:0f:96:f2:63:02:81:59:31: 2d:66:32:66:d6:71:86:a7:be:bb:1a:01:f9:61:6b: 2f:03:7d:ee:b1:94:17:f4:76:2e:5e:13:e1:37:2c: d6:aa:8c:6d:5e:6c:91:36:52:63:5f:0a:0a:82:af: e0:4e:0d:c5:5e:e3:b1:bd:1a:61:87:2f:c1:8f:28: c1:d9:c8:ae:d3:75:47:e2:0a:70:61:1b:d5:28:f0: 16:a9:bb:ce:ec:26:54:7a:8d:f0:dd:0c:7a:a8:63: d8:c2:af:e2:50:4a:8d:84:90:74:b0:52:33:46:ce: 1d:09:6b:44:46:d6:b3:30:40:a8:ce:a7:dc:d3:ca: 14:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4E:D2:5A:42:32:19:FE:E0:56:02:DA:3B:F2:25:AC:44:C2:50:7C X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:20:04:cc:37:eb:5a:3e:10:cf:b4:e3:12:53:f8:90:05:41: 1d:d5:5e:f6:68:32:e2:89:29:39:81:9d:bf:a2:6a:4d:07:1d: 50:9b:0a:1d:5c:72:2a:83:f7:b7:f8:1a:01:a9:b0:df:0b:0b: f2:6e:2a:7e:6d:53:e2:c5:09:a3:0c:30:43:f1:ca:6d:bd:4c: 9b:07:29:f8:65:a6:f1:77:7a:83:45:92:f2:24:d3:f1:a2:53: 95:78:70:8f:56:ff:e6:ff:24:2b:35:01:2a:f8:8c:27:2e:4b: 31:d2:47:14:d5:5a:ae:37:9f:52:06:61:22:12:69:b4:29:b7: fd:00:19:05:19:e9:f4:82:e0:83:1f:df:8b:90:7f:1a:fa:e3: d4:fa:17:95:d9:0b:67:55:73:c7:fe:68:0e:30:01:3f:d4:db: 84:40:bf:e0:da:b0:37:9a:10:a8:2c:c9:d1:21:c5:a3:40:f9: 74:4f:4a:b4:b8:d3:e6:47:26:8a:09:26:f8:a3:27:1d:6b:95: 7e:57:94:19:19:aa:ab:ed:ea:7a:60:93:a9:cf:d9:13:f9:7a: 0f:02:0c:9f:eb:29:0f:14:a0:90:37:dd:63:4d:74:f2:3a:e0: 5f:d0:30:bf:59:33:75:ef:cd:cb:0b:bb:09:21:d8:68:44:9a: 9c:2c:3f:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUxMjE4MTcwNDE2WhcNMjUxMjI1MTcwNDE2WjAYMRYwFAYD VQQDDA02OTQ0MzQxMC1kOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhKkkMJdDkUlZ1fgGJWu5sxabcwM7aJbfUrf42DoqmyO8lXfgGQJZjodskVK 0N4+FauZ3qUqZv99ICmmkcNrG/AWitGBP3OaLxSZJmLDwaUgKGhmcxd4NRQtAzs3 d/vizYWJPkZavsrACeh5NFuNGhNpY0+fAwuX7meyB4NwD5byYwKBWTEtZjJm1nGG p767GgH5YWsvA33usZQX9HYuXhPhNyzWqoxtXmyRNlJjXwoKgq/gTg3FXuOxvRph hy/BjyjB2ciu03VH4gpwYRvVKPAWqbvO7CZUeo3w3Qx6qGPYwq/iUEqNhJB0sFIz Rs4dCWtERtazMECozqfc08oUtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJO0lpC Mhn+4FYC2jvyJaxEwlB8MB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOIATMN+taPhDPtOMSU/iQBUEd1V72aDLiiSk5gZ2/ompNBx1Qmwod XHIqg/e3+BoBqbDfCwvybip+bVPixQmjDDBD8cptvUybByn4Zabxd3qDRZLyJNPx olOVeHCPVv/m/yQrNQEq+IwnLksx0kcU1VquN59SBmEiEmm0Kbf9ABkFGen0guCD H9+LkH8a+uPU+heV2QtnVXPH/mgOMAE/1NuEQL/g2rA3mhCoLMnRIcWjQPl0T0q0 uNPmRyaKCSb4oycda5V+V5QZGaqr7ep6YJOpz9kT+XoPAgyf6ykPFKCQN91jTXTy OuBf0DC/WTN1783LC7sJIdhoRJqcLD+t -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:28 2025 by rpki-client