This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: uFZ9fqyvNpgv8YPuY6/z8xxSUPGnaO2k3uOfqkTBo5A= Subject key identifier: E8:80:0E:18:9D:F9:A9:6F:35:49:74:D6:1F:EC:D7:75:2E:04:FA:FB Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 117C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 19D4 Signing time: Sun 04 Jan 2026 16:54:30 +0000 Manifest this update: Sun 04 Jan 2026 16:54:29 +0000 Manifest next update: Sun 11 Jan 2026 16:54:29 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: JHuDPhZzz3MDWmaguPIl3qORz7Ok+3+bYT9c4eUgRNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 16:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4476 (0x117c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Jan 4 16:54:29 2026 GMT Not After : Jan 11 16:54:29 2026 GMT Subject: CN=695a9b46-3c12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:53:23:6c:0e:40:21:e6:2c:9a:39:cf:ca:d1: b5:d4:11:d5:bd:87:80:65:a8:10:b6:a3:5e:74:a4: c5:c9:17:4e:c2:dc:8a:33:1b:8f:25:df:a0:30:f4: 17:ab:a5:ba:9e:0e:a0:af:0e:1f:72:7f:a7:45:00: f7:be:f1:54:62:f6:53:c4:74:37:b8:8d:95:fa:39: be:cd:48:7f:5c:6a:dc:b8:89:f6:19:4b:be:7b:05: 40:d4:56:0d:61:8d:56:47:65:24:83:ad:7d:7e:1c: bf:71:74:71:f5:c6:f9:07:0f:56:2b:23:ed:d6:d4: c8:40:64:b9:b5:09:8e:7a:74:1c:15:4c:40:97:b4: 5e:28:44:1c:c8:f9:58:c5:2e:ec:5b:03:84:a9:bc: 20:9f:33:4a:1b:04:a9:bc:1c:44:01:88:6d:58:7c: ae:f4:bc:18:e9:95:0e:9a:13:01:10:b8:6e:e3:34: 24:d2:9e:9b:10:62:90:e9:47:e2:22:41:a6:68:46: 89:b2:f6:df:67:27:60:91:17:a6:21:53:b1:cf:41: 64:4a:4a:ed:41:36:d6:49:af:e0:76:ed:fa:05:e8: 67:f3:2c:c1:45:0c:7c:6c:bb:38:e6:a9:01:87:96: 37:21:9d:24:2b:48:ea:cc:48:9c:48:4d:41:fe:0d: 2a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:80:0E:18:9D:F9:A9:6F:35:49:74:D6:1F:EC:D7:75:2E:04:FA:FB X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:42:1d:87:90:84:78:df:1f:37:00:ca:12:91:61:ee:97:6f: 67:00:e0:7a:52:af:3f:22:a7:20:0a:18:e9:1d:f2:a1:02:d5: d9:a9:1b:c0:48:db:6f:74:ad:f1:48:a2:1f:3c:65:e4:df:78: 4f:bb:19:7d:f9:38:7d:87:6c:10:65:9b:1f:33:ac:10:ec:4b: a0:ee:05:8b:fe:3a:1a:f9:3c:ba:24:54:11:42:5c:56:27:9d: 79:c7:b5:8d:61:4e:fc:51:7e:03:65:7e:f4:ed:8f:3c:76:7e: a8:ec:5e:34:b3:24:97:47:bc:0f:5d:eb:16:5d:ea:c4:e0:66: 4e:ed:71:d3:e4:34:e7:60:5f:6d:56:1d:20:dc:92:e7:06:c8: cd:7c:b5:b3:86:2d:37:13:3a:c1:f1:91:44:25:b2:40:d3:ba: 50:31:53:0d:58:2b:75:53:b0:67:7b:d6:1b:b3:f7:74:85:d0: 82:8a:42:c6:47:ca:4c:71:30:9c:7a:aa:cd:8b:7c:a2:3e:37: 18:d6:27:ef:51:16:6c:89:70:1a:4b:32:a0:e9:4a:33:43:5f: 0e:d3:c1:33:f6:20:5c:e8:3c:a1:db:c1:bf:59:87:0d:ba:a0: 59:db:94:6e:cb:bb:ca:b4:b7:f1:6d:55:90:1d:02:dd:e4:73: 11:e3:b4:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjYwMTA0MTY1NDI5WhcNMjYwMTExMTY1NDI5WjAYMRYwFAYD VQQDDA02OTVhOWI0Ni0zYzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulMjbA5AIeYsmjnPytG11BHVvYeAZagQtqNedKTFyRdOwtyKMxuPJd+gMPQX q6W6ng6grw4fcn+nRQD3vvFUYvZTxHQ3uI2V+jm+zUh/XGrcuIn2GUu+ewVA1FYN YY1WR2Ukg619fhy/cXRx9cb5Bw9WKyPt1tTIQGS5tQmOenQcFUxAl7ReKEQcyPlY xS7sWwOEqbwgnzNKGwSpvBxEAYhtWHyu9LwY6ZUOmhMBELhu4zQk0p6bEGKQ6Ufi IkGmaEaJsvbfZydgkRemIVOxz0FkSkrtQTbWSa/gdu36Behn8yzBRQx8bLs45qkB h5Y3IZ0kK0jqzEicSE1B/g0q6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiADhid +alvNUl01h/s13UuBPr7MB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUQh2HkIR43x83AMoSkWHul29nAOB6Uq8/IqcgChjpHfKhAtXZqRvA SNtvdK3xSKIfPGXk33hPuxl9+Th9h2wQZZsfM6wQ7Eug7gWL/joa+Ty6JFQRQlxW J515x7WNYU78UX4DZX707Y88dn6o7F40sySXR7wPXesWXerE4GZO7XHT5DTnYF9t Vh0g3JLnBsjNfLWzhi03EzrB8ZFEJbJA07pQMVMNWCt1U7Bne9Ybs/d0hdCCikLG R8pMcTCceqrNi3yiPjcY1ifvURZsiXAaSzKg6UozQ18O08Ez9iBc6Dyh28G/WYcN uqBZ25Ruy7vKtLfxbVWQHQLd5HMR47Sw -----END CERTIFICATE-----Generated at Mon Jan 5 03:03:51 2026 by rpki-client