This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/905BFEF8C92911F0809CF281C4F9AE02/haTP570qMmoqBWITY5e3zK5eW3w.mft File: haTP570qMmoqBWITY5e3zK5eW3w.mft (raw, json) Hash identifier: yaqTyXbi3zrrc8zzgjRxPFahFONQzdghcR514w4pfH0= Subject key identifier: CB:6C:47:1E:6F:11:7A:C3:A6:36:C5:E7:BC:AF:A4:7F:8C:AB:C5:20 Authority key identifier: 85:A4:CF:E7:BD:2A:32:6A:2A:05:62:13:63:97:B7:CC:AE:5E:5B:7C Certificate issuer: /CN=A912B666/serialNumber=85A4CFE7BD2A326A2A0562136397B7CCAE5E5B7C Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/haTP570qMmoqBWITY5e3zK5eW3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B666/905BFEF8C92911F0809CF281C4F9AE02/haTP570qMmoqBWITY5e3zK5eW3w.mft Manifest number: 15 Signing time: Fri 19 Dec 2025 06:54:13 +0000 Manifest this update: Fri 19 Dec 2025 06:54:12 +0000 Manifest next update: Fri 26 Dec 2025 06:54:12 +0000 Files and hashes: 1: haTP570qMmoqBWITY5e3zK5eW3w.crl (hash: GXoNdc9XySUOoAp4peGmVbA88fAVsYu2dAx3dzXWH6s=) 2: AED2D108D1FE11F0A9446F52C4F9AE02.roa (hash: GRhyBTXpwNjfO8wi83PzGPSnR0pSaq7pbu0oY0AhnqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B666/905BFEF8C92911F0809CF281C4F9AE02/haTP570qMmoqBWITY5e3zK5eW3w.crl rsync://rpki.apnic.net/member_repository/A912B666/905BFEF8C92911F0809CF281C4F9AE02/haTP570qMmoqBWITY5e3zK5eW3w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/haTP570qMmoqBWITY5e3zK5eW3w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B666, serialNumber=85A4CFE7BD2A326A2A0562136397B7CCAE5E5B7C Validity Not Before: Dec 19 06:54:12 2025 GMT Not After : Dec 26 06:54:12 2025 GMT Subject: CN=6944f695-7d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:27:36:7b:00:cf:8f:d0:83:e0:26:52:0b:b9: 8a:08:cc:4f:8f:4c:26:43:a7:69:9b:73:f6:55:fb: be:4c:d4:d6:07:18:8d:9c:4d:cb:99:9b:81:73:32: 8b:ac:89:74:96:41:4d:fb:76:35:45:f6:a4:b2:06: 59:3b:d0:68:12:df:44:fd:37:6f:2a:b5:d1:c6:0a: 38:a5:f1:09:53:20:d0:49:14:3c:a4:16:7d:bb:c5: b0:72:b2:84:ba:fd:98:6c:b6:78:20:46:8d:fb:a0: 36:d4:a9:70:91:5f:f5:fd:f5:c6:78:7b:d5:45:e0: 5a:25:b7:75:69:d8:af:ae:80:aa:1c:70:d8:6e:11: 9e:e5:0f:c8:28:ae:06:e5:f6:1c:24:0b:9e:db:90: 35:d7:8a:ce:9b:ee:37:5f:34:55:1d:d7:db:98:9a: 48:e3:cd:0a:7e:24:7d:bf:c1:50:36:56:84:f4:13: 17:0d:ca:f1:5e:bf:9c:82:07:66:77:ae:f8:ff:ff: c5:43:6f:d5:9e:56:d2:b3:30:a7:19:46:7a:b9:c2: 83:e5:b6:8c:0c:18:ee:86:6d:8f:08:35:71:77:82: 04:c3:02:f0:4b:a6:79:2c:25:2b:29:ad:a9:8d:51: cf:7c:3a:aa:25:7a:c6:9f:06:a5:47:2f:41:4a:67: 23:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6C:47:1E:6F:11:7A:C3:A6:36:C5:E7:BC:AF:A4:7F:8C:AB:C5:20 X509v3 Authority Key Identifier: keyid:85:A4:CF:E7:BD:2A:32:6A:2A:05:62:13:63:97:B7:CC:AE:5E:5B:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B666/905BFEF8C92911F0809CF281C4F9AE02/haTP570qMmoqBWITY5e3zK5eW3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/haTP570qMmoqBWITY5e3zK5eW3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/905BFEF8C92911F0809CF281C4F9AE02/haTP570qMmoqBWITY5e3zK5eW3w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:9f:50:a1:ca:81:4e:93:f0:19:cb:25:31:aa:72:01:aa:94: 43:e2:c7:65:03:3d:44:0a:b3:bb:7a:c1:75:4a:3e:30:df:7a: 03:c5:39:8d:06:7b:5d:81:20:48:6a:e5:f6:5b:7d:9d:1a:f3: b2:81:02:84:ef:e4:37:f5:54:ee:94:a5:95:1b:b8:fd:d0:73: 1e:f7:b9:e8:a0:25:d0:43:ef:4b:7d:84:ff:56:da:f8:fe:bc: 7c:1e:dc:83:f3:eb:b1:c1:6e:0d:6e:3a:00:cc:5f:58:cb:f0: e7:17:9f:b7:c7:f5:76:5f:de:d6:9e:c7:2e:e2:53:91:b4:e0: 6e:71:5a:4e:45:7e:7c:25:93:1f:12:2f:8c:40:be:9f:8f:b1: 97:4f:ec:fe:b6:67:c3:77:6d:a8:c9:b7:3f:38:81:f0:a6:d8: d0:6f:8e:89:92:c1:4c:0b:8c:65:8e:b8:a9:30:53:f3:d6:ed: d9:17:6f:84:41:f4:7b:a5:cf:03:21:6b:6d:10:fd:3e:01:30: bd:ab:0b:98:2d:23:9f:2f:be:ac:74:ba:a7:bb:60:55:c3:e8: a4:da:7b:10:d2:cd:25:05:e9:b1:53:97:3c:ef:3a:b4:04:d4: d0:a8:4f:d6:c5:6c:8c:4f:06:ca:26:ed:90:9f:89:6b:f6:75: 83:20:ca:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjY2NjExMC8GA1UEBRMoODVBNENGRTdCRDJBMzI2QTJBMDU2MjEzNjM5N0I3Q0NB RTVFNUI3QzAeFw0yNTEyMTkwNjU0MTJaFw0yNTEyMjYwNjU0MTJaMBgxFjAUBgNV BAMMDTY5NDRmNjk1LTdkNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdJzZ7AM+P0IPgJlILuYoIzE+PTCZDp2mbc/ZV+75M1NYHGI2cTcuZm4FzMous iXSWQU37djVF9qSyBlk70GgS30T9N28qtdHGCjil8QlTINBJFDykFn27xbBysoS6 /ZhstnggRo37oDbUqXCRX/X99cZ4e9VF4Folt3Vp2K+ugKoccNhuEZ7lD8gorgbl 9hwkC57bkDXXis6b7jdfNFUd19uYmkjjzQp+JH2/wVA2VoT0ExcNyvFev5yCB2Z3 rvj//8VDb9WeVtKzMKcZRnq5woPltowMGO6GbY8INXF3ggTDAvBLpnksJSspramN Uc98OqolesafBqVHL0FKZyM/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy2xHHm8R esOmNsXnvK+kf4yrxSAwHwYDVR0jBBgwFoAUhaTP570qMmoqBWITY5e3zK5eW3ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNjY2LzkwNUJGRUY4Qzky OTExRjA4MDlDRjI4MUM0RjlBRTAyL2hhVFA1NzBxTW1vcUJXSVRZNWUzeks1ZVcz dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaGFUUDU3MHFNbW9xQldJVFk1ZTN6SzVlVzN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NjY2LzkwNUJGRUY4QzkyOTExRjA4MDlDRjI4MUM0RjlBRTAyL2hhVFA1NzBxTW1v cUJXSVRZNWUzeks1ZVczdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK2fUKHKgU6T8BnLJTGqcgGqlEPix2UDPUQKs7t6wXVKPjDfegPFOY0G e12BIEhq5fZbfZ0a87KBAoTv5Df1VO6UpZUbuP3Qcx73ueigJdBD70t9hP9W2vj+ vHwe3IPz67HBbg1uOgDMX1jL8OcXn7fH9XZf3taexy7iU5G04G5xWk5Ffnwlkx8S L4xAvp+PsZdP7P62Z8N3bajJtz84gfCm2NBvjomSwUwLjGWOuKkwU/PW7dkXb4RB 9HulzwMha20Q/T4BML2rC5gtI58vvqx0uqe7YFXD6KTaexDSzSUF6bFTlzzvOrQE 1NCoT9bFbIxPBsom7ZCfiWv2dYMgygU= -----END CERTIFICATE-----Generated at Sat Dec 20 00:57:06 2025 by rpki-client