This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: 1wV5WIaRwhNqk6FA9HXWtctz4MMRwghP33AjEDPrzN8= Subject key identifier: 32:40:8D:36:20:DD:58:5A:27:D7:E0:38:41:19:9C:A0:05:CA:BE:75 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0B58 Signing time: Thu 18 Dec 2025 18:57:51 +0000 Manifest this update: Thu 18 Dec 2025 18:57:51 +0000 Manifest next update: Thu 25 Dec 2025 18:57:51 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: vrjnN6owl9iSNrbGhVI7ZJf096t2YbmxY6TmGQ7HJCY=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: kj+LbGbtBvSSpF59xQ/oF6zo99e75Fj59GXX8sxOzfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:57:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2952 (0xb88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Dec 18 18:57:51 2025 GMT Not After : Dec 25 18:57:51 2025 GMT Subject: CN=69444eaf-4e2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:48:24:9f:a8:29:5b:27:98:af:c1:21:e4:9a: 7c:a6:5f:a0:b3:d7:48:19:8f:c1:b4:eb:57:4d:5c: 58:bc:4a:e9:ce:56:0a:4c:71:d7:0a:93:98:45:77: 4a:7c:b1:c6:a2:67:05:13:af:7d:09:a2:79:6e:f9: 2e:d8:2a:4d:6d:16:d9:2e:96:61:de:96:20:d2:80: 81:31:20:df:d0:db:3e:85:9b:07:b2:15:0b:ca:10: 25:77:2d:cb:90:38:2b:2e:25:49:df:96:73:43:37: 10:80:e4:d0:e8:09:e0:17:48:2f:43:f7:a0:72:43: a0:c1:3b:1a:68:45:be:99:b7:80:aa:14:5e:f2:4b: ae:ed:77:c9:e9:a3:83:16:ed:dd:be:b1:a3:ea:37: 8e:c1:7c:df:3a:b3:f8:0b:91:0c:5b:53:7a:c4:f8: e6:a1:95:7f:66:ae:20:1a:92:8a:28:a6:73:27:fc: 87:90:07:f2:f6:29:38:7e:9f:f3:95:c7:8b:09:08: 13:6d:80:6d:fe:f9:f6:df:1b:d3:e8:c3:14:6a:05: b5:0c:8d:6a:ac:5f:1a:3e:87:9e:40:14:69:ca:4c: 7a:1a:c6:2a:03:72:d5:5b:fe:6e:e3:f0:18:53:c1: 7b:0d:4c:d3:3e:4a:ae:f2:e3:ae:70:63:04:8a:ff: 0b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:40:8D:36:20:DD:58:5A:27:D7:E0:38:41:19:9C:A0:05:CA:BE:75 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:b1:3b:40:78:d6:8c:19:3d:9f:99:23:cf:03:ac:11:c2:14: 4f:82:5d:99:5d:11:c1:fc:a6:4a:78:27:6f:88:66:0f:f6:43: 2d:e9:a5:d4:63:d3:3d:1b:eb:44:81:04:00:11:69:95:e7:d8: e7:7d:2d:b2:78:90:4a:25:c2:38:7c:e3:73:86:80:f7:2a:58: 56:f5:84:3b:d7:bb:36:56:cd:ce:16:59:83:94:4f:b6:ae:72: 4d:dd:f4:a8:39:d6:36:f4:4d:fc:54:62:04:a6:7b:ae:3d:d8: 4b:f8:bc:f4:f8:3f:20:d0:fd:06:45:f7:97:95:88:84:f3:24: 00:d8:32:2c:b9:95:81:d7:03:43:52:57:69:d0:22:f9:8b:b0: 42:41:aa:19:52:e5:d2:2f:5e:2c:61:e5:88:d2:e6:7c:07:02: ee:15:11:c7:86:7d:46:5b:ac:4d:78:a7:49:87:0c:dc:6f:90: e8:e5:63:cf:1a:88:17:90:a9:c7:24:2f:36:60:28:98:ec:41: f7:3e:db:4f:97:26:6f:cc:06:86:58:08:bb:de:02:2a:f8:d4: 23:b6:85:3a:8d:a6:86:78:46:38:aa:e9:71:17:bc:e7:b1:7d: 2c:76:cb:dd:5a:44:92:5d:3e:e9:38:71:d9:0f:33:4a:ae:c5: 9e:38:c0:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjUxMjE4MTg1NzUxWhcNMjUxMjI1MTg1NzUxWjAYMRYwFAYD VQQDDA02OTQ0NGVhZi00ZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Egkn6gpWyeYr8Eh5Jp8pl+gs9dIGY/BtOtXTVxYvErpzlYKTHHXCpOYRXdK fLHGomcFE699CaJ5bvku2CpNbRbZLpZh3pYg0oCBMSDf0Ns+hZsHshULyhAldy3L kDgrLiVJ35ZzQzcQgOTQ6AngF0gvQ/egckOgwTsaaEW+mbeAqhRe8kuu7XfJ6aOD Fu3dvrGj6jeOwXzfOrP4C5EMW1N6xPjmoZV/Zq4gGpKKKKZzJ/yHkAfy9ik4fp/z lceLCQgTbYBt/vn23xvT6MMUagW1DI1qrF8aPoeeQBRpykx6GsYqA3LVW/5u4/AY U8F7DUzTPkqu8uOucGMEiv8LAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJAjTYg 3VhaJ9fgOEEZnKAFyr51MB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6sTtAeNaMGT2fmSPPA6wRwhRPgl2ZXRHB/KZKeCdviGYP9kMt6aXU Y9M9G+tEgQQAEWmV59jnfS2yeJBKJcI4fONzhoD3KlhW9YQ717s2Vs3OFlmDlE+2 rnJN3fSoOdY29E38VGIEpnuuPdhL+Lz0+D8g0P0GRfeXlYiE8yQA2DIsuZWB1wND Uldp0CL5i7BCQaoZUuXSL14sYeWI0uZ8BwLuFRHHhn1GW6xNeKdJhwzcb5Do5WPP GogXkKnHJC82YCiY7EH3PttPlyZvzAaGWAi73gIq+NQjtoU6jaaGeEY4qulxF7zn sX0sdsvdWkSSXT7pOHHZDzNKrsWeOMD0 -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:30 2025 by rpki-client