This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft File: Hte4fPVriwDuFD5GlnhQOBTl-lM.mft (raw, json) Hash identifier: FhU/yNlFBcHZ9ijnBXWVMLVv5cSh6yMjzNLyb688rVk= Subject key identifier: CA:A9:35:9F:C2:A9:75:80:E0:CC:0F:3B:83:FD:4D:AC:4B:DE:B4:9A Authority key identifier: 1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 Certificate issuer: /CN=A914C0F5/serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft Manifest number: 0640 Signing time: Sun 28 Dec 2025 21:57:24 +0000 Manifest this update: Sun 28 Dec 2025 21:57:23 +0000 Manifest next update: Sun 04 Jan 2026 21:57:23 +0000 Files and hashes: 1: Hte4fPVriwDuFD5GlnhQOBTl-lM.crl (hash: aQH95P0QwshFH7dxTnuzNgeKHzE31pvFYWnCXYf35zw=) 2: 694F9F9CBE2811EBBB48FF52C4F9AE02.roa (hash: iTUFdSRp6nWyaxTUI/RtXuC6V6TbUSDHt+jDf6Dd89Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C0F5, serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Validity Not Before: Dec 28 21:57:23 2025 GMT Not After : Jan 4 21:57:23 2026 GMT Subject: CN=6951a7c3-1689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ee:df:d9:4d:d3:41:3c:81:c6:4a:75:bb:0e: df:33:77:92:77:e3:6d:1a:21:b2:c6:4e:4c:df:49: ab:6a:b0:74:d5:f0:6f:c2:ae:2f:49:a5:86:af:e8: a5:fe:7c:07:21:43:98:a7:08:81:3f:58:aa:5e:f4: ba:83:79:a7:f0:b1:ef:10:24:f7:ab:32:86:19:21: c6:89:ee:d1:8f:f6:ea:17:69:51:cf:a2:93:9a:f1: 4c:c6:8a:6f:68:f2:b9:9e:39:c2:20:fc:35:62:64: 12:b5:89:86:6b:3b:44:a1:bd:27:c6:f1:a6:a0:b2: 7d:42:ad:8c:b9:17:51:0c:b3:7e:82:9a:8f:25:ad: c6:72:63:f6:eb:38:ae:fd:0e:6d:b1:18:ad:03:53: ba:f9:d0:d3:04:ce:2b:12:d1:4d:d6:5f:b2:fb:cc: cb:05:43:c1:93:77:43:1f:28:cd:ff:83:dd:13:57: 8e:d4:bf:6e:1a:6d:25:42:64:f3:66:28:2a:77:f2: e9:81:29:50:d0:48:3f:8e:62:c2:9a:c3:ee:59:ba: f0:b7:88:c7:57:ce:45:0f:0e:1b:5b:f1:c5:8a:54: 6b:0d:ba:8d:81:85:fb:57:55:16:25:e9:a9:2a:1b: 90:0a:f6:64:c3:93:c6:e5:a5:ef:7d:c8:8f:d9:2a: a1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A9:35:9F:C2:A9:75:80:E0:CC:0F:3B:83:FD:4D:AC:4B:DE:B4:9A X509v3 Authority Key Identifier: keyid:1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:38:2a:59:69:0f:d3:39:98:3c:5d:33:15:86:e3:ab:4f:0d: f3:c6:24:07:ae:40:8a:73:43:04:24:9f:36:f0:cd:05:12:58: 85:7d:6d:98:fa:e9:63:48:dd:bb:48:fb:9b:f1:11:a7:42:6b: 6a:3c:59:0b:61:4d:68:8d:f6:b3:05:22:a2:d8:a5:72:3c:1c: 60:66:c0:43:bb:d5:6e:7c:2f:6a:7c:32:8b:90:2d:d8:10:2f: 4e:94:15:04:89:2b:4b:df:7e:ce:0b:a4:f0:f7:30:1d:19:7d: 38:61:6e:f3:47:86:e3:57:67:8e:09:73:10:4e:d6:00:89:38: b5:9c:82:b4:0f:21:c1:95:2a:0d:bf:00:2c:66:05:d3:c1:1a: 65:32:82:f5:9d:0f:7b:60:b6:36:09:52:00:0e:2f:ca:b2:51: 75:90:48:26:bb:85:c9:7a:f6:48:5f:08:a1:a3:e1:ed:95:46: 62:e5:d7:12:60:08:2e:b4:74:a2:0a:fa:6a:d5:c8:a7:ee:d2: ac:b4:c4:99:7a:07:fa:10:14:14:61:65:47:9c:79:e2:49:82: 5a:ad:a7:2c:19:80:b4:5c:80:c8:bf:88:ef:78:66:cb:18:f1: 54:6e:d4:8b:66:a9:a1:0c:4b:b0:52:39:72:f1:10:ab:db:83: 7f:f4:1f:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwRjUxMTAvBgNVBAUTKDFFRDdCODdDRjU2QjhCMDBFRTE0M0U0Njk2Nzg1MDM4 MTRFNUZBNTMwHhcNMjUxMjI4MjE1NzIzWhcNMjYwMTA0MjE1NzIzWjAYMRYwFAYD VQQDDA02OTUxYTdjMy0xNjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+7f2U3TQTyBxkp1uw7fM3eSd+NtGiGyxk5M30mrarB01fBvwq4vSaWGr+il /nwHIUOYpwiBP1iqXvS6g3mn8LHvECT3qzKGGSHGie7Rj/bqF2lRz6KTmvFMxopv aPK5njnCIPw1YmQStYmGaztEob0nxvGmoLJ9Qq2MuRdRDLN+gpqPJa3GcmP26ziu /Q5tsRitA1O6+dDTBM4rEtFN1l+y+8zLBUPBk3dDHyjN/4PdE1eO1L9uGm0lQmTz Zigqd/LpgSlQ0Eg/jmLCmsPuWbrwt4jHV85FDw4bW/HFilRrDbqNgYX7V1UWJemp KhuQCvZkw5PG5aXvfciP2SqhUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqpNZ/C qXWA4MwPO4P9TaxL3rSaMB8GA1UdIwQYMBaAFB7XuHz1a4sA7hQ+RpZ4UDgU5fpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzBGNS9ERjAxM0EzMkJF MjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3RHVGRDVHbG5oUU9CVGwt bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZTRmUFZyaXdEdUZENUdsbmhRT0JUbC1sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzBGNS9ERjAxM0EzMkJFMjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3 RHVGRDVHbG5oUU9CVGwtbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8OCpZaQ/TOZg8XTMVhuOrTw3zxiQHrkCKc0MEJJ828M0FEliFfW2Y +uljSN27SPub8RGnQmtqPFkLYU1ojfazBSKi2KVyPBxgZsBDu9VufC9qfDKLkC3Y EC9OlBUEiStL337OC6Tw9zAdGX04YW7zR4bjV2eOCXMQTtYAiTi1nIK0DyHBlSoN vwAsZgXTwRplMoL1nQ97YLY2CVIADi/KslF1kEgmu4XJevZIXwiho+HtlUZi5dcS YAgutHSiCvpq1cin7tKstMSZegf6EBQUYWVHnHniSYJaracsGYC0XIDIv4jveGbL GPFUbtSLZqmhDEuwUjly8RCr24N/9B8r -----END CERTIFICATE-----Generated at Mon Dec 29 08:28:19 2025 by rpki-client