This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: ax9WJb1dZKJUvzLv2LMbCXRg3oOud3EywI8dkvFFzQU= Subject key identifier: 24:82:27:DB:81:A5:A8:6C:28:47:FA:69:8C:F6:44:D0:79:C3:50:0F Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: E7 Signing time: Sun 21 Dec 2025 04:35:11 +0000 Manifest this update: Sun 21 Dec 2025 04:35:11 +0000 Manifest next update: Sun 28 Dec 2025 04:35:11 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: otPHuzJkC9CHhYu/wm6DEp0p+9UEzlnFMwIMe3cwd/w=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: 9WzRWZ39qEL+BS0hCUtMSeDhBI46JI/Ih27Az+Uy8VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Dec 21 04:35:11 2025 GMT Not After : Dec 28 04:35:11 2025 GMT Subject: CN=694778ff-011d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:29:f7:b8:c6:cf:8f:02:eb:29:9b:e2:85:88: ff:bc:22:fc:ec:45:eb:6a:ae:2b:bd:15:64:8f:9b: da:63:f0:ad:77:89:5a:90:de:da:b8:93:71:f5:7f: 1a:03:e5:2f:23:65:83:e0:29:7b:7e:5f:40:88:b6: e9:36:50:3e:7f:a7:fb:d8:31:ee:02:4a:b2:50:55: 17:6d:c8:f1:88:e8:d7:db:85:f3:d1:28:db:36:f1: 35:63:80:0d:b9:43:7d:5f:a7:1f:5e:01:ab:14:01: c9:0f:6b:da:52:52:51:21:27:6f:ac:d9:dc:cd:4b: 4d:69:01:74:e0:78:25:a3:00:32:e1:69:d4:f6:cb: 77:c4:ea:29:cd:de:62:d8:51:bc:47:27:1d:c9:c3: e0:bb:44:dd:d5:34:54:40:28:9a:c2:db:e4:f4:aa: 66:b1:76:20:f5:fd:3b:14:b2:2f:04:4c:7b:f0:3a: e9:82:d5:cd:26:f9:a9:69:47:43:87:60:82:11:50: 3e:41:c8:77:c5:d8:0f:c5:f0:49:92:03:c3:73:9e: 56:03:9c:4f:c5:0b:27:0c:9b:a1:f6:ad:35:ed:cd: f2:f2:d0:a3:ba:00:5a:8a:a9:96:ac:a9:d7:e2:85: 92:d8:a9:89:74:5a:e8:45:3e:36:fe:67:16:8f:c9: a9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:82:27:DB:81:A5:A8:6C:28:47:FA:69:8C:F6:44:D0:79:C3:50:0F X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:94:d1:4b:bc:21:3e:c0:b9:55:bf:9c:a2:82:bc:2c:43:9a: 2d:93:51:e5:23:18:d2:e0:c3:fa:44:1d:87:93:cd:cb:0c:91: 80:81:52:ef:e7:d2:e2:00:ff:3d:f3:de:64:f3:f0:0b:e1:64: 9e:63:18:43:81:51:8b:2c:e4:60:58:71:69:de:22:9e:5f:50: 67:70:37:60:4c:d5:b9:4b:d6:e3:24:93:3a:1b:02:e9:91:0a: bd:6b:f1:49:75:bf:e7:30:59:17:16:bf:18:32:b6:f3:cf:2b: c9:5d:3f:89:b6:b2:97:45:ad:2b:e0:84:6f:0b:c2:83:66:f7: 28:c9:b0:ae:d1:58:5b:f0:e8:ef:f0:3c:41:f5:f2:5d:0b:32: 34:63:23:d8:5e:0f:f2:8a:3c:bf:b4:99:8a:3d:03:65:5c:3f: b2:81:a4:93:70:a4:d1:31:41:7d:96:3e:17:a7:bb:65:63:00: 83:bf:c0:7a:dc:02:db:19:5e:40:a8:6a:a5:80:44:9a:67:c7: 5e:71:85:92:27:a7:6d:a0:79:2c:79:d3:61:d3:53:e9:98:29: 59:a4:1b:6e:2d:93:13:89:2f:ad:dc:92:6a:ff:3e:13:7f:1d: 75:24:a1:23:96:d4:d5:da:8c:c4:69:17:0f:b6:90:fc:52:2f: e4:33:31:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUxMjIxMDQzNTExWhcNMjUxMjI4MDQzNTExWjAYMRYwFAYD VQQDDA02OTQ3NzhmZi0wMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArin3uMbPjwLrKZvihYj/vCL87EXraq4rvRVkj5vaY/Ctd4lakN7auJNx9X8a A+UvI2WD4Cl7fl9AiLbpNlA+f6f72DHuAkqyUFUXbcjxiOjX24Xz0SjbNvE1Y4AN uUN9X6cfXgGrFAHJD2vaUlJRISdvrNnczUtNaQF04HglowAy4WnU9st3xOopzd5i 2FG8RycdycPgu0Td1TRUQCiawtvk9KpmsXYg9f07FLIvBEx78DrpgtXNJvmpaUdD h2CCEVA+Qch3xdgPxfBJkgPDc55WA5xPxQsnDJuh9q017c3y8tCjugBaiqmWrKnX 4oWS2KmJdFroRT42/mcWj8mp7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSCJ9uB pahsKEf6aYz2RNB5w1APMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBlNFLvCE+wLlVv5yigrwsQ5otk1HlIxjS4MP6RB2Hk83LDJGAgVLv 59LiAP89895k8/AL4WSeYxhDgVGLLORgWHFp3iKeX1BncDdgTNW5S9bjJJM6GwLp kQq9a/FJdb/nMFkXFr8YMrbzzyvJXT+JtrKXRa0r4IRvC8KDZvcoybCu0Vhb8Ojv 8DxB9fJdCzI0YyPYXg/yijy/tJmKPQNlXD+ygaSTcKTRMUF9lj4Xp7tlYwCDv8B6 3ALbGV5AqGqlgESaZ8decYWSJ6dtoHksedNh01PpmClZpBtuLZMTiS+t3JJq/z4T fx11JKEjltTV2ozEaRcPtpD8Ui/kMzH6 -----END CERTIFICATE-----Generated at Sun Dec 21 12:48:39 2025 by rpki-client