This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft File: HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft (raw, json) Hash identifier: APtzNjkHYymi1TU23g+oKvQZzIGKyvFR30K9zhKLeJM= Subject key identifier: 84:12:65:59:2F:77:ED:4A:3D:99:69:51:4C:27:65:68:E3:13:39:ED Authority key identifier: 1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A Certificate issuer: /CN=A91707D0/serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft Manifest number: 8F Signing time: Fri 19 Dec 2025 05:34:44 +0000 Manifest this update: Fri 19 Dec 2025 05:34:43 +0000 Manifest next update: Fri 26 Dec 2025 05:34:43 +0000 Files and hashes: 1: HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl (hash: fCTwbxuiLb8ADgkyBwM3udP2RZQ2mkIA/K1uFzm8MgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91707D0, serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Validity Not Before: Dec 19 05:34:43 2025 GMT Not After : Dec 26 05:34:43 2025 GMT Subject: CN=6944e3f4-f9a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:69:31:bc:b0:79:0f:3f:6f:53:e2:cf:3c: fa:cd:20:08:c8:13:aa:a6:98:36:88:82:64:18:1b: 41:91:f7:ab:a1:cb:c8:28:81:10:1b:cc:d4:68:dd: 62:94:d8:b8:c7:2c:4c:99:99:7a:ee:9d:4f:b3:12: 64:a5:8c:9d:ea:ab:2d:ca:62:c7:3c:29:35:99:72: 7c:d3:3c:41:1a:d9:8c:8b:9b:21:84:4b:ca:2a:a5: 18:db:a9:36:27:30:48:7b:19:e5:d1:e4:aa:0d:52: a9:22:24:b7:31:3c:0d:cf:bb:76:a9:fd:1b:f2:4e: 7f:f6:b5:11:7d:46:94:b9:d3:f2:fd:4d:4b:b7:c4: 31:7a:0d:a2:e7:e6:ba:1e:64:a5:fe:62:62:0d:3c: 3a:a3:20:6d:64:13:d1:ca:78:81:75:81:cf:26:fb: 3c:d3:2a:8f:d3:12:7a:31:0b:de:e1:09:dc:78:e9: cd:c5:e3:51:c8:de:23:e5:30:df:fe:96:b5:ac:88: 20:80:9c:41:9b:92:aa:f0:20:ef:a9:72:52:01:0e: ea:21:01:ba:81:c7:8e:a0:89:68:56:c5:e7:04:4d: 3c:a4:29:a0:92:54:a8:1b:34:e1:4f:05:a1:a3:d9: 55:7b:c1:3c:af:6f:99:f9:a6:b1:1f:76:24:8d:ab: a5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:12:65:59:2F:77:ED:4A:3D:99:69:51:4C:27:65:68:E3:13:39:ED X509v3 Authority Key Identifier: keyid:1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:dc:91:c3:50:0a:84:01:e7:95:55:8f:78:d7:c6:14:37:2e: 09:61:ec:3e:3b:79:5b:39:37:90:64:d9:40:b9:73:ef:d3:ec: 4e:85:5c:03:14:66:41:c5:40:12:57:b4:26:73:13:68:c6:cc: e2:3e:bc:3c:b2:dc:b9:58:37:85:9a:a4:6d:3f:0e:04:dd:15: 78:76:9f:70:d3:df:d5:37:03:fa:71:b8:4b:80:57:8b:25:9b: 5d:70:49:85:52:de:d0:71:48:f6:e0:56:9f:0f:bf:09:c2:29: cf:06:f9:03:08:ec:4a:c0:94:4a:4d:2e:23:54:33:5d:80:52: 63:2f:10:b7:34:01:9a:c0:d9:cf:e9:80:f1:72:6f:59:69:61: 16:53:05:34:c8:53:9b:c3:e2:78:1b:6a:50:58:b4:b5:20:5f: 28:9e:91:02:49:76:35:9d:95:ad:e9:85:f1:76:4f:63:d7:fc: 59:14:01:db:fa:a3:e7:e2:d5:e2:9b:64:25:d2:c8:80:bc:ec: 30:93:b4:5a:be:dc:48:16:72:f3:9f:b2:68:7e:eb:92:d9:a4: 35:99:9f:52:6e:aa:dd:40:d1:1e:f7:6f:a2:75:2f:cb:5c:51: a9:46:6b:9c:0f:3b:1e:60:ac:cb:3f:ef:e4:5b:61:82:0a:35: e4:02:79:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA3RDAxMTAvBgNVBAUTKDFENjM0MTZDNDczQjBDMDkxMkJEQUIzNzEwMjcwMTA5 NUZDNkMzNUEwHhcNMjUxMjE5MDUzNDQzWhcNMjUxMjI2MDUzNDQzWjAYMRYwFAYD VQQDDA02OTQ0ZTNmNC1mOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5tpMbyweQ8/b1Pizzz6zSAIyBOqppg2iIJkGBtBkferocvIKIEQG8zUaN1i lNi4xyxMmZl67p1PsxJkpYyd6qstymLHPCk1mXJ80zxBGtmMi5shhEvKKqUY26k2 JzBIexnl0eSqDVKpIiS3MTwNz7t2qf0b8k5/9rURfUaUudPy/U1Lt8Qxeg2i5+a6 HmSl/mJiDTw6oyBtZBPRyniBdYHPJvs80yqP0xJ6MQve4QnceOnNxeNRyN4j5TDf /pa1rIgggJxBm5Kq8CDvqXJSAQ7qIQG6gceOoIloVsXnBE08pCmgklSoGzThTwWh o9lVe8E8r2+Z+aaxH3Ykjaul2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQSZVkv d+1KPZlpUUwnZWjjEzntMB8GA1UdIwQYMBaAFB1jQWxHOwwJEr2rNxAnAQlfxsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDdEMC82NUI2OEU5NjAw NzIxMUYwQjM2M0RGNUVDNEY5QUUwMi9IV05CYkVjN0RBa1N2YXMzRUNjQkNWX0d3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXTkJiRWM3REFrU3ZhczNFQ2NCQ1ZfR3cxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDdEMC82NUI2OEU5NjAwNzIxMUYwQjM2M0RGNUVDNEY5QUUwMi9IV05CYkVjN0RB a1N2YXMzRUNjQkNWX0d3MW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM3JHDUAqEAeeVVY9418YUNy4JYew+O3lbOTeQZNlAuXPv0+xOhVwD FGZBxUASV7QmcxNoxsziPrw8sty5WDeFmqRtPw4E3RV4dp9w09/VNwP6cbhLgFeL JZtdcEmFUt7QcUj24FafD78JwinPBvkDCOxKwJRKTS4jVDNdgFJjLxC3NAGawNnP 6YDxcm9ZaWEWUwU0yFObw+J4G2pQWLS1IF8onpECSXY1nZWt6YXxdk9j1/xZFAHb +qPn4tXim2Ql0siAvOwwk7RavtxIFnLzn7JofuuS2aQ1mZ9SbqrdQNEe92+idS/L XFGpRmucDzseYKzLP+/kW2GCCjXkAnnR -----END CERTIFICATE-----Generated at Fri Dec 19 21:57:57 2025 by rpki-client