This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: 4G7nA/6SVp43MBNQR2kka7VS6Ucxhd32wPnJ5fPHXkE= Subject key identifier: 85:CF:F0:A2:1D:F7:F5:3E:4C:67:3A:A6:F4:D5:3C:58:B0:17:AE:4B Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0E64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0E58 Signing time: Thu 18 Dec 2025 17:34:49 +0000 Manifest this update: Thu 18 Dec 2025 17:34:48 +0000 Manifest next update: Thu 25 Dec 2025 17:34:48 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: M8rRnzzwSFC/cjOJ3AuGCEdtz2llpJeE0dXCv1V6O0k=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: cxpNUxvjjUcenOfHXLOefCP2oAgYFBDBd3CzBohvfz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3684 (0xe64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Dec 18 17:34:48 2025 GMT Not After : Dec 25 17:34:48 2025 GMT Subject: CN=69443b39-bef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:09:d0:b7:f0:3b:a4:5d:bf:d2:9f:e7:92: 61:a0:c4:2f:66:d7:28:4c:b0:12:1d:ed:cd:d9:08: aa:13:d4:7b:3d:af:9c:b9:f6:e1:31:b6:1f:74:78: 7f:54:73:8c:79:e3:25:5a:62:7b:31:ad:7f:fd:c7: 68:db:ae:39:8b:ae:ae:ff:4c:39:b0:91:03:c7:58: 45:57:85:da:ae:ee:26:5a:e8:c0:59:26:4d:85:ae: 60:57:a3:f1:e6:06:b4:ac:6b:d0:86:f7:1d:fe:9a: ce:21:26:c8:fd:35:a9:bd:58:9f:ee:02:ea:d3:1d: cf:fc:02:89:9e:f4:92:d5:4b:1c:fd:24:10:a0:86: 00:40:cb:b4:74:8f:9e:d9:7f:27:12:8a:6b:63:1f: 6a:d7:a5:5a:a8:e6:85:79:5f:fc:02:77:4f:7d:2d: de:d4:20:df:5d:19:cc:2a:b8:50:9a:b3:70:52:f9: f7:3c:b6:dc:73:69:da:4c:f4:14:82:67:8a:c0:e1: 05:86:86:97:ef:19:a6:8d:43:8a:b9:24:1c:cd:20: 7d:71:76:0a:c6:74:6f:cd:5f:37:2c:ac:09:f4:89: 1e:a6:d7:65:94:b0:8a:c5:03:a7:1b:58:cb:4a:a4: e2:57:6f:d7:3b:14:16:5e:6f:6d:fe:f9:60:af:b8: cd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CF:F0:A2:1D:F7:F5:3E:4C:67:3A:A6:F4:D5:3C:58:B0:17:AE:4B X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cd:a0:44:15:31:4b:9b:dd:35:9a:83:99:fe:51:7a:dc:41: d7:69:ee:63:83:0b:2a:36:f5:e0:1a:32:82:a9:82:98:ee:14: aa:57:7e:84:e5:ea:c7:f8:3f:92:10:15:49:a9:6d:72:4b:49: ba:89:0a:33:30:64:c2:fd:66:30:20:56:76:64:ee:f1:ed:46: e3:1f:8d:e2:86:ed:a0:b0:71:b5:e3:8f:53:44:b2:e1:53:30: 0c:ee:50:4b:3b:af:e1:a2:0b:97:e4:ce:83:be:cb:f0:bc:6d: e1:b7:e5:ec:ff:47:be:5c:b8:1a:f4:8f:24:60:d8:58:3e:0a: 40:ba:9c:58:08:49:71:72:8e:62:49:9a:15:a7:e9:27:8e:8f: d3:cb:93:c8:ea:ee:84:68:d4:d8:82:95:90:52:4b:91:23:70: 18:74:b2:60:c4:b8:d3:f2:f8:f6:1f:c6:c3:af:72:87:19:23: 7a:43:c1:64:40:5b:e6:82:1b:99:a8:ab:12:a5:ce:e7:a6:ad: 7b:28:07:e2:ae:67:71:1d:40:9e:40:23:85:f7:cc:27:3d:8f: c5:49:ac:8e:7d:b5:77:65:f1:4a:35:c0:d1:76:bc:50:48:45: 11:2b:6b:3b:39:a5:2a:82:68:51:d2:f0:6c:83:30:ca:26:57: 32:9c:9d:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjUxMjE4MTczNDQ4WhcNMjUxMjI1MTczNDQ4WjAYMRYwFAYD VQQDDA02OTQ0M2IzOS1iZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7wJ0LfwO6Rdv9Kf55JhoMQvZtcoTLASHe3N2QiqE9R7Pa+cufbhMbYfdHh/ VHOMeeMlWmJ7Ma1//cdo2645i66u/0w5sJEDx1hFV4Xaru4mWujAWSZNha5gV6Px 5ga0rGvQhvcd/prOISbI/TWpvVif7gLq0x3P/AKJnvSS1Usc/SQQoIYAQMu0dI+e 2X8nEoprYx9q16VaqOaFeV/8AndPfS3e1CDfXRnMKrhQmrNwUvn3PLbcc2naTPQU gmeKwOEFhoaX7xmmjUOKuSQczSB9cXYKxnRvzV83LKwJ9IkeptdllLCKxQOnG1jL SqTiV2/XOxQWXm9t/vlgr7jNkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXP8KId 9/U+TGc6pvTVPFiwF65LMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbzaBEFTFLm901moOZ/lF63EHXae5jgwsqNvXgGjKCqYKY7hSqV36E 5erH+D+SEBVJqW1yS0m6iQozMGTC/WYwIFZ2ZO7x7UbjH43ihu2gsHG1449TRLLh UzAM7lBLO6/hoguX5M6DvsvwvG3ht+Xs/0e+XLga9I8kYNhYPgpAupxYCElxco5i SZoVp+knjo/Ty5PI6u6EaNTYgpWQUkuRI3AYdLJgxLjT8vj2H8bDr3KHGSN6Q8Fk QFvmghuZqKsSpc7npq17KAfirmdxHUCeQCOF98wnPY/FSayOfbV3ZfFKNcDRdrxQ SEURK2s7OaUqgmhR0vBsgzDKJlcynJ0s -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:12 2025 by rpki-client