This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: a6LB/2KWiOXYp8NG81tkC9JYM4Y7zg2YC5hxmOfgCOU= Subject key identifier: DB:1C:30:82:68:1A:DA:8D:24:68:50:31:B3:64:78:33:4D:4F:EC:41 Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 02C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 02C3 Signing time: Tue 23 Dec 2025 00:25:26 +0000 Manifest this update: Tue 23 Dec 2025 00:25:26 +0000 Manifest next update: Tue 30 Dec 2025 00:25:26 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: M34JPRBN6PUEWDIWcKomAhF4wENovaFnWaepv2oFViY=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: AYJESnvrL0xf2cFi0STIbVetOH/3woitG40ANaAhl6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Dec 23 00:25:26 2025 GMT Not After : Dec 30 00:25:26 2025 GMT Subject: CN=6949e176-762e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ac:fe:53:d1:1a:b2:0c:a4:42:c3:b8:06:a2: 9b:a6:d1:92:d3:89:f8:d0:10:0c:c5:d5:a4:75:4b: 23:4e:0b:68:50:1b:f8:4c:3f:7c:48:d5:87:22:59: 3a:1f:60:bf:98:18:8f:c2:f3:90:92:ba:3c:d6:b0: b1:54:b7:7e:18:5c:26:d4:5a:60:aa:db:63:9d:b0: 5c:08:17:63:0a:cd:36:15:40:83:38:13:64:77:d3: 34:74:b7:3f:6a:4c:fb:7f:4e:02:5a:4c:ef:35:28: 39:57:a0:dd:f8:82:bc:9b:5d:06:dc:4e:49:f8:9d: 97:08:1a:07:42:cd:9b:c6:f6:a4:d4:b1:de:89:01: c1:a5:3c:59:fb:d6:cc:b3:33:2f:e1:b2:79:d0:11: 74:53:1b:73:22:d5:5c:38:c1:46:55:b6:18:4e:fa: df:5f:2b:fb:bd:b1:c0:1c:cc:70:6f:5f:3d:eb:c2: 4d:46:2b:c6:c4:bb:fb:98:ea:04:d1:ad:27:57:cd: c3:32:ca:00:c3:1f:34:fa:5d:5e:fb:ad:61:47:6c: d3:3e:e1:53:1f:2e:15:46:08:82:ff:6c:a0:26:cf: b3:99:23:38:8d:4a:ea:1d:cf:7b:65:bf:d6:e9:82: 72:11:cb:17:95:d8:d0:a6:6e:51:e2:0c:2c:47:3d: f8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:1C:30:82:68:1A:DA:8D:24:68:50:31:B3:64:78:33:4D:4F:EC:41 X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:6c:d6:2d:c3:b2:5f:3b:5d:bb:4d:d1:7d:15:76:2e:28:8b: 43:98:3d:04:39:d5:34:25:13:e6:d8:31:05:44:7e:20:77:78: 29:99:e1:17:ab:0b:b1:56:89:d2:ce:5f:92:46:5d:0b:c3:83: 35:af:0b:27:9e:6f:ec:ec:7f:2e:3e:9f:4e:0a:12:a5:5f:6a: 74:97:d2:56:51:36:41:4f:9f:de:58:01:23:5b:36:08:4f:3d: 4a:8d:3b:c6:18:10:93:e5:4d:f3:4a:0c:a9:24:06:83:dc:6e: 4b:04:96:da:34:6b:6e:c9:93:06:b6:26:18:cf:0f:c4:78:89: ef:2e:d5:2f:5d:54:ad:b1:d8:9e:b4:65:41:46:5f:75:c8:7e: c1:df:dc:83:ab:e0:0f:be:69:c6:23:61:a2:1e:62:e5:55:97: 68:8c:35:4e:1f:ca:4c:16:fd:dd:46:95:9d:de:fd:86:18:64: 3e:cd:05:58:5c:d6:56:d2:d1:10:4d:c7:84:04:33:65:8e:12: 8c:d7:f8:53:42:0e:51:bb:ac:c5:b7:8b:75:2b:79:de:9d:dc: 1e:a7:17:70:bc:55:f2:cc:8e:12:61:ca:05:72:0c:ee:d4:79: b4:fa:e4:6f:d5:39:ff:cf:d6:a8:96:1b:1a:63:79:a6:af:db: 85:df:ce:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjUxMjIzMDAyNTI2WhcNMjUxMjMwMDAyNTI2WjAYMRYwFAYD VQQDDA02OTQ5ZTE3Ni03NjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qz+U9EasgykQsO4BqKbptGS04n40BAMxdWkdUsjTgtoUBv4TD98SNWHIlk6 H2C/mBiPwvOQkro81rCxVLd+GFwm1FpgqttjnbBcCBdjCs02FUCDOBNkd9M0dLc/ akz7f04CWkzvNSg5V6Dd+IK8m10G3E5J+J2XCBoHQs2bxvak1LHeiQHBpTxZ+9bM szMv4bJ50BF0UxtzItVcOMFGVbYYTvrfXyv7vbHAHMxwb18968JNRivGxLv7mOoE 0a0nV83DMsoAwx80+l1e+61hR2zTPuFTHy4VRgiC/2ygJs+zmSM4jUrqHc97Zb/W 6YJyEcsXldjQpm5R4gwsRz34CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNscMIJo GtqNJGhQMbNkeDNNT+xBMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGbNYtw7JfO127TdF9FXYuKItDmD0EOdU0JRPm2DEFRH4gd3gpmeEX qwuxVonSzl+SRl0Lw4M1rwsnnm/s7H8uPp9OChKlX2p0l9JWUTZBT5/eWAEjWzYI Tz1KjTvGGBCT5U3zSgypJAaD3G5LBJbaNGtuyZMGtiYYzw/EeInvLtUvXVStsdie tGVBRl91yH7B39yDq+APvmnGI2GiHmLlVZdojDVOH8pMFv3dRpWd3v2GGGQ+zQVY XNZW0tEQTceEBDNljhKM1/hTQg5Ru6zFt4t1K3nendwepxdwvFXyzI4SYcoFcgzu 1Hm0+uRv1Tn/z9aolhsaY3mmr9uF386o -----END CERTIFICATE-----Generated at Tue Dec 23 12:39:44 2025 by rpki-client