This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: gIcEeZi04O7lW69YaLkhd5uhxzPKFV/+G8IB7KOf+6Y= Subject key identifier: 38:F9:60:24:37:6B:F5:65:0F:1E:FD:79:EE:47:3C:1B:B5:FA:89:18 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 1002 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0FEC Signing time: Wed 24 Dec 2025 17:12:27 +0000 Manifest this update: Wed 24 Dec 2025 17:12:26 +0000 Manifest next update: Wed 31 Dec 2025 17:12:26 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: glUHd3xkCwC6s1NqhrevymCD1Av9Drh+vtVTV8V61r8=) 2: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: xqp4ztY1055hAOWGxzBB8IclFQx9Z0YAGfkQm9qw9nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4098 (0x1002) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Dec 24 17:12:26 2025 GMT Not After : Dec 31 17:12:26 2025 GMT Subject: CN=694c1efb-fbe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9c:3c:ed:0e:33:d2:5a:5b:ff:80:3d:e7:0c: 3a:52:2c:49:45:c9:7c:19:63:ac:3d:96:d4:53:93: 38:fd:f5:95:79:b0:aa:0a:4f:59:62:fb:32:60:10: 9f:e9:01:21:e6:0c:31:2a:68:07:74:f1:24:6b:17: ef:75:67:37:c8:c2:1b:a2:03:85:ed:81:29:bc:e4: 48:22:36:7c:00:35:a8:51:37:3f:90:c2:47:30:f0: 21:47:56:99:31:64:69:48:cd:5c:4f:83:c7:81:ae: a4:e1:32:3a:24:5d:54:a8:03:f0:5a:46:1f:47:bb: 69:b7:c0:26:6a:59:56:6b:86:bc:a5:0e:18:8e:e4: c6:81:fa:2e:15:79:d3:97:11:1e:d0:f0:80:6f:b1: 15:50:cf:c4:70:ae:64:8c:d5:97:50:5a:84:90:68: bb:ed:06:d8:37:3f:f5:1d:61:03:4b:3a:a8:c1:c7: c5:44:35:18:6e:c2:2f:92:d0:9b:6e:5f:e8:77:62: 64:51:d9:2c:b3:0a:8f:58:a2:ab:50:a5:73:54:9c: 86:6f:67:48:ee:88:e1:2b:de:eb:c9:b5:55:c6:12: 0e:f4:4b:37:a9:66:7a:01:bb:99:0f:67:a4:ad:ad: bc:a6:97:33:69:b5:69:38:1b:84:7c:79:d6:b4:08: b5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F9:60:24:37:6B:F5:65:0F:1E:FD:79:EE:47:3C:1B:B5:FA:89:18 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:dd:c6:40:a8:66:2b:3a:56:d6:85:0b:4f:2b:07:43:66:26: f8:83:ae:91:25:77:fb:c4:a7:29:43:97:9d:af:6d:7f:16:46: 57:50:dd:9d:9a:25:15:77:16:1a:b9:55:da:24:d7:68:a8:ac: 7e:4b:fb:c9:46:16:ce:b1:81:fa:89:2e:1a:57:69:74:c4:8b: 21:5d:dc:c1:54:09:62:5c:dc:48:84:8e:2a:40:de:12:81:07: 3c:d4:dc:be:e0:e0:66:e6:de:2f:0e:34:17:a6:ca:95:b6:3a: ca:18:59:b0:75:c5:7c:8d:9c:74:ec:94:9b:67:85:49:bf:d5: 90:7c:6d:c4:3d:f0:11:58:90:02:e7:20:2c:2d:37:d2:c9:af: c9:76:82:f5:38:88:45:e8:22:37:d7:d4:01:2c:a4:26:ee:ac: 8a:6b:c4:f3:7a:d8:2c:05:e4:1b:59:cc:5f:6f:1d:a2:47:1a: 1a:74:4e:e7:6f:7b:e1:a6:d5:c4:1e:da:79:5b:6b:93:59:47: 71:7b:3f:ed:17:3e:12:b3:bb:ed:bb:24:2e:b4:24:31:1f:ce: 19:71:8b:ff:49:43:e0:51:dc:88:65:b0:46:31:2c:3a:f9:cb: 8c:36:c8:90:73:dd:40:7c:0f:a9:30:31:6d:db:b9:d1:f4:23: 7b:e7:64:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUxMjI0MTcxMjI2WhcNMjUxMjMxMTcxMjI2WjAYMRYwFAYD VQQDDA02OTRjMWVmYi1mYmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZw87Q4z0lpb/4A95ww6UixJRcl8GWOsPZbUU5M4/fWVebCqCk9ZYvsyYBCf 6QEh5gwxKmgHdPEkaxfvdWc3yMIbogOF7YEpvORIIjZ8ADWoUTc/kMJHMPAhR1aZ MWRpSM1cT4PHga6k4TI6JF1UqAPwWkYfR7tpt8AmallWa4a8pQ4YjuTGgfouFXnT lxEe0PCAb7EVUM/EcK5kjNWXUFqEkGi77QbYNz/1HWEDSzqowcfFRDUYbsIvktCb bl/od2JkUdksswqPWKKrUKVzVJyGb2dI7ojhK97rybVVxhIO9Es3qWZ6AbuZD2ek ra28ppczabVpOBuEfHnWtAi14QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDj5YCQ3 a/VlDx79ee5HPBu1+okYMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ3cZAqGYrOlbWhQtPKwdDZib4g66RJXf7xKcpQ5edr21/FkZXUN2d miUVdxYauVXaJNdoqKx+S/vJRhbOsYH6iS4aV2l0xIshXdzBVAliXNxIhI4qQN4S gQc81Ny+4OBm5t4vDjQXpsqVtjrKGFmwdcV8jZx07JSbZ4VJv9WQfG3EPfARWJAC 5yAsLTfSya/JdoL1OIhF6CI319QBLKQm7qyKa8TzetgsBeQbWcxfbx2iRxoadE7n b3vhptXEHtp5W2uTWUdxez/tFz4Ss7vtuyQutCQxH84ZcYv/SUPgUdyIZbBGMSw6 +cuMNsiQc91AfA+pMDFt27nR9CN752SQ -----END CERTIFICATE-----Generated at Thu Dec 25 12:43:20 2025 by rpki-client