This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: +UFLPcq3YVycvJGxbEP9C02B9SCAdybGfPKSNPTrAXU= Subject key identifier: 61:5E:27:A2:32:6F:A1:9F:F3:37:C2:D1:CB:F5:6E:AA:9D:FE:8C:98 Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 0339 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 0335 Signing time: Fri 19 Dec 2025 00:16:35 +0000 Manifest this update: Fri 19 Dec 2025 00:16:34 +0000 Manifest next update: Fri 26 Dec 2025 00:16:34 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: sDAxDtfW0mXWfQEm0xT6/f2zC8iguutahrFXYgt5hYs=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: i5bEFhc7shjBgj4Fert4VleTijIxiv1ZRXXWoyNF05s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 825 (0x339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B, serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Dec 19 00:16:34 2025 GMT Not After : Dec 26 00:16:34 2025 GMT Subject: CN=69449963-a1ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f2:84:aa:6a:49:9e:78:20:d5:2c:79:82:07: 4b:38:53:aa:dd:07:25:be:84:94:8d:de:9e:cf:97: ba:b8:63:79:3c:75:14:e8:9e:db:2c:a8:10:11:6f: f3:73:6e:c8:55:ce:57:3c:ef:b0:48:fc:12:ca:79: b5:5d:0c:06:43:d9:9b:ff:e7:a4:54:c9:b4:11:33: af:70:4e:07:50:e9:c2:34:24:06:4a:84:86:2e:9c: 8f:86:d7:bb:da:7c:82:31:e3:d3:0a:67:4b:32:1b: dd:cc:2d:84:e8:92:9d:7c:a9:6e:35:6e:81:09:ca: 21:73:54:26:77:79:65:f4:7e:ce:32:37:13:cb:c8: d2:eb:22:fa:e6:80:da:23:10:fe:d6:d2:7e:43:3a: ac:1f:14:3b:3f:ed:7a:b2:e5:b6:b2:f6:04:a9:05: ce:8a:93:ad:4c:8a:32:57:1c:06:33:2f:cf:77:7d: e0:44:18:e1:a1:48:e0:5c:0e:9b:ec:83:a0:12:98: e8:c0:47:e8:91:d1:5a:17:90:27:d7:35:6d:e8:74: 49:b4:b3:dd:a0:74:2a:bc:c0:b3:38:7e:de:ec:4c: 25:cb:2c:98:a9:82:65:56:e3:a0:f9:9e:c9:64:0f: 31:94:71:11:81:7a:d8:73:b3:c3:24:86:19:5c:4b: 7e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5E:27:A2:32:6F:A1:9F:F3:37:C2:D1:CB:F5:6E:AA:9D:FE:8C:98 X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:4e:57:bf:6f:34:84:7d:2b:66:ae:47:eb:a2:37:b8:d9:54: 5e:a3:93:bc:17:3f:09:84:7f:be:43:1e:fc:38:f4:70:5a:c1: f3:5a:f7:23:91:7e:da:a3:29:26:85:e3:34:f9:6b:a8:2c:1a: 7d:59:5e:dc:2b:8c:2c:86:07:39:e5:47:06:8b:af:4a:dd:83: 2c:77:b1:ee:87:a2:c8:83:87:13:32:97:a2:51:13:81:01:bd: f9:7b:f2:10:d8:5b:c2:1a:8b:4e:b6:8a:7e:52:9e:d9:44:95: 29:7a:28:79:96:c1:b0:11:be:00:5f:50:be:fc:88:c0:af:84: f2:44:2b:d9:87:ed:e2:90:61:23:ea:92:0f:49:3d:1c:69:4c: 5c:4a:87:bc:e5:56:9f:61:c5:f9:9a:0c:1d:c4:85:b2:80:4e: 7a:73:ca:a3:eb:c3:d4:0a:e9:0d:e1:09:19:50:03:fd:4d:7d: 77:a5:b3:a1:26:8b:d3:98:ad:08:f0:7f:7d:de:f9:67:4d:03: 45:b3:6a:83:4d:08:7f:76:8d:a8:67:99:c3:4c:89:66:4e:2d: f6:e4:13:78:45:a6:8d:90:3b:36:e8:37:22:64:22:b1:96:54: c1:8a:e9:c0:c1:72:8e:52:e8:a9:ec:84:85:48:3e:ec:4a:cf: 09:bb:d9:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjUxMjE5MDAxNjM0WhcNMjUxMjI2MDAxNjM0WjAYMRYwFAYD VQQDDA02OTQ0OTk2My1hMWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/KEqmpJnngg1Sx5ggdLOFOq3QclvoSUjd6ez5e6uGN5PHUU6J7bLKgQEW/z c27IVc5XPO+wSPwSynm1XQwGQ9mb/+ekVMm0ETOvcE4HUOnCNCQGSoSGLpyPhte7 2nyCMePTCmdLMhvdzC2E6JKdfKluNW6BCcohc1Qmd3ll9H7OMjcTy8jS6yL65oDa IxD+1tJ+QzqsHxQ7P+16suW2svYEqQXOipOtTIoyVxwGMy/Pd33gRBjhoUjgXA6b 7IOgEpjowEfokdFaF5An1zVt6HRJtLPdoHQqvMCzOH7e7EwlyyyYqYJlVuOg+Z7J ZA8xlHERgXrYc7PDJIYZXEt+SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFeJ6Iy b6Gf8zfC0cv1bqqd/oyYMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYTle/bzSEfStmrkfroje42VReo5O8Fz8JhH++Qx78OPRwWsHzWvcj kX7aoykmheM0+WuoLBp9WV7cK4wshgc55UcGi69K3YMsd7Huh6LIg4cTMpeiUROB Ab35e/IQ2FvCGotOtop+Up7ZRJUpeih5lsGwEb4AX1C+/IjAr4TyRCvZh+3ikGEj 6pIPST0caUxcSoe85VafYcX5mgwdxIWygE56c8qj68PUCukN4QkZUAP9TX13pbOh JovTmK0I8H993vlnTQNFs2qDTQh/do2oZ5nDTIlmTi325BN4RaaNkDs26DciZCKx llTBiunAwXKOUuip7ISFSD7sSs8Ju9n3 -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:46 2025 by rpki-client