This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: YMcu2uC8XFKw0AWeM3xs0a2lhj2tEP1EdljMu+OvfvE= Subject key identifier: DA:41:D3:DC:42:EA:79:BE:9D:1B:8C:B3:AD:58:AC:45:1E:C5:49:72 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 94 Signing time: Fri 19 Dec 2025 05:32:19 +0000 Manifest this update: Fri 19 Dec 2025 05:32:19 +0000 Manifest next update: Fri 26 Dec 2025 05:32:19 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: SwB9QAObdovqshMtnCcKsjrOhUwA9J+qs4TZcNOmvLQ=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: 0M63JvIdFfuu35AAppLF2AY+BsaEXFTD4uLQ+gUHRuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Dec 19 05:32:19 2025 GMT Not After : Dec 26 05:32:19 2025 GMT Subject: CN=6944e363-0260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f8:84:34:dc:3f:f1:e4:fa:d3:cd:ac:ac:68: 98:37:f3:6d:08:a4:7d:33:32:65:8a:e4:82:39:96: fb:a8:67:d9:41:9a:d1:d6:07:1a:00:87:3e:36:ac: ce:78:8e:ba:a0:86:0a:18:d0:b7:b6:b8:67:ec:63: 0a:69:62:64:90:65:25:3a:6e:33:85:3a:20:1c:a0: e3:6a:79:ba:b0:74:d1:c4:e7:a0:c0:88:60:4c:1b: f6:f5:51:35:20:78:fc:56:76:bb:12:99:15:79:0b: 60:cd:97:33:59:66:3a:99:26:0a:45:86:c4:db:c1: 56:56:d6:d0:b8:44:86:ac:68:7c:54:d9:6b:c6:67: 93:d8:55:4d:e2:78:1f:18:cf:f7:08:0d:e3:3c:ba: 52:b3:ad:bc:78:43:bd:bf:75:23:7a:c3:31:a2:0f: fb:37:a8:37:65:0c:46:3a:05:6c:90:22:e0:98:a2: 61:8c:6d:b6:48:05:3d:92:72:45:49:06:dc:a8:b9: 52:73:0c:04:27:5b:16:75:ad:69:99:5f:b0:80:b2: e9:8b:a4:e8:27:f4:c5:6f:2d:03:bd:6b:71:8c:cc: a1:5a:44:40:b9:f2:38:60:de:6c:58:dc:7f:65:64: e2:1f:a4:5d:9c:fa:13:75:01:e0:24:8e:aa:4c:02: 5e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:41:D3:DC:42:EA:79:BE:9D:1B:8C:B3:AD:58:AC:45:1E:C5:49:72 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:c7:77:89:f0:d0:5a:d7:45:aa:10:06:81:1f:5f:1a:e2:94: 35:07:23:8b:cb:1a:92:f1:80:06:ec:30:07:39:9c:df:99:77: 33:c8:c0:11:57:35:37:e3:46:23:6e:fa:d0:e6:1d:a0:a0:1d: 4e:0d:f2:87:cd:05:ec:32:96:21:85:89:d3:1e:95:5b:29:30: 2b:3b:4a:7d:bd:63:71:5d:a0:ff:73:e1:b4:54:9a:e5:d9:20: fc:97:ca:d0:21:87:10:30:6d:96:3f:0c:a4:58:97:84:a1:97: 6b:d4:ae:0d:9c:a4:29:cd:b2:d1:70:64:10:51:67:a2:0d:f2: 33:2b:f3:63:1f:d2:5a:d9:f2:24:63:38:71:57:cd:cf:2c:f8: 50:64:f0:f6:08:df:f4:9d:54:3c:49:0b:d7:e3:18:62:3b:4d: 45:88:32:b7:dc:1e:a2:67:fd:59:48:57:7d:ce:16:0c:7f:89: 8e:4a:f1:a9:29:e4:1e:fb:ed:89:79:2d:63:58:b8:b9:c8:f3: 35:00:17:55:71:e5:be:8a:d9:39:41:df:75:60:94:11:ff:a3: b5:3f:b8:2e:63:2e:ec:d3:f2:3c:e6:a8:00:bc:fa:df:97:32: f6:95:f6:eb:fc:36:ab:52:2b:0b:71:ec:c7:8e:93:7e:6d:98: e0:7f:ca:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwNjYxMTAvBgNVBAUTKDFENEVDNDI1MzMxM0I2MkM0ODQ0OTE2Qjg1REMwRkZF NEIwN0Q1MDgwHhcNMjUxMjE5MDUzMjE5WhcNMjUxMjI2MDUzMjE5WjAYMRYwFAYD VQQDDA02OTQ0ZTM2My0wMjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0viENNw/8eT6082srGiYN/NtCKR9MzJliuSCOZb7qGfZQZrR1gcaAIc+NqzO eI66oIYKGNC3trhn7GMKaWJkkGUlOm4zhTogHKDjanm6sHTRxOegwIhgTBv29VE1 IHj8Vna7EpkVeQtgzZczWWY6mSYKRYbE28FWVtbQuESGrGh8VNlrxmeT2FVN4ngf GM/3CA3jPLpSs628eEO9v3UjesMxog/7N6g3ZQxGOgVskCLgmKJhjG22SAU9knJF SQbcqLlScwwEJ1sWda1pmV+wgLLpi6ToJ/TFby0DvWtxjMyhWkRAufI4YN5sWNx/ ZWTiH6RdnPoTdQHgJI6qTAJeWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpB09xC 6nm+nRuMs61YrEUexUlyMB8GA1UdIwQYMBaAFB1OxCUzE7YsSESRa4XcD/5LB9UI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjA2Ni82NDhBODgzMkZC NjQxMUVGQkM5QjM1MjlDNEY5QUUwMi9IVTdFSlRNVHRpeElSSkZyaGR3UF9rc0gx UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjA2Ni82NDhBODgzMkZCNjQxMUVGQkM5QjM1MjlDNEY5QUUwMi9IVTdFSlRNVHRp eElSSkZyaGR3UF9rc0gxUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVx3eJ8NBa10WqEAaBH18a4pQ1ByOLyxqS8YAG7DAHOZzfmXczyMAR VzU340YjbvrQ5h2goB1ODfKHzQXsMpYhhYnTHpVbKTArO0p9vWNxXaD/c+G0VJrl 2SD8l8rQIYcQMG2WPwykWJeEoZdr1K4NnKQpzbLRcGQQUWeiDfIzK/NjH9Ja2fIk YzhxV83PLPhQZPD2CN/0nVQ8SQvX4xhiO01FiDK33B6iZ/1ZSFd9zhYMf4mOSvGp KeQe++2JeS1jWLi5yPM1ABdVceW+itk5Qd91YJQR/6O1P7guYy7s0/I85qgAvPrf lzL2lfbr/DarUisLcezHjpN+bZjgf8qT -----END CERTIFICATE-----Generated at Sat Dec 20 03:49:29 2025 by rpki-client