This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: koQYfeRj5me6zZQhn6slzFgpks5pgXDaioCyComdxPQ= Subject key identifier: 32:68:4E:5F:6A:D7:56:56:94:D5:CC:20:09:54:10:7E:AE:B7:F3:90 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0949 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0942 Signing time: Thu 18 Dec 2025 19:44:14 +0000 Manifest this update: Thu 18 Dec 2025 19:44:13 +0000 Manifest next update: Thu 25 Dec 2025 19:44:13 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: xYiLpBvXKSKVbh6kWEvMMc8iOfGIXNUc5SQxzeN/WfI=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: iGx2/OJLyjhg1Fasnl64EO8+YlI70PVJOH1c6PHse0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2377 (0x949) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Dec 18 19:44:13 2025 GMT Not After : Dec 25 19:44:13 2025 GMT Subject: CN=6944598d-a3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:23:0d:bc:08:6b:0d:55:34:92:d7:f4:97:cc: c3:20:09:c3:e6:00:85:5f:81:fa:ed:ef:5e:c7:57: e3:6c:b5:d1:aa:41:13:6c:94:3d:13:8c:73:51:f1: a4:27:9e:73:af:5e:44:fc:bc:a5:ef:d9:d4:c3:24: 43:88:8a:20:16:ac:2e:60:2b:dd:2d:54:a7:43:6f: 4f:ee:18:7a:4e:e0:26:28:b7:4e:ac:28:58:9c:1c: 02:74:14:0d:fa:5e:22:f2:46:62:ff:69:aa:2e:7c: 31:15:0c:09:6a:6d:fe:fa:9a:40:df:59:73:00:2a: 1b:7e:0f:75:0e:f6:84:45:dc:9c:02:d3:8d:70:c6: 69:92:06:c4:67:4b:bd:86:59:02:90:6b:49:c4:50: fa:d5:31:79:6d:05:2a:66:f5:bf:95:79:32:eb:e2: 22:f6:28:91:92:63:6b:b3:74:a0:20:6a:e1:b0:d8: 53:de:d9:7d:22:08:68:c6:eb:3b:0a:ab:e3:cc:de: 9f:45:1f:c9:16:5c:c4:31:fa:a0:df:4f:a1:34:45: 7a:ed:ea:f9:8f:26:7f:40:f2:f4:cc:c7:f0:2a:f9: 16:63:8f:24:5f:d3:68:43:58:35:8c:4e:a7:f3:a8: ad:ea:c2:98:a3:bf:33:b5:0d:fd:15:f5:c4:a9:f6: 9b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:68:4E:5F:6A:D7:56:56:94:D5:CC:20:09:54:10:7E:AE:B7:F3:90 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:9a:d4:36:8f:ec:c9:db:4c:44:35:44:54:f4:b3:3e:e4:90: 02:45:02:8e:56:98:e3:42:85:82:b1:e2:06:bc:24:e1:78:91: 60:1c:6d:ca:2c:14:14:86:e9:d9:8d:14:dd:dc:20:99:f7:56: 5c:4b:59:29:b5:95:04:45:e3:23:fd:a8:8c:ef:fa:2f:a0:86: 23:ee:d7:4d:a8:a5:ed:59:85:6d:71:8e:0f:a0:48:f9:79:31: 46:15:eb:94:5d:04:27:8d:7e:06:4a:2e:39:f1:61:9f:40:bb: af:ae:ba:37:5b:ba:ef:47:e2:fb:5e:1e:76:6b:23:bc:a9:1a: 11:77:72:85:15:fb:cc:e7:e7:f9:b1:59:bc:04:7f:e5:f0:10: ec:15:fd:2b:e3:00:1a:08:1f:e5:e5:ca:52:c8:7a:0f:e3:63: 96:49:c0:95:8a:a8:13:a7:68:bb:be:d4:d6:44:cb:c1:f4:e8: 7e:e6:2f:ac:20:19:8d:8c:22:bd:b9:af:1b:b8:a1:0e:4b:c1: 85:6a:e7:23:4d:2e:fc:6e:70:10:5b:da:72:65:0b:8f:e4:87: a9:22:38:c8:b9:54:ea:70:1c:9e:fc:56:27:31:60:ba:f5:63: ea:05:f1:84:f8:c6:e3:87:f3:1e:e5:86:24:e7:51:c0:d1:c1: 79:f0:65:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUxMjE4MTk0NDEzWhcNMjUxMjI1MTk0NDEzWjAYMRYwFAYD VQQDDA02OTQ0NTk4ZC1hM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7CMNvAhrDVU0ktf0l8zDIAnD5gCFX4H67e9ex1fjbLXRqkETbJQ9E4xzUfGk J55zr15E/Lyl79nUwyRDiIogFqwuYCvdLVSnQ29P7hh6TuAmKLdOrChYnBwCdBQN +l4i8kZi/2mqLnwxFQwJam3++ppA31lzACobfg91DvaERdycAtONcMZpkgbEZ0u9 hlkCkGtJxFD61TF5bQUqZvW/lXky6+Ii9iiRkmNrs3SgIGrhsNhT3tl9Ighoxus7 CqvjzN6fRR/JFlzEMfqg30+hNEV67er5jyZ/QPL0zMfwKvkWY48kX9NoQ1g1jE6n 86it6sKYo78ztQ39FfXEqfabwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJoTl9q 11ZWlNXMIAlUEH6ut/OQMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjmtQ2j+zJ20xENURU9LM+5JACRQKOVpjjQoWCseIGvCTheJFgHG3K LBQUhunZjRTd3CCZ91ZcS1kptZUEReMj/aiM7/ovoIYj7tdNqKXtWYVtcY4PoEj5 eTFGFeuUXQQnjX4GSi458WGfQLuvrro3W7rvR+L7Xh52ayO8qRoRd3KFFfvM5+f5 sVm8BH/l8BDsFf0r4wAaCB/l5cpSyHoP42OWScCViqgTp2i7vtTWRMvB9Oh+5i+s IBmNjCK9ua8buKEOS8GFaucjTS78bnAQW9pyZQuP5IepIjjIuVTqcBye/FYnMWC6 9WPqBfGE+Mbjh/Me5YYk51HA0cF58GXn -----END CERTIFICATE-----Generated at Sat Dec 20 00:54:59 2025 by rpki-client