This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: X1kFOUmODccyjZy5g24fth9ouk3VnCn1HeD/WZtBVvU= Subject key identifier: 99:7C:1C:44:98:C0:8E:97:82:57:13:9E:38:AC:9F:5E:9A:24:3F:D9 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 70 Signing time: Mon 29 Dec 2025 05:55:02 +0000 Manifest this update: Mon 29 Dec 2025 05:55:01 +0000 Manifest next update: Mon 05 Jan 2026 05:55:01 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: ZZqt8qlLZMaXDNWOpy9d740l7cpvL4Y/+yfgwCCGGv4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Dec 29 05:55:01 2025 GMT Not After : Jan 5 05:55:01 2026 GMT Subject: CN=695217b6-829e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d5:35:9a:0a:c5:26:f8:f5:58:b0:d7:d4:30: d3:a0:2e:1a:0e:a6:dd:1a:db:cb:75:53:24:2c:18: 08:34:65:ad:13:55:d3:83:1e:bd:b8:48:c0:1e:67: e9:15:4b:08:a7:c0:99:34:50:98:b4:1b:18:85:e3: f4:cb:ed:10:74:e9:9c:66:60:59:46:0b:e9:75:6f: f1:82:2b:25:cf:c8:39:46:cd:79:89:3e:c1:7c:d4: c4:e8:98:87:63:9e:e0:11:a7:05:8d:09:d6:b0:2f: 8b:90:56:3a:ba:44:42:e6:59:73:ef:72:02:c6:b4: 03:ac:a9:c0:86:5d:8c:f8:04:c6:34:6e:0a:ef:d8: 1f:bf:1e:76:47:01:c4:a4:39:e1:6f:6e:a0:a3:7a: bf:ef:28:89:31:48:c3:be:74:25:05:93:b6:5c:1e: c1:0b:fa:84:bc:5f:75:4f:cd:53:48:11:ad:ed:18: 2f:9b:e4:53:0d:d5:42:00:3e:9e:a3:25:31:8d:5f: 39:88:21:aa:b2:3b:e7:a5:bb:9d:28:88:2f:c1:b5: 6f:bd:b8:42:fe:d4:d4:fb:e9:3d:02:35:4b:ff:28: ed:dd:d7:62:3e:a9:aa:40:aa:44:a6:8e:74:b4:c3: 70:31:27:9e:3f:9c:f0:b8:65:f2:3a:6e:64:ba:36: be:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7C:1C:44:98:C0:8E:97:82:57:13:9E:38:AC:9F:5E:9A:24:3F:D9 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:84:04:4e:a6:80:53:a0:2c:3a:29:84:66:a7:e1:33:f1:ef: a0:b0:64:2b:25:f0:43:9b:cc:06:73:0a:f9:5f:41:7f:f2:3a: 59:d0:f0:f0:56:97:3b:f1:8b:0c:e6:13:d3:b7:d5:f9:d5:85: 50:b1:63:f9:90:55:1d:f6:98:a1:ba:a4:1c:9e:19:e5:a0:b0: ea:3e:5a:1a:5b:3c:e1:5b:67:a3:fc:f8:87:1a:ff:13:37:ca: 6a:0b:67:da:cc:23:05:7e:82:ec:a1:32:a2:9c:15:32:02:74: 9d:ab:12:3c:09:29:3f:33:78:e6:8c:7e:16:7c:60:3b:9d:20: a9:60:3b:bf:f7:65:cf:d0:a9:dc:db:1a:5d:33:26:d8:cf:e1: 78:7b:b5:82:04:f1:d5:7a:15:28:8c:4b:65:da:8c:86:2a:0a: 52:77:34:33:0f:68:ff:6a:e4:f5:62:59:bb:9d:2c:59:3b:d4: e8:45:e9:2c:26:55:f9:54:da:a4:3f:e0:0a:f4:1e:96:ef:bc: cc:9d:7b:0d:1d:fc:61:e7:2f:0b:13:88:9c:62:af:80:0f:d1: 6f:fc:3d:cf:95:68:ba:18:b3:5e:16:ab:c8:76:e2:46:00:ea: 75:a6:39:0a:e6:ef:f0:bb:47:56:29:c4:35:1e:b5:4f:a0:34: ad:a7:85:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTlDMDExMC8GA1UEBRMoMUQwREFDMTFFRDgyRTM1QzIzQjBDQkVGRkJFRTAwNjI2 M0IwOTk1NzAeFw0yNTEyMjkwNTU1MDFaFw0yNjAxMDUwNTU1MDFaMBgxFjAUBgNV BAMMDTY5NTIxN2I2LTgyOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ1TWaCsUm+PVYsNfUMNOgLhoOpt0a28t1UyQsGAg0Za0TVdODHr24SMAeZ+kV SwinwJk0UJi0GxiF4/TL7RB06ZxmYFlGC+l1b/GCKyXPyDlGzXmJPsF81MTomIdj nuARpwWNCdawL4uQVjq6RELmWXPvcgLGtAOsqcCGXYz4BMY0bgrv2B+/HnZHAcSk OeFvbqCjer/vKIkxSMO+dCUFk7ZcHsEL+oS8X3VPzVNIEa3tGC+b5FMN1UIAPp6j JTGNXzmIIaqyO+elu50oiC/BtW+9uEL+1NT76T0CNUv/KO3d12I+qapAqkSmjnS0 w3AxJ54/nPC4ZfI6bmS6Nr5zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmXwcRJjA jpeCVxOeOKyfXpokP9kwHwYDVR0jBBgwFoAUHQ2sEe2C41wjsMvv++4AYmOwmVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBOUMwLzVBRkIxNDhFMzg4 MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21W Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFEyc0VlMkM0MXdqc012di0tNEFZbU93bVZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB OUMwLzVBRkIxNDhFMzg4MjExRjA4Q0NCMTg2NkM0RjlBRTAyL0hRMnNFZTJDNDF3 anNNdnYtLTRBWW1Pd21WYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEiEBE6mgFOgLDophGan4TPx76CwZCsl8EObzAZzCvlfQX/yOlnQ8PBW lzvxiwzmE9O31fnVhVCxY/mQVR32mKG6pByeGeWgsOo+WhpbPOFbZ6P8+Ica/xM3 ymoLZ9rMIwV+guyhMqKcFTICdJ2rEjwJKT8zeOaMfhZ8YDudIKlgO7/3Zc/Qqdzb Gl0zJtjP4Xh7tYIE8dV6FSiMS2XajIYqClJ3NDMPaP9q5PViWbudLFk71OhF6Swm VflU2qQ/4Ar0HpbvvMydew0d/GHnLwsTiJxir4AP0W/8Pc+VaLoYs14Wq8h24kYA 6nWmOQrm7/C7R1YpxDUetU+gNK2nhRQ= -----END CERTIFICATE-----Generated at Tue Dec 30 18:40:40 2025 by rpki-client