This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft File: HpsNFjzgqhHpHVVg9aPMZp4yke8.mft (raw, json) Hash identifier: yBT/K7954cO8NEgw2e4RUjsO0bpd+3ewlzkZLKU/o/0= Subject key identifier: 3A:40:D1:28:98:7D:54:87:A2:AA:89:D3:60:C4:86:63:52:C3:C5:AD Authority key identifier: 1E:9B:0D:16:3C:E0:AA:11:E9:1D:55:60:F5:A3:CC:66:9E:32:91:EF Certificate issuer: /CN=A91F0578/serialNumber=1E9B0D163CE0AA11E91D5560F5A3CC669E3291EF Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HpsNFjzgqhHpHVVg9aPMZp4yke8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft Manifest number: B1 Signing time: Fri 19 Dec 2025 05:12:26 +0000 Manifest this update: Fri 19 Dec 2025 05:12:26 +0000 Manifest next update: Fri 26 Dec 2025 05:12:26 +0000 Files and hashes: 1: HpsNFjzgqhHpHVVg9aPMZp4yke8.crl (hash: Qb+WEyHEP7IzoeudtV61YQG5t6Jp3IFT7vXaTUo0Avc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.crl rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HpsNFjzgqhHpHVVg9aPMZp4yke8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1E9B0D163CE0AA11E91D5560F5A3CC669E3291EF Validity Not Before: Dec 19 05:12:26 2025 GMT Not After : Dec 26 05:12:26 2025 GMT Subject: CN=6944deba-5b3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:ec:cd:63:3a:11:3c:7a:c5:07:0f:44:a3:a0: 19:39:38:d3:b3:57:bb:42:b4:a0:b8:c9:d7:25:ad: 51:57:97:27:0b:84:53:b1:2d:53:33:7a:ee:65:6a: 73:d8:84:fd:76:17:ba:13:4a:d4:7a:f7:eb:d6:64: e0:e8:61:f1:af:5c:8c:d8:6e:0b:1b:a0:9e:3e:00: 20:1b:b9:b6:aa:cd:63:5e:65:95:7e:5b:e4:0b:30: 97:72:b6:75:0e:6b:e7:ab:1d:ed:44:93:01:31:83: ce:a3:d9:32:22:fc:81:8f:b6:df:b9:09:2e:93:d7: 9b:f4:a5:94:04:60:68:6d:e3:8f:28:c3:5d:3c:fe: 15:22:7a:c1:02:7a:63:83:b9:a5:45:a6:52:82:ee: f5:16:8d:da:f8:9a:ae:21:cf:92:f0:59:05:83:ae: 8e:b6:8f:8e:3f:f8:ea:3f:79:cd:98:5c:8b:f9:a7: 23:b5:6a:1f:7d:66:e5:5f:0a:60:81:85:1f:19:0e: 74:2a:59:54:78:92:e6:bb:29:b1:22:af:84:96:1a: 9f:94:a0:9f:d8:2c:04:e0:20:c4:11:42:0b:6e:55: d2:05:21:30:b8:b7:34:1c:d7:e3:8b:da:2d:e0:fb: 84:20:9f:25:19:ab:7a:96:61:08:68:26:19:ff:58: 77:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:40:D1:28:98:7D:54:87:A2:AA:89:D3:60:C4:86:63:52:C3:C5:AD X509v3 Authority Key Identifier: keyid:1E:9B:0D:16:3C:E0:AA:11:E9:1D:55:60:F5:A3:CC:66:9E:32:91:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HpsNFjzgqhHpHVVg9aPMZp4yke8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/09530A8CCF3D11EF91380E11C4F9AE02/HpsNFjzgqhHpHVVg9aPMZp4yke8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:99:d6:c6:64:59:d2:da:be:cc:30:15:38:90:89:80:aa:00: 54:4b:e8:2c:c4:95:89:48:cc:3a:f2:c2:87:35:b2:a2:00:69: 32:5b:70:d8:a8:4e:f0:17:9b:ab:e6:48:7f:a7:82:9a:f3:2b: 58:bf:0e:30:36:bd:7e:91:e4:86:67:8b:66:74:e4:e2:65:17: 7c:42:29:28:93:a3:dd:28:f7:9a:21:cf:1b:ec:32:32:97:85: 28:6d:4e:91:86:d1:b0:2e:00:c4:92:2f:c5:43:05:4d:c4:3d: 11:e9:f5:d9:4d:08:23:12:03:9a:c9:f1:31:ee:0d:7e:2b:f0: 7a:50:36:d4:f4:fe:94:cf:b9:ee:c9:71:1b:3e:1e:e1:97:45: 33:68:74:7a:b8:2e:a3:39:b1:77:19:95:03:df:f1:7e:2e:3f: 61:db:8a:20:da:70:b9:85:8f:72:58:bc:47:55:6d:8f:55:8e: 53:a9:3b:57:b9:f0:94:f1:1c:00:9d:2a:65:bf:0b:bf:d4:29: 32:56:b6:3f:74:76:1c:34:b4:9b:20:2f:53:a6:8a:08:b3:e5: 3e:e4:01:fb:1a:84:3b:01:b1:46:23:41:f3:04:ca:0c:28:0b: 25:09:6e:00:cf:00:26:90:f5:05:26:78:c1:4c:4b:49:e9:3e: 23:4e:3f:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1NzgxMTAvBgNVBAUTKDFFOUIwRDE2M0NFMEFBMTFFOTFENTU2MEY1QTNDQzY2 OUUzMjkxRUYwHhcNMjUxMjE5MDUxMjI2WhcNMjUxMjI2MDUxMjI2WjAYMRYwFAYD VQQDDA02OTQ0ZGViYS01YjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj+zNYzoRPHrFBw9Eo6AZOTjTs1e7QrSguMnXJa1RV5cnC4RTsS1TM3ruZWpz 2IT9dhe6E0rUevfr1mTg6GHxr1yM2G4LG6CePgAgG7m2qs1jXmWVflvkCzCXcrZ1 Dmvnqx3tRJMBMYPOo9kyIvyBj7bfuQkuk9eb9KWUBGBobeOPKMNdPP4VInrBAnpj g7mlRaZSgu71Fo3a+JquIc+S8FkFg66Oto+OP/jqP3nNmFyL+acjtWoffWblXwpg gYUfGQ50KllUeJLmuymxIq+ElhqflKCf2CwE4CDEEUILblXSBSEwuLc0HNfji9ot 4PuEIJ8lGat6lmEIaCYZ/1h39wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpA0SiY fVSHoqqJ02DEhmNSw8WtMB8GA1UdIwQYMBaAFB6bDRY84KoR6R1VYPWjzGaeMpHv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDU3OC8wOTUzMEE4Q0NG M0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IcHNORmp6Z3FoSHBIVlZnOWFQTVpwNHlr ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hwc05GanpncWhIcEhWVmc5YVBNWnA0eWtlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDU3OC8wOTUzMEE4Q0NGM0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IcHNORmp6Z3Fo SHBIVlZnOWFQTVpwNHlrZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9mdbGZFnS2r7MMBU4kImAqgBUS+gsxJWJSMw68sKHNbKiAGkyW3DY qE7wF5ur5kh/p4Ka8ytYvw4wNr1+keSGZ4tmdOTiZRd8Qikok6PdKPeaIc8b7DIy l4UobU6RhtGwLgDEki/FQwVNxD0R6fXZTQgjEgOayfEx7g1+K/B6UDbU9P6Uz7nu yXEbPh7hl0UzaHR6uC6jObF3GZUD3/F+Lj9h24og2nC5hY9yWLxHVW2PVY5TqTtX ufCU8RwAnSplvwu/1CkyVrY/dHYcNLSbIC9TpooIs+U+5AH7GoQ7AbFGI0HzBMoM KAslCW4AzwAmkPUFJnjBTEtJ6T4jTj86 -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:44 2025 by rpki-client