This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft File: HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft (raw, json) Hash identifier: fkWAFB+LKxM6tmETxUcflD9pVGQQhzabQaNKntCGjW0= Subject key identifier: 7D:06:C7:6F:1E:AA:9B:2B:70:D1:8E:71:31:B2:A2:34:B7:E7:39:85 Authority key identifier: 1E:53:0F:A9:F6:60:A8:DC:17:38:C7:AA:0C:8A:FC:77:F4:F0:BB:B3 Certificate issuer: /CN=A91F3805/serialNumber=1E530FA9F660A8DC1738C7AA0C8AFC77F4F0BBB3 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlMPqfZgqNwXOMeqDIr8d_Twu7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft Manifest number: 0F Signing time: Fri 19 Dec 2025 06:58:15 +0000 Manifest this update: Fri 19 Dec 2025 06:58:15 +0000 Manifest next update: Fri 26 Dec 2025 06:58:15 +0000 Files and hashes: 1: HlMPqfZgqNwXOMeqDIr8d_Twu7M.crl (hash: qptdI7Fwm8eLlBRbjdvOpEWOJ8aImXk5r/8gQHjYP6g=) 2: C673BB1AD0EB11F088F8F063C4F9AE02.roa (hash: diqgpUQTbZfPnisy8N8gpRTy+mMN5Jc9y1vSbe6yr1U=) 3: C598E8DCD0EB11F08228F063C4F9AE02.roa (hash: Z4quZZ4AjBNcwf+Xgudk1obpLQYlCRMBDjouQM28P8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.crl rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlMPqfZgqNwXOMeqDIr8d_Twu7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3805, serialNumber=1E530FA9F660A8DC1738C7AA0C8AFC77F4F0BBB3 Validity Not Before: Dec 19 06:58:15 2025 GMT Not After : Dec 26 06:58:15 2025 GMT Subject: CN=6944f787-b255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3b:fb:e9:67:1e:50:3d:8a:b7:27:36:2f:c4: 42:b2:5b:24:23:9a:38:b5:87:97:a6:11:0c:72:94: 02:b3:d0:2a:18:8c:35:9b:28:5f:e7:ad:3e:29:45: 76:4a:0f:8e:e2:e5:46:4c:26:d6:6e:2b:f7:2a:be: e2:6d:ed:23:a6:a6:fa:fd:b4:cb:18:75:34:e7:34: 10:33:8e:05:b2:9e:d9:b0:5f:a3:f4:83:da:ef:7f: 94:d3:1f:ec:eb:b2:fc:36:6e:ec:68:0f:aa:ce:38: 69:9d:b8:5a:e9:6d:80:e0:6a:c9:63:4c:1a:a4:6e: 7b:80:b4:e6:42:c9:d8:f8:5c:a7:33:b3:6b:28:83: c2:27:38:6a:c7:95:33:ec:2e:76:c6:cd:d3:ec:20: 0b:34:4b:17:8b:70:2d:07:a5:bd:d4:c4:25:62:8f: 3b:41:76:a8:ae:ad:86:2c:21:ad:49:32:4f:e3:f1: 7f:db:50:91:ea:a0:a7:81:3e:91:af:12:e9:33:18: 60:12:fe:50:94:68:b9:c2:93:f6:6e:12:e7:c0:17: fa:00:8c:0a:1c:0f:ae:a0:93:25:60:b7:5c:47:f9: 45:a7:79:53:c3:39:00:9d:d9:64:90:e3:30:f9:12: f5:53:8b:05:aa:6e:bf:c0:06:01:bd:dc:25:5c:d7: a3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:06:C7:6F:1E:AA:9B:2B:70:D1:8E:71:31:B2:A2:34:B7:E7:39:85 X509v3 Authority Key Identifier: keyid:1E:53:0F:A9:F6:60:A8:DC:17:38:C7:AA:0C:8A:FC:77:F4:F0:BB:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlMPqfZgqNwXOMeqDIr8d_Twu7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:c5:2c:8b:84:08:26:2d:02:ff:2c:cf:a3:84:b2:66:fd:39: 9b:0a:f9:50:6f:b0:50:09:2a:ff:2d:a6:2b:f5:a7:62:a7:97: 0f:85:0a:49:b3:e5:b2:46:9c:e8:f8:60:8a:ca:9b:e1:39:1e: 7f:5f:7a:65:a8:fd:29:ec:42:50:4d:91:0b:fd:96:71:be:87: be:79:29:1e:6a:7e:99:07:51:98:bc:93:a9:57:46:4f:52:42: 5a:64:56:0b:d2:45:0b:cf:fd:cc:5c:77:07:29:e4:c5:91:3a: d0:f5:f8:6c:f3:b8:bc:56:bb:27:5e:11:b3:06:78:41:c9:5b: 95:61:2d:42:24:58:72:0e:e8:6e:d9:7e:c4:c9:05:2d:c2:ad: 90:a8:df:f9:70:5d:21:79:93:7c:59:31:50:19:34:61:2a:e0: 42:42:df:fd:c1:f9:7d:4a:55:58:26:72:fb:74:fc:b6:f1:54: 1c:5a:cc:34:8a:f4:4a:18:84:ea:bf:2c:99:77:82:93:59:d4: 7d:7b:6a:31:85:33:90:b5:16:cb:a0:87:28:ac:42:62:c7:8f: 08:bc:fe:65:72:a6:e0:f9:82:81:5b:7c:84:87:dc:81:71:78: 47:15:b5:70:0c:42:61:9f:3f:e4:f0:50:73:04:e9:85:64:46: f7:8c:43:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzgwNTExMC8GA1UEBRMoMUU1MzBGQTlGNjYwQThEQzE3MzhDN0FBMEM4QUZDNzdG NEYwQkJCMzAeFw0yNTEyMTkwNjU4MTVaFw0yNTEyMjYwNjU4MTVaMBgxFjAUBgNV BAMMDTY5NDRmNzg3LWIyNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgO/vpZx5QPYq3JzYvxEKyWyQjmji1h5emEQxylAKz0CoYjDWbKF/nrT4pRXZK D47i5UZMJtZuK/cqvuJt7SOmpvr9tMsYdTTnNBAzjgWyntmwX6P0g9rvf5TTH+zr svw2buxoD6rOOGmduFrpbYDgasljTBqkbnuAtOZCydj4XKczs2sog8InOGrHlTPs LnbGzdPsIAs0SxeLcC0Hpb3UxCVijztBdqiurYYsIa1JMk/j8X/bUJHqoKeBPpGv EukzGGAS/lCUaLnCk/ZuEufAF/oAjAocD66gkyVgt1xH+UWneVPDOQCd2WSQ4zD5 EvVTiwWqbr/ABgG93CVc16PfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfQbHbx6q mytw0Y5xMbKiNLfnOYUwHwYDVR0jBBgwFoAUHlMPqfZgqNwXOMeqDIr8d/Twu7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzODA1LzQwMEM1REVDRDAx MDExRjA5RjBERDgxQ0M0RjlBRTAyL0hsTVBxZlpncU53WE9NZXFESXI4ZF9Ud3U3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGxNUHFmWmdxTndYT01lcURJcjhkX1R3dTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz ODA1LzQwMEM1REVDRDAxMDExRjA5RjBERDgxQ0M0RjlBRTAyL0hsTVBxZlpncU53 WE9NZXFESXI4ZF9Ud3U3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKvFLIuECCYtAv8sz6OEsmb9OZsK+VBvsFAJKv8tpiv1p2Knlw+FCkmz 5bJGnOj4YIrKm+E5Hn9femWo/SnsQlBNkQv9lnG+h755KR5qfpkHUZi8k6lXRk9S QlpkVgvSRQvP/cxcdwcp5MWROtD1+GzzuLxWuydeEbMGeEHJW5VhLUIkWHIO6G7Z fsTJBS3CrZCo3/lwXSF5k3xZMVAZNGEq4EJC3/3B+X1KVVgmcvt0/LbxVBxazDSK 9EoYhOq/LJl3gpNZ1H17ajGFM5C1FsughyisQmLHjwi8/mVypuD5goFbfISH3IFx eEcVtXAMQmGfP+TwUHME6YVkRveMQ/A= -----END CERTIFICATE-----Generated at Fri Dec 19 18:59:23 2025 by rpki-client