This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: OoodEbDHSz02wP1ShbvGVTY4+lXG2qWW22gEy1tzxnY= Subject key identifier: 9F:81:A8:F7:DD:2F:34:8D:FD:27:CE:80:ED:90:80:F5:F6:9B:CC:53 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 6A Signing time: Fri 19 Dec 2025 05:59:02 +0000 Manifest this update: Fri 19 Dec 2025 05:59:02 +0000 Manifest next update: Fri 26 Dec 2025 05:59:02 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: 6Y7z9PL9jzkbuTVG7MDDuaxd7U3p0iEwn0YtYjov/rw=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: RAa8qDITo259IkIrPotazGyLqrpj79/JGsviOOW/nx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Dec 19 05:59:02 2025 GMT Not After : Dec 26 05:59:02 2025 GMT Subject: CN=6944e9a6-b028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:33:3d:fa:2d:c5:e0:8c:5c:e0:8d:bd:ec:54: eb:6c:16:87:0c:7d:69:6a:04:1e:f8:89:5e:bc:c8: 64:43:d1:d0:00:96:8c:3a:2a:cd:93:67:7e:fa:85: 8d:72:1e:b3:1f:3d:df:68:69:fa:e4:d6:45:61:a9: 18:15:71:64:b3:82:96:3a:93:83:4d:e6:32:e2:04: 6a:6e:0b:7f:cc:2e:6d:31:ed:6a:65:2a:b6:85:be: 41:ca:22:bd:e2:21:8f:81:ba:ec:42:aa:85:57:c6: 93:20:d1:c2:39:e4:84:8a:21:11:33:76:84:98:e6: be:84:51:d3:eb:40:81:fa:08:2c:65:3c:3f:6d:fe: 97:c4:21:eb:6f:39:c8:78:da:02:58:d7:1c:ca:76: b8:97:bd:c6:3c:84:2f:e9:34:45:ad:47:3a:ee:b5: c7:e4:bb:06:06:2b:2c:ed:92:7b:d5:9f:a8:a3:dc: 9c:f6:c9:5a:90:cc:5e:56:95:54:c2:56:21:e9:ee: bb:c7:b8:c2:36:4e:bc:7b:e1:67:71:6c:60:e0:6b: a8:95:b7:43:c1:1f:c7:dd:19:af:5e:ef:b2:90:9d: 8b:85:48:11:0b:20:de:17:29:9b:76:3d:f4:61:c4: a1:37:1e:0b:ef:a8:3b:bd:6e:99:69:32:12:eb:6c: 08:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:81:A8:F7:DD:2F:34:8D:FD:27:CE:80:ED:90:80:F5:F6:9B:CC:53 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:85:56:2a:ef:dc:65:05:be:24:7f:04:17:3a:99:8a:88:52: 28:5e:9b:76:a4:b5:1c:19:46:33:ec:17:d3:0a:53:e5:1e:32: ff:1e:c3:06:f8:01:ea:de:ef:41:00:3a:3c:2d:f3:48:78:a7: 5d:82:25:fc:b5:db:4b:77:c9:8d:3b:e5:5f:c6:7a:f3:b6:68: 47:88:6c:f4:da:f2:52:c3:ab:fd:54:8d:63:18:79:27:29:7b: 6a:83:17:e8:66:d9:3a:4e:18:bd:7b:6a:b0:07:2b:88:70:43: c2:d1:d8:ce:23:8f:48:21:9e:1e:cc:b2:31:2b:7d:f5:85:b3: f2:1a:e0:f4:ed:98:53:61:92:a1:a1:cd:e2:69:95:d4:d4:9e: ed:2a:b4:72:34:ed:20:27:75:c4:47:07:67:41:86:75:73:43: 5c:32:52:bd:be:0b:37:4f:5c:65:ab:83:40:3f:dd:3f:24:56: 22:7e:2e:66:22:d6:da:c8:21:82:1f:01:55:3c:84:0b:0a:ef: e5:b5:69:87:e1:4d:a0:1d:53:58:91:fd:74:cd:0a:e2:81:8b: 6a:4f:a2:c8:4e:72:38:64:69:24:d9:a3:de:e3:14:9b:e5:be: 3c:37:dc:13:c2:59:83:d4:1f:8f:8e:ff:5b:95:f8:b6:e6:96: 3a:92:57:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODE3NzExMC8GA1UEBRMoMUNEMkQ0RjMyNkExODRBNDg3QkYyMkFDRDc4QUQ1QzA2 OEY0NjY2MTAeFw0yNTEyMTkwNTU5MDJaFw0yNTEyMjYwNTU5MDJaMBgxFjAUBgNV BAMMDTY5NDRlOWE2LWIwMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Mz36LcXgjFzgjb3sVOtsFocMfWlqBB74iV68yGRD0dAAlow6Ks2TZ376hY1y HrMfPd9oafrk1kVhqRgVcWSzgpY6k4NN5jLiBGpuC3/MLm0x7WplKraFvkHKIr3i IY+BuuxCqoVXxpMg0cI55ISKIREzdoSY5r6EUdPrQIH6CCxlPD9t/pfEIetvOch4 2gJY1xzKdriXvcY8hC/pNEWtRzrutcfkuwYGKyztknvVn6ij3Jz2yVqQzF5WlVTC ViHp7rvHuMI2Trx74WdxbGDga6iVt0PBH8fdGa9e77KQnYuFSBELIN4XKZt2PfRh xKE3HgvvqDu9bplpMhLrbAgJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUn4Go990v NI39J86A7ZCA9fabzFMwHwYDVR0jBBgwFoAUHNLU8yahhKSHvyKs14rVwGj0ZmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MTc3LzhCQTNEOEM0M0RE QjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFpt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE5MVTh5YWhoS1NIdnlLczE0clZ3R2owWm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MTc3LzhCQTNEOEM0M0REQjExRjBBQzkzRDQzMkM0RjlBRTAyL0hOTFU4eWFoaEtT SHZ5S3MxNHJWd0dqMFptRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHqFVirv3GUFviR/BBc6mYqIUihem3aktRwZRjPsF9MKU+UeMv8ewwb4 Aere70EAOjwt80h4p12CJfy120t3yY075V/GevO2aEeIbPTa8lLDq/1UjWMYeScp e2qDF+hm2TpOGL17arAHK4hwQ8LR2M4jj0ghnh7MsjErffWFs/Ia4PTtmFNhkqGh zeJpldTUnu0qtHI07SAndcRHB2dBhnVzQ1wyUr2+CzdPXGWrg0A/3T8kViJ+LmYi 1trIIYIfAVU8hAsK7+W1aYfhTaAdU1iR/XTNCuKBi2pPoshOcjhkaSTZo97jFJvl vjw33BPCWYPUH4+O/1uV+LbmljqSV3o= -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:11 2025 by rpki-client