This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft File: HUA-MjAeWHgKBwV8syty7K9G19k.mft (raw, json) Hash identifier: b/M7z7/FEiJErjqpTWLAiNMMMyaqoiX7H78BhsQlSQQ= Subject key identifier: F6:45:1D:EF:B9:32:73:93:77:F3:25:6D:77:15:48:13:D2:B8:15:5F Authority key identifier: 1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 Certificate issuer: /CN=A91FA645/serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Certificate serial: 0435 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft Manifest number: 042A Signing time: Thu 18 Dec 2025 23:39:51 +0000 Manifest this update: Thu 18 Dec 2025 23:39:50 +0000 Manifest next update: Thu 25 Dec 2025 23:39:50 +0000 Files and hashes: 1: HUA-MjAeWHgKBwV8syty7K9G19k.crl (hash: yfywGjKLL7EOcCAQ9/VPhHZEbGe/svl8d/Pl75DtwFk=) 2: F4639D76356211F09A66C487C4F9AE02.roa (hash: PHU5aUvAOrBIKy7huYHffiKA6xh2xWAfjAUu0W1+Jtw=) 3: 76EBCD3E8C9911ECB051A327C4F9AE02.roa (hash: XE/ZbmFKgtcJ8d/T46yRFJ9hkQIFqFEENN93aFpVlI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1077 (0x435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA645, serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Validity Not Before: Dec 18 23:39:50 2025 GMT Not After : Dec 25 23:39:50 2025 GMT Subject: CN=694490c7-10ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:40:fb:fb:d9:7b:42:d9:a0:f6:5c:9c:ea:ff: fb:15:fe:db:bc:09:1e:2b:5c:59:c7:ce:69:34:0c: 4d:d8:e3:c4:8c:76:68:37:0e:0c:fa:1c:80:de:02: 9e:ca:b8:d5:b1:69:5c:89:5c:7f:74:5b:f8:69:fe: 96:05:90:32:4e:e4:0f:67:f7:65:ac:24:c7:0a:c7: 70:4c:8c:33:45:e8:31:95:24:54:d4:55:65:cf:f1: a1:b4:79:44:c8:fa:33:57:c1:e2:81:73:09:f5:c4: 6b:bc:54:c5:ab:a2:e1:a8:07:7c:fe:fc:9d:a0:5a: b3:73:27:3a:0a:70:36:ce:10:22:b3:65:91:67:98: e5:03:af:5e:c3:4a:42:7a:3a:fb:63:85:66:23:66: 73:00:57:09:1a:c2:f7:34:3c:9c:7a:cb:10:37:8b: 1d:f0:da:2b:6d:96:ee:b4:07:09:80:cd:7a:39:4e: 20:f9:94:59:ac:ff:a1:7c:f6:17:cf:8b:5b:05:d1: df:a2:cf:dc:b1:4b:a9:68:1a:fc:09:79:f5:1d:c2: e2:8d:1d:67:56:2a:24:26:e5:af:56:ba:24:5c:82: c0:81:a8:bc:b2:07:a4:31:3b:57:52:bf:a2:14:cd: 3f:68:32:e9:c3:c4:b4:d3:c5:eb:84:9d:1c:07:ad: fe:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:45:1D:EF:B9:32:73:93:77:F3:25:6D:77:15:48:13:D2:B8:15:5F X509v3 Authority Key Identifier: keyid:1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:c9:1a:ad:3f:03:99:ff:c6:46:ee:6d:d7:cf:8e:cd:bb:f3: 73:0c:7c:58:63:b6:e0:f8:6a:a2:ec:11:14:f6:54:8c:8a:74: 65:6b:5c:50:83:8f:1d:3e:bb:22:df:cf:9d:7e:48:ba:3a:4f: 16:21:76:74:a0:6a:51:9f:4b:fc:01:4e:10:27:78:4a:68:17: fc:b4:f9:8d:75:c0:1c:8a:77:3d:6e:88:ba:75:44:22:e5:19: d2:b0:9a:2a:7f:df:0e:2b:9d:2f:3a:99:d3:58:27:92:de:a5: 60:34:6e:ff:2b:af:07:93:c3:12:ee:60:6d:1d:98:88:90:ba: 30:24:2a:46:50:cc:42:c0:1b:5c:2b:98:af:08:f7:c6:dc:31: 52:d4:fd:6f:ad:52:20:c1:e4:8c:a1:9a:53:8c:7e:31:ad:cb: 90:e3:11:46:c3:53:02:54:b7:e9:86:ff:0c:f4:5d:8d:40:0a: 3c:33:b9:9c:b0:c4:08:ec:0b:1f:58:53:46:41:81:9c:c8:e5: de:4d:a0:be:bc:a7:c4:cb:ce:14:8f:a5:3c:fc:bf:46:f8:9f: b3:a8:19:50:c9:cf:88:4c:be:d7:9f:6f:97:1e:12:02:1c:ae: 00:30:2f:af:4a:3c:9a:bf:59:81:9b:82:bd:6c:23:ef:27:c3: ce:68:0f:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NDUxMTAvBgNVBAUTKDFENDAzRTMyMzAxRTU4NzgwQTA3MDU3Q0IzMkI3MkVD QUY0NkQ3RDkwHhcNMjUxMjE4MjMzOTUwWhcNMjUxMjI1MjMzOTUwWjAYMRYwFAYD VQQDDA02OTQ0OTBjNy0xMGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00D7+9l7Qtmg9lyc6v/7Ff7bvAkeK1xZx85pNAxN2OPEjHZoNw4M+hyA3gKe yrjVsWlciVx/dFv4af6WBZAyTuQPZ/dlrCTHCsdwTIwzRegxlSRU1FVlz/GhtHlE yPozV8HigXMJ9cRrvFTFq6LhqAd8/vydoFqzcyc6CnA2zhAis2WRZ5jlA69ew0pC ejr7Y4VmI2ZzAFcJGsL3NDycessQN4sd8NorbZbutAcJgM16OU4g+ZRZrP+hfPYX z4tbBdHfos/csUupaBr8CXn1HcLijR1nViokJuWvVrokXILAgai8sgekMTtXUr+i FM0/aDLpw8S008XrhJ0cB63+NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZFHe+5 MnOTd/MlbXcVSBPSuBVfMB8GA1UdIwQYMBaAFB1APjIwHlh4CgcFfLMrcuyvRtfZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0NS9FMEQ5RjM2NDhD OTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdIZ0tCd1Y4c3l0eTdLOUcx OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVQS1NakFlV0hnS0J3VjhzeXR5N0s5RzE5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0NS9FMEQ5RjM2NDhDOTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdI Z0tCd1Y4c3l0eTdLOUcxOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChyRqtPwOZ/8ZG7m3Xz47Nu/NzDHxYY7bg+Gqi7BEU9lSMinRla1xQ g48dPrsi38+dfki6Ok8WIXZ0oGpRn0v8AU4QJ3hKaBf8tPmNdcAcinc9boi6dUQi 5RnSsJoqf98OK50vOpnTWCeS3qVgNG7/K68Hk8MS7mBtHZiIkLowJCpGUMxCwBtc K5ivCPfG3DFS1P1vrVIgweSMoZpTjH4xrcuQ4xFGw1MCVLfphv8M9F2NQAo8M7mc sMQI7AsfWFNGQYGcyOXeTaC+vKfEy84Uj6U8/L9G+J+zqBlQyc+ITL7Xn2+XHhIC HK4AMC+vSjyav1mBm4K9bCPvJ8POaA9T -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:46 2025 by rpki-client