This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: HFikc1nb+KVmu8gpEwms1kzihOtuEDrcM14UT6mkGoI= Subject key identifier: 1D:ED:F8:63:AC:8D:73:56:34:0C:CC:33:57:87:A7:7C:CB:CC:0C:3D Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0238 Signing time: Sun 07 Dec 2025 00:29:28 +0000 Manifest this update: Sun 07 Dec 2025 00:29:28 +0000 Manifest next update: Sun 14 Dec 2025 00:29:28 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: pSbdxjYVuknblvzCpXq6dNfDztxoUmymDJB8+Qaa14E=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Dec 7 00:29:28 2025 GMT Not After : Dec 14 00:29:28 2025 GMT Subject: CN=6934ca68-7218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b9:52:08:33:21:61:af:13:cd:19:00:3f:05: 43:32:8c:5d:12:e1:5b:28:a3:d1:11:37:3e:45:7c: 1b:6d:a1:4f:97:9c:2a:22:e5:ef:80:34:dc:fa:95: b3:7b:02:96:e9:d3:72:21:eb:74:c4:a9:b7:50:97: ae:55:a5:8f:e0:d9:50:56:64:69:3d:63:fe:ec:08: 25:de:b1:d1:41:67:a1:2a:cc:54:a8:4c:ad:c9:08: 15:21:6e:18:ca:2c:ba:9b:a7:58:75:e0:8a:3b:e4: 07:e2:4d:ac:52:27:bf:c9:2a:ff:dd:2f:05:a8:f7: 45:2a:b2:f7:a8:ff:e5:63:4e:3b:af:54:98:45:4c: 8d:42:15:61:61:c3:0e:0f:df:08:ba:3d:27:88:e9: 5e:43:71:be:9c:1f:21:e7:ba:db:56:6a:28:22:35: e9:cb:18:e0:bc:3f:e4:9b:66:c0:7d:cd:eb:5c:62: 1a:21:ea:1d:55:d8:94:f8:67:9f:f4:19:a1:3e:1a: 91:21:d2:56:3e:0b:2f:38:82:c5:2a:6a:88:d0:99: 61:81:d5:7e:26:52:62:98:c7:00:5f:f3:14:d5:df: 41:d1:ba:20:81:7b:e5:3d:14:b2:9d:59:94:ca:af: f6:46:18:77:a9:35:83:ac:73:7d:40:db:f4:bc:74: 82:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:ED:F8:63:AC:8D:73:56:34:0C:CC:33:57:87:A7:7C:CB:CC:0C:3D X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:1f:72:2a:ec:1f:5b:d1:f3:dd:a7:89:22:f9:8d:c9:77:fb: 06:89:8b:c2:82:0b:d0:1b:d6:d5:09:aa:43:25:97:c2:11:d6: 8d:97:8d:1f:de:40:ba:58:fe:ef:1e:dd:ec:50:53:4c:fe:b8: 17:93:89:f5:d3:95:ab:ba:18:b5:f8:fd:f2:28:16:d7:b5:45: a9:24:72:7c:b5:fc:f6:be:7c:f7:43:ce:74:a0:d4:c0:cb:72: a0:ce:15:f9:6b:3a:c3:d2:f9:59:b2:07:c9:37:bd:e3:f7:d1: b6:65:40:86:29:c1:26:e5:ee:42:bd:75:60:99:a0:81:84:a5: f7:d8:47:5b:d2:61:63:0d:e9:34:a0:c8:35:f1:9b:d5:71:5b: 50:09:d4:07:4e:bd:5f:13:ae:63:90:25:00:5f:a2:c7:27:86: 23:83:08:de:4b:3c:54:53:ee:f8:d4:51:bf:cf:61:56:59:d5: 60:7b:f1:ac:b4:33:9e:ca:04:21:e1:fc:d1:90:91:86:ac:bb: b6:3e:13:eb:e8:2a:62:b1:d9:9e:95:0a:ba:60:fe:a2:ac:8e: 50:68:c4:f8:69:ef:90:21:b7:0d:f1:91:32:23:96:ff:54:69: 05:70:82:37:a2:5d:8f:2b:b0:c5:67:0d:2f:43:bf:ae:e8:f8: e0:de:b6:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUxMjA3MDAyOTI4WhcNMjUxMjE0MDAyOTI4WjAYMRYwFAYD VQQDEw02OTM0Y2E2OC03MjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7lSCDMhYa8TzRkAPwVDMoxdEuFbKKPRETc+RXwbbaFPl5wqIuXvgDTc+pWz ewKW6dNyIet0xKm3UJeuVaWP4NlQVmRpPWP+7Agl3rHRQWehKsxUqEytyQgVIW4Y yiy6m6dYdeCKO+QH4k2sUie/ySr/3S8FqPdFKrL3qP/lY047r1SYRUyNQhVhYcMO D98Iuj0niOleQ3G+nB8h57rbVmooIjXpyxjgvD/km2bAfc3rXGIaIeodVdiU+Gef 9BmhPhqRIdJWPgsvOILFKmqI0JlhgdV+JlJimMcAX/MU1d9B0boggXvlPRSynVmU yq/2Rhh3qTWDrHN9QNv0vHSCLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3t+GOs jXNWNAzMM1eHp3zLzAw9MB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9H3Iq7B9b0fPdp4ki+Y3Jd/sGiYvCggvQG9bVCapDJZfCEdaNl40f 3kC6WP7vHt3sUFNM/rgXk4n105Wruhi1+P3yKBbXtUWpJHJ8tfz2vnz3Q850oNTA y3KgzhX5azrD0vlZsgfJN73j99G2ZUCGKcEm5e5CvXVgmaCBhKX32Edb0mFjDek0 oMg18ZvVcVtQCdQHTr1fE65jkCUAX6LHJ4YjgwjeSzxUU+741FG/z2FWWdVge/Gs tDOeygQh4fzRkJGGrLu2PhPr6CpisdmelQq6YP6irI5QaMT4ae+QIbcN8ZEyI5b/ VGkFcII3ol2PK7DFZw0vQ7+u6Pjg3rZr -----END CERTIFICATE-----Generated at Sun Dec 7 02:25:00 2025 by rpki-client