This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: O2zMgC9p55/OsyjufFnWnhhzvIEZGVSAdjirN2v6PWI= Subject key identifier: 04:79:81:AF:83:0A:6A:E8:23:E6:72:55:EB:47:26:7F:01:05:6B:A6 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0253 Signing time: Sun 25 Jan 2026 01:02:35 +0000 Manifest this update: Sun 25 Jan 2026 01:02:35 +0000 Manifest next update: Sun 01 Feb 2026 01:02:35 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: dYq0TP+uWgOyKQaUOlHb66Etsq3ToYohbEBJ9Q/BrzM=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mjyhjdJ+f9qZUwTtbnPeF7P7FZuzG22vkFFh7yScmtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Jan 25 01:02:35 2026 GMT Not After : Feb 1 01:02:35 2026 GMT Subject: CN=69756bab-9dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:f7:0f:84:70:9d:8a:0f:1b:1c:f3:36:10:4f: 80:08:57:5e:02:13:79:a0:4a:58:8a:4f:5e:02:7f: 2b:e5:f0:be:3a:51:fa:7e:84:04:c5:4b:e4:2e:7a: c6:8c:dd:fd:71:03:5f:06:8e:68:7a:7c:1d:65:db: 81:f0:af:2f:4a:ec:73:98:85:22:8f:a0:5c:79:2a: d9:75:74:bf:f7:a3:dc:b5:20:83:32:56:f5:58:55: 8c:03:e9:4e:70:e6:3d:63:eb:16:52:cc:2b:04:21: e4:31:23:fe:ca:65:60:d9:76:a7:57:a8:73:66:8a: 94:87:40:cf:3d:57:96:5b:57:26:bb:6a:10:dd:d4: 75:d3:74:63:41:33:45:78:80:7f:48:bd:5e:0b:66: aa:76:0a:64:f2:19:c1:bb:c8:ee:6b:3a:2f:55:32: c0:e9:c9:b1:9f:45:69:93:3d:c7:15:65:2c:35:e7: da:49:f5:97:1e:43:b6:a4:c7:13:52:25:fe:55:d9: e9:c0:50:5c:c4:e0:ab:44:3d:b9:81:fd:80:37:9b: 73:d4:e9:3b:3a:d2:0b:53:5f:5d:05:e8:8b:e0:33: 6c:e6:5e:fd:f8:5a:5d:f4:c3:de:c7:11:75:75:c2: cd:b0:91:5c:e0:35:73:1b:fe:a1:cd:21:a3:36:9c: 6d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:79:81:AF:83:0A:6A:E8:23:E6:72:55:EB:47:26:7F:01:05:6B:A6 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c4:e2:2c:d4:41:3d:67:b5:93:08:95:af:28:9e:02:e8:0a: 1d:5b:98:41:aa:9e:ab:38:fa:19:e8:8f:cc:50:31:31:8e:24: f3:ca:47:11:65:92:75:5a:8c:24:08:a7:94:be:20:29:85:b9: a5:fb:6a:ff:80:a4:e6:d8:7a:8f:e9:e0:7e:99:78:0d:c0:11: 22:7e:85:e6:0b:ba:5c:0a:10:37:4a:28:a7:20:76:ec:c2:9d: 52:6e:87:22:f7:40:17:af:51:56:92:47:eb:5e:37:5d:68:45: 32:73:3c:47:06:84:2c:08:9c:4e:f7:1e:6e:fb:a0:99:2d:41: ea:3d:8f:de:02:ea:60:4f:31:80:8f:2c:7f:ca:a0:33:02:8c: 26:63:d0:52:65:c5:4a:e7:af:b3:fd:03:20:e1:db:f9:bf:c7: 34:16:41:e0:b4:29:ca:e7:a9:15:9e:c8:f7:e2:7c:81:78:df: 8e:95:f0:dc:31:7e:fe:63:af:a7:f0:7e:f7:89:65:9d:a2:f9: d4:22:6d:f0:39:9b:c4:fb:6f:94:a6:20:61:c2:5a:58:3f:68: 88:de:b2:86:3f:62:08:98:0e:0f:83:52:f3:f3:21:b2:c0:5d: 9f:68:7d:48:5d:6d:f0:67:50:a8:c3:dd:07:f4:7c:12:a1:de: 99:8f:54:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwMTI1MDEwMjM1WhcNMjYwMjAxMDEwMjM1WjAYMRYwFAYD VQQDDA02OTc1NmJhYi05ZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhvcPhHCdig8bHPM2EE+ACFdeAhN5oEpYik9eAn8r5fC+OlH6foQExUvkLnrG jN39cQNfBo5oenwdZduB8K8vSuxzmIUij6BceSrZdXS/96PctSCDMlb1WFWMA+lO cOY9Y+sWUswrBCHkMSP+ymVg2XanV6hzZoqUh0DPPVeWW1cmu2oQ3dR103RjQTNF eIB/SL1eC2aqdgpk8hnBu8juazovVTLA6cmxn0Vpkz3HFWUsNefaSfWXHkO2pMcT UiX+VdnpwFBcxOCrRD25gf2AN5tz1Ok7OtILU19dBeiL4DNs5l79+Fpd9MPexxF1 dcLNsJFc4DVzG/6hzSGjNpxtpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAR5ga+D CmroI+ZyVetHJn8BBWumMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoxOIs1EE9Z7WTCJWvKJ4C6AodW5hBqp6rOPoZ6I/MUDExjiTzykcR ZZJ1WowkCKeUviAphbml+2r/gKTm2HqP6eB+mXgNwBEifoXmC7pcChA3SiinIHbs wp1Sboci90AXr1FWkkfrXjddaEUyczxHBoQsCJxO9x5u+6CZLUHqPY/eAupgTzGA jyx/yqAzAowmY9BSZcVK56+z/QMg4dv5v8c0FkHgtCnK56kVnsj34nyBeN+OlfDc MX7+Y6+n8H73iWWdovnUIm3wOZvE+2+UpiBhwlpYP2iI3rKGP2IImA4Pg1Lz8yGy wF2faH1IXW3wZ1Cow90H9HwSod6Zj1QY -----END CERTIFICATE-----Generated at Sun Jan 25 20:34:40 2026 by rpki-client