This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: SBTAce1OpJu2tg3NHkKCYPyP2t0RSid9eWT5PewdXJI= Subject key identifier: 9B:7B:87:91:93:4E:06:54:DD:54:8B:64:8D:E4:27:4E:A9:32:1C:6B Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C90 Signing time: Thu 04 Dec 2025 17:54:33 +0000 Manifest this update: Thu 04 Dec 2025 17:54:33 +0000 Manifest next update: Thu 11 Dec 2025 17:54:33 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: na1iLU7Yy7fKXue+imjNkUQlK9c/gttScCiQPrIfmxE=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: OzJN0re3xgLzOjNQ/4EO/Q5rjMxHo1x+d+hZ2rjf3vw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Dec 4 17:54:33 2025 GMT Not After : Dec 11 17:54:33 2025 GMT Subject: CN=6931cad9-2953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:43:98:8c:8a:32:d7:44:b5:4b:fe:64:6f:12: 1a:0d:01:c8:c6:2c:81:0a:b0:e2:7b:ab:a2:00:88: 10:27:9d:b9:4c:5a:b3:8f:b4:25:8d:01:0f:ee:93: 88:dd:dc:e6:6f:cb:f5:ac:16:44:fa:10:81:a7:c9: ca:90:e7:51:81:1c:15:33:10:43:a7:54:f3:2e:9e: 5c:c3:f6:93:a7:e8:eb:a7:49:59:e3:8a:13:57:75: 02:32:e3:0b:d8:74:1e:b5:65:58:83:99:91:f8:0d: 76:bd:22:99:8d:31:ea:45:ef:8a:08:0a:e7:c9:f0: ec:ad:76:6f:06:5e:6c:d4:74:3f:f3:29:65:2e:89: e9:83:5f:93:ff:8c:17:82:9d:3f:5a:4a:d2:95:8f: a0:d3:ba:3e:d2:88:46:d1:ea:76:de:a1:bb:40:60: 5a:c7:a9:fa:74:4e:00:5d:cf:dd:76:d9:a5:bb:21: 7d:10:85:11:d0:be:bd:d9:ec:30:93:c1:ce:a2:e8: cd:67:67:65:21:cb:88:37:93:1c:f0:0c:11:d0:0c: d9:32:74:95:0f:53:58:70:69:51:51:e4:aa:11:92: 50:0b:0e:53:5f:14:54:cd:4d:a3:c2:50:19:38:37: 3b:c2:1f:1c:2b:c3:9c:d8:eb:ee:78:58:ee:21:c1: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7B:87:91:93:4E:06:54:DD:54:8B:64:8D:E4:27:4E:A9:32:1C:6B X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:6c:73:2d:7f:a2:1c:6f:d3:b8:89:41:28:2a:0e:72:94:11: a7:f8:ad:31:57:75:ad:38:9f:42:18:71:74:9c:bb:b4:d8:d3: 9b:0e:bd:36:05:6c:b4:cd:15:21:35:f3:e5:24:36:cf:25:50: 94:ec:54:93:11:77:6f:24:2b:65:14:12:85:6e:92:01:7c:65: c3:bb:d2:b3:88:4b:31:29:52:b3:3b:e8:18:6b:bb:b2:37:6d: 51:ab:c2:06:0d:26:f6:d1:d2:4a:1f:8b:4d:e0:5f:24:0a:90: 20:54:11:ab:50:60:94:62:31:8e:6d:a4:8b:c8:94:f0:52:59: 7b:72:9d:84:b2:51:a6:bf:cb:0a:31:45:e9:ae:68:b5:c1:cc: 6f:b1:93:b0:a2:3b:2b:c8:69:33:e5:37:6c:27:d4:d2:9f:3b: 5e:2d:3f:00:ab:14:4e:b6:a6:d6:56:16:63:3f:73:7e:69:6e: f8:60:96:b0:91:19:58:33:41:b1:94:b0:b6:68:0b:2a:be:d2: 51:9e:8e:5f:88:1b:1e:f0:e4:9f:6c:11:ec:bc:6b:bc:27:f8: 27:7d:61:67:fc:a6:92:d2:90:f9:07:65:6a:75:5d:ab:4b:3c: c0:b7:9d:12:50:77:da:98:7b:31:57:30:c4:64:0b:c8:6b:94: a3:9b:8a:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUxMjA0MTc1NDMzWhcNMjUxMjExMTc1NDMzWjAYMRYwFAYD VQQDEw02OTMxY2FkOS0yOTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8kOYjIoy10S1S/5kbxIaDQHIxiyBCrDie6uiAIgQJ525TFqzj7QljQEP7pOI 3dzmb8v1rBZE+hCBp8nKkOdRgRwVMxBDp1TzLp5cw/aTp+jrp0lZ44oTV3UCMuML 2HQetWVYg5mR+A12vSKZjTHqRe+KCArnyfDsrXZvBl5s1HQ/8yllLonpg1+T/4wX gp0/WkrSlY+g07o+0ohG0ep23qG7QGBax6n6dE4AXc/ddtmluyF9EIUR0L692eww k8HOoujNZ2dlIcuIN5Mc8AwR0AzZMnSVD1NYcGlRUeSqEZJQCw5TXxRUzU2jwlAZ ODc7wh8cK8Oc2OvueFjuIcFcVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJt7h5GT TgZU3VSLZI3kJ06pMhxrMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCObHMtf6Icb9O4iUEoKg5ylBGn+K0xV3WtOJ9CGHF0nLu02NObDr02 BWy0zRUhNfPlJDbPJVCU7FSTEXdvJCtlFBKFbpIBfGXDu9KziEsxKVKzO+gYa7uy N21Rq8IGDSb20dJKH4tN4F8kCpAgVBGrUGCUYjGObaSLyJTwUll7cp2EslGmv8sK MUXprmi1wcxvsZOwojsryGkz5TdsJ9TSnzteLT8AqxROtqbWVhZjP3N+aW74YJaw kRlYM0GxlLC2aAsqvtJRno5fiBse8OSfbBHsvGu8J/gnfWFn/KaS0pD5B2VqdV2r SzzAt50SUHfamHsxVzDEZAvIa5Sjm4rf -----END CERTIFICATE-----Generated at Sat Dec 6 15:26:53 2025 by rpki-client