This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: fIR9264sZXWhNpDx70IdCqKFKozoHDE7zsHhkHCRlhI= Subject key identifier: 7E:F8:78:38:21:F5:81:47:F9:A9:A8:B3:F8:27:03:A0:8E:56:EB:AC Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 05DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 05D5 Signing time: Sat 06 Dec 2025 21:51:32 +0000 Manifest this update: Sat 06 Dec 2025 21:51:32 +0000 Manifest next update: Sat 13 Dec 2025 21:51:32 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: Fb+pFeIJJLLf7q0qRgm8i1NtDli2oEsGzF1C3fmAkIg=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: tUUqvSA3OdWSARFzs61i7ZLEvpiTAwA30jzc1JS2Wi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Dec 6 21:51:32 2025 GMT Not After : Dec 13 21:51:32 2025 GMT Subject: CN=6934a564-ac85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:72:31:60:0b:13:0f:26:03:ea:35:fd:f7:5d: 7f:7d:13:04:53:0d:81:05:d5:8e:1e:22:82:d7:2d: 2c:7b:15:ce:ac:8c:7b:04:42:ef:1b:35:5c:db:b4: 87:23:df:2d:96:69:0b:fd:f1:81:dd:c2:8f:2b:1b: 93:bb:8f:99:93:a9:6a:13:f2:c2:6d:cf:83:93:ac: 59:e9:68:b2:25:17:c0:ab:b7:9a:bb:b2:61:5c:aa: c4:c5:53:c3:1a:02:c1:93:eb:76:d1:25:6b:f3:16: cd:31:dd:9d:6b:59:58:08:51:38:e8:32:a4:26:c3: 29:43:0e:e8:42:a4:a1:42:af:55:bc:5a:bb:a7:d0: 13:d3:7c:81:f2:96:bf:bc:4d:76:9b:f2:ad:6b:82: 38:5a:27:d3:64:20:67:50:6c:1e:4c:b7:b6:37:ca: 3e:6d:f8:d7:8b:68:33:a7:19:9d:d9:cf:68:6a:02: 00:83:8d:63:69:f3:eb:56:8c:d4:0b:a6:72:6c:02: 28:f3:13:91:c8:1b:a9:33:41:3d:55:6f:06:5a:69: 43:35:92:d4:3c:29:aa:25:af:cc:cd:aa:39:0a:56: 24:9a:24:85:b6:3b:39:7f:a0:be:de:2a:70:ec:dd: f3:57:55:5b:c6:cf:42:18:a8:c7:1b:a5:bc:3a:15: c1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F8:78:38:21:F5:81:47:F9:A9:A8:B3:F8:27:03:A0:8E:56:EB:AC X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ab:29:36:e3:ab:19:78:67:3d:30:13:26:a5:0e:d8:68:36: 24:bf:92:79:0f:f4:89:6a:2a:30:e2:65:6c:85:80:c9:db:a9: fd:07:c3:23:5d:0e:6f:eb:17:29:6c:76:b0:60:ff:3f:6a:1c: 08:f7:20:6a:6d:01:3c:25:52:c7:f4:05:56:ac:8a:88:b6:38: e5:c2:85:e0:f3:9a:62:43:cf:6a:19:fd:d0:85:94:9c:2e:35: 18:f2:56:74:91:78:fe:09:2c:f6:3a:82:a0:5a:7b:5c:b0:e7: ab:09:e6:da:84:4e:69:b2:c4:a6:31:0e:2d:3c:a5:ad:cf:6b: fb:53:f0:31:20:f3:5b:07:c4:a6:85:2f:a5:ee:47:b3:9e:c4: 0f:49:01:94:ee:32:83:4b:36:d0:69:b5:da:3b:71:6d:5f:2d: 80:b7:47:7b:aa:ae:9d:ed:74:5e:3f:70:16:c7:8c:81:60:37: d8:1d:87:f7:29:fb:d2:84:59:18:32:e1:fa:c0:22:e4:79:bb: a3:94:1d:21:54:79:f8:35:2d:c0:35:6a:1a:f7:d2:7d:05:e8: f6:6e:d0:21:a0:44:80:2e:bf:7a:f6:ee:a3:2d:e9:20:8e:20: ba:b2:45:2b:60:2e:74:f4:07:ce:5b:0e:7f:f9:a5:d5:08:b2: 7e:5a:56:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUxMjA2MjE1MTMyWhcNMjUxMjEzMjE1MTMyWjAYMRYwFAYD VQQDEw02OTM0YTU2NC1hYzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk3IxYAsTDyYD6jX9911/fRMEUw2BBdWOHiKC1y0sexXOrIx7BELvGzVc27SH I98tlmkL/fGB3cKPKxuTu4+Zk6lqE/LCbc+Dk6xZ6WiyJRfAq7eau7JhXKrExVPD GgLBk+t20SVr8xbNMd2da1lYCFE46DKkJsMpQw7oQqShQq9VvFq7p9AT03yB8pa/ vE12m/Kta4I4WifTZCBnUGweTLe2N8o+bfjXi2gzpxmd2c9oagIAg41jafPrVozU C6ZybAIo8xORyBupM0E9VW8GWmlDNZLUPCmqJa/Mzao5ClYkmiSFtjs5f6C+3ipw 7N3zV1Vbxs9CGKjHG6W8OhXB0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH74eDgh 9YFH+amos/gnA6COVuusMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnqyk246sZeGc9MBMmpQ7YaDYkv5J5D/SJaiow4mVshYDJ26n9B8Mj XQ5v6xcpbHawYP8/ahwI9yBqbQE8JVLH9AVWrIqItjjlwoXg85piQ89qGf3QhZSc LjUY8lZ0kXj+CSz2OoKgWntcsOerCebahE5pssSmMQ4tPKWtz2v7U/AxIPNbB8Sm hS+l7keznsQPSQGU7jKDSzbQabXaO3FtXy2At0d7qq6d7XReP3AWx4yBYDfYHYf3 KfvShFkYMuH6wCLkebujlB0hVHn4NS3ANWoa99J9Bej2btAhoESALr969u6jLekg jiC6skUrYC509AfOWw5/+aXVCLJ+Wlbt -----END CERTIFICATE-----Generated at Sat Dec 6 23:24:05 2025 by rpki-client