This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: 7Va8MdAliMEpzzvHUSTPtPy0dl/lbhIscg7y7aXuWvk= Subject key identifier: 03:70:C3:92:BA:D6:80:22:9F:F9:DD:45:FB:61:0E:AC:B6:FB:9B:04 Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 0735 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 0730 Signing time: Sat 06 Dec 2025 20:46:21 +0000 Manifest this update: Sat 06 Dec 2025 20:46:20 +0000 Manifest next update: Sat 13 Dec 2025 20:46:20 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: 4uP/fLWqI6DaX/uoYCBL2cfv/pISMqKNC+itTBUWq/8=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Dec 6 20:46:20 2025 GMT Not After : Dec 13 20:46:20 2025 GMT Subject: CN=6934961c-ee5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:8c:c1:88:58:22:01:23:e7:01:1c:09:6d: 9e:aa:24:de:51:4f:cc:22:30:e3:b3:f2:9d:a6:08: a6:03:0d:9a:f4:cd:37:08:e7:37:bb:d4:fa:de:d5: f3:bf:4f:72:51:d1:87:63:2f:3f:c9:15:20:ff:a2: 9b:5f:ac:d7:7a:69:b1:4d:63:a6:ee:6e:3b:1d:61: b3:e2:fb:55:f0:3c:c3:68:62:34:33:96:a9:59:35: 2f:8e:e9:81:e6:33:4b:23:47:be:39:87:32:e8:41: 38:ff:f9:bb:64:0c:e7:a7:1b:c6:95:f9:e9:e2:47: f2:64:80:8c:0f:af:54:02:30:6d:bd:08:03:ab:d4: 82:41:8c:77:4a:c5:fb:4f:2e:16:f7:8d:65:23:44: 45:01:e9:3a:94:76:9d:c0:a3:8e:77:a8:4b:3f:1f: 5c:0e:fd:4b:85:bc:8e:15:b1:7f:f6:fa:a5:67:ad: 7f:99:3c:46:30:61:17:a4:8f:81:dd:71:d5:c7:db: 13:ac:e1:3e:56:6a:9f:2a:de:40:9c:0d:57:78:b3: b9:44:b8:29:68:99:ba:23:c4:8d:4d:af:42:76:dd: e6:97:bc:aa:ec:05:d3:04:72:30:14:85:84:60:e6: b0:c8:90:63:1e:a3:d6:2b:e4:8e:d6:f4:ab:15:ac: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:70:C3:92:BA:D6:80:22:9F:F9:DD:45:FB:61:0E:AC:B6:FB:9B:04 X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c1:5e:2e:de:c7:15:10:ea:a3:1b:17:7a:ad:89:87:b2:6e: 88:f4:82:5b:e9:f6:97:e5:11:7a:92:d3:3c:61:1e:eb:91:76: 62:62:47:79:ed:8a:68:ff:eb:1c:9b:cf:40:60:77:ac:2b:d5: 1f:10:d7:7d:a1:e2:af:04:ec:7a:87:5b:96:33:f8:c3:35:49: 0c:f0:7e:21:bd:ce:5f:60:16:c4:2e:b4:f5:8b:41:8a:0a:a3: fd:70:df:fc:ea:bc:5d:40:d6:63:53:96:77:2b:28:84:2c:57: bc:e3:e0:b7:f3:a4:67:32:9e:51:9f:68:2b:e6:45:7d:9c:14: 21:51:69:ef:4c:f9:4d:aa:23:56:03:8b:29:b2:c6:21:33:f5: 2c:75:29:80:46:0c:1e:a8:9c:10:2e:e5:04:7c:c7:cc:37:2a: 93:85:c7:80:53:c2:26:8a:d8:6a:e1:de:bd:9b:c8:4f:4b:54: 23:88:12:ba:2a:d9:23:a0:0e:40:b9:1c:e3:72:14:6e:ef:07: 0a:75:9c:89:f5:94:e8:fb:78:47:98:d0:8d:42:09:9b:b0:83: 0b:f1:86:57:dd:cf:10:38:72:fc:c9:17:18:75:c4:bd:c4:1b: f5:02:6e:e1:99:a2:d3:f0:78:19:de:f5:fc:46:ed:b0:16:b4: 3c:3b:ba:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUxMjA2MjA0NjIwWhcNMjUxMjEzMjA0NjIwWjAYMRYwFAYD VQQDEw02OTM0OTYxYy1lZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxheMwYhYIgEj5wEcCW2eqiTeUU/MIjDjs/KdpgimAw2a9M03COc3u9T63tXz v09yUdGHYy8/yRUg/6KbX6zXemmxTWOm7m47HWGz4vtV8DzDaGI0M5apWTUvjumB 5jNLI0e+OYcy6EE4//m7ZAznpxvGlfnp4kfyZICMD69UAjBtvQgDq9SCQYx3SsX7 Ty4W941lI0RFAek6lHadwKOOd6hLPx9cDv1LhbyOFbF/9vqlZ61/mTxGMGEXpI+B 3XHVx9sTrOE+VmqfKt5AnA1XeLO5RLgpaJm6I8SNTa9Cdt3ml7yq7AXTBHIwFIWE YOawyJBjHqPWK+SO1vSrFayjHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANww5K6 1oAin/ndRfthDqy2+5sEMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqwV4u3scVEOqjGxd6rYmHsm6I9IJb6faX5RF6ktM8YR7rkXZiYkd5 7Ypo/+scm89AYHesK9UfENd9oeKvBOx6h1uWM/jDNUkM8H4hvc5fYBbELrT1i0GK CqP9cN/86rxdQNZjU5Z3KyiELFe84+C386RnMp5Rn2gr5kV9nBQhUWnvTPlNqiNW A4spssYhM/UsdSmARgweqJwQLuUEfMfMNyqThceAU8Imithq4d69m8hPS1QjiBK6 KtkjoA5AuRzjchRu7wcKdZyJ9ZTo+3hHmNCNQgmbsIML8YZX3c8QOHL8yRcYdcS9 xBv1Am7hmaLT8HgZ3vX8Ru2wFrQ8O7qe -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:31 2025 by rpki-client