This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: 0LPJ0HZ3P8M3rzuuaS4Hogto/zsCK+ZQbSPvbLO1t1A= Subject key identifier: E9:07:14:FF:4F:8F:BB:D6:1C:AD:15:34:AF:D1:72:5C:FC:91:97:CB Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 01D9 Signing time: Fri 05 Dec 2025 01:02:51 +0000 Manifest this update: Fri 05 Dec 2025 01:02:50 +0000 Manifest next update: Fri 12 Dec 2025 01:02:50 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: R/wZCYi+9Jzw15+ClbanAXh6Ij6PoxhXXvFnREpw0dA=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Dec 5 01:02:50 2025 GMT Not After : Dec 12 01:02:50 2025 GMT Subject: CN=69322f3b-8187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:81:c5:4a:a8:40:9c:31:86:28:a1:c1:e5: 81:9c:13:b2:a4:8e:84:ec:6f:64:5c:7f:29:f9:b4: 61:a3:33:ff:a3:02:72:f8:8a:6b:b3:b6:58:61:2d: a1:e2:b0:64:86:47:fe:06:c2:a6:69:82:b1:f5:17: c1:d9:fb:ab:8a:b7:f8:11:31:ad:fd:85:1a:de:3a: 1b:aa:50:60:a5:ce:6e:c4:15:f6:8a:cd:97:60:36: 3c:09:b4:79:25:cd:66:ca:53:d6:ba:f0:09:b3:2e: 1c:ec:1b:64:91:e4:0a:9d:c5:11:4b:78:13:8d:29: f6:1a:17:7b:5e:a1:37:18:d6:37:e9:a7:17:96:ae: 3b:9f:d7:84:f1:43:52:fe:6d:5e:de:7e:26:55:63: e1:02:4f:9a:7f:67:02:89:d2:00:8e:9f:ae:5e:d5: 5c:27:c6:30:ba:00:84:87:3c:09:30:0d:da:c6:f8: b8:1b:66:19:4a:09:37:a9:15:64:a8:98:e3:29:fd: 75:7b:22:5d:88:54:cc:41:b2:da:19:f7:71:e8:0c: a4:eb:7a:12:42:6b:3b:ec:44:e5:64:99:72:a5:53: b2:da:0c:64:3e:f1:02:22:aa:b6:89:02:d4:28:05: 6e:5e:3a:60:1e:4a:e7:84:19:fe:59:a0:8c:7d:11: ac:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:07:14:FF:4F:8F:BB:D6:1C:AD:15:34:AF:D1:72:5C:FC:91:97:CB X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b2:b0:e1:ec:41:1e:9d:53:97:aa:5f:35:e3:a4:66:1a:b4: 55:6b:8f:b3:3e:ed:3b:a5:60:ed:45:05:aa:14:5a:c6:4e:f1: e5:7c:61:a0:25:1f:91:29:4e:a2:a1:0c:f7:e8:83:60:35:05: 39:02:50:9f:f6:58:eb:31:c3:b4:48:31:71:45:08:da:d6:eb: 30:b6:e4:ac:9a:dd:50:9e:3d:f1:6b:03:06:0b:6a:06:85:19: e3:85:1d:9e:bb:ae:7b:e6:de:41:02:2c:d7:f2:61:7d:f8:f1: 2b:ce:d6:e9:e5:40:a4:e9:ce:23:c6:a8:b9:41:83:32:8e:2d: d8:47:8f:e8:6b:73:78:72:92:03:99:dc:6f:60:42:7c:fb:4b: cc:6a:51:ff:4d:85:b3:70:cb:d5:17:ca:3e:ef:a7:7b:18:c8: a6:2d:70:a6:70:6f:a8:b2:30:d1:bd:b6:c1:ca:76:73:61:c9: 76:b5:1f:dd:a3:7a:17:53:a3:ed:8b:68:bd:49:fc:6f:3c:a4: c2:b4:ef:34:c8:49:ca:74:96:38:d1:8f:23:e9:ad:e4:70:02: cc:2f:d6:4c:ff:aa:30:cb:e8:53:cd:75:6c:ec:c4:7e:ed:45: 55:c3:e2:e5:20:00:85:dc:62:84:5a:0b:11:6a:87:42:0c:16: 36:70:d3:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUxMjA1MDEwMjUwWhcNMjUxMjEyMDEwMjUwWjAYMRYwFAYD VQQDEw02OTMyMmYzYi04MTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwraBxUqoQJwxhiihweWBnBOypI6E7G9kXH8p+bRhozP/owJy+Iprs7ZYYS2h 4rBkhkf+BsKmaYKx9RfB2furirf4ETGt/YUa3jobqlBgpc5uxBX2is2XYDY8CbR5 Jc1mylPWuvAJsy4c7BtkkeQKncURS3gTjSn2Ghd7XqE3GNY36acXlq47n9eE8UNS /m1e3n4mVWPhAk+af2cCidIAjp+uXtVcJ8YwugCEhzwJMA3axvi4G2YZSgk3qRVk qJjjKf11eyJdiFTMQbLaGfdx6Ayk63oSQms77ETlZJlypVOy2gxkPvECIqq2iQLU KAVuXjpgHkrnhBn+WaCMfRGsRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkHFP9P j7vWHK0VNK/Rclz8kZfLMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAsrDh7EEenVOXql8146RmGrRVa4+zPu07pWDtRQWqFFrGTvHlfGGg JR+RKU6ioQz36INgNQU5AlCf9ljrMcO0SDFxRQja1uswtuSsmt1Qnj3xawMGC2oG hRnjhR2eu6575t5BAizX8mF9+PErztbp5UCk6c4jxqi5QYMyji3YR4/oa3N4cpID mdxvYEJ8+0vMalH/TYWzcMvVF8o+76d7GMimLXCmcG+osjDRvbbBynZzYcl2tR/d o3oXU6Pti2i9SfxvPKTCtO80yEnKdJY40Y8j6a3kcALML9ZM/6owy+hTzXVs7MR+ 7UVVw+LlIACF3GKEWgsRaodCDBY2cNO5 -----END CERTIFICATE-----Generated at Sat Dec 6 20:46:16 2025 by rpki-client