This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft File: hhe5_iqn_uIl8uDS3IdkCYE33m0.mft (raw, json) Hash identifier: rR7oX/d9rY7sPUXTe21IDLFzBEhXzJlr9vAjKhlPlA0= Subject key identifier: 93:05:D3:0C:C1:17:FE:C4:83:39:90:47:2F:8A:81:5E:E9:5B:40:A6 Authority key identifier: 86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D Certificate issuer: /CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Certificate serial: 0A4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft Manifest number: 0A44 Signing time: Thu 18 Dec 2025 19:17:36 +0000 Manifest this update: Thu 18 Dec 2025 19:17:36 +0000 Manifest next update: Thu 25 Dec 2025 19:17:36 +0000 Files and hashes: 1: hhe5_iqn_uIl8uDS3IdkCYE33m0.crl (hash: 4aO1Z+XOzfzP1YisNMFDY8oXBu28it6eLu34qsVq0Js=) 2: E118A9DA7CB911EABD07CE5EC4F9AE02.roa (hash: QwIma1yY7YkOQP5MP7P6PHkUn+CQDErkQ0yx5EKSwl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2636 (0xa4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117715, serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Validity Not Before: Dec 18 19:17:36 2025 GMT Not After : Dec 25 19:17:36 2025 GMT Subject: CN=69445350-ed51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:73:a0:e9:ee:13:9b:01:a3:a7:ca:c7:70:1e: 8a:2b:ea:2c:6c:d7:13:ef:37:8b:0e:ba:7a:8e:be: b7:be:3d:bd:39:89:2c:72:5c:bf:83:9a:a9:b6:2c: b5:31:e4:50:e9:c3:92:a9:5b:99:92:b1:49:0a:3d: c7:66:08:cd:8f:19:2f:61:82:32:49:46:ef:1a:52: e3:09:e0:ae:a3:e5:c2:9c:29:27:c5:67:b7:59:39: b8:8e:56:62:64:ad:b6:ab:7c:99:21:9a:89:e2:30: b5:11:a8:f5:43:cd:78:34:68:e2:46:5b:99:ce:c7: e0:ad:9d:b1:ff:00:d5:2f:85:af:d1:0b:48:bb:2e: c7:f9:76:b5:9a:96:3b:53:8a:8c:4e:72:7f:d1:ac: 5c:c8:3b:aa:68:c5:18:34:e6:0f:ea:89:04:82:fe: 88:a0:5b:50:fd:7d:90:72:1b:3d:6e:65:3b:5c:bb: 40:63:ef:d4:09:33:32:30:b1:45:df:5f:14:d9:0c: fb:ef:bb:d0:ed:13:94:64:e1:80:e7:b3:cd:39:86: 1d:a3:17:0b:85:08:8f:0c:e7:97:df:80:44:88:4e: 4c:46:09:f5:1b:98:f0:1d:58:57:c9:93:4c:88:03: a2:f7:41:e8:42:97:8a:d9:f2:3a:15:ad:4d:50:c3: 96:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:05:D3:0C:C1:17:FE:C4:83:39:90:47:2F:8A:81:5E:E9:5B:40:A6 X509v3 Authority Key Identifier: keyid:86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:66:f7:0c:c0:4d:52:12:6d:38:f2:4e:9f:83:51:1b:14:08: 46:c1:7e:85:e6:48:f1:cd:6e:c3:b7:51:de:59:7d:97:d2:ce: 0d:9a:55:68:8e:c6:42:e8:e2:67:77:e2:a5:ce:e3:b6:d1:0a: 4a:97:30:bb:7b:f8:2d:0d:4f:8e:c4:2c:3c:ad:13:c0:ab:5f: 1d:d0:41:a0:01:d4:61:4c:43:00:31:28:8b:84:73:76:94:5c: 6c:8b:da:aa:e1:dd:5a:af:fe:48:17:d0:47:79:de:00:0d:ce: 82:52:75:f1:a5:96:11:b7:ff:6a:97:a3:24:6b:85:50:e0:45: 82:40:8b:04:2a:ad:a8:4c:8a:99:23:3b:fe:98:e7:84:66:1a: a0:4d:d4:9c:32:1d:45:1f:22:a8:70:ab:1d:57:26:b5:1a:01: 2e:23:37:db:f7:2c:df:42:51:72:4e:96:e2:0e:eb:1e:67:f7: 5f:c1:f0:3d:ba:5b:99:ed:37:58:fa:6d:c0:da:b5:5b:02:5e: 8f:1d:da:9d:f8:da:44:c3:43:44:6f:c5:b4:81:3e:e4:e7:78: f8:bc:4e:04:c9:e0:bf:46:ae:74:7e:7e:59:27:50:a4:a7:dd: 12:40:d8:2e:1c:ec:a3:dc:fd:ea:df:46:56:35:ee:dd:6c:df: db:72:01:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3MTUxMTAvBgNVBAUTKDg2MTdCOUZFMkFBN0ZFRTIyNUYyRTBEMkRDODc2NDA5 ODEzN0RFNkQwHhcNMjUxMjE4MTkxNzM2WhcNMjUxMjI1MTkxNzM2WjAYMRYwFAYD VQQDDA02OTQ0NTM1MC1lZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnOg6e4TmwGjp8rHcB6KK+osbNcT7zeLDrp6jr63vj29OYkscly/g5qptiy1 MeRQ6cOSqVuZkrFJCj3HZgjNjxkvYYIySUbvGlLjCeCuo+XCnCknxWe3WTm4jlZi ZK22q3yZIZqJ4jC1Eaj1Q814NGjiRluZzsfgrZ2x/wDVL4Wv0QtIuy7H+Xa1mpY7 U4qMTnJ/0axcyDuqaMUYNOYP6okEgv6IoFtQ/X2Qchs9bmU7XLtAY+/UCTMyMLFF 318U2Qz777vQ7ROUZOGA57PNOYYdoxcLhQiPDOeX34BEiE5MRgn1G5jwHVhXyZNM iAOi90HoQpeK2fI6Fa1NUMOWBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMF0wzB F/7EgzmQRy+KgV7pW0CmMB8GA1UdIwQYMBaAFIYXuf4qp/7iJfLg0tyHZAmBN95t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzcxNS9CQzFDNUYxMDdD QjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91SWw4dURTM0lka0NZRTMz bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hoZTVfaXFuX3VJbDh1RFMzSWRrQ1lFMzNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzcxNS9CQzFDNUYxMDdDQjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91 SWw4dURTM0lka0NZRTMzbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6ZvcMwE1SEm048k6fg1EbFAhGwX6F5kjxzW7Dt1HeWX2X0s4NmlVo jsZC6OJnd+KlzuO20QpKlzC7e/gtDU+OxCw8rRPAq18d0EGgAdRhTEMAMSiLhHN2 lFxsi9qq4d1ar/5IF9BHed4ADc6CUnXxpZYRt/9ql6Mka4VQ4EWCQIsEKq2oTIqZ Izv+mOeEZhqgTdScMh1FHyKocKsdVya1GgEuIzfb9yzfQlFyTpbiDuseZ/dfwfA9 uluZ7TdY+m3A2rVbAl6PHdqd+NpEw0NEb8W0gT7k53j4vE4EyeC/Rq50fn5ZJ1Ck p90SQNguHOyj3P3q30ZWNe7dbN/bcgFI -----END CERTIFICATE-----Generated at Sat Dec 20 06:02:14 2025 by rpki-client