This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: LlDiPuDBAke/qAgoYc+WY6MdpzTBXxXHp1LNGvHZHzU= Subject key identifier: 6B:6A:1A:CF:03:88:0A:0C:1F:62:FB:37:47:B2:51:E0:9E:0B:D5:91 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 023F Signing time: Sun 21 Dec 2025 01:08:49 +0000 Manifest this update: Sun 21 Dec 2025 01:08:49 +0000 Manifest next update: Sun 28 Dec 2025 01:08:49 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: PMluEFA8qBlhOzQkAhfZjHjrvUk2Lo75xM02qcKutZQ=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Dec 21 01:08:49 2025 GMT Not After : Dec 28 01:08:49 2025 GMT Subject: CN=694748a1-c650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b7:04:55:24:08:d3:a5:02:35:fb:49:e0:9f: f8:f2:95:c0:17:21:f2:86:b1:01:08:23:e5:8f:ed: 21:31:56:a0:43:14:0e:f6:3d:c5:0d:30:c1:5f:f1: 13:3f:de:c1:8e:96:38:37:34:e5:a4:09:7f:25:72: 77:ee:a6:35:a6:77:6c:ab:b5:55:eb:95:09:8b:13: 4b:d0:89:dd:b5:18:1c:ce:14:f4:8f:e8:91:ec:4f: ae:10:0f:09:f1:72:fc:ac:0b:47:bb:6f:b2:ad:3c: 78:b2:74:ac:30:26:73:05:5b:72:29:ca:41:ab:8b: 54:d2:17:65:5c:25:36:8c:6a:f0:17:68:07:db:ed: f8:b3:7c:34:26:43:4f:83:26:c2:c0:9d:32:e5:bd: eb:25:32:c0:d7:fb:09:65:8a:98:b6:88:9b:94:6f: 9a:1f:a6:7d:96:51:55:f0:d9:b9:32:2a:cb:6e:93: 40:f9:a3:b2:72:2a:e7:f8:95:5c:4d:7b:9f:44:43: cf:cc:95:d4:eb:a3:52:23:82:7f:96:70:3e:6f:92: 8e:87:5d:71:3f:7d:72:d8:29:81:7c:c4:6b:0c:9b: 01:26:44:c6:5e:e4:cc:2d:a1:85:82:38:73:1b:d2: a4:2c:f8:81:a4:c2:80:66:1a:21:23:8c:86:f0:05: 95:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6A:1A:CF:03:88:0A:0C:1F:62:FB:37:47:B2:51:E0:9E:0B:D5:91 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:59:c5:f0:4e:86:1b:f9:0a:8a:97:25:9c:69:21:03:e7:20: c5:2b:9a:08:2a:e9:3b:83:f5:69:28:6b:79:5f:e0:7c:5a:0e: 54:de:1a:f3:1f:ff:89:55:ba:fb:a0:3f:1f:11:34:38:a9:ab: 82:89:b8:3f:51:0e:b7:0b:38:41:2b:1e:50:45:31:79:9a:b8: 06:d8:03:e3:0d:3d:87:4f:67:c9:bd:ec:86:cd:a5:e4:ca:4f: 5d:11:64:19:8c:81:26:ea:fe:02:ce:66:cf:66:2e:3c:28:71: 6b:f6:07:a0:98:57:06:a9:8f:14:07:a5:11:37:84:f7:18:76: 34:b6:ce:1d:c8:cc:08:58:f2:d9:98:63:79:ea:01:24:30:49: 00:fc:7e:d3:fa:38:bd:37:b6:0c:3b:0d:72:87:39:30:1a:22: 83:4f:da:61:dc:b8:ec:c3:7d:af:2e:f0:75:f0:ff:40:b0:5b: 45:b2:33:35:42:bb:42:b7:02:b6:0a:c3:2c:e8:c5:4e:75:1d: 03:8f:cb:2d:14:f8:92:1f:e4:7f:fa:19:06:3a:ca:bc:da:7f: 87:f0:84:0b:46:c2:99:da:cc:1a:01:7d:ff:95:b9:98:5e:da: 3d:54:b8:09:55:c9:79:71:c7:28:53:0e:04:cc:90:b6:0a:8f: 27:96:a3:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUxMjIxMDEwODQ5WhcNMjUxMjI4MDEwODQ5WjAYMRYwFAYD VQQDDA02OTQ3NDhhMS1jNjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLcEVSQI06UCNftJ4J/48pXAFyHyhrEBCCPlj+0hMVagQxQO9j3FDTDBX/ET P97BjpY4NzTlpAl/JXJ37qY1pndsq7VV65UJixNL0IndtRgczhT0j+iR7E+uEA8J 8XL8rAtHu2+yrTx4snSsMCZzBVtyKcpBq4tU0hdlXCU2jGrwF2gH2+34s3w0JkNP gybCwJ0y5b3rJTLA1/sJZYqYtoiblG+aH6Z9llFV8Nm5MirLbpNA+aOycirn+JVc TXufREPPzJXU66NSI4J/lnA+b5KOh11xP31y2CmBfMRrDJsBJkTGXuTMLaGFgjhz G9KkLPiBpMKAZhohI4yG8AWVeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtqGs8D iAoMH2L7N0eyUeCeC9WRMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGWcXwToYb+QqKlyWcaSED5yDFK5oIKuk7g/VpKGt5X+B8Wg5U3hrz H/+JVbr7oD8fETQ4qauCibg/UQ63CzhBKx5QRTF5mrgG2APjDT2HT2fJveyGzaXk yk9dEWQZjIEm6v4CzmbPZi48KHFr9gegmFcGqY8UB6URN4T3GHY0ts4dyMwIWPLZ mGN56gEkMEkA/H7T+ji9N7YMOw1yhzkwGiKDT9ph3Ljsw32vLvB18P9AsFtFsjM1 QrtCtwK2CsMs6MVOdR0Dj8stFPiSH+R/+hkGOsq82n+H8IQLRsKZ2swaAX3/lbmY Xto9VLgJVcl5cccoUw4EzJC2Co8nlqMz -----END CERTIFICATE-----Generated at Sun Dec 21 20:03:24 2025 by rpki-client