This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft (raw, json) Hash identifier: Nq0cyJrE5Fquy9Zn+oJwSZ/6YonfW673hMQjLYwawyA= Subject key identifier: F1:4D:C9:BE:99:5E:A6:C9:5C:93:8A:7A:81:28:73:05:5E:F4:7B:41 Authority key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C Certificate issuer: /CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft Manifest number: 0227 Signing time: Sun 21 Dec 2025 01:19:56 +0000 Manifest this update: Sun 21 Dec 2025 01:19:56 +0000 Manifest next update: Sun 28 Dec 2025 01:19:56 +0000 Files and hashes: 1: HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl (hash: A3Je77z9RwCMRoa+KBo2d4dLirOhTuqDckLY8MYg2/A=) 2: F2AB2F288FE011EDA9919C57C4F9AE02.roa (hash: Rf57xWILJOvL68EEABL6r6dfZw+gyCnJxd924tHN+AU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163609, serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Validity Not Before: Dec 21 01:19:56 2025 GMT Not After : Dec 28 01:19:56 2025 GMT Subject: CN=69474b3c-35b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:9d:4a:67:d8:2f:a5:db:45:41:8f:a9:fb:33: 85:11:02:9b:57:89:67:5f:bf:1a:50:48:39:d4:25: fb:1f:70:1f:d1:4a:b8:60:7d:67:a5:6e:bf:c6:23: 85:88:2d:f9:e4:b1:e6:cd:d0:f3:76:9c:1c:9d:39: ee:3a:16:7f:d0:a0:d7:76:22:fd:a0:85:9a:14:af: 67:e9:fb:88:a3:a1:9c:7a:4d:41:2c:94:08:68:59: 57:41:e4:20:3b:c2:7e:db:12:42:9e:49:98:98:39: a7:38:f4:37:b6:3f:24:2f:3c:4c:ff:92:5c:d9:ba: 1a:c8:aa:d1:90:cd:9b:17:56:79:00:7c:03:9c:b9: 62:f6:f0:6f:67:29:e4:6b:fd:54:cd:f4:eb:6f:c1: f4:0a:75:72:c5:fe:be:96:57:2c:54:28:31:5d:5b: 4f:51:d4:0f:6f:43:45:9a:78:52:b9:f3:1e:44:03: 02:1d:69:a9:bd:62:9f:44:91:a5:ad:13:fe:cb:2a: f8:90:40:b4:50:f0:cf:94:8d:a4:0d:b8:81:cb:13: 77:ad:13:07:81:ea:6b:26:74:21:42:36:de:ed:d6: 32:a6:40:68:3d:b1:f0:1c:80:cd:7e:b0:31:8d:e9: f9:64:99:93:42:21:1d:b8:9c:a8:6e:5a:df:de:70: 30:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4D:C9:BE:99:5E:A6:C9:5C:93:8A:7A:81:28:73:05:5E:F4:7B:41 X509v3 Authority Key Identifier: keyid:1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:10:d4:40:6a:28:44:34:90:28:77:26:1c:5a:af:6c:61:41: f0:28:db:59:14:eb:e0:40:e5:b3:57:c4:2a:6e:91:e6:83:db: 87:01:c7:6b:25:e8:aa:ff:3e:72:ec:83:62:13:4d:06:05:8a: c0:dd:c6:67:7b:24:5e:0e:e9:a3:e7:b5:fe:76:4e:73:f2:e5: 70:c8:ea:92:63:ae:f8:53:d2:3b:cd:5e:4a:b2:57:51:4e:3c: ef:1d:db:8c:66:f3:73:bc:90:8f:f3:65:7c:7e:e0:14:ed:6e: 6a:45:31:72:cb:f6:5d:14:80:6c:21:03:d0:bd:38:5b:38:7b: a8:3f:fd:b8:66:c7:36:68:7c:26:8a:73:2b:1e:65:64:39:7e: 0c:93:d3:09:d9:41:36:43:a9:34:dd:d0:3d:d3:51:12:17:56: 36:51:1a:fe:5e:17:1f:41:66:55:2c:07:4f:8c:2f:57:67:2f: 6a:e9:46:53:73:d0:60:6f:ce:b6:07:c4:e2:df:2c:85:4b:48: 69:55:90:c4:26:e3:87:a5:9e:af:c4:bd:02:78:45:2a:13:8e: 55:c1:39:78:f4:18:82:20:d5:eb:63:42:3a:1a:a9:28:57:f1: e9:16:58:87:46:db:1f:bc:e9:94:8f:97:6f:50:8d:61:d9:74: 05:e4:e3:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM2MDkxMTAvBgNVBAUTKDFDNDIyQkIxRkM5NkZFNjBENEIyRkY1RjZDMTI0NTBF Q0M5RUU5NkMwHhcNMjUxMjIxMDExOTU2WhcNMjUxMjI4MDExOTU2WjAYMRYwFAYD VQQDDA02OTQ3NGIzYy0zNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA851KZ9gvpdtFQY+p+zOFEQKbV4lnX78aUEg51CX7H3Af0Uq4YH1npW6/xiOF iC355LHmzdDzdpwcnTnuOhZ/0KDXdiL9oIWaFK9n6fuIo6Gcek1BLJQIaFlXQeQg O8J+2xJCnkmYmDmnOPQ3tj8kLzxM/5Jc2boayKrRkM2bF1Z5AHwDnLli9vBvZynk a/1UzfTrb8H0CnVyxf6+llcsVCgxXVtPUdQPb0NFmnhSufMeRAMCHWmpvWKfRJGl rRP+yyr4kEC0UPDPlI2kDbiByxN3rRMHgeprJnQhQjbe7dYypkBoPbHwHIDNfrAx jen5ZJmTQiEduJyoblrf3nAwgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFNyb6Z XqbJXJOKeoEocwVe9HtBMB8GA1UdIwQYMBaAFBxCK7H8lv5g1LL/X2wSRQ7Mnuls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzYwOS8yM0Y5RThCQThG REUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19tRFVzdjlmYkJKRkRzeWU2 V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFSXJzZnlXX21EVXN2OWZiQkpGRHN5ZTZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzYwOS8yM0Y5RThCQThGREUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19t RFVzdjlmYkJKRkRzeWU2V3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/ENRAaihENJAodyYcWq9sYUHwKNtZFOvgQOWzV8QqbpHmg9uHAcdr Jeiq/z5y7INiE00GBYrA3cZneyReDumj57X+dk5z8uVwyOqSY674U9I7zV5KsldR TjzvHduMZvNzvJCP82V8fuAU7W5qRTFyy/ZdFIBsIQPQvThbOHuoP/24Zsc2aHwm inMrHmVkOX4Mk9MJ2UE2Q6k03dA901ESF1Y2URr+XhcfQWZVLAdPjC9XZy9q6UZT c9Bgb862B8Ti3yyFS0hpVZDEJuOHpZ6vxL0CeEUqE45VwTl49BiCINXrY0I6Gqko V/HpFliHRtsfvOmUj5dvUI1h2XQF5OOB -----END CERTIFICATE-----Generated at Mon Dec 22 07:20:29 2025 by rpki-client