This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: +yvDkjHXC5VfnR8gCHFy6JsrOAXxHEvHuTWMRp6nD2A= Subject key identifier: 73:B5:F3:11:D9:26:F3:AE:9A:E1:C2:F3:91:B6:D1:8F:D8:84:F0:C9 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0CAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C9E Signing time: Wed 31 Dec 2025 18:10:08 +0000 Manifest this update: Wed 31 Dec 2025 18:10:08 +0000 Manifest next update: Wed 07 Jan 2026 18:10:08 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: 2cEZ1pM727jVDIgt/craMn3R9q2zrpNTQt6949SGPQ8=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: OzJN0re3xgLzOjNQ/4EO/Q5rjMxHo1x+d+hZ2rjf3vw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 18:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Dec 31 18:10:08 2025 GMT Not After : Jan 7 18:10:08 2026 GMT Subject: CN=69556700-c716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:52:bb:ba:fb:2b:81:77:71:d0:50:64:28:fa: 49:c6:77:81:63:ae:64:4c:10:23:00:89:af:f5:34: 63:bd:28:1a:35:40:b7:6f:9e:d3:49:55:1e:8a:33: cd:85:00:27:d4:f3:80:e1:22:a2:0d:5c:fd:d7:66: 93:dc:90:b4:08:f5:8a:b4:c8:8d:59:c3:65:fd:2c: d4:61:66:fe:5e:31:6c:d7:c7:d4:21:06:e7:46:84: 7e:c9:62:5f:f6:c2:a0:9e:b9:6b:73:48:99:26:46: fc:9a:fa:f0:43:c4:3b:b1:9b:a9:e5:8a:8b:93:f5: 09:99:c0:35:d3:24:5e:84:29:7b:61:39:80:b3:39: 5e:80:77:59:91:02:44:dc:fc:24:63:59:4e:3a:8f: a5:14:a6:6d:a3:6a:2c:65:b0:53:a9:a7:73:43:93: c0:a8:94:72:85:98:54:8a:b1:09:28:0a:e4:f3:ef: 6d:2f:06:29:5b:35:50:f0:ae:e2:bd:65:23:bb:28: 26:0e:c6:27:cc:29:fa:68:19:dd:38:54:8b:a1:68: 0a:aa:00:8f:fd:e5:7e:f2:83:45:44:90:7f:05:c6: c9:83:87:5a:1e:8e:0f:f0:ca:0c:24:7e:b2:d1:26: 24:a1:de:26:de:2a:78:4a:4e:a0:70:b9:ed:a2:26: cb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B5:F3:11:D9:26:F3:AE:9A:E1:C2:F3:91:B6:D1:8F:D8:84:F0:C9 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ca:d7:07:38:5d:8d:44:d0:09:d1:33:a4:e7:65:c7:96:f3: b1:99:eb:7f:03:ec:91:e0:c4:a7:4e:f1:6e:23:41:73:eb:a0: 53:76:73:24:a0:8b:b8:04:e9:c5:e9:53:03:48:98:9f:80:ab: e2:47:d0:07:ac:65:8c:c4:4f:9a:6a:5f:b4:e4:50:e8:c9:86: f4:61:15:4c:5a:46:84:ef:5c:ea:72:28:dc:58:32:5d:1a:e8: da:e8:55:74:ec:79:48:52:d2:8e:d8:08:82:72:47:61:2a:47: d2:df:c4:d3:84:ba:9f:bf:fe:22:76:f3:74:77:7a:14:1c:b6: df:29:00:29:c3:85:5a:6c:1d:7d:04:99:a4:7f:19:54:6a:32: f9:2e:ce:59:d3:91:ea:62:2b:ca:65:a2:2c:d3:11:ff:3e:5c: 23:35:71:55:ee:4c:7d:ae:97:a9:8a:b8:f4:d6:35:a3:1e:a0: 29:1a:05:d3:93:e5:31:8d:d5:b1:81:5c:02:e2:e3:a4:b9:13: 96:b9:7b:3d:3a:15:00:6f:3f:ae:7e:2f:9b:52:25:3a:28:52: ea:12:45:a4:59:42:5d:da:66:95:bc:47:ec:d6:9e:e6:ea:b4: c0:b5:39:8e:32:6c:1d:fc:f2:60:82:dc:34:60:b5:aa:b0:04: d6:bc:86:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUxMjMxMTgxMDA4WhcNMjYwMTA3MTgxMDA4WjAYMRYwFAYD VQQDDA02OTU1NjcwMC1jNzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01K7uvsrgXdx0FBkKPpJxneBY65kTBAjAImv9TRjvSgaNUC3b57TSVUeijPN hQAn1POA4SKiDVz912aT3JC0CPWKtMiNWcNl/SzUYWb+XjFs18fUIQbnRoR+yWJf 9sKgnrlrc0iZJkb8mvrwQ8Q7sZup5YqLk/UJmcA10yRehCl7YTmAszlegHdZkQJE 3PwkY1lOOo+lFKZto2osZbBTqadzQ5PAqJRyhZhUirEJKArk8+9tLwYpWzVQ8K7i vWUjuygmDsYnzCn6aBndOFSLoWgKqgCP/eV+8oNFRJB/BcbJg4daHo4P8MoMJH6y 0SYkod4m3ip4Sk6gcLntoibLCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHO18xHZ JvOumuHC85G20Y/YhPDJMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5ytcHOF2NRNAJ0TOk52XHlvOxmet/A+yR4MSnTvFuI0Fz66BTdnMk oIu4BOnF6VMDSJifgKviR9AHrGWMxE+aal+05FDoyYb0YRVMWkaE71zqcijcWDJd Guja6FV07HlIUtKO2AiCckdhKkfS38TThLqfv/4idvN0d3oUHLbfKQApw4VabB19 BJmkfxlUajL5Ls5Z05HqYivKZaIs0xH/PlwjNXFV7kx9rpepirj01jWjHqApGgXT k+UxjdWxgVwC4uOkuROWuXs9OhUAbz+ufi+bUiU6KFLqEkWkWUJd2maVvEfs1p7m 6rTAtTmOMmwd/PJggtw0YLWqsATWvIZD -----END CERTIFICATE-----Generated at Thu Jan 1 07:36:00 2026 by rpki-client