This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: pcz+9ZjM269H4rYGw7BAzrHx4WpW9TC3jGS0c9sv7U0= Subject key identifier: 2B:10:A4:DA:FD:F5:43:EF:1F:CF:3A:18:5D:69:89:4B:00:09:A3:65 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 13D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13AA Signing time: Thu 18 Dec 2025 16:51:07 +0000 Manifest this update: Thu 18 Dec 2025 16:51:06 +0000 Manifest next update: Thu 25 Dec 2025 16:51:06 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: q/TdPnKo9TH9ptq4DY4njZMCnfYoEtv2Kbcfg4THUgU=) 2: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5076 (0x13d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Dec 18 16:51:06 2025 GMT Not After : Dec 25 16:51:06 2025 GMT Subject: CN=694430fb-143b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:ed:1a:89:db:a7:1a:2d:6e:00:f2:50:07:62: 96:1c:6a:c3:e9:0e:29:87:5a:ac:6c:b5:08:a4:4a: 9c:c8:a8:57:85:44:48:c2:5f:51:24:6a:dd:42:a1: 2c:d6:8a:e9:62:80:b9:9a:a0:b5:11:50:38:7c:86: c6:61:ca:bd:de:51:f1:2e:57:95:cb:ff:6d:69:52: d2:34:a3:23:ff:27:eb:52:7c:59:1f:e3:e1:6b:cd: 31:a2:a3:cd:77:46:a4:37:69:71:9e:29:33:c9:a2: ad:55:fe:f9:c7:32:ae:08:a9:4a:d8:7f:3b:91:2f: 6e:7a:b5:a4:4b:dd:f2:c6:77:e3:54:da:fd:23:ca: 11:b3:ac:f2:93:a2:1d:d3:70:8a:b2:92:13:ef:c1: cd:a6:47:19:1f:bc:e2:ee:c4:32:67:7f:f1:9c:c6: 49:8f:ae:64:44:52:ca:d2:eb:56:5b:84:b5:c3:28: 74:83:2f:03:2e:3c:5b:c7:6d:32:9f:96:d7:96:3a: ee:08:df:55:6e:0b:32:a3:c1:3d:9f:10:63:2b:93: c2:e7:6c:8e:76:7e:e0:be:69:0e:30:53:2e:85:d8: 53:d8:f6:85:1e:6e:ba:ef:5d:a4:b8:27:7f:40:74: 75:05:17:a2:2c:17:a2:91:00:b5:66:ca:11:16:8c: 0f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:10:A4:DA:FD:F5:43:EF:1F:CF:3A:18:5D:69:89:4B:00:09:A3:65 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:1d:96:97:de:fe:cc:a5:27:c5:88:0b:31:c7:e4:7d:0b:4a: f1:16:e8:42:87:e6:01:59:52:7a:8a:bd:d0:c9:ae:89:15:d4: 77:1a:bb:03:aa:4e:36:cb:e1:09:94:93:03:a9:d9:1e:9f:d3: ee:84:3b:68:40:3b:bd:a8:da:64:a2:58:14:8f:7a:f4:4f:4d: 9f:2c:23:ae:37:cd:55:53:af:5f:5a:f7:49:67:6a:45:b2:d6: 4b:a8:3c:98:03:6d:e5:01:4a:00:99:a6:3b:98:6d:54:0b:a6: 3e:0d:72:58:09:e8:73:d2:ee:0e:91:cf:e6:5c:5c:63:ce:c1: 53:41:08:6d:76:75:df:99:9c:bc:79:ed:45:97:6c:f3:a6:b5: 34:8f:cd:4b:a9:4a:aa:51:03:16:aa:de:06:e1:27:fa:56:1d: 8a:77:16:af:42:8a:90:90:e4:7a:5d:05:6f:f7:f2:f1:0f:08: e4:6b:0b:b0:fd:80:4a:41:e5:6a:36:9a:35:75:0a:0d:1a:82: cb:2a:50:68:ed:b3:c8:ce:ac:d2:bf:61:f3:6f:70:05:b9:7c: d2:da:9a:33:8b:55:11:01:28:ed:7b:6d:dc:d6:c0:f1:b4:b2: 53:91:31:f4:80:0a:da:f2:c8:e3:8a:f0:8b:bd:a2:15:a7:a2: 8e:fd:fc:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUxMjE4MTY1MTA2WhcNMjUxMjI1MTY1MTA2WjAYMRYwFAYD VQQDDA02OTQ0MzBmYi0xNDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj+0aidunGi1uAPJQB2KWHGrD6Q4ph1qsbLUIpEqcyKhXhURIwl9RJGrdQqEs 1orpYoC5mqC1EVA4fIbGYcq93lHxLleVy/9taVLSNKMj/yfrUnxZH+Pha80xoqPN d0akN2lxnikzyaKtVf75xzKuCKlK2H87kS9uerWkS93yxnfjVNr9I8oRs6zyk6Id 03CKspIT78HNpkcZH7zi7sQyZ3/xnMZJj65kRFLK0utWW4S1wyh0gy8DLjxbx20y n5bXljruCN9Vbgsyo8E9nxBjK5PC52yOdn7gvmkOMFMuhdhT2PaFHm66712kuCd/ QHR1BReiLBeikQC1ZsoRFowPBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsQpNr9 9UPvH886GF1piUsACaNlMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZHZaX3v7MpSfFiAsxx+R9C0rxFuhCh+YBWVJ6ir3Qya6JFdR3GrsD qk42y+EJlJMDqdken9PuhDtoQDu9qNpkolgUj3r0T02fLCOuN81VU69fWvdJZ2pF stZLqDyYA23lAUoAmaY7mG1UC6Y+DXJYCehz0u4Okc/mXFxjzsFTQQhtdnXfmZy8 ee1Fl2zzprU0j81LqUqqUQMWqt4G4Sf6Vh2KdxavQoqQkOR6XQVv9/LxDwjkawuw /YBKQeVqNpo1dQoNGoLLKlBo7bPIzqzSv2Hzb3AFuXzS2pozi1URASjte23c1sDx tLJTkTH0gAra8sjjivCLvaIVp6KO/fzf -----END CERTIFICATE-----Generated at Sat Dec 20 15:07:08 2025 by rpki-client