This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: vC+9pEuzdYXyySOQ2Pvp9FX0I5h9IJZdmKRkKXVGMGU= Subject key identifier: 08:A0:45:EB:0F:B3:12:95:6D:01:49:40:80:08:36:CE:CA:65:CD:5D Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 01E0 Signing time: Fri 19 Dec 2025 01:54:36 +0000 Manifest this update: Fri 19 Dec 2025 01:54:36 +0000 Manifest next update: Fri 26 Dec 2025 01:54:36 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: AfDRhrTlkY2OV+q1JgmjPwAv68MsAP7KJgVVwCQ9elw=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: kr3XK/LA3ME6CWbcxw7hFQfhU6QavtLWXc2+mP6aHgc=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: Nc218pLJmDdsf2Z9Kv612BkBE9ixmiOBUD2+vg6KRQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Dec 19 01:54:36 2025 GMT Not After : Dec 26 01:54:36 2025 GMT Subject: CN=6944b05c-070f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cc:df:8f:0f:62:11:36:f6:50:48:63:4b:71: ee:a6:ac:b8:00:e5:57:55:2e:2d:18:22:df:c2:18: 44:b0:31:03:87:2b:fd:1c:63:8b:d3:3d:22:bf:83: 2e:9f:44:5c:28:68:98:e8:dd:c1:8e:bd:2a:68:b6: 4d:bb:f1:0d:04:35:55:6b:4a:57:69:29:dd:52:86: 19:ca:2b:5b:74:ea:32:12:5e:a8:08:5c:81:3d:fd: 17:78:e5:6f:11:2d:2a:5f:59:1a:6a:64:76:f1:28: aa:a7:01:f5:da:13:94:a1:4a:bc:0d:87:bc:d0:08: 49:2c:4f:18:46:3a:33:bf:b0:53:08:b0:c7:03:c3: 2d:72:71:6d:ec:b9:7a:74:f9:ff:89:bd:29:03:57: f6:f7:b3:a8:02:78:c4:75:94:37:43:60:3f:98:7d: a8:10:82:0f:be:2d:0b:5d:13:fa:bc:f0:bc:85:52: 67:ce:76:8b:2b:64:38:9a:9b:6e:c9:fe:a3:13:5a: 81:ba:e2:52:c6:05:3f:26:7e:81:54:2d:8d:88:cb: fa:e6:1f:c3:79:77:c0:54:eb:25:02:af:76:3d:96: 5e:76:f0:2c:32:93:e0:0f:8c:45:92:4a:74:b4:41: cc:ef:22:3d:ba:6c:1d:a7:54:e1:79:c0:28:be:9e: 7f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A0:45:EB:0F:B3:12:95:6D:01:49:40:80:08:36:CE:CA:65:CD:5D X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:dc:8b:19:2e:5b:fe:6a:ee:f3:f6:31:31:fb:19:e7:f9:9b: ef:f1:56:c3:78:1d:7d:64:95:14:2a:19:9f:21:66:1d:fe:80: 5f:2f:a1:41:92:c7:f2:94:6c:26:30:e6:44:eb:7d:a6:db:53: 71:5c:df:e7:bb:1d:11:73:1c:b8:34:1f:4c:3f:a7:61:33:73: 32:1d:24:59:1c:21:6f:f8:9f:48:e6:e1:e0:c0:9a:aa:5f:e5: c3:d3:5a:39:f1:20:90:93:e8:06:00:b6:d4:19:41:9f:3a:31: 82:60:f8:4e:66:c4:7c:0a:68:12:9a:cb:d3:a3:18:33:4a:89: 91:4a:f5:77:8f:67:77:16:35:39:58:1c:fc:2c:09:58:92:cf: 98:21:6a:1b:1c:4f:49:36:bb:20:e0:e0:aa:18:3f:61:19:2f: a1:8f:76:fa:8a:d4:c7:3c:94:bb:18:f1:9f:c4:fb:91:de:7a: eb:dd:e5:fc:d5:ae:b0:fc:40:88:21:5e:f5:8e:d6:cc:5c:c9: dc:6c:a4:3c:30:8e:37:94:49:57:9d:3b:9b:b1:67:6c:21:6b: 78:c9:3d:17:ff:1c:3f:7c:96:b4:e9:c2:91:32:12:e2:3a:10: 81:32:c3:06:68:97:f2:90:4f:b6:dd:6a:62:50:31:73:91:e2: cf:0f:58:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUxMjE5MDE1NDM2WhcNMjUxMjI2MDE1NDM2WjAYMRYwFAYD VQQDDA02OTQ0YjA1Yy0wNzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0szfjw9iETb2UEhjS3Hupqy4AOVXVS4tGCLfwhhEsDEDhyv9HGOL0z0iv4Mu n0RcKGiY6N3Bjr0qaLZNu/ENBDVVa0pXaSndUoYZyitbdOoyEl6oCFyBPf0XeOVv ES0qX1kaamR28SiqpwH12hOUoUq8DYe80AhJLE8YRjozv7BTCLDHA8MtcnFt7Ll6 dPn/ib0pA1f297OoAnjEdZQ3Q2A/mH2oEIIPvi0LXRP6vPC8hVJnznaLK2Q4mptu yf6jE1qBuuJSxgU/Jn6BVC2NiMv65h/DeXfAVOslAq92PZZedvAsMpPgD4xFkkp0 tEHM7yI9umwdp1ThecAovp5/MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAigResP sxKVbQFJQIAINs7KZc1dMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR3IsZLlv+au7z9jEx+xnn+Zvv8VbDeB19ZJUUKhmfIWYd/oBfL6FB ksfylGwmMOZE632m21NxXN/nux0Rcxy4NB9MP6dhM3MyHSRZHCFv+J9I5uHgwJqq X+XD01o58SCQk+gGALbUGUGfOjGCYPhOZsR8CmgSmsvToxgzSomRSvV3j2d3FjU5 WBz8LAlYks+YIWobHE9JNrsg4OCqGD9hGS+hj3b6itTHPJS7GPGfxPuR3nrr3eX8 1a6w/ECIIV71jtbMXMncbKQ8MI43lElXnTubsWdsIWt4yT0X/xw/fJa06cKRMhLi OhCBMsMGaJfykE+23WpiUDFzkeLPD1i8 -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:56 2025 by rpki-client