This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: KfQF1pRq8cp509vzxGWTo42afCP4e2y7zV0AN0GGlr4= Subject key identifier: E8:10:15:02:71:89:36:C8:33:4C:D7:30:83:3A:55:C7:7C:E5:96:63 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0240 Signing time: Tue 23 Dec 2025 00:55:00 +0000 Manifest this update: Tue 23 Dec 2025 00:55:00 +0000 Manifest next update: Tue 30 Dec 2025 00:55:00 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: vSUj5GQMSWndHexQFhIuCDLdC1Ro73aT1OgVLIX9NE4=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mCCSZ+9WYvhaMFX9tC0Iaz2gMx4GH4ZGb0UPoAirqT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Dec 23 00:55:00 2025 GMT Not After : Dec 30 00:55:00 2025 GMT Subject: CN=6949e864-6510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e0:33:9b:f4:67:6a:b5:28:5f:0e:5e:38:dc: 8b:80:70:50:c7:40:f3:c0:8d:09:57:17:b9:0d:42: 86:73:4e:5d:b1:40:99:4e:05:12:f7:e4:0d:5d:3f: a2:af:a1:29:12:00:07:c9:70:f2:ca:59:d7:d0:e1: 3c:1c:fb:0f:e0:99:f5:61:3f:4c:21:0a:72:97:54: 50:7d:d0:33:c3:24:63:c4:0f:56:f3:54:47:b0:98: e9:7d:8c:14:e1:c1:55:d0:e4:f8:5e:93:25:18:42: b8:c9:10:34:3c:0a:3b:d3:43:2a:56:95:d0:09:ee: 11:98:35:59:35:1b:97:a8:5d:98:38:28:d5:8f:2c: 1f:d5:9d:7f:84:f2:f3:96:64:38:6f:df:e4:71:dd: f4:9a:b7:50:bd:82:1a:be:64:ae:f1:90:4c:1b:14: 73:72:60:51:e2:28:ac:81:09:df:3e:20:2e:e6:c5: 7b:ab:46:c2:9c:90:c2:37:94:51:1f:c6:ae:0f:3f: 8e:53:d2:c2:e9:2f:38:b1:7e:3e:eb:73:9b:52:5d: 02:c2:11:4e:19:f7:57:f7:ab:04:12:cd:a3:1e:01: 50:67:79:a2:ee:47:cb:ad:34:c8:87:34:bc:b3:6d: 82:b3:4e:f7:4f:89:ba:00:f5:9b:18:2c:f4:80:9b: 7d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:10:15:02:71:89:36:C8:33:4C:D7:30:83:3A:55:C7:7C:E5:96:63 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:b8:24:2c:8a:7f:f6:82:53:85:31:1e:83:69:9e:fa:b4:65: 7c:77:3b:79:cf:ea:86:69:0a:dd:18:36:f3:20:ce:6d:00:e4: 98:18:9b:e1:32:b9:73:14:cb:e8:86:74:55:be:f1:9a:30:b8: 51:fa:ee:42:25:79:11:48:ec:1e:50:5f:3a:86:a7:88:66:51: 0c:95:08:1b:ee:95:32:16:b6:34:57:b0:fe:e5:69:41:96:15: 11:25:3b:d1:f6:5f:d5:7a:32:43:cc:a4:d1:c1:20:72:6a:35: a9:58:f9:f2:fa:35:4d:56:69:f3:19:8f:d9:b1:50:24:d6:69: d0:5f:d4:1e:9e:33:89:e0:64:39:f3:57:c0:7a:c4:ca:21:74: 05:64:d7:11:e0:11:24:90:ed:73:5b:75:70:eb:c5:30:66:ba: 06:2d:30:af:12:4d:e8:f7:d3:99:7a:ba:9f:1e:6f:cb:c0:20: 6b:7f:01:5c:2b:d6:b5:85:66:32:e0:75:be:21:29:41:5f:a3: 7c:31:66:d8:a6:ce:bc:ec:75:94:45:7a:70:d3:60:fb:df:48: 92:48:6f:50:41:37:7f:92:f8:41:14:0c:cb:cf:b1:d1:4d:7a: 13:64:22:37:e3:df:a8:52:37:44:ca:25:91:73:13:75:9d:e7: 99:b1:c3:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjUxMjIzMDA1NTAwWhcNMjUxMjMwMDA1NTAwWjAYMRYwFAYD VQQDDA02OTQ5ZTg2NC02NTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+Azm/RnarUoXw5eONyLgHBQx0DzwI0JVxe5DUKGc05dsUCZTgUS9+QNXT+i r6EpEgAHyXDyylnX0OE8HPsP4Jn1YT9MIQpyl1RQfdAzwyRjxA9W81RHsJjpfYwU 4cFV0OT4XpMlGEK4yRA0PAo700MqVpXQCe4RmDVZNRuXqF2YOCjVjywf1Z1/hPLz lmQ4b9/kcd30mrdQvYIavmSu8ZBMGxRzcmBR4iisgQnfPiAu5sV7q0bCnJDCN5RR H8auDz+OU9LC6S84sX4+63ObUl0CwhFOGfdX96sEEs2jHgFQZ3mi7kfLrTTIhzS8 s22Cs073T4m6APWbGCz0gJt91wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgQFQJx iTbIM0zXMIM6Vcd85ZZjMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALuCQsin/2glOFMR6DaZ76tGV8dzt5z+qGaQrdGDbzIM5tAOSYGJvh MrlzFMvohnRVvvGaMLhR+u5CJXkRSOweUF86hqeIZlEMlQgb7pUyFrY0V7D+5WlB lhURJTvR9l/VejJDzKTRwSByajWpWPny+jVNVmnzGY/ZsVAk1mnQX9QenjOJ4GQ5 81fAesTKIXQFZNcR4BEkkO1zW3Vw68UwZroGLTCvEk3o99OZerqfHm/LwCBrfwFc K9a1hWYy4HW+ISlBX6N8MWbYps687HWURXpw02D730iSSG9QQTd/kvhBFAzLz7HR TXoTZCI349+oUjdEyiWRcxN1neeZscMb -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:51 2025 by rpki-client