This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: bv+hfJsWYNMYD84/BkzREoBuLIkwlPSWfAQbehz0PoM= Subject key identifier: 8A:AB:F9:83:43:41:04:F2:38:FB:F0:0C:BE:E5:40:40:49:B5:97:5F Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0CA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C99 Signing time: Mon 22 Dec 2025 18:02:19 +0000 Manifest this update: Mon 22 Dec 2025 18:02:19 +0000 Manifest next update: Mon 29 Dec 2025 18:02:19 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: nE7dkHZRgWqZtEYRaWshV0jlHKN7HYJefY3yXuTkqNM=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: OzJN0re3xgLzOjNQ/4EO/Q5rjMxHo1x+d+hZ2rjf3vw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Dec 22 18:02:19 2025 GMT Not After : Dec 29 18:02:19 2025 GMT Subject: CN=694987ab-65d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bd:a8:85:8d:47:f7:32:60:e8:f3:f7:53:11: 0a:22:a1:b5:4b:01:d2:cc:fc:34:93:f2:98:44:bc: 67:6e:7a:e6:58:50:6d:b7:fc:05:60:18:8e:10:10: fa:fc:14:d2:9b:e0:f8:4a:a0:76:ee:b3:89:a1:9e: 64:98:0c:a4:fd:52:9f:ee:d3:1d:f5:35:74:80:3c: 1b:1f:96:b7:8c:dd:ba:36:18:24:8d:50:8e:23:2e: 88:d1:c4:17:20:d0:97:24:84:d3:b4:fa:a0:85:67: 45:8d:fd:c3:96:3b:43:c1:0c:43:37:53:df:db:f0: 79:b0:85:ae:c9:0c:7d:b7:ae:17:a1:cd:cd:f4:60: ad:e5:72:3a:03:6b:59:00:c8:0a:7e:a6:c5:8f:da: c3:d3:be:45:81:a1:d3:53:4d:4e:b1:3a:6f:0e:69: 8e:bd:28:d4:e8:f3:e9:0c:e9:0d:1a:10:29:3e:57: 72:cd:61:03:5b:6c:ed:3c:d1:6a:9c:91:45:40:ac: 69:56:5a:11:c5:60:d2:13:5b:bf:91:53:1d:c7:be: 79:d4:20:9e:b7:b4:7a:12:d9:d4:6e:34:34:1e:46: 41:a1:18:49:39:1c:c2:92:b6:51:0b:ac:53:7b:98: 7c:07:04:26:bc:15:1b:4c:87:47:f4:4e:04:aa:2a: c8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:AB:F9:83:43:41:04:F2:38:FB:F0:0C:BE:E5:40:40:49:B5:97:5F X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:2a:10:11:27:d2:ee:22:0c:bf:f4:1f:3d:58:5f:6b:5d:c4: da:e4:fd:7b:72:6d:1c:c9:9e:56:56:98:5c:b6:5e:a8:fa:ca: e6:fc:b4:b1:01:a7:f4:09:1b:c1:1b:71:88:a4:ff:d9:f7:84: bf:03:b8:f6:58:76:cc:db:fe:7e:6c:10:3e:6c:0c:5f:fd:c5: 6c:79:fd:8e:bc:a0:14:8d:da:c6:56:90:6c:cc:94:6e:c1:6d: 06:61:cd:fe:fb:40:7a:0b:91:fd:3b:03:2f:43:43:88:37:1f: 22:29:fc:1f:7b:b9:10:a0:35:86:6c:0e:91:2d:66:a5:5c:96: 51:cb:c6:eb:55:e3:5c:11:d5:33:93:b3:21:be:0b:74:a2:78: 9a:ff:cf:ec:50:be:01:94:09:fd:70:c3:05:9f:77:de:1d:da: 93:4c:ed:f5:5d:87:22:2c:f9:7b:c7:d9:80:e6:a7:7c:d6:5a: cb:78:a5:37:fb:df:d9:9f:94:68:1f:c6:3c:f5:0b:9f:21:d9: e5:d0:cb:3c:b6:e3:7d:9d:da:c8:02:57:4a:69:f1:ae:8b:1b: c3:00:7e:a3:19:b0:5d:e0:8e:d4:cb:c1:a7:7a:2b:93:82:2e: e5:f2:00:3c:42:85:30:12:0f:5c:d0:1e:4b:0d:7a:50:3d:64: e5:ee:ec:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUxMjIyMTgwMjE5WhcNMjUxMjI5MTgwMjE5WjAYMRYwFAYD VQQDDA02OTQ5ODdhYi02NWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlL2ohY1H9zJg6PP3UxEKIqG1SwHSzPw0k/KYRLxnbnrmWFBtt/wFYBiOEBD6 /BTSm+D4SqB27rOJoZ5kmAyk/VKf7tMd9TV0gDwbH5a3jN26NhgkjVCOIy6I0cQX INCXJITTtPqghWdFjf3DljtDwQxDN1Pf2/B5sIWuyQx9t64Xoc3N9GCt5XI6A2tZ AMgKfqbFj9rD075FgaHTU01OsTpvDmmOvSjU6PPpDOkNGhApPldyzWEDW2ztPNFq nJFFQKxpVloRxWDSE1u/kVMdx7551CCet7R6EtnUbjQ0HkZBoRhJORzCkrZRC6xT e5h8BwQmvBUbTIdH9E4EqirIGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqr+YND QQTyOPvwDL7lQEBJtZdfMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdKhARJ9LuIgy/9B89WF9rXcTa5P17cm0cyZ5WVphctl6o+srm/LSx Aaf0CRvBG3GIpP/Z94S/A7j2WHbM2/5+bBA+bAxf/cVsef2OvKAUjdrGVpBszJRu wW0GYc3++0B6C5H9OwMvQ0OINx8iKfwfe7kQoDWGbA6RLWalXJZRy8brVeNcEdUz k7Mhvgt0onia/8/sUL4BlAn9cMMFn3feHdqTTO31XYciLPl7x9mA5qd81lrLeKU3 +9/Zn5RoH8Y89QufIdnl0Ms8tuN9ndrIAldKafGuixvDAH6jGbBd4I7Uy8GneiuT gi7l8gA8QoUwEg9c0B5LDXpQPWTl7uz0 -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:35 2025 by rpki-client