This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: NenJ3vc3wjgR+8uh8RgzfPyxVM2+ims1HtDwbxHi88E= Subject key identifier: 48:EB:D5:68:BB:44:58:BB:CE:58:C7:DE:16:BF:6C:77:F5:FC:71:39 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 05E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 05DD Signing time: Mon 22 Dec 2025 22:09:02 +0000 Manifest this update: Mon 22 Dec 2025 22:09:02 +0000 Manifest next update: Mon 29 Dec 2025 22:09:02 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: Bd16Chf2/XcPwSCmmbJ6Hp3AkNdsMsdNnbA2H5Pv/fg=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: tUUqvSA3OdWSARFzs61i7ZLEvpiTAwA30jzc1JS2Wi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Dec 22 22:09:02 2025 GMT Not After : Dec 29 22:09:02 2025 GMT Subject: CN=6949c17e-40fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8c:a2:98:65:ae:ec:08:66:ff:8f:07:12:79: 76:b1:53:25:60:93:a4:74:b5:7a:37:18:f5:23:10: f8:e6:39:c9:28:63:be:6e:a8:01:50:6f:ba:c4:29: 9c:5e:d2:b3:7f:83:68:15:5c:a3:c5:dd:f0:d6:9d: 44:a5:99:3a:39:39:20:13:99:76:58:da:13:6f:fc: b2:a7:d2:a8:c2:fe:2a:3c:a4:af:08:3a:02:03:22: ea:fe:15:a8:03:77:4e:4b:36:43:24:c3:98:9f:d5: 3c:1e:06:84:1e:6e:dc:d4:0f:34:ca:95:65:f0:b9: 5f:7d:89:6c:7f:83:ff:6e:7f:ff:c2:16:20:7f:72: d9:1a:37:51:f0:3d:ba:2a:8e:73:6e:a4:71:5b:93: ac:2d:af:39:a2:9b:07:01:81:a6:1e:ce:35:ca:a4: 9e:9b:55:af:39:da:e3:f8:6f:58:26:9d:6c:45:d7: 2f:f0:61:9f:11:de:35:fe:83:8c:57:66:6b:93:a9: 5e:80:4c:db:29:ae:11:23:6d:29:b4:d3:9e:aa:ef: 4f:c6:20:74:e2:2c:33:54:db:dc:27:de:27:3d:54: ef:f9:9e:03:63:ed:fb:d9:7b:10:54:11:f1:13:f3: b9:05:23:3b:34:43:8b:c8:69:0c:07:d8:59:28:5b: 9a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:EB:D5:68:BB:44:58:BB:CE:58:C7:DE:16:BF:6C:77:F5:FC:71:39 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c8:4d:d4:21:10:7d:61:cb:67:a2:67:4e:6e:8e:4e:af:87: 33:63:b8:31:34:53:48:26:2f:da:0c:f9:fd:25:f1:b8:77:20: 4f:ea:82:76:29:2c:7f:ac:07:f8:11:3e:4d:dc:8f:09:08:ea: 1d:15:9f:03:f5:a9:cd:68:bf:c7:86:6c:da:63:52:54:02:6e: c4:1b:5e:79:b6:7a:c7:2b:84:26:33:23:4b:d5:d9:e7:1f:c6: 20:36:9e:81:2d:b4:20:ac:a8:6d:2c:1c:80:24:71:c1:31:e0: 7e:b4:9e:e4:33:50:25:62:3e:9e:db:a6:5d:ff:1f:0e:d2:99: 65:7d:c7:8f:f6:34:c3:ce:7c:de:d4:f6:bc:fe:05:47:11:a9: 88:00:a8:7a:56:49:de:cc:6a:f6:28:e9:5c:9f:09:b8:f7:92: 59:e9:9b:0f:36:bf:08:97:95:5a:8d:1a:83:c7:fa:54:f3:b9: 04:2e:03:47:b3:f7:ec:8c:ea:75:06:c7:c3:b5:52:7c:0d:fa: fb:73:da:b2:9f:8c:2d:d0:ac:66:ea:a9:7f:63:4d:a8:71:7c: 5a:34:41:68:7d:83:d8:e9:87:7e:05:1f:5d:da:fd:bd:e4:92: d3:fa:1f:2c:d6:a6:14:1b:fa:25:c1:53:34:89:6a:32:a1:0c: 1a:f8:6a:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUxMjIyMjIwOTAyWhcNMjUxMjI5MjIwOTAyWjAYMRYwFAYD VQQDDA02OTQ5YzE3ZS00MGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4yimGWu7Ahm/48HEnl2sVMlYJOkdLV6Nxj1IxD45jnJKGO+bqgBUG+6xCmc XtKzf4NoFVyjxd3w1p1EpZk6OTkgE5l2WNoTb/yyp9Kowv4qPKSvCDoCAyLq/hWo A3dOSzZDJMOYn9U8HgaEHm7c1A80ypVl8LlffYlsf4P/bn//whYgf3LZGjdR8D26 Ko5zbqRxW5OsLa85opsHAYGmHs41yqSem1WvOdrj+G9YJp1sRdcv8GGfEd41/oOM V2Zrk6legEzbKa4RI20ptNOequ9PxiB04iwzVNvcJ94nPVTv+Z4DY+372XsQVBHx E/O5BSM7NEOLyGkMB9hZKFua0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjr1Wi7 RFi7zljH3ha/bHf1/HE5MB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCayE3UIRB9YctnomdObo5Or4czY7gxNFNIJi/aDPn9JfG4dyBP6oJ2 KSx/rAf4ET5N3I8JCOodFZ8D9anNaL/HhmzaY1JUAm7EG155tnrHK4QmMyNL1dnn H8YgNp6BLbQgrKhtLByAJHHBMeB+tJ7kM1AlYj6e26Zd/x8O0pllfceP9jTDznze 1Pa8/gVHEamIAKh6VknezGr2KOlcnwm495JZ6ZsPNr8Il5VajRqDx/pU87kELgNH s/fsjOp1BsfDtVJ8Dfr7c9qyn4wt0Kxm6ql/Y02ocXxaNEFofYPY6Yd+BR9d2v29 5JLT+h8s1qYUG/olwVM0iWoyoQwa+GoG -----END CERTIFICATE-----Generated at Tue Dec 23 18:05:46 2025 by rpki-client