This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: bOdDwH+z61Of5korlCYYhQL2hJsD3+Q85czQb98HS/I= Subject key identifier: FA:34:66:0B:B9:7A:42:11:1A:2C:EE:88:A1:B0:67:2C:1B:FB:98:9C Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 13CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13A3 Signing time: Thu 04 Dec 2025 16:37:36 +0000 Manifest this update: Thu 04 Dec 2025 16:37:35 +0000 Manifest next update: Thu 11 Dec 2025 16:37:35 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: HY0Oqf/eeBKD8elx77FYCo0+4WQGSUNVSKzIWbtNxxE=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5069 (0x13cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Dec 4 16:37:35 2025 GMT Not After : Dec 11 16:37:35 2025 GMT Subject: CN=6931b8cf-bc6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:92:76:26:59:ed:4a:94:ff:47:f7:b4:99:10: e1:4f:fd:6e:08:d6:ad:ee:95:1f:c0:cd:a1:85:ee: bf:25:be:0d:2b:ab:2c:40:3b:8b:70:95:84:a2:b9: fd:af:88:f8:d8:e6:d6:24:39:50:11:9f:0a:97:a5: bd:0f:cf:3a:9d:fd:1b:b1:23:ac:d0:37:37:6d:bc: e3:ca:6a:79:e6:a2:f2:64:41:45:86:df:46:43:ba: be:e7:bc:e9:8b:0d:e3:20:bf:37:12:1b:0e:bb:72: 96:ba:3d:ab:46:40:04:0d:6a:8d:10:1f:0e:6b:27: c7:86:92:4d:02:ad:5c:d4:dc:99:c7:71:b4:88:bb: 16:f9:b5:42:7f:51:c6:3f:58:0f:4f:a5:0b:d0:43: d5:02:2c:29:fe:55:3c:6c:37:3b:08:3a:ad:39:14: 4b:58:03:ac:5a:57:ac:41:24:30:68:b7:27:1f:27: 66:da:6e:d2:89:24:2b:8f:4c:43:e6:a3:a9:de:0d: dc:15:ff:f8:b3:69:44:9d:2e:3e:1c:ab:4a:0c:15: 0e:96:96:72:24:ae:ea:73:c5:8b:70:50:69:78:4d: 22:b0:31:b9:f3:90:1b:53:ed:e5:7c:fd:4c:a9:7f: cb:0c:52:8e:22:4a:01:27:e1:97:ff:4b:0e:c2:a0: 21:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:34:66:0B:B9:7A:42:11:1A:2C:EE:88:A1:B0:67:2C:1B:FB:98:9C X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:3a:6b:40:d0:bf:74:ce:e7:be:b7:a1:94:bd:25:6a:28:52: 59:35:a5:35:e4:60:63:72:a1:d8:9b:51:b1:a5:c7:f0:47:0c: d6:5d:be:a6:c0:53:15:b1:8e:f5:b5:9e:0b:da:3a:16:74:21: ce:8c:7d:35:02:f1:06:1e:73:67:85:33:3b:4e:e5:47:9d:78: 55:85:c5:30:c9:a9:ac:af:43:95:75:d0:ed:04:a9:f5:34:2f: 50:2a:90:90:47:35:f9:ca:52:22:04:d9:f4:ba:2a:2a:c8:df: 59:74:de:11:65:7c:1d:ab:f1:a2:13:b2:6f:2f:32:03:7b:e8: 78:91:33:fd:19:40:ad:81:2e:90:6c:66:b5:14:d9:74:fb:a0: f2:5d:5b:33:28:e4:e7:f6:29:89:93:61:89:78:16:c5:54:bf: 91:2c:15:c8:f9:66:6d:ce:f8:57:b0:13:8d:42:e7:54:ea:2d: 20:a1:75:4d:6f:fe:ea:e6:7f:e2:74:3c:7d:1e:85:51:20:55: 58:1a:4a:b5:42:06:3b:70:75:18:37:bc:59:06:56:d8:77:db: d5:88:9e:69:67:5f:33:61:0f:ee:ce:d9:1d:aa:96:fc:04:d0: 34:b7:c7:07:cd:11:51:d3:bd:26:9b:d7:58:2a:bf:42:ab:3f: 5d:f6:6e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUxMjA0MTYzNzM1WhcNMjUxMjExMTYzNzM1WjAYMRYwFAYD VQQDEw02OTMxYjhjZi1iYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZJ2JlntSpT/R/e0mRDhT/1uCNat7pUfwM2hhe6/Jb4NK6ssQDuLcJWEorn9 r4j42ObWJDlQEZ8Kl6W9D886nf0bsSOs0Dc3bbzjymp55qLyZEFFht9GQ7q+57zp iw3jIL83EhsOu3KWuj2rRkAEDWqNEB8OayfHhpJNAq1c1NyZx3G0iLsW+bVCf1HG P1gPT6UL0EPVAiwp/lU8bDc7CDqtORRLWAOsWlesQSQwaLcnHydm2m7SiSQrj0xD 5qOp3g3cFf/4s2lEnS4+HKtKDBUOlpZyJK7qc8WLcFBpeE0isDG585AbU+3lfP1M qX/LDFKOIkoBJ+GX/0sOwqAhKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPo0Zgu5 ekIRGizuiKGwZywb+5icMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsOmtA0L90zue+t6GUvSVqKFJZNaU15GBjcqHYm1GxpcfwRwzWXb6m wFMVsY71tZ4L2joWdCHOjH01AvEGHnNnhTM7TuVHnXhVhcUwyamsr0OVddDtBKn1 NC9QKpCQRzX5ylIiBNn0uioqyN9ZdN4RZXwdq/GiE7JvLzIDe+h4kTP9GUCtgS6Q bGa1FNl0+6DyXVszKOTn9imJk2GJeBbFVL+RLBXI+WZtzvhXsBONQudU6i0goXVN b/7q5n/idDx9HoVRIFVYGkq1QgY7cHUYN7xZBlbYd9vViJ5pZ18zYQ/uztkdqpb8 BNA0t8cHzRFR070mm9dYKr9Cqz9d9m4f -----END CERTIFICATE-----Generated at Sat Dec 6 12:32:33 2025 by rpki-client