This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: sLc+2E5ujXbcC0ct84XKRA1v7vPAaMeSExQ/1w/Dv3s= Subject key identifier: 1A:5E:56:58:52:77:B2:F2:D9:11:25:F3:B5:27:08:85:3C:FD:72:24 Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 073D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 0738 Signing time: Mon 22 Dec 2025 21:02:05 +0000 Manifest this update: Mon 22 Dec 2025 21:02:05 +0000 Manifest next update: Mon 29 Dec 2025 21:02:05 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: cDI0XTm4Jmiy3jLw27s9Xr1mlkvBDqHs50lVkla9nSI=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1853 (0x73d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Dec 22 21:02:05 2025 GMT Not After : Dec 29 21:02:05 2025 GMT Subject: CN=6949b1cd-a234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ca:15:91:10:07:cc:cf:63:9a:ca:e5:24:cb: 35:d0:41:44:9a:eb:34:02:5e:4c:69:43:a1:69:ac: 8d:89:e6:58:57:5a:bc:6a:b6:d9:5c:fc:f1:37:9b: 84:86:dc:9c:c2:93:ca:91:d3:0d:90:3e:ac:ac:82: df:3a:4f:29:13:70:e2:e4:32:e8:42:83:b4:ab:06: b7:c0:eb:dc:9a:a6:c3:11:58:15:93:3b:31:4b:4a: 7c:bf:34:e4:3e:21:b5:af:89:5d:cc:ee:b2:92:87: 5b:20:53:9e:81:4b:e5:3f:b1:0a:d3:eb:d5:ed:05: 70:8e:1d:5d:32:9e:67:1d:aa:80:ab:b2:21:60:f6: 20:f9:64:14:d6:b2:ef:a0:b3:a0:7d:d5:88:bb:d0: 1c:f1:62:f9:5c:ae:c7:28:11:a3:e6:77:d5:c5:9a: 16:cf:fa:83:42:2d:63:d7:f3:b8:6b:55:f9:5d:2d: be:c1:d1:2b:a7:05:52:11:f0:79:a0:a5:78:03:9f: a6:ac:a4:b7:a6:2d:e0:76:94:32:ec:17:fd:6e:1a: 51:d4:84:e4:7d:77:d1:6b:02:1a:6a:26:ed:19:51: 47:06:b2:fe:48:b8:70:7f:e8:ac:84:2e:35:6f:17: bc:f2:b1:f3:f2:dc:ca:61:1b:7e:42:bf:97:6b:fe: d8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:5E:56:58:52:77:B2:F2:D9:11:25:F3:B5:27:08:85:3C:FD:72:24 X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:88:5d:f6:51:be:cb:b0:d3:25:8e:09:98:23:21:37:81:8b: ff:36:8a:f2:f4:70:65:d4:c7:28:f4:74:6e:a8:b4:34:d1:ce: ec:8a:f4:d3:b0:6d:a5:fe:97:88:2d:11:10:33:f5:da:f3:bc: bf:2d:f4:27:e7:d9:6a:4c:c8:01:f7:a8:3c:32:26:72:59:45: de:9d:d6:7d:f5:8d:a6:d5:72:8c:77:30:f0:84:a2:ff:77:ee: ef:fd:6b:fe:43:76:e4:06:ed:50:59:f3:cc:21:02:70:43:8a: 90:c0:3b:6c:ec:d5:e4:27:74:90:ba:a8:04:92:87:54:fd:ca: bd:f4:33:22:f2:57:a2:a6:a0:f2:e8:2f:55:a4:26:0f:d9:8b: c5:a0:d7:7e:8f:07:1f:4d:a8:e2:ae:25:20:16:3a:ce:e7:4e: 3d:c1:b0:4d:08:6a:2a:22:ae:d6:33:25:d6:01:fb:32:21:1f: 8d:35:36:68:ce:d6:f4:59:d8:cb:79:3a:49:3a:28:aa:3b:ba: 7d:d3:fe:9a:ff:b9:27:4d:d0:d3:58:04:60:f2:1a:a1:9e:23: 00:a8:8d:1d:08:25:d9:5c:7f:ff:68:d4:ef:dc:2b:70:87:61: 37:87:b2:f7:dc:cf:a1:d8:ed:94:64:dc:55:27:4d:bf:7f:da: 14:f0:5b:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUxMjIyMjEwMjA1WhcNMjUxMjI5MjEwMjA1WjAYMRYwFAYD VQQDDA02OTQ5YjFjZC1hMjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMoVkRAHzM9jmsrlJMs10EFEmus0Al5MaUOhaayNieZYV1q8arbZXPzxN5uE htycwpPKkdMNkD6srILfOk8pE3Di5DLoQoO0qwa3wOvcmqbDEVgVkzsxS0p8vzTk PiG1r4ldzO6ykodbIFOegUvlP7EK0+vV7QVwjh1dMp5nHaqAq7IhYPYg+WQU1rLv oLOgfdWIu9Ac8WL5XK7HKBGj5nfVxZoWz/qDQi1j1/O4a1X5XS2+wdErpwVSEfB5 oKV4A5+mrKS3pi3gdpQy7Bf9bhpR1ITkfXfRawIaaibtGVFHBrL+SLhwf+ishC41 bxe88rHz8tzKYRt+Qr+Xa/7Y8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpeVlhS d7Ly2REl87UnCIU8/XIkMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3iF32Ub7LsNMljgmYIyE3gYv/Nory9HBl1Mco9HRuqLQ00c7sivTT sG2l/peILREQM/Xa87y/LfQn59lqTMgB96g8MiZyWUXendZ99Y2m1XKMdzDwhKL/ d+7v/Wv+Q3bkBu1QWfPMIQJwQ4qQwDts7NXkJ3SQuqgEkodU/cq99DMi8leipqDy 6C9VpCYP2YvFoNd+jwcfTajiriUgFjrO5049wbBNCGoqIq7WMyXWAfsyIR+NNTZo ztb0WdjLeTpJOiiqO7p90/6a/7knTdDTWARg8hqhniMAqI0dCCXZXH//aNTv3Ctw h2E3h7L33M+h2O2UZNxVJ02/f9oU8FvO -----END CERTIFICATE-----Generated at Wed Dec 24 15:59:09 2025 by rpki-client