This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: ja/nx3PCwZvAtwYnX23KOiQtzZO5xikYkZ3n7GnZr0I= Subject key identifier: 64:2B:6F:17:05:5D:44:46:7C:75:01:78:51:16:8D:19:4D:08:F2:55 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 05EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 05DB Signing time: Sun 14 Dec 2025 22:22:17 +0000 Manifest this update: Sun 14 Dec 2025 22:22:17 +0000 Manifest next update: Sun 21 Dec 2025 22:22:17 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: cx2NdSJz88jsD4cS5g0RLTtETiHZSB9ZhQo6+R4GZho=) 2: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: yhFTvnQ9OnQm5YRLzb7trt3j3jJDg72T+yloJnYuUVI=) 3: A6EF097068F911F092D77151C4F9AE02.roa (hash: CVgVNZzRg+yoeNSO5TmorciwKychjnQza4bd4ni3W/0=) 4: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 5: 09182D38084E11EF89D29620C4F9AE02.roa (hash: Mr4cvAF99YsJ9vM3bpplyr/XjV6Oh9dCkUlGWW3glRM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1516 (0x5ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Dec 14 22:22:17 2025 GMT Not After : Dec 21 22:22:17 2025 GMT Subject: CN=693f3899-172c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:37:de:23:e3:90:74:2d:46:7b:a1:86:94:9a: ed:f3:27:18:26:55:cf:1f:f9:03:ca:22:38:5a:e9: 9e:ba:da:b7:08:bd:6b:e3:15:1a:a6:21:8e:91:9c: dc:b0:49:ae:89:ac:e5:f7:f5:cc:07:c9:f7:8f:78: 5f:0e:b1:a4:13:80:5a:21:ba:fc:a4:48:43:ce:c0: b7:b8:2d:c6:22:19:6a:00:66:a5:1b:c9:7b:90:45: 01:19:53:fe:92:5d:26:b8:09:ee:9d:8e:66:56:a8: 0f:31:51:21:52:38:c4:60:39:d7:9d:b4:35:14:57: 38:a6:af:3f:ba:ff:b5:94:cd:68:5f:13:46:ca:38: 4a:23:fe:bf:e2:72:f8:69:8e:64:5f:14:a1:99:13: fb:06:0d:84:e3:40:0e:03:b1:f7:e9:d2:d2:81:29: 67:89:6d:2e:7a:7e:d5:f9:a3:e2:c5:46:63:00:34: 46:77:2d:57:5b:98:a9:ee:1a:96:1b:6d:9f:a2:22: 00:66:07:0c:9c:a9:03:14:42:ae:34:70:e6:3a:67: 14:91:4e:74:9d:15:03:dc:28:9c:04:ec:5e:65:e3: 16:d0:7e:97:a7:3b:29:f4:32:63:c5:fc:79:71:c3: dc:98:67:e6:c3:5e:e2:16:c1:b0:a6:e4:50:9e:7a: d0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2B:6F:17:05:5D:44:46:7C:75:01:78:51:16:8D:19:4D:08:F2:55 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:94:b3:46:8f:e5:d7:0c:bd:fa:7f:37:45:d1:50:fc:79:15: 4c:63:80:a7:22:d1:95:22:a2:6a:80:1c:87:b7:75:8f:6a:f0: 76:1f:0a:53:8f:0c:8d:7f:be:f7:cc:88:a9:17:b7:b4:00:cd: bc:73:31:9b:fc:63:88:6c:4d:7c:9d:d8:b7:82:d8:f8:46:45: c2:75:dd:f1:4e:47:b7:2a:86:17:80:63:a1:fc:c2:b5:a3:b1: b8:32:ed:7e:f8:7f:5c:6e:b9:cd:e6:07:27:94:b2:46:d5:5a: 7b:23:fb:07:3c:9b:83:e9:ec:3c:11:92:4b:71:cb:c8:7d:f8: a4:d9:ef:ef:f2:e0:7e:a8:21:d9:41:54:de:41:78:bf:11:e4: 05:b2:05:24:a7:ee:d4:79:c4:6a:15:b4:78:b7:94:d7:cf:5c: ee:b0:31:a9:3c:03:5b:b8:70:92:ad:cf:f0:8f:db:8c:d6:4f: a8:45:2c:4a:6e:b7:14:9c:25:f0:94:8c:8d:2e:8e:45:0e:61: 9a:12:d6:ab:1e:28:30:4f:63:01:ad:88:38:b3:7e:60:c8:7d: ce:7c:b8:7d:8e:8f:e3:fb:22:e2:d2:8f:dd:64:1d:51:ee:8e: b6:3e:49:f7:c0:68:3d:36:1f:c1:57:3e:2f:0a:aa:a1:f7:f8: e5:bd:37:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUxMjE0MjIyMjE3WhcNMjUxMjIxMjIyMjE3WjAYMRYwFAYD VQQDDA02OTNmMzg5OS0xNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zfeI+OQdC1Ge6GGlJrt8ycYJlXPH/kDyiI4Wumeutq3CL1r4xUapiGOkZzc sEmuiazl9/XMB8n3j3hfDrGkE4BaIbr8pEhDzsC3uC3GIhlqAGalG8l7kEUBGVP+ kl0muAnunY5mVqgPMVEhUjjEYDnXnbQ1FFc4pq8/uv+1lM1oXxNGyjhKI/6/4nL4 aY5kXxShmRP7Bg2E40AOA7H36dLSgSlniW0uen7V+aPixUZjADRGdy1XW5ip7hqW G22foiIAZgcMnKkDFEKuNHDmOmcUkU50nRUD3CicBOxeZeMW0H6Xpzsp9DJjxfx5 ccPcmGfmw17iFsGwpuRQnnrQUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQrbxcF XURGfHUBeFEWjRlNCPJVMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/lLNGj+XXDL36fzdF0VD8eRVMY4CnItGVIqJqgByHt3WPavB2HwpT jwyNf773zIipF7e0AM28czGb/GOIbE18ndi3gtj4RkXCdd3xTke3KoYXgGOh/MK1 o7G4Mu1++H9cbrnN5gcnlLJG1Vp7I/sHPJuD6ew8EZJLccvIffik2e/v8uB+qCHZ QVTeQXi/EeQFsgUkp+7UecRqFbR4t5TXz1zusDGpPANbuHCSrc/wj9uM1k+oRSxK brcUnCXwlIyNLo5FDmGaEtarHigwT2MBrYg4s35gyH3OfLh9jo/j+yLi0o/dZB1R 7o62Pkn3wGg9Nh/BVz4vCqqh9/jlvTf0 -----END CERTIFICATE-----Generated at Mon Dec 15 06:41:35 2025 by rpki-client