This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft File: RCHzqdfkHW9Ht4b90-eojeQrB7k.mft (raw, json) Hash identifier: pjGGyCcbqoZp8lstYmqTUXECF2QXkN/KA2On7t1wvHw= Subject key identifier: 6E:AF:8B:FC:4E:E0:76:38:30:B7:C0:7C:AD:B7:A5:70:9A:C4:38:B1 Authority key identifier: 44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 Certificate issuer: /CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Certificate serial: 0315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft Manifest number: 0310 Signing time: Tue 23 Dec 2025 00:08:48 +0000 Manifest this update: Tue 23 Dec 2025 00:08:47 +0000 Manifest next update: Tue 30 Dec 2025 00:08:47 +0000 Files and hashes: 1: RCHzqdfkHW9Ht4b90-eojeQrB7k.crl (hash: FfXbzAsZmuMLGskQ1fkPwkx9QKCnJENDS0gJVHNdHYk=) 2: 0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa (hash: c4/EYmjgVUl4pjL+vaUj1o6O7r/FlcrHh8JpcWomXpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913442A, serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Validity Not Before: Dec 23 00:08:47 2025 GMT Not After : Dec 30 00:08:47 2025 GMT Subject: CN=6949dd90-d064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f2:16:a0:cb:67:49:3d:10:6a:9c:db:fe:05: 1b:ff:78:d8:6f:66:ea:30:78:35:5b:ac:a0:75:a9: 28:5f:d6:7a:6c:1c:30:3f:f3:80:85:6e:21:f4:bd: b4:2f:f0:6c:64:b8:9c:47:a9:fe:23:67:da:33:b3: 7c:e2:d3:8c:00:c0:0c:24:a8:de:87:c4:0b:55:64: cd:e3:15:c9:49:86:e0:8a:3e:59:58:32:87:41:14: a4:a0:fd:0b:f4:a7:1f:1d:0b:81:22:0e:7f:65:1c: 00:4d:26:af:3e:59:23:37:5f:9f:07:6e:56:6f:f2: 88:49:b2:77:0d:21:df:b0:65:0a:06:af:93:8b:04: 9c:7b:c3:79:48:34:92:d0:a3:e6:80:75:42:b9:b2: 32:ba:fe:95:32:a2:f2:65:ce:b1:c0:93:cc:05:2e: 0f:62:a4:de:42:08:31:bc:18:20:b1:65:8d:10:7e: fd:0e:0b:84:ff:b3:be:91:a5:c2:b4:3e:0c:40:5b: 88:4c:8e:34:aa:c7:cf:a6:e9:ae:ee:c7:d0:f7:be: fd:01:c1:74:24:08:cf:f1:67:2b:a4:56:aa:91:c7: 59:17:d3:fa:81:2d:86:54:46:cf:49:6a:45:26:b1: ce:2c:44:0c:6d:1c:59:71:d9:07:4e:95:8e:be:db: 4e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:AF:8B:FC:4E:E0:76:38:30:B7:C0:7C:AD:B7:A5:70:9A:C4:38:B1 X509v3 Authority Key Identifier: keyid:44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a0:36:30:7e:0c:3b:5a:a6:4c:53:b3:e8:96:d3:97:d6:2b: d9:62:80:7c:4a:a3:ae:c1:25:71:e1:68:de:50:95:a2:27:79: 3a:93:90:31:5e:01:dc:a7:9b:7e:9f:51:dc:87:61:ab:78:9f: fa:36:16:af:06:3d:84:fd:1b:b3:7e:68:92:b0:17:6f:d3:83: 51:91:c8:ea:0a:af:7e:c4:57:68:4a:7c:58:44:5f:31:43:f9: c6:6e:7d:f1:45:9e:ce:db:53:de:7a:32:fd:06:81:4b:e9:4e: 06:b0:46:01:80:d6:c7:40:de:5b:b9:a8:1c:30:e1:c1:ec:2a: 04:52:56:b5:af:38:98:9f:50:98:8d:5e:c2:1c:ff:d1:3a:12: 4c:df:ab:ea:cb:e5:17:3b:c6:eb:89:31:56:fb:1a:80:51:c6: d8:ba:9d:dc:48:e4:d5:0b:20:05:b6:60:21:aa:8d:9f:c3:f0: 33:e4:b5:7a:aa:c4:00:b6:87:6c:a9:75:29:7b:bf:85:9b:76: 47:0d:70:c8:12:35:b8:fa:a3:60:94:2d:61:24:2d:bd:8a:d5: e3:0e:7d:07:73:40:72:8a:61:50:e3:00:34:0a:3b:5f:d6:59: 64:be:eb:e2:b4:76:b6:8a:32:d9:c7:71:96:80:67:3d:0d:0f: cc:00:9b:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ0MkExMTAvBgNVBAUTKDQ0MjFGM0E5RDdFNDFENkY0N0I3ODZGREQzRTdBODhE RTQyQjA3QjkwHhcNMjUxMjIzMDAwODQ3WhcNMjUxMjMwMDAwODQ3WjAYMRYwFAYD VQQDDA02OTQ5ZGQ5MC1kMDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/IWoMtnST0Qapzb/gUb/3jYb2bqMHg1W6ygdakoX9Z6bBwwP/OAhW4h9L20 L/BsZLicR6n+I2faM7N84tOMAMAMJKjeh8QLVWTN4xXJSYbgij5ZWDKHQRSkoP0L 9KcfHQuBIg5/ZRwATSavPlkjN1+fB25Wb/KISbJ3DSHfsGUKBq+TiwSce8N5SDSS 0KPmgHVCubIyuv6VMqLyZc6xwJPMBS4PYqTeQggxvBggsWWNEH79DguE/7O+kaXC tD4MQFuITI40qsfPpumu7sfQ9779AcF0JAjP8WcrpFaqkcdZF9P6gS2GVEbPSWpF JrHOLEQMbRxZcdkHTpWOvttOyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6vi/xO 4HY4MLfAfK23pXCaxDixMB8GA1UdIwQYMBaAFEQh86nX5B1vR7eG/dPnqI3kKwe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDQyQS9BQjRFNTI0NEZD MzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hXOUh0NGI5MC1lb2plUXJC N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JDSHpxZGZrSFc5SHQ0YjkwLWVvamVRckI3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDQyQS9BQjRFNTI0NEZDMzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hX OUh0NGI5MC1lb2plUXJCN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApoDYwfgw7WqZMU7PoltOX1ivZYoB8SqOuwSVx4WjeUJWiJ3k6k5Ax XgHcp5t+n1Hch2GreJ/6NhavBj2E/RuzfmiSsBdv04NRkcjqCq9+xFdoSnxYRF8x Q/nGbn3xRZ7O21PeejL9BoFL6U4GsEYBgNbHQN5buagcMOHB7CoEUla1rziYn1CY jV7CHP/ROhJM36vqy+UXO8briTFW+xqAUcbYup3cSOTVCyAFtmAhqo2fw/Az5LV6 qsQAtodsqXUpe7+Fm3ZHDXDIEjW4+qNglC1hJC29itXjDn0Hc0ByimFQ4wA0Cjtf 1llkvuvitHa2ijLZx3GWgGc9DQ/MAJuS -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:35 2025 by rpki-client