This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft File: cDaiAHf_h_76NADX-QdrfhmDiy4.mft (raw, json) Hash identifier: 12hCIKdUdSF4XO8D184XMUF8SbV7HY6irm5DgP6VUCQ= Subject key identifier: AC:77:4A:FC:25:82:C7:5A:5A:6E:9F:AB:5B:E4:FF:92:4B:41:38:2A Authority key identifier: 70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E Certificate issuer: /CN=A913F124/serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft Manifest number: 0256 Signing time: Fri 19 Dec 2025 00:53:59 +0000 Manifest this update: Fri 19 Dec 2025 00:53:59 +0000 Manifest next update: Fri 26 Dec 2025 00:53:59 +0000 Files and hashes: 1: cDaiAHf_h_76NADX-QdrfhmDiy4.crl (hash: Ckem7aGz6M0SiOtzVcVQBV+rZ4XjbBSwXMC0UJ4bmfk=) 2: B13C376049EC11ED9EAEAC0CC4F9AE02.roa (hash: 3aaeEi1YrA3uSceTUOZGuJZHBHy8WbpEjF+B/7Isrys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F124, serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Validity Not Before: Dec 19 00:53:59 2025 GMT Not After : Dec 26 00:53:59 2025 GMT Subject: CN=6944a227-8b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:af:fc:5c:95:44:63:5e:c3:9d:b5:40:1a: 90:e0:82:93:38:d3:c1:0e:1d:77:74:b0:1d:70:f4: 1f:63:82:69:c8:3c:69:9a:d0:97:20:ed:6b:95:45: cb:99:e4:10:58:16:8a:76:bc:a1:ae:49:21:90:f5: c4:8f:a6:f9:3b:38:d1:9a:40:e8:db:78:0c:85:7a: ec:5b:59:f3:3a:8c:6c:e4:2f:b9:c7:98:ba:38:af: aa:e4:9d:49:60:48:46:2b:20:75:b8:06:0d:78:e4: 48:90:f7:12:56:48:db:4d:e0:bf:0e:f9:ff:f2:88: 96:d0:c5:49:e8:74:41:4d:bb:b6:63:67:68:ac:22: 44:4c:79:e8:73:3f:d1:31:b0:a4:15:76:a8:95:30: eb:23:43:71:2c:8a:62:b7:ba:e2:ed:14:a6:01:85: a4:2c:8a:4d:61:65:01:cb:77:fa:48:ce:12:ca:02: d5:87:74:fb:27:cb:a4:fa:fa:8d:7f:25:e4:a8:d2: b7:6b:d1:30:16:78:c0:f5:b0:0a:c1:68:7a:0c:23: 01:6e:6a:b6:0d:0f:6e:80:ab:20:39:c0:96:34:59: bb:3c:9e:f9:ce:0a:5b:60:01:5d:e2:0f:d6:e4:78: 94:e4:11:07:e5:cc:49:37:93:97:18:d6:77:de:65: 4c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:77:4A:FC:25:82:C7:5A:5A:6E:9F:AB:5B:E4:FF:92:4B:41:38:2A X509v3 Authority Key Identifier: keyid:70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:0a:2b:18:80:fd:49:db:d8:17:06:da:e0:5d:be:b1:0c:e9: 1c:f9:4d:71:d9:2c:4e:15:f3:ac:03:36:63:c5:49:93:74:6e: d6:dd:0f:17:a1:fa:dd:93:87:6c:86:05:21:c8:26:e7:4c:ed: 4a:d2:3b:92:41:19:1d:f9:7a:86:f8:8e:7e:8f:e9:b4:13:cd: fd:a5:f8:19:b5:b9:71:ba:8d:c8:a4:87:2a:23:d2:03:80:f7: 17:9b:02:1b:61:76:a7:86:e6:25:e2:33:08:51:2e:c4:12:83: a6:2b:ec:e1:cf:c1:23:58:94:8f:f8:3c:a0:18:08:8f:9f:d3: 4d:e7:0a:d9:14:ac:13:79:53:87:22:23:c9:a9:ad:24:89:b0: 03:30:b4:8c:e6:6b:5c:5e:07:85:e1:db:08:8d:83:ca:2d:ff: fa:fe:44:61:98:79:f7:fc:55:48:43:17:15:18:c4:50:9a:b8: f5:60:11:c5:6b:1a:71:cb:0c:8e:4f:c2:38:53:8d:75:8b:ad: b8:f3:05:0f:c1:4f:67:91:32:a5:36:6f:30:e5:da:d2:97:76: e2:68:a8:d2:10:ea:f6:a7:b1:97:8d:6d:a5:72:2c:78:a4:ef: 0e:26:51:a9:42:1f:7a:78:a9:26:7b:4d:bf:74:43:65:ca:e2: 36:60:ee:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YxMjQxMTAvBgNVBAUTKDcwMzZBMjAwNzdGRjg3RkVGQTM0MDBEN0Y5MDc2QjdF MTk4MzhCMkUwHhcNMjUxMjE5MDA1MzU5WhcNMjUxMjI2MDA1MzU5WjAYMRYwFAYD VQQDDA02OTQ0YTIyNy04Yjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/Sv/FyVRGNew521QBqQ4IKTONPBDh13dLAdcPQfY4JpyDxpmtCXIO1rlUXL meQQWBaKdryhrkkhkPXEj6b5OzjRmkDo23gMhXrsW1nzOoxs5C+5x5i6OK+q5J1J YEhGKyB1uAYNeORIkPcSVkjbTeC/Dvn/8oiW0MVJ6HRBTbu2Y2dorCJETHnocz/R MbCkFXaolTDrI0NxLIpit7ri7RSmAYWkLIpNYWUBy3f6SM4SygLVh3T7J8uk+vqN fyXkqNK3a9EwFnjA9bAKwWh6DCMBbmq2DQ9ugKsgOcCWNFm7PJ75zgpbYAFd4g/W 5HiU5BEH5cxJN5OXGNZ33mVMXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKx3Svwl gsdaWm6fq1vk/5JLQTgqMB8GA1UdIwQYMBaAFHA2ogB3/4f++jQA1/kHa34Zg4su MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjEyNC81NjU1REE3NjQ5 RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hfNzZOQURYLVFkcmZobURp eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NEYWlBSGZfaF83Nk5BRFgtUWRyZmhtRGl5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjEyNC81NjU1REE3NjQ5RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hf NzZOQURYLVFkcmZobURpeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7CisYgP1J29gXBtrgXb6xDOkc+U1x2SxOFfOsAzZjxUmTdG7W3Q8X ofrdk4dshgUhyCbnTO1K0juSQRkd+XqG+I5+j+m0E839pfgZtblxuo3IpIcqI9ID gPcXmwIbYXanhuYl4jMIUS7EEoOmK+zhz8EjWJSP+DygGAiPn9NN5wrZFKwTeVOH IiPJqa0kibADMLSM5mtcXgeF4dsIjYPKLf/6/kRhmHn3/FVIQxcVGMRQmrj1YBHF axpxywyOT8I4U411i6248wUPwU9nkTKlNm8w5drSl3biaKjSEOr2p7GXjW2lcix4 pO8OJlGpQh96eKkme02/dENlyuI2YO6t -----END CERTIFICATE-----Generated at Fri Dec 19 04:52:01 2025 by rpki-client