This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: 3SmFg0CZZ971HY4ohbxcl0Aij66PLHqIo42JsBvIcUI= Subject key identifier: FD:79:09:47:DB:4A:02:35:B2:98:BB:24:80:EC:1A:97:86:DC:0A:23 Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0C32 Signing time: Sat 06 Dec 2025 18:01:46 +0000 Manifest this update: Sat 06 Dec 2025 18:01:45 +0000 Manifest next update: Sat 13 Dec 2025 18:01:45 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: LtPMWgMd1cTbFOJn9jlZEzPmLngo1autDIvfruj8IBA=) 2: 021496F2A4EC11F0A8EB5F7EC4F9AE02.roa (hash: k+6bL1sigdhJhsvVBlCJkl8BzQ8/uafB/3pyO3zl0nM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: Dec 6 18:01:45 2025 GMT Not After : Dec 13 18:01:45 2025 GMT Subject: CN=69346f8a-1ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ec:83:29:72:9d:88:31:b7:77:cb:fe:11:6d: 4c:d0:06:12:29:db:db:87:ed:74:e7:39:41:cb:ec: 07:10:96:57:22:10:b5:58:9f:c8:82:fc:94:df:03: 57:03:cd:31:1a:3f:59:dd:e6:66:65:98:eb:cf:ca: 1b:d1:c8:a4:99:18:8f:c1:9c:0b:50:a2:f7:d9:a3: 5f:ed:63:49:70:9e:f8:dc:49:c7:3e:e0:c8:8c:ba: 68:f2:c3:78:4c:42:5b:76:83:50:dc:84:13:73:5c: 90:6b:6e:1d:77:46:c7:4d:dd:e3:5c:3c:32:14:e9: 8a:f6:21:92:ee:91:61:b8:1e:9f:59:d6:f9:09:64: 30:36:85:3e:bb:44:f2:64:76:84:58:bc:29:77:5f: ba:28:de:73:cd:93:c6:3c:a5:bd:5b:4f:30:19:2d: cc:94:ba:c6:81:a0:e0:70:33:e7:ab:76:65:7c:e8: 33:94:27:d4:e1:af:97:5c:6a:fb:c8:a0:3d:27:ad: 6d:70:24:44:34:5b:c8:31:c1:c9:e2:ae:15:fb:16: f4:ac:e1:81:8f:1c:da:6f:14:ce:1a:91:68:3e:d2: ac:b9:0b:97:36:96:38:58:d9:b4:78:73:5c:ce:e9: 6a:e7:72:f7:02:05:a8:41:52:ed:f6:6a:ad:28:d3: 03:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:79:09:47:DB:4A:02:35:B2:98:BB:24:80:EC:1A:97:86:DC:0A:23 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:cd:d1:cf:2e:cd:41:b0:50:c9:75:49:bd:4a:f5:d6:65:db: b1:22:e1:dc:b3:bd:ec:fa:d4:56:5c:9b:fc:be:f4:78:a7:18: 68:bc:1c:69:fd:e4:1f:a7:2d:d6:38:42:24:6e:3a:01:dc:49: ee:38:de:ff:03:b1:8f:84:0e:d2:64:45:9b:f9:de:7d:59:aa: 2b:18:6a:3e:9d:29:34:45:51:6a:86:00:ff:88:ba:d7:3e:23: f3:9b:e9:fb:e0:cb:fb:89:02:2e:22:74:df:64:08:bf:94:c2: a0:33:96:70:3e:73:47:e2:f8:46:7e:24:8c:d3:58:9b:07:ad: 0d:38:c6:d3:11:e9:40:88:60:3d:eb:c7:d2:d2:87:a9:a3:c2: 04:6f:aa:27:84:28:20:93:6f:4b:b3:5c:bb:a4:79:b6:4d:be: 32:76:8a:82:d5:8a:23:ff:48:49:87:71:7c:a7:91:fb:af:81: 28:f2:e4:01:83:3b:94:07:98:e8:8b:94:bb:b1:28:d1:df:41: 63:15:60:35:28:d0:93:a6:90:7c:29:6f:ba:e8:fb:48:cb:6d: 37:63:81:ae:f4:71:1d:6e:e3:a8:23:72:5f:fd:62:0b:2e:56: 94:c2:71:ac:a7:9a:0d:82:60:44:fd:ba:7d:72:ae:a5:13:be: da:2f:66:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjUxMjA2MTgwMTQ1WhcNMjUxMjEzMTgwMTQ1WjAYMRYwFAYD VQQDEw02OTM0NmY4YS0xZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteyDKXKdiDG3d8v+EW1M0AYSKdvbh+105zlBy+wHEJZXIhC1WJ/IgvyU3wNX A80xGj9Z3eZmZZjrz8ob0cikmRiPwZwLUKL32aNf7WNJcJ743EnHPuDIjLpo8sN4 TEJbdoNQ3IQTc1yQa24dd0bHTd3jXDwyFOmK9iGS7pFhuB6fWdb5CWQwNoU+u0Ty ZHaEWLwpd1+6KN5zzZPGPKW9W08wGS3MlLrGgaDgcDPnq3ZlfOgzlCfU4a+XXGr7 yKA9J61tcCRENFvIMcHJ4q4V+xb0rOGBjxzabxTOGpFoPtKsuQuXNpY4WNm0eHNc zulq53L3AgWoQVLt9mqtKNMD7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP15CUfb SgI1spi7JIDsGpeG3AojMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZzdHPLs1BsFDJdUm9SvXWZduxIuHcs73s+tRWXJv8vvR4pxhovBxp /eQfpy3WOEIkbjoB3EnuON7/A7GPhA7SZEWb+d59WaorGGo+nSk0RVFqhgD/iLrX PiPzm+n74Mv7iQIuInTfZAi/lMKgM5ZwPnNH4vhGfiSM01ibB60NOMbTEelAiGA9 68fS0oepo8IEb6onhCggk29Ls1y7pHm2Tb4ydoqC1Yoj/0hJh3F8p5H7r4Eo8uQB gzuUB5joi5S7sSjR30FjFWA1KNCTppB8KW+66PtIy203Y4Gu9HEdbuOoI3Jf/WIL LlaUwnGsp5oNgmBE/bp9cq6lE77aL2Yu -----END CERTIFICATE-----Generated at Mon Dec 8 06:18:54 2025 by rpki-client