This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: WapyHdMl0/XIIEAWY5Jyl3FG2O7+UCM4raiUiwNzsZc= Subject key identifier: 26:10:D0:A8:98:8D:7E:0A:70:D1:CB:91:57:53:35:D1:48:25:42:B0 Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: 0184 Signing time: Sun 21 Dec 2025 02:52:33 +0000 Manifest this update: Sun 21 Dec 2025 02:52:33 +0000 Manifest next update: Sun 28 Dec 2025 02:52:33 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: CApZsGwWrARA1f/+iK59D6Wo2txRAPUp+J2Nfi5yxLo=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: Kn/Z1rDpA/ttbyRypaR6AHeF+y7El6cRx5pOMXcKn6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22, serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Dec 21 02:52:33 2025 GMT Not After : Dec 28 02:52:33 2025 GMT Subject: CN=694760f1-1e8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e2:86:d4:16:04:3d:4a:36:61:e3:68:80:b7: 49:ea:f9:fa:f5:b9:23:a5:00:b9:aa:4d:87:98:dc: 9c:c1:22:4b:a4:c7:cc:db:b7:8c:f4:98:d0:a5:16: 63:f5:8a:c6:fe:6e:5f:d6:97:51:bc:eb:50:26:6a: 10:80:20:b1:6b:8f:4f:40:bd:80:87:da:7d:fa:38: 78:8d:14:81:a2:e4:ce:b9:1f:37:e7:a5:63:75:2f: ae:97:dd:75:ef:41:41:8d:86:29:f8:ea:33:83:46: 8b:f5:77:37:33:67:83:e4:cc:75:c5:45:3b:66:e4: c0:8e:f8:14:07:d3:3f:ec:b7:eb:7d:11:2b:68:d5: d0:c0:84:f2:d4:89:24:05:46:f0:98:aa:38:c1:90: 15:62:19:18:ce:7e:e3:29:19:87:cb:79:d4:0c:ba: 0e:4e:3e:ec:da:d7:40:72:bc:b9:af:6c:bf:62:70: 75:d5:34:76:76:78:53:1f:3c:aa:fb:02:f3:f8:58: e6:f8:79:01:14:d2:d4:95:c2:ba:3e:85:31:f0:c9: d3:cc:94:4e:b9:6a:4c:10:49:2c:6f:33:17:95:62: a2:1e:f9:f9:f3:ce:c7:1b:79:39:ec:30:52:f4:b1: ec:5c:f6:40:77:70:55:73:7a:66:11:34:66:57:4f: 66:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:10:D0:A8:98:8D:7E:0A:70:D1:CB:91:57:53:35:D1:48:25:42:B0 X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:05:64:9e:05:f5:81:bc:0a:e0:97:66:68:f6:25:c9:6e:6d: 79:40:5b:71:9b:d7:22:ab:7c:30:89:ac:35:9f:34:68:32:ae: 35:59:26:37:16:69:e6:3b:54:57:a6:91:cd:27:b8:bc:da:3e: aa:2c:39:54:4d:5c:22:73:13:34:a0:44:ea:23:4b:0a:e3:17: cf:12:a1:65:c7:89:f0:18:89:89:e4:29:25:d8:19:1b:73:d0: b5:49:97:7a:aa:bc:ef:91:d9:07:24:ab:e7:1c:6e:06:ff:43: 5a:e3:f2:93:1e:49:3e:0a:9e:7e:cc:0f:ec:c1:bb:2c:5b:fb: 09:9b:74:4e:47:6d:7a:59:67:2c:1b:43:34:f1:49:40:ce:24: 0d:0a:53:ac:b1:93:f4:c2:d8:a3:1f:b1:33:8f:bd:e4:e9:24: 05:2a:1c:db:cd:9c:22:99:81:fe:19:75:16:25:e1:34:ca:ad: 6e:c4:17:a3:a2:84:3c:e0:7a:9f:61:d0:28:84:23:83:3c:a6: 69:77:df:bd:5d:9f:27:b5:99:f9:7b:99:ca:4b:d7:01:87:aa: d1:83:bf:52:2c:e7:76:b9:4c:58:44:9a:0d:1f:cf:ac:2e:40: 17:58:f6:98:99:9f:32:21:7a:24:28:84:aa:d1:91:bc:bb:5d: dd:90:2f:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCMjIxMTAvBgNVBAUTKDA5NTg4NjE0Mzg3MjEwRThCNjlBRDNDMzFBNzM2MTlE NzU1RUQwQzAwHhcNMjUxMjIxMDI1MjMzWhcNMjUxMjI4MDI1MjMzWjAYMRYwFAYD VQQDDA02OTQ3NjBmMS0xZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+KG1BYEPUo2YeNogLdJ6vn69bkjpQC5qk2HmNycwSJLpMfM27eM9JjQpRZj 9YrG/m5f1pdRvOtQJmoQgCCxa49PQL2Ah9p9+jh4jRSBouTOuR8356VjdS+ul911 70FBjYYp+Oozg0aL9Xc3M2eD5Mx1xUU7ZuTAjvgUB9M/7LfrfREraNXQwITy1Ikk BUbwmKo4wZAVYhkYzn7jKRmHy3nUDLoOTj7s2tdAcry5r2y/YnB11TR2dnhTHzyq +wLz+Fjm+HkBFNLUlcK6PoUx8MnTzJROuWpMEEksbzMXlWKiHvn5887HG3k57DBS 9LHsXPZAd3BVc3pmETRmV09mOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYQ0KiY jX4KcNHLkVdTNdFIJUKwMB8GA1UdIwQYMBaAFAlYhhQ4chDotprTwxpzYZ11XtDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0IyMi82NjAyRTk3ODhD RDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVPaTJtdFBER25OaG5YVmUw TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVP aTJtdFBER25OaG5YVmUwTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABBWSeBfWBvArgl2Zo9iXJbm15QFtxm9ciq3wwiaw1nzRoMq41WSY3 FmnmO1RXppHNJ7i82j6qLDlUTVwicxM0oETqI0sK4xfPEqFlx4nwGImJ5Ckl2Bkb c9C1SZd6qrzvkdkHJKvnHG4G/0Na4/KTHkk+Cp5+zA/swbssW/sJm3ROR216WWcs G0M08UlAziQNClOssZP0wtijH7Ezj73k6SQFKhzbzZwimYH+GXUWJeE0yq1uxBej ooQ84HqfYdAohCODPKZpd9+9XZ8ntZn5e5nKS9cBh6rRg79SLOd2uUxYRJoNH8+s LkAXWPaYmZ8yIXokKISq0ZG8u13dkC8a -----END CERTIFICATE-----Generated at Sun Dec 21 05:00:35 2025 by rpki-client