This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: Ofad6HltZ2K4ITi550VS6QGPOgIlHO+pUZWngZdEbjk= Subject key identifier: F2:9D:A5:77:DA:F4:AE:D2:C1:34:F1:57:D2:23:C3:97:EF:4E:32:B7 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 0459 Signing time: Fri 12 Dec 2025 23:18:31 +0000 Manifest this update: Fri 12 Dec 2025 23:18:31 +0000 Manifest next update: Fri 19 Dec 2025 23:18:31 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: dMo6kz72yLM9HnD+BRXua4bFW+1CMsHGIyjaAcoKELs=) 2: 4B167396E74111EC80E35542C4F9AE02.roa (hash: m7bVPzA+H6T0BPfqPAwWK53E3FJsQccTswfglW7TmvM=) 3: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: SaWX6hkIcJ4pgsrGygV8fgQyGHt1YhbbUvZTPYJ4JwU=) 4: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: qmwN8rcAR3vpucG22PWqt5m5wyg2eb8IRpdszpsFVNQ=) 5: EF33F6CCD16911F08AEFD95BC4F9AE02.roa (hash: AgsRF6p4UteSopIb7cnx5B7Juyq+ola/RIaCBtlF3KQ=) 6: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: 0U8T0RS4mF6dClIl1xSb8fK6zofTOSe8/dMSQaDIi34=) 7: EFAA6C1CD16911F08A99D95BC4F9AE02.roa (hash: cgcaSIqIOhLCa5iTVKO9pJcq6xRCHOFoE69sC8NIq7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 23:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Dec 12 23:18:31 2025 GMT Not After : Dec 19 23:18:31 2025 GMT Subject: CN=693ca2c7-e6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f2:37:1d:16:85:b6:26:88:15:62:a4:26:98: 9d:d7:19:b4:06:b1:68:b0:bd:b7:4a:0d:54:ea:5a: a8:95:b9:4d:e3:9a:c9:3f:3f:70:4b:a8:f9:0a:cb: 67:c5:ec:4c:e7:cf:6e:bd:82:93:1f:d1:c2:bd:af: 41:e6:78:ff:89:7c:32:49:49:58:c3:f9:98:0c:d4: 56:09:f3:12:6a:a1:f5:16:3e:ca:04:55:cd:ee:02: d5:05:e1:0d:1b:c0:36:b7:8b:f7:eb:59:ed:09:f2: b3:f0:a7:41:cf:3d:eb:a0:fc:c8:63:94:3e:c9:3c: bc:0c:11:b0:a4:c2:84:2d:b2:eb:dd:9d:e4:60:ba: 05:ca:f5:c6:c9:b8:5b:39:00:70:d0:96:b2:4e:36: e3:d2:25:a7:cb:bb:8f:90:80:08:84:1d:80:4f:c4: e3:1f:e0:62:25:a3:80:d6:78:6b:5f:48:a3:09:86: 47:d0:9a:2a:3c:ed:03:32:be:78:d2:1f:66:31:f1: 8d:4e:f2:95:3a:26:dd:d2:e7:58:4f:92:65:b0:fa: 6e:5a:08:7e:36:6e:2f:36:12:5d:91:c5:bc:cb:ed: 77:04:aa:30:d1:42:63:95:f7:93:81:6b:bb:eb:f1: 8e:96:1a:2e:ea:8f:c5:d6:20:81:67:a8:e9:e2:c3: 1a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:9D:A5:77:DA:F4:AE:D2:C1:34:F1:57:D2:23:C3:97:EF:4E:32:B7 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:dc:23:a8:0f:d0:46:0e:69:c8:bf:06:b7:f1:b2:38:92:d8: 96:0a:f7:92:bf:0a:50:c2:ef:59:ea:db:45:0d:21:81:44:1d: 15:9f:6c:32:51:d9:20:1a:d6:1b:20:c2:6e:a9:fe:4d:ef:4a: da:85:70:00:8c:8e:f0:a3:b6:24:e2:c0:51:95:c8:48:43:f2: 00:8d:e8:e7:61:c6:87:8d:fe:37:45:ad:61:3d:f2:e7:99:67: c5:ca:55:c0:b9:06:0e:a7:1a:53:18:e7:61:1c:4e:63:5d:3a: fb:dc:10:08:14:51:eb:15:f9:56:a2:c8:64:ec:11:56:8e:e8: f7:7d:6f:53:29:a9:22:4d:b5:51:02:70:0e:a8:cd:5c:d9:2b: 0a:dc:2a:1a:78:24:e7:d6:5a:80:e4:6b:f9:ce:67:6f:67:55: 4e:9c:9e:c9:c8:2f:46:07:80:63:7f:fa:3d:94:e3:1f:81:d8: cc:3b:8d:00:db:dc:a8:3c:25:69:5a:0a:7a:90:9e:3b:e5:44: d5:31:42:b3:48:a2:ac:7a:1b:ea:e2:64:b8:bd:a2:af:87:cd: a3:9f:b5:d3:56:bd:c3:72:2d:d1:8f:cd:0b:d2:66:12:1d:6d: f5:ab:8c:37:71:5e:fe:4b:ef:ff:04:87:d5:fc:6a:da:66:3e: 09:bc:fb:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUxMjEyMjMxODMxWhcNMjUxMjE5MjMxODMxWjAYMRYwFAYD VQQDDA02OTNjYTJjNy1lNmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvI3HRaFtiaIFWKkJpid1xm0BrFosL23Sg1U6lqolblN45rJPz9wS6j5Cstn xexM589uvYKTH9HCva9B5nj/iXwySUlYw/mYDNRWCfMSaqH1Fj7KBFXN7gLVBeEN G8A2t4v361ntCfKz8KdBzz3roPzIY5Q+yTy8DBGwpMKELbLr3Z3kYLoFyvXGybhb OQBw0JayTjbj0iWny7uPkIAIhB2AT8TjH+BiJaOA1nhrX0ijCYZH0JoqPO0DMr54 0h9mMfGNTvKVOibd0udYT5JlsPpuWgh+Nm4vNhJdkcW8y+13BKow0UJjlfeTgWu7 6/GOlhou6o/F1iCBZ6jp4sMaHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKdpXfa 9K7SwTTxV9Ijw5fvTjK3MB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC93COoD9BGDmnIvwa38bI4ktiWCveSvwpQwu9Z6ttFDSGBRB0Vn2wy UdkgGtYbIMJuqf5N70rahXAAjI7wo7Yk4sBRlchIQ/IAjejnYcaHjf43Ra1hPfLn mWfFylXAuQYOpxpTGOdhHE5jXTr73BAIFFHrFflWoshk7BFWjuj3fW9TKakiTbVR AnAOqM1c2SsK3CoaeCTn1lqA5Gv5zmdvZ1VOnJ7JyC9GB4Bjf/o9lOMfgdjMO40A 29yoPCVpWgp6kJ475UTVMUKzSKKsehvq4mS4vaKvh82jn7XTVr3Dci3Rj80L0mYS HW31q4w3cV7+S+//BIfV/GraZj4JvPsn -----END CERTIFICATE-----Generated at Sun Dec 14 23:37:18 2025 by rpki-client