This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft File: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft (raw, json) Hash identifier: WOCel+yTYeFyLDUVtU0U8ZIkpWu0+79GS99nJfRHLz4= Subject key identifier: CB:4D:5C:F0:27:85:8B:BC:5D:52:58:19:95:B7:80:39:0B:E9:0B:81 Authority key identifier: 72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A Certificate issuer: /CN=A915D010/serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Certificate serial: 0E11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft Manifest number: 0E07 Signing time: Wed 24 Dec 2025 17:31:46 +0000 Manifest this update: Wed 24 Dec 2025 17:31:46 +0000 Manifest next update: Wed 31 Dec 2025 17:31:46 +0000 Files and hashes: 1: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl (hash: AiCawqjDKoWiPtPHH57C2kGm1IbwcV6ll4Af/ZqP26g=) 2: BB691FBE889111F09BDDFE1FC4F9AE02.roa (hash: aKZ0y3YUDBGFQDJs+f2mX7us+zy68CusueX6j6aIKeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3601 (0xe11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D010, serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Validity Not Before: Dec 24 17:31:46 2025 GMT Not After : Dec 31 17:31:46 2025 GMT Subject: CN=694c2382-8580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:e3:4c:3e:f4:84:7c:11:87:77:a4:48:d1: 65:f9:11:22:43:f3:65:97:6f:6e:37:98:ae:ff:c7: 0f:9b:4c:e2:c2:93:41:cf:6b:6b:36:97:ec:b3:3a: 7f:c3:3b:37:20:fc:1f:74:80:ec:ee:78:ff:2d:db: 48:af:a9:54:cb:b4:d4:fe:63:73:c0:8f:16:c5:a2: 85:6f:e8:6f:90:ac:b0:b8:25:05:cf:ae:d6:6e:c0: f4:ae:f8:d0:0b:b4:c6:f2:30:8f:3b:e4:14:31:cb: 0d:d9:02:49:64:35:70:96:bb:f2:6b:c4:2c:44:5a: 04:d5:34:52:a2:31:a9:14:82:0d:71:81:0b:8d:c4: 47:e2:c9:18:11:a2:98:fb:63:06:19:1e:a0:fe:58: 3a:9e:e6:79:32:13:44:79:ba:4d:05:70:d1:39:71: 1b:00:b8:84:3a:56:69:67:dc:93:0d:33:7f:f7:2d: 36:37:7e:a3:11:d1:8c:2d:53:95:c7:c3:22:15:72: 70:b2:ee:92:24:2d:79:e2:2d:0f:e5:e7:fa:22:c7: 30:37:64:a8:a6:bd:e1:a5:33:05:6c:bc:68:eb:af: df:a1:74:17:3d:a2:72:57:92:6e:76:a0:fe:f6:91: e0:1f:26:08:79:fc:7f:07:72:69:ac:55:5d:21:68: 72:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4D:5C:F0:27:85:8B:BC:5D:52:58:19:95:B7:80:39:0B:E9:0B:81 X509v3 Authority Key Identifier: keyid:72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e4:1e:fb:bb:26:86:db:9c:5c:0c:1c:56:94:26:c6:4e:41: 8f:45:c6:5a:dc:5f:0c:82:85:ca:f8:e7:5b:16:30:38:78:12: 24:f0:e3:54:96:a6:e3:0b:df:61:dd:bf:c4:e2:4e:75:76:26: 11:b7:41:d8:53:70:fa:e6:b4:34:01:c2:2c:90:85:60:ff:63: 56:92:0f:5e:ee:32:0f:5c:75:df:ae:4e:3e:02:b2:0a:e7:0d: fc:d2:ff:6e:a4:ed:67:2f:28:65:73:cb:ed:f7:1a:45:c7:e4: 4d:ab:c4:4c:2c:a3:cf:c8:23:fb:80:cb:31:68:4c:8f:8b:63: 99:44:48:00:0d:74:97:c0:05:31:63:d3:a5:52:ee:64:48:da: ac:f8:ac:90:a5:46:d9:31:a8:5d:13:ba:d5:e6:df:30:28:ff: bc:21:f0:fb:12:53:76:4e:8d:ea:40:70:34:a7:3d:08:ae:5f: 1e:18:40:83:2d:90:45:2b:82:7d:d7:52:12:81:8b:72:a6:ce: 6e:d1:ce:79:5d:98:2e:4f:8c:68:9a:88:ae:c4:22:89:a4:2b: 46:24:af:7a:c9:7e:88:ce:53:a4:e1:52:b3:e5:38:f7:cf:1b: 49:70:5a:6e:9f:4e:6b:f0:0b:a2:0c:53:c6:ec:fd:8b:7b:58: d0:30:eb:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwMTAxMTAvBgNVBAUTKDcyMjE3OEQ1OTFEOTg1OTY4OUU0QjkyRjJEMEM4N0ZB NDdFMzVFMEEwHhcNMjUxMjI0MTczMTQ2WhcNMjUxMjMxMTczMTQ2WjAYMRYwFAYD VQQDDA02OTRjMjM4Mi04NTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZHjTD70hHwRh3ekSNFl+REiQ/Nll29uN5iu/8cPm0ziwpNBz2trNpfsszp/ wzs3IPwfdIDs7nj/LdtIr6lUy7TU/mNzwI8WxaKFb+hvkKywuCUFz67WbsD0rvjQ C7TG8jCPO+QUMcsN2QJJZDVwlrvya8QsRFoE1TRSojGpFIINcYELjcRH4skYEaKY +2MGGR6g/lg6nuZ5MhNEebpNBXDROXEbALiEOlZpZ9yTDTN/9y02N36jEdGMLVOV x8MiFXJwsu6SJC154i0P5ef6IscwN2Sopr3hpTMFbLxo66/foXQXPaJyV5JudqD+ 9pHgHyYIefx/B3JprFVdIWhyBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtNXPAn hYu8XVJYGZW3gDkL6QuBMB8GA1UdIwQYMBaAFHIheNWR2YWWieS5Ly0Mh/pH414K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAxMC81N0I3NjcxQUMy MUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmhaYUo1TGt2TFF5SC1rZmpY Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpRjQxWkhaaFphSjVMa3ZMUXlILWtmalhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDAxMC81N0I3NjcxQUMyMUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmha YUo1TGt2TFF5SC1rZmpYZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK5B77uyaG25xcDBxWlCbGTkGPRcZa3F8MgoXK+OdbFjA4eBIk8ONU lqbjC99h3b/E4k51diYRt0HYU3D65rQ0AcIskIVg/2NWkg9e7jIPXHXfrk4+ArIK 5w380v9upO1nLyhlc8vt9xpFx+RNq8RMLKPPyCP7gMsxaEyPi2OZREgADXSXwAUx Y9OlUu5kSNqs+KyQpUbZMahdE7rV5t8wKP+8IfD7ElN2To3qQHA0pz0Irl8eGECD LZBFK4J911ISgYtyps5u0c55XZguT4xomoiuxCKJpCtGJK96yX6IzlOk4VKz5Tj3 zxtJcFpun05r8AuiDFPG7P2Le1jQMOvB -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:08 2025 by rpki-client