This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: yXynf+3uUhoAhulC5fhg1jtXAx8Ye0usvDPzExyVjBQ= Subject key identifier: B6:14:39:32:7F:DD:8E:6C:66:4E:86:FB:AE:B1:FC:96:7C:2E:A5:34 Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: 0103 Signing time: Mon 22 Dec 2025 23:36:54 +0000 Manifest this update: Mon 22 Dec 2025 23:36:53 +0000 Manifest next update: Mon 29 Dec 2025 23:36:53 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: PYTQODobZjZM5GKMrQtRiduly8U5GCKHcRQ5r6AMoGo=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: kCmrnMtq0oO23W6srUkZmhxFZ7143rIIMei/dep36jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Dec 22 23:36:53 2025 GMT Not After : Dec 29 23:36:53 2025 GMT Subject: CN=6949d616-9740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3d:c5:6f:e7:33:a5:87:0c:8c:4c:f7:71:93: cb:d6:0c:5d:93:43:b9:21:61:f4:ed:44:01:cd:dd: 55:ee:37:8f:48:1c:a9:47:8f:51:61:33:9b:a0:4f: ed:cc:a0:78:87:fc:e2:3a:47:ff:95:65:34:00:aa: 78:c1:69:b8:a3:bd:8e:02:98:55:c1:45:d3:c7:92: c4:6e:eb:5c:de:22:ff:00:d3:f7:0c:73:a0:00:c7: 0b:90:d2:15:aa:c2:66:db:f9:93:a0:eb:54:84:9d: f0:41:b4:fc:d4:09:64:bb:63:08:f3:df:f4:67:bc: fb:41:50:0e:93:b2:bf:d5:83:92:52:ce:00:23:45: 65:84:78:fa:69:73:cf:ca:b0:9a:e6:ea:94:91:48: fe:0e:c3:16:be:92:79:50:8e:e0:81:93:55:dd:3c: 29:10:0f:9b:b3:97:f8:22:f0:01:cd:cb:93:9d:9f: f6:d8:13:16:b9:81:c6:44:84:87:8d:57:87:10:7f: 8e:62:b1:cf:7d:98:8b:8f:2e:b7:4e:b2:44:32:3b: 0a:05:48:09:85:67:e3:86:7c:77:da:a4:3a:16:45: 32:22:34:3b:ca:63:53:92:0f:b1:25:c9:9e:88:56: b4:42:6d:e0:12:9c:f3:78:35:3a:5f:7c:d7:11:0b: d7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:14:39:32:7F:DD:8E:6C:66:4E:86:FB:AE:B1:FC:96:7C:2E:A5:34 X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:83:0c:c9:3b:7a:62:4a:6f:d0:7a:15:79:da:9a:d8:a0:9a: a6:45:56:ae:85:e9:f5:54:ce:82:7c:76:39:ee:55:73:52:35: 27:4b:56:1f:38:fd:73:58:67:3c:f9:8c:bd:37:cb:ea:24:3f: e4:6e:3d:4f:b2:97:7b:e0:70:d0:0e:65:56:7c:c4:cb:8d:57: 9b:df:80:e3:62:b3:4c:1d:ba:35:1d:e0:58:ab:46:ee:ec:70: b9:a2:f4:c2:c6:65:fb:41:92:1d:dd:60:9f:2a:bd:b7:62:54: b9:60:c7:98:af:5b:6e:36:b4:e2:7f:83:b9:af:5a:97:68:1a: e5:69:d0:63:1a:a8:bc:d6:b8:f5:9e:73:3f:25:df:b1:cf:9a: 1d:a3:80:d9:1d:0a:f3:00:61:fd:2c:cb:92:37:b0:ef:35:10: 44:84:21:80:37:36:cb:1b:1b:ff:18:74:4d:50:dc:21:44:2b: 30:d7:26:30:e5:ce:ca:dc:e1:14:65:65:45:bc:72:d7:33:7c: 8f:a8:cf:e4:08:fb:0d:63:73:d7:c3:1d:b4:c0:4d:14:ba:6d: c7:42:6d:01:86:57:31:4e:df:e0:db:c9:f0:da:8d:c2:d5:c9: ee:27:11:45:4b:2e:63:db:b8:7d:24:89:e9:80:de:53:24:1e: 44:f5:33:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjUxMjIyMjMzNjUzWhcNMjUxMjI5MjMzNjUzWjAYMRYwFAYD VQQDDA02OTQ5ZDYxNi05NzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqj3Fb+czpYcMjEz3cZPL1gxdk0O5IWH07UQBzd1V7jePSBypR49RYTOboE/t zKB4h/ziOkf/lWU0AKp4wWm4o72OAphVwUXTx5LEbutc3iL/ANP3DHOgAMcLkNIV qsJm2/mToOtUhJ3wQbT81Alku2MI89/0Z7z7QVAOk7K/1YOSUs4AI0VlhHj6aXPP yrCa5uqUkUj+DsMWvpJ5UI7ggZNV3TwpEA+bs5f4IvABzcuTnZ/22BMWuYHGRISH jVeHEH+OYrHPfZiLjy63TrJEMjsKBUgJhWfjhnx32qQ6FkUyIjQ7ymNTkg+xJcme iFa0Qm3gEpzzeDU6X3zXEQvXGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYUOTJ/ 3Y5sZk6G+66x/JZ8LqU0MB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsgwzJO3piSm/QehV52prYoJqmRVauhen1VM6CfHY57lVzUjUnS1Yf OP1zWGc8+Yy9N8vqJD/kbj1Pspd74HDQDmVWfMTLjVeb34DjYrNMHbo1HeBYq0bu 7HC5ovTCxmX7QZId3WCfKr23YlS5YMeYr1tuNrTif4O5r1qXaBrladBjGqi81rj1 nnM/Jd+xz5odo4DZHQrzAGH9LMuSN7DvNRBEhCGANzbLGxv/GHRNUNwhRCsw1yYw 5c7K3OEUZWVFvHLXM3yPqM/kCPsNY3PXwx20wE0Uum3HQm0BhlcxTt/g28nw2o3C 1cnuJxFFSy5j27h9JInpgN5TJB5E9TOj -----END CERTIFICATE-----Generated at Wed Dec 24 21:22:44 2025 by rpki-client