This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: KQ9ATHNoYRoYxTRHseT6uJKvnaJbmjTCaabOGF4OKAo= Subject key identifier: F5:78:E7:C8:AB:9D:3D:34:B8:56:8B:4A:78:01:C6:7B:F4:71:52:F4 Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 06DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 06D7 Signing time: Mon 22 Dec 2025 21:18:36 +0000 Manifest this update: Mon 22 Dec 2025 21:18:36 +0000 Manifest next update: Mon 29 Dec 2025 21:18:36 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: KeBW7Kuc4iS9vnWAnIH/jt+/aWdpZhuhWHuGjrkhoxA=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: FCcszwJptQkcVppu2l7EfA+c1nSvvhedE2ZFRuB0CdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1758 (0x6de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Dec 22 21:18:36 2025 GMT Not After : Dec 29 21:18:36 2025 GMT Subject: CN=6949b5ac-1b7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:21:07:78:b2:69:0b:44:97:51:2f:dc:f8:10: cd:4d:be:79:a4:78:9a:03:fa:67:5c:8d:31:86:d1: d6:22:4f:8f:a7:32:1f:43:fc:c5:4f:f3:18:44:a7: 62:41:a2:4c:d0:5d:b6:68:70:a2:81:41:37:06:8c: f6:a5:ca:1f:a4:81:64:3b:44:81:28:9d:5f:ea:5d: 92:ff:55:ca:e0:47:c8:9d:b0:68:d7:7f:8f:12:6e: 79:31:26:38:78:fd:bd:8a:80:71:32:47:4f:a6:99: 6c:bf:12:67:8f:54:a1:9f:87:8f:9c:cf:a2:af:47: 9b:45:17:6c:14:e3:21:c5:a1:72:7f:be:50:49:2e: fb:64:6c:61:a1:f3:6a:e4:f8:7f:ec:76:b2:ff:3d: a1:20:b1:5b:18:dc:4d:b4:98:fd:3b:a6:82:9a:9a: 29:1c:40:d6:38:95:dd:61:8a:52:41:11:e6:04:86: 5c:94:86:e7:a9:4e:e8:e9:4e:ff:fa:46:2a:b7:4d: 54:7c:00:43:96:24:95:3a:78:1f:e7:76:8c:ae:29: e2:bc:03:16:7a:eb:73:ab:05:b3:48:63:c7:de:20: 4a:c0:8e:37:48:3f:9e:33:1d:8b:0e:00:c1:e2:9f: f5:78:1e:8a:03:ee:69:d2:27:fb:ba:ff:03:88:3b: bb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:78:E7:C8:AB:9D:3D:34:B8:56:8B:4A:78:01:C6:7B:F4:71:52:F4 X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:07:8f:73:3b:c4:fd:09:42:64:56:2c:73:d5:5c:b4:67:fa: d8:ec:d3:5c:8c:c2:74:0e:39:bc:9f:9b:3b:6b:56:1f:5b:d7: 73:3a:bd:f3:e6:96:93:0f:ca:10:b6:0c:8d:dc:b7:26:f6:bc: 30:ef:af:ea:80:72:d6:6b:6a:86:ea:09:09:cf:aa:03:d9:f6: bc:ee:35:e3:59:68:97:7a:69:22:84:b0:c5:72:f3:87:4b:dc: 46:6e:da:c8:4f:f1:25:a9:b4:9d:90:25:43:9a:48:12:72:0b: 44:dd:10:29:86:7c:4d:39:7a:23:fa:4d:f0:f8:b4:b5:24:9f: 9d:c7:17:8e:5d:47:b7:08:90:db:b2:7e:9e:52:22:7f:35:d5: 7b:04:1f:a9:94:78:95:84:e6:38:ed:0d:09:4b:7e:18:e3:d0: ae:56:42:47:08:00:08:6c:d9:80:4b:1e:1c:7a:40:25:64:a2: 69:41:72:a9:af:03:c4:a4:22:60:a5:c3:a1:82:e5:69:41:f3: 24:10:7c:e7:ec:36:9b:62:f5:6a:9e:af:f6:cd:f0:18:7a:ab: 2f:e4:3f:65:fb:51:c6:3b:f7:11:ce:64:69:42:b5:7d:bd:da: cc:4f:de:69:3e:07:d1:7d:f5:01:0f:75:f5:e0:54:09:40:09: 25:0b:b8:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUxMjIyMjExODM2WhcNMjUxMjI5MjExODM2WjAYMRYwFAYD VQQDDA02OTQ5YjVhYy0xYjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSEHeLJpC0SXUS/c+BDNTb55pHiaA/pnXI0xhtHWIk+PpzIfQ/zFT/MYRKdi QaJM0F22aHCigUE3Boz2pcofpIFkO0SBKJ1f6l2S/1XK4EfInbBo13+PEm55MSY4 eP29ioBxMkdPpplsvxJnj1Shn4ePnM+ir0ebRRdsFOMhxaFyf75QSS77ZGxhofNq 5Ph/7Hay/z2hILFbGNxNtJj9O6aCmpopHEDWOJXdYYpSQRHmBIZclIbnqU7o6U7/ +kYqt01UfABDliSVOngf53aMrinivAMWeutzqwWzSGPH3iBKwI43SD+eMx2LDgDB 4p/1eB6KA+5p0if7uv8DiDu7rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPV458ir nT00uFaLSngBxnv0cVL0MB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYB49zO8T9CUJkVixz1Vy0Z/rY7NNcjMJ0Djm8n5s7a1YfW9dzOr3z 5paTD8oQtgyN3Lcm9rww76/qgHLWa2qG6gkJz6oD2fa87jXjWWiXemkihLDFcvOH S9xGbtrIT/ElqbSdkCVDmkgScgtE3RAphnxNOXoj+k3w+LS1JJ+dxxeOXUe3CJDb sn6eUiJ/NdV7BB+plHiVhOY47Q0JS34Y49CuVkJHCAAIbNmASx4cekAlZKJpQXKp rwPEpCJgpcOhguVpQfMkEHzn7DabYvVqnq/2zfAYeqsv5D9l+1HGO/cRzmRpQrV9 vdrMT95pPgfRffUBD3X14FQJQAklC7g/ -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:25 2025 by rpki-client