This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: 2BPQNcwIwTa+HlZJB2ayjPPVQeuaZfmLQLVOU+CiCTY= Subject key identifier: 22:19:5F:04:2E:0B:89:38:C7:E4:8A:ED:34:04:6D:3B:49:46:B9:4E Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0BEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0BE7 Signing time: Mon 22 Dec 2025 18:24:42 +0000 Manifest this update: Mon 22 Dec 2025 18:24:41 +0000 Manifest next update: Mon 29 Dec 2025 18:24:41 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: ZpIUmDRYuXpEDxUb42DReLaIMpZhnc85jEtxQmywVZ4=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3055 (0xbef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Dec 22 18:24:41 2025 GMT Not After : Dec 29 18:24:41 2025 GMT Subject: CN=69498cea-0d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a1:3b:74:33:80:f4:f9:a5:84:7f:43:80:d2: bb:c9:ff:f4:0c:c6:ae:9e:e1:47:b1:84:78:e4:a2: a3:db:a2:a0:07:a6:b8:01:c1:a7:80:9a:51:fb:31: b0:a5:60:4f:06:d9:fd:f6:80:1c:f3:7d:b4:50:ae: 14:99:92:75:2b:ed:12:37:f5:ae:21:c1:7b:40:97: 57:73:07:69:ec:f5:48:de:ca:db:e2:d0:2b:4b:00: 5a:2c:b4:43:01:e2:fb:20:e5:34:55:5a:14:12:8b: 56:e4:74:76:f7:c3:85:c0:77:47:bb:ba:15:37:8c: db:da:a8:b5:0c:78:b2:67:43:a9:11:50:98:66:52: 19:59:cf:1a:13:68:c8:84:f6:e9:a8:a9:11:ad:0b: 7f:db:c2:89:ef:23:e9:cf:30:26:3d:85:65:a5:c8: e2:96:46:dd:c1:f1:df:37:f0:19:2d:80:e1:d4:08: 4e:64:95:fb:5e:34:58:e0:6c:f2:8d:52:3c:13:47: f6:94:53:d1:15:50:80:2b:df:44:ad:5f:8a:e5:fb: 40:89:7e:69:cd:03:88:ba:3a:f7:74:81:55:e4:eb: 9f:95:2e:b4:66:3e:95:d9:47:e6:3d:b3:b7:3f:de: ed:4b:d7:2e:0e:c1:17:35:6f:65:73:f9:ef:f5:d3: ca:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:19:5F:04:2E:0B:89:38:C7:E4:8A:ED:34:04:6D:3B:49:46:B9:4E X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:de:93:14:88:46:3f:44:38:4c:28:e2:36:b3:35:34:2f:9a: a8:eb:8a:d1:11:c2:3f:2a:15:d0:4e:19:cb:48:2f:fd:4f:45: 17:9a:43:f8:7a:ff:04:e2:a3:b2:e9:ac:f7:5e:14:18:44:fa: b3:ba:52:68:b0:10:46:90:6c:50:b3:dd:7a:ae:3a:3c:36:4a: 5d:e8:af:05:15:aa:ff:99:ed:0e:d9:68:e5:97:d6:ce:99:71: 93:fc:d7:1c:f1:59:ae:eb:49:d5:6f:02:2b:04:cc:46:d1:47: cb:82:e3:30:92:b7:0f:68:a4:cd:e1:b2:09:87:40:26:65:59: cf:b9:b7:cf:7e:ed:fb:8c:7e:36:24:c9:a0:9a:59:34:27:75: c4:da:c4:ac:b0:82:c0:d3:cc:70:b4:0b:cf:00:55:8d:09:06: 8d:56:e6:0f:bd:56:d0:47:1a:5d:a5:30:4d:8b:c2:9f:9f:0f: de:70:62:de:bb:8f:c4:49:5a:38:10:3d:06:fc:a7:32:ec:51: 89:84:ad:25:27:e9:74:c3:7e:6a:51:9a:c3:6c:e7:3c:1e:2a: bc:13:ad:9f:db:dc:2f:c1:e8:db:95:4b:1c:e6:c4:ac:b1:79: 8a:93:06:40:38:54:65:8f:fa:32:c4:8e:34:97:40:4d:12:80: 21:cf:c4:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUxMjIyMTgyNDQxWhcNMjUxMjI5MTgyNDQxWjAYMRYwFAYD VQQDDA02OTQ5OGNlYS0wZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjqE7dDOA9PmlhH9DgNK7yf/0DMaunuFHsYR45KKj26KgB6a4AcGngJpR+zGw pWBPBtn99oAc8320UK4UmZJ1K+0SN/WuIcF7QJdXcwdp7PVI3srb4tArSwBaLLRD AeL7IOU0VVoUEotW5HR298OFwHdHu7oVN4zb2qi1DHiyZ0OpEVCYZlIZWc8aE2jI hPbpqKkRrQt/28KJ7yPpzzAmPYVlpcjilkbdwfHfN/AZLYDh1AhOZJX7XjRY4Gzy jVI8E0f2lFPRFVCAK99ErV+K5ftAiX5pzQOIujr3dIFV5OuflS60Zj6V2UfmPbO3 P97tS9cuDsEXNW9lc/nv9dPKswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIZXwQu C4k4x+SK7TQEbTtJRrlOMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB73pMUiEY/RDhMKOI2szU0L5qo64rREcI/KhXQThnLSC/9T0UXmkP4 ev8E4qOy6az3XhQYRPqzulJosBBGkGxQs916rjo8Nkpd6K8FFar/me0O2Wjll9bO mXGT/Ncc8Vmu60nVbwIrBMxG0UfLguMwkrcPaKTN4bIJh0AmZVnPubfPfu37jH42 JMmgmlk0J3XE2sSssILA08xwtAvPAFWNCQaNVuYPvVbQRxpdpTBNi8Kfnw/ecGLe u4/ESVo4ED0G/Kcy7FGJhK0lJ+l0w35qUZrDbOc8Hiq8E62f29wvwejblUsc5sSs sXmKkwZAOFRlj/oyxI40l0BNEoAhz8RH -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:20 2025 by rpki-client