This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft File: C2HEdIlppE_IPIiCoCV50NWSO2E.mft (raw, json) Hash identifier: cK6L6U/JwkwZX2+rDI0Od/yCwCcj5FLsyX7iTgt2kkQ= Subject key identifier: B3:E2:FC:69:B8:8A:BF:DE:72:A7:22:F2:24:A7:FB:9F:78:6D:D9:2E Authority key identifier: 0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 Certificate issuer: /CN=A917B092/serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft Manifest number: 0204 Signing time: Tue 23 Dec 2025 01:36:15 +0000 Manifest this update: Tue 23 Dec 2025 01:36:15 +0000 Manifest next update: Tue 30 Dec 2025 01:36:15 +0000 Files and hashes: 1: C2HEdIlppE_IPIiCoCV50NWSO2E.crl (hash: hvmyPpsVHQoet9bpr9eqgyljFdFmBxnN0KAg0R/mE9Y=) 2: 9816AE202ED111EF9B668069C4F9AE02.roa (hash: yNjhdAnLRCwNWiJ1nMJfINPCaK225vWnJCXkmet4kyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B092, serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Validity Not Before: Dec 23 01:36:15 2025 GMT Not After : Dec 30 01:36:15 2025 GMT Subject: CN=6949f20f-c240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3c:70:fa:f7:62:06:4a:30:4a:60:76:25:89: 7a:d8:c0:7b:b4:2a:25:ec:d8:52:dc:be:4b:ba:fe: d4:2f:ce:7b:81:f6:c4:6b:62:47:5d:e4:21:b9:53: ba:c3:f1:b1:8b:fe:04:0a:fa:72:20:52:4e:e3:a9: 51:13:c9:bc:30:8e:ee:ab:27:df:f0:14:74:9d:5b: e2:6b:ed:8b:20:66:11:d9:db:1b:30:a2:24:ae:2a: 6b:3d:1b:f9:c5:da:19:85:60:a8:37:24:6e:17:11: fa:04:3f:4d:1c:8a:31:90:54:fc:af:99:6e:77:58: 43:c3:ae:6e:36:59:53:ba:14:fb:0b:bd:5b:c1:f7: 8f:da:f1:6d:f2:b8:e3:96:3a:4e:de:11:91:99:9a: 98:62:21:cb:63:9d:34:33:10:aa:03:f3:3a:fc:d5: 30:65:7a:b8:bc:c9:1d:88:97:de:96:e3:2c:0b:93: b7:f1:f8:e6:64:0a:16:e1:12:a3:24:4a:ee:5e:ce: b5:d6:51:16:d6:9f:8e:9e:23:9c:52:49:54:7f:37: 56:77:67:12:23:2d:3a:2e:b3:4c:7c:00:b7:17:96: 26:46:38:00:d1:9a:6a:bf:d4:04:f2:54:f8:ee:6e: c7:a2:78:0a:55:c5:7a:dc:d1:fd:49:10:1a:4f:6d: 66:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E2:FC:69:B8:8A:BF:DE:72:A7:22:F2:24:A7:FB:9F:78:6D:D9:2E X509v3 Authority Key Identifier: keyid:0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d5:fa:be:af:3c:dd:2d:5e:40:75:fe:87:83:a2:10:a1:0f: 2e:63:4c:f7:4c:68:54:60:77:71:f8:90:e3:a0:7f:9a:8d:c8: 5f:cf:a6:87:a2:05:2b:6e:a9:28:e1:12:d7:ab:6d:86:6b:5e: b0:83:3c:3c:1d:c8:27:b2:1d:9b:c6:1a:e2:6b:ed:54:3a:00: 9b:44:50:96:fe:19:af:00:46:fa:9a:fb:72:2a:34:ba:9e:36: 1d:11:f0:df:32:a2:9d:30:ee:ed:18:be:23:99:c4:69:d9:a3: 18:2c:64:ac:ad:07:b6:c5:eb:2c:47:6f:85:54:e4:d5:ac:a7: cb:19:51:87:89:60:f5:21:52:cd:1d:4e:f2:24:5d:b2:33:74: 91:1a:58:77:ae:93:0e:6f:78:62:99:de:62:c9:72:9c:4b:68: ce:13:84:4a:10:60:a0:1d:ae:4f:27:fe:6d:59:50:0a:07:c6: 1b:bc:79:21:f4:97:d5:b4:9f:57:4d:f4:3e:1d:26:7c:bd:0f: 57:e1:09:b6:1e:fd:95:58:4a:5b:37:0d:24:33:a3:cf:a0:a2: f7:12:8e:fc:9d:41:6f:f1:5b:f2:1b:89:be:f0:d1:1d:c8:91: ab:19:14:24:2f:65:d5:e5:9d:99:38:44:63:ec:cd:5e:e1:ea: a8:e0:0e:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IwOTIxMTAvBgNVBAUTKDBCNjFDNDc0ODk2OUE0NEZDODNDODg4MkEwMjU3OUQw RDU5MjNCNjEwHhcNMjUxMjIzMDEzNjE1WhcNMjUxMjMwMDEzNjE1WjAYMRYwFAYD VQQDDA02OTQ5ZjIwZi1jMjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTxw+vdiBkowSmB2JYl62MB7tCol7NhS3L5Luv7UL857gfbEa2JHXeQhuVO6 w/Gxi/4ECvpyIFJO46lRE8m8MI7uqyff8BR0nVvia+2LIGYR2dsbMKIkriprPRv5 xdoZhWCoNyRuFxH6BD9NHIoxkFT8r5lud1hDw65uNllTuhT7C71bwfeP2vFt8rjj ljpO3hGRmZqYYiHLY500MxCqA/M6/NUwZXq4vMkdiJfeluMsC5O38fjmZAoW4RKj JEruXs611lEW1p+OniOcUklUfzdWd2cSIy06LrNMfAC3F5YmRjgA0Zpqv9QE8lT4 7m7HongKVcV63NH9SRAaT21m/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPi/Gm4 ir/ecqci8iSn+594bdkuMB8GA1UdIwQYMBaAFAthxHSJaaRPyDyIgqAledDVkjth MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjA5Mi8yODIzMDk5NkVF MjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBFX0lQSWlDb0NWNTBOV1NP MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MySEVkSWxwcEVfSVBJaUNvQ1Y1ME5XU08yRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjA5Mi8yODIzMDk5NkVFMjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBF X0lQSWlDb0NWNTBOV1NPMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu1fq+rzzdLV5Adf6Hg6IQoQ8uY0z3TGhUYHdx+JDjoH+ajchfz6aH ogUrbqko4RLXq22Ga16wgzw8Hcgnsh2bxhria+1UOgCbRFCW/hmvAEb6mvtyKjS6 njYdEfDfMqKdMO7tGL4jmcRp2aMYLGSsrQe2xessR2+FVOTVrKfLGVGHiWD1IVLN HU7yJF2yM3SRGlh3rpMOb3himd5iyXKcS2jOE4RKEGCgHa5PJ/5tWVAKB8YbvHkh 9JfVtJ9XTfQ+HSZ8vQ9X4Qm2Hv2VWEpbNw0kM6PPoKL3Eo78nUFv8VvyG4m+8NEd yJGrGRQkL2XV5Z2ZOERj7M1e4eqo4A69 -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:39 2025 by rpki-client