This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: k5cQHF1xlfyIGOsgiSTNoWKr20hc4+2HNRNmoIdcqyU= Subject key identifier: 1E:A5:F8:3C:76:FE:6A:C7:6D:E4:C5:FA:53:91:93:CE:A0:C7:F2:5C Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 07F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 07F2 Signing time: Mon 22 Dec 2025 20:25:22 +0000 Manifest this update: Mon 22 Dec 2025 20:25:21 +0000 Manifest next update: Mon 29 Dec 2025 20:25:21 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: JiUl1NyKf11OozJyY0o6QSvVJ1zUfTv9XaeIecexHks=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 7u9lFldLGtHyxwH20hTfSxqKwvd+3v0Fn/UDNDaczHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Dec 22 20:25:21 2025 GMT Not After : Dec 29 20:25:21 2025 GMT Subject: CN=6949a932-dcfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:10:25:ff:cb:44:c8:18:dc:2e:39:a5:54:e4: af:97:73:83:05:23:2f:fa:95:6c:5e:fe:8d:74:b0: dd:a7:7d:93:34:0b:98:99:a4:e3:0f:da:e9:1c:4b: 62:79:9e:ab:79:dc:d7:6e:74:ff:58:b4:ac:e3:06: 75:94:8e:ff:ad:55:c1:b4:4e:c4:12:8a:54:14:65: 59:a0:02:ec:ff:5a:9e:ed:43:82:69:d2:6a:b3:8c: fc:f8:68:ca:31:19:7a:90:31:e2:aa:aa:0c:59:cc: 76:ff:00:be:53:79:b3:de:27:f9:3e:19:7e:8b:44: 7a:c7:1f:3d:db:69:e5:4d:7c:ba:b0:27:83:18:36: 52:df:66:5e:c2:e9:d5:1c:d6:0f:09:56:8d:18:f3: 0e:a5:8b:02:9b:39:28:90:75:90:05:ad:5c:96:13: 35:af:c6:e9:52:50:0f:d2:ce:08:89:f2:90:0a:45: 84:83:43:a5:28:ab:bb:d1:d9:68:dc:12:71:3b:d0: d1:af:80:3a:9d:39:32:93:55:cb:d2:66:4a:c9:91: 6d:b8:de:4c:c7:bb:06:b0:60:2e:5a:67:88:c1:33: 45:2e:b3:3e:97:ba:db:16:c3:64:b6:ef:31:95:2f: 5e:cf:cf:7e:1c:7b:7e:75:f6:aa:80:03:96:28:af: 60:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A5:F8:3C:76:FE:6A:C7:6D:E4:C5:FA:53:91:93:CE:A0:C7:F2:5C X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:fe:db:39:a3:3b:f0:1b:68:5d:a1:aa:4e:20:07:de:3e:76: 0d:da:b8:6e:14:4e:42:51:4a:be:f9:77:25:a5:4b:d9:a4:21: 44:b4:0c:92:89:75:bb:18:3d:a2:00:9a:0b:5c:58:03:9d:7d: fb:ac:2a:d1:2b:c5:2a:e6:f2:8e:7b:53:52:0a:27:45:5a:8d: 33:88:bf:a8:1d:9b:da:10:fa:a6:4c:cf:02:b1:2d:dc:8c:eb: 8f:b1:74:2b:b3:d2:f5:bd:f3:9d:04:fe:7f:2d:f9:44:27:35: 69:f2:2f:d0:18:57:ef:f6:fc:b0:f6:2d:6f:39:d0:e7:90:1a: f7:4b:6a:6f:1c:f8:59:e6:f5:fe:18:70:d8:c4:b4:4c:5d:d4: a9:65:33:74:be:be:34:50:4d:df:ae:8a:4e:28:5f:e0:85:8c: b2:04:73:39:ae:9b:76:24:06:59:81:8c:e9:3c:f9:3c:5f:a0: 1f:ed:9d:bd:7f:1a:ad:c0:b7:5a:ea:75:97:21:75:a2:2a:98: e7:01:d6:52:18:d0:9e:25:c6:63:d2:a8:9c:e0:b6:f4:b1:e8: e7:66:5f:d2:e7:06:d0:24:e5:f0:97:cc:4b:65:80:5e:df:e1: b0:32:a6:31:c9:8a:03:e2:45:45:b8:7f:e6:c2:ba:b5:93:19: 17:94:4a:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjUxMjIyMjAyNTIxWhcNMjUxMjI5MjAyNTIxWjAYMRYwFAYD VQQDDA02OTQ5YTkzMi1kY2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BAl/8tEyBjcLjmlVOSvl3ODBSMv+pVsXv6NdLDdp32TNAuYmaTjD9rpHEti eZ6redzXbnT/WLSs4wZ1lI7/rVXBtE7EEopUFGVZoALs/1qe7UOCadJqs4z8+GjK MRl6kDHiqqoMWcx2/wC+U3mz3if5Phl+i0R6xx8922nlTXy6sCeDGDZS32ZewunV HNYPCVaNGPMOpYsCmzkokHWQBa1clhM1r8bpUlAP0s4IifKQCkWEg0OlKKu70dlo 3BJxO9DRr4A6nTkyk1XL0mZKyZFtuN5Mx7sGsGAuWmeIwTNFLrM+l7rbFsNktu8x lS9ez89+HHt+dfaqgAOWKK9gJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6l+Dx2 /mrHbeTF+lORk86gx/JcMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs/ts5ozvwG2hdoapOIAfePnYN2rhuFE5CUUq++XclpUvZpCFEtAyS iXW7GD2iAJoLXFgDnX37rCrRK8Uq5vKOe1NSCidFWo0ziL+oHZvaEPqmTM8CsS3c jOuPsXQrs9L1vfOdBP5/LflEJzVp8i/QGFfv9vyw9i1vOdDnkBr3S2pvHPhZ5vX+ GHDYxLRMXdSpZTN0vr40UE3fropOKF/ghYyyBHM5rpt2JAZZgYzpPPk8X6Af7Z29 fxqtwLda6nWXIXWiKpjnAdZSGNCeJcZj0qic4Lb0sejnZl/S5wbQJOXwl8xLZYBe 3+GwMqYxyYoD4kVFuH/mwrq1kxkXlEoy -----END CERTIFICATE-----Generated at Wed Dec 24 14:06:48 2025 by rpki-client