This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: NPtJKPRDDCQA+HhJyeegEBcoY6lFvKfuVeIWosd8R/s= Subject key identifier: 39:62:7F:67:11:4E:6D:EC:7C:D8:F0:5F:37:A9:40:55:60:59:55:B3 Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 0705 Signing time: Mon 22 Dec 2025 21:09:51 +0000 Manifest this update: Mon 22 Dec 2025 21:09:50 +0000 Manifest next update: Mon 29 Dec 2025 21:09:50 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: 301z/ctxYk2vX0ZeoiZkjUGfeF4dcBv26Vz2oqiNqjE=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: QHZWlLh2PyAY4WTgaNICz7qTAAizZpA7yqBBQ8slHlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE, serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: Dec 22 21:09:50 2025 GMT Not After : Dec 29 21:09:50 2025 GMT Subject: CN=6949b39f-84ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a8:08:cb:fe:dc:f4:ca:97:da:78:fc:e3:d9: 85:50:7c:3e:82:d7:ad:9a:93:04:dd:b7:27:b3:12: 09:60:03:86:49:c3:85:2f:1b:4d:d2:c3:5a:be:79: bf:3a:bb:cc:5d:00:b5:a5:8f:82:b4:c3:df:dc:31: 86:ee:7c:1f:77:97:95:f6:0f:71:ac:86:ab:ed:22: 46:38:c9:48:7a:f2:ad:8d:5a:94:3d:99:dd:34:69: f4:54:24:95:e1:9d:58:dc:ba:6c:dc:bc:2a:66:75: da:49:06:02:20:ad:7a:4d:47:39:48:83:a7:4f:16: e7:03:ff:ae:ab:12:9e:1a:cc:23:9d:de:55:3e:26: 02:1c:91:c1:e2:38:50:a7:90:55:1b:4c:57:11:0f: 34:a2:56:d4:df:30:c7:32:ee:01:b6:c9:89:ef:ea: 92:00:00:1b:03:de:14:f0:04:56:9d:5b:96:3f:35: c8:89:a3:a1:ef:70:00:9e:ae:86:94:b9:4b:a0:41: 30:20:96:da:b4:fa:67:c1:a1:8a:f7:16:95:2d:7a: 66:ac:ec:58:09:6f:12:1a:ab:8d:69:c5:43:26:3b: 48:cd:55:a2:75:ba:6d:97:d6:5e:ed:11:a6:98:22: 2d:40:85:50:59:d4:8c:0c:a3:2a:f6:30:b2:ee:f2: 64:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:62:7F:67:11:4E:6D:EC:7C:D8:F0:5F:37:A9:40:55:60:59:55:B3 X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f1:fc:d3:4d:61:a1:7b:1c:a9:2e:bb:09:51:00:99:36:9e: 50:96:8b:38:2f:9f:fe:e0:c6:a2:8a:f2:08:70:f7:39:a9:a8: 78:b0:76:9e:19:4e:ca:13:31:29:91:9c:7e:85:46:c8:14:7a: 87:1f:b5:53:a2:d1:d1:2f:9e:48:10:c6:f8:ae:30:ec:51:70: 71:25:80:16:aa:1b:a4:11:bf:ad:cd:fd:7a:d9:e8:41:ee:c2: 3e:17:18:b6:f2:b4:72:bb:14:fb:9b:63:02:f8:ff:3c:db:a3: 99:21:df:3b:db:74:56:0d:d5:ec:e9:fe:c0:23:fd:1e:d9:47: 47:1e:ac:7e:b5:d4:fc:2f:51:27:e5:94:33:45:c5:d0:1c:18: 56:2f:14:48:a7:43:ae:ed:c5:3f:1f:5f:99:4a:93:a6:64:f1: 54:ec:98:73:e2:d0:2f:31:1a:ac:c4:17:6c:d0:23:8d:9e:c7: 69:c4:9e:95:31:e0:a4:63:00:98:20:00:bc:fe:a8:75:2d:d5: 21:39:f7:9e:6f:00:68:90:d6:4a:3d:d8:fc:fb:c9:fe:7d:bd: b0:3b:a4:14:f2:37:06:2e:cc:a8:55:4f:ce:09:6e:c8:47:12: eb:33:88:15:85:d5:b3:b7:4f:40:bd:de:17:23:d7:2f:5c:e0: db:31:22:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjUxMjIyMjEwOTUwWhcNMjUxMjI5MjEwOTUwWjAYMRYwFAYD VQQDDA02OTQ5YjM5Zi04NGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzagIy/7c9MqX2nj849mFUHw+gtetmpME3bcnsxIJYAOGScOFLxtN0sNavnm/ OrvMXQC1pY+CtMPf3DGG7nwfd5eV9g9xrIar7SJGOMlIevKtjVqUPZndNGn0VCSV 4Z1Y3Lps3LwqZnXaSQYCIK16TUc5SIOnTxbnA/+uqxKeGswjnd5VPiYCHJHB4jhQ p5BVG0xXEQ80olbU3zDHMu4BtsmJ7+qSAAAbA94U8ARWnVuWPzXIiaOh73AAnq6G lLlLoEEwIJbatPpnwaGK9xaVLXpmrOxYCW8SGquNacVDJjtIzVWidbptl9Ze7RGm mCItQIVQWdSMDKMq9jCy7vJkZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlif2cR Tm3sfNjwXzepQFVgWVWzMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv8fzTTWGhexypLrsJUQCZNp5Qlos4L5/+4MaiivIIcPc5qah4sHae GU7KEzEpkZx+hUbIFHqHH7VTotHRL55IEMb4rjDsUXBxJYAWqhukEb+tzf162ehB 7sI+Fxi28rRyuxT7m2MC+P8826OZId8723RWDdXs6f7AI/0e2UdHHqx+tdT8L1En 5ZQzRcXQHBhWLxRIp0Ou7cU/H1+ZSpOmZPFU7Jhz4tAvMRqsxBds0CONnsdpxJ6V MeCkYwCYIAC8/qh1LdUhOfeebwBokNZKPdj8+8n+fb2wO6QU8jcGLsyoVU/OCW7I RxLrM4gVhdWzt09Avd4XI9cvXODbMSLW -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:08 2025 by rpki-client