This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: Zl1yzZvNzGHubd4Kr3SZij7Zal/9YyrnfYPhZmYr1/U= Subject key identifier: A1:9B:05:85:68:1D:D7:D7:B7:D2:2E:4B:B4:78:71:E0:F5:9D:9F:DF Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 024C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0244 Signing time: Tue 23 Dec 2025 00:58:39 +0000 Manifest this update: Tue 23 Dec 2025 00:58:39 +0000 Manifest next update: Tue 30 Dec 2025 00:58:39 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: 4F2zsIXs0lqVgRQrpZvgbB7/lTAhJZ3EZ6tzSdc4iQ0=) 2: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Dec 23 00:58:39 2025 GMT Not After : Dec 30 00:58:39 2025 GMT Subject: CN=6949e93f-93e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5b:fa:8c:2e:38:34:ee:1d:2c:98:ff:c1:f3: a1:dd:5c:c6:11:d0:91:d1:c7:11:70:60:12:61:c9: 1d:99:3f:3d:a5:b1:0c:e7:06:a7:73:5c:d4:69:05: 19:59:45:11:2d:f7:7f:4f:c8:aa:43:88:4e:8a:9f: e6:ee:d4:7b:75:4b:31:e5:13:c5:45:44:c0:b8:ec: 32:91:78:5d:7f:42:77:29:b3:04:e3:c2:6e:ae:4a: f3:f1:f8:37:90:f4:1d:cc:96:25:61:81:18:2b:3c: b3:a1:a7:1f:39:3b:f2:e6:0e:c0:d5:ed:42:c6:4a: 92:8d:2e:97:33:4e:58:7e:32:72:30:df:9d:b8:ab: b8:63:0a:28:9a:e5:25:cc:e6:5f:16:35:0a:07:37: bc:16:0a:c1:23:da:db:ee:3a:0c:80:bc:31:b7:8e: a9:dd:f4:b7:e6:9b:25:cc:c4:11:85:14:09:3a:ec: ba:3b:2d:60:4b:05:80:ab:25:fd:b8:d8:3d:f6:d5: 28:51:7c:d2:28:3d:06:18:86:0f:58:d3:a7:30:5c: a6:2b:9d:11:f0:20:69:ef:9a:e5:4c:bd:e9:0d:db: 13:64:d9:c0:d5:c8:29:a2:07:af:1b:3a:bb:f9:6b: 08:05:ce:89:52:21:49:e6:20:a9:6d:50:f1:e3:62: 39:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9B:05:85:68:1D:D7:D7:B7:D2:2E:4B:B4:78:71:E0:F5:9D:9F:DF X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6a:b1:70:d0:a0:6e:62:bb:9b:e7:28:6f:d1:f5:7f:05:75: 9b:cb:3b:29:1b:f5:9e:28:67:a0:da:e2:67:a3:99:de:49:a6: 15:7b:e2:01:12:46:17:c2:f4:71:f1:b4:62:94:48:24:f0:67: bf:cc:f2:85:5b:95:83:5e:71:d9:88:7d:11:69:ee:f2:c9:35: 3d:8e:fe:60:a0:ed:03:89:8a:9c:c3:4e:cf:92:d6:68:a1:d0: c8:6b:e2:b7:92:85:13:b0:89:57:8c:6b:71:ed:da:03:0c:41: 6e:59:dd:be:66:3e:3b:c3:97:2f:83:c2:5a:49:9b:e7:af:79: ce:c0:c0:e4:2e:40:a9:e3:5a:ea:fa:41:26:8d:30:6d:53:99: ed:47:e9:b9:8a:e9:7a:52:df:9d:25:d8:b6:46:8c:8d:11:07: 2c:b7:82:0a:a7:16:b9:5a:6c:dc:a4:a0:d0:84:04:c3:af:34: e0:64:08:da:9c:ea:4b:05:e4:08:e5:42:e9:f1:fe:3f:2c:99: 34:b0:1e:47:52:13:87:08:95:42:08:71:0e:cb:29:aa:83:dc: 57:bd:4b:0f:43:38:fc:bf:09:35:44:9d:e5:c2:99:c1:c0:7b: 32:cc:98:c6:77:7c:58:9e:bf:eb:a2:cb:80:07:d2:aa:e3:13: 48:af:3b:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUxMjIzMDA1ODM5WhcNMjUxMjMwMDA1ODM5WjAYMRYwFAYD VQQDDA02OTQ5ZTkzZi05M2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1v6jC44NO4dLJj/wfOh3VzGEdCR0ccRcGASYckdmT89pbEM5wanc1zUaQUZ WUURLfd/T8iqQ4hOip/m7tR7dUsx5RPFRUTAuOwykXhdf0J3KbME48Jurkrz8fg3 kPQdzJYlYYEYKzyzoacfOTvy5g7A1e1CxkqSjS6XM05YfjJyMN+duKu4YwoomuUl zOZfFjUKBze8FgrBI9rb7joMgLwxt46p3fS35pslzMQRhRQJOuy6Oy1gSwWAqyX9 uNg99tUoUXzSKD0GGIYPWNOnMFymK50R8CBp75rlTL3pDdsTZNnA1cgpogevGzq7 +WsIBc6JUiFJ5iCpbVDx42I54QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGbBYVo HdfXt9IuS7R4ceD1nZ/fMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdarFw0KBuYrub5yhv0fV/BXWbyzspG/WeKGeg2uJno5neSaYVe+IB EkYXwvRx8bRilEgk8Ge/zPKFW5WDXnHZiH0Rae7yyTU9jv5goO0DiYqcw07PktZo odDIa+K3koUTsIlXjGtx7doDDEFuWd2+Zj47w5cvg8JaSZvnr3nOwMDkLkCp41rq +kEmjTBtU5ntR+m5iul6Ut+dJdi2RoyNEQcst4IKpxa5WmzcpKDQhATDrzTgZAja nOpLBeQI5ULp8f4/LJk0sB5HUhOHCJVCCHEOyymqg9xXvUsPQzj8vwk1RJ3lwpnB wHsyzJjGd3xYnr/rosuAB9Kq4xNIrzuP -----END CERTIFICATE-----Generated at Wed Dec 24 14:08:01 2025 by rpki-client