This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json) Hash identifier: raJtv3hD137SZCyY4fyTwuJSTLp1q+xaKtrpHr/24WI= Subject key identifier: 00:90:D3:BE:A8:B2:7D:57:9C:2A:1F:E1:11:35:D3:56:51:34:FC:6B Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft Manifest number: 066D Signing time: Mon 22 Dec 2025 21:45:48 +0000 Manifest this update: Mon 22 Dec 2025 21:45:48 +0000 Manifest next update: Mon 29 Dec 2025 21:45:48 +0000 Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: 3mwBHuFkJP756yGLgdYCVVW+HeX8N4mJePF82UsKzHI=) 2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: otn7zJrk0PPbtnlH9qLQ0UvTzJRXUBW5NBaU6fJKloc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D, serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: Dec 22 21:45:48 2025 GMT Not After : Dec 29 21:45:48 2025 GMT Subject: CN=6949bc0c-1f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:54:82:a1:d9:f0:15:e1:97:38:06:d1:75: a7:14:55:2d:d0:cb:36:7c:03:92:58:51:55:18:e0: 01:41:81:5a:c7:c6:f2:38:78:61:8a:3b:7b:06:c7: a1:7a:35:a8:0b:0c:93:56:ec:2f:2b:4c:78:4b:59: 53:1c:17:e4:d1:cf:54:5b:a5:ae:71:3e:01:58:31: 01:60:84:ec:51:a1:73:62:8e:10:bf:de:8c:c2:18: f9:15:7b:e3:71:e8:dd:e9:66:8e:cc:8c:6d:cb:76: 56:2b:9d:89:50:cf:2b:72:7a:b1:ea:71:63:07:ec: 78:65:85:6e:24:17:fa:64:19:e2:9d:74:2f:f0:ca: 5e:51:37:24:7a:fd:2a:7a:31:2d:12:b3:e2:25:0d: c7:73:99:34:f0:af:81:fd:4f:dc:4a:ea:e6:34:65: 6c:ae:db:61:2f:d7:d1:e3:ea:e7:09:1d:51:c7:b4: 45:b2:2d:e0:80:96:e3:9b:08:5b:b3:73:ae:ec:6b: a1:17:ff:7f:c8:5d:e7:0b:59:05:02:f5:02:d5:57: 1b:97:c9:63:56:c9:f9:17:0d:19:51:54:d9:a3:16: de:a3:a7:e7:ae:4c:c3:aa:79:72:52:9e:75:93:86: 31:b1:a1:45:c9:cb:65:a7:70:16:86:38:21:6f:76: de:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:90:D3:BE:A8:B2:7D:57:9C:2A:1F:E1:11:35:D3:56:51:34:FC:6B X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:80:85:9c:84:75:3d:58:1d:a0:04:bb:a6:a3:fa:8c:fa:96: fb:e4:e1:55:d7:68:63:fe:11:3f:73:2d:39:c7:a9:b9:b9:fb: b5:42:e2:95:4e:93:f3:61:0b:13:e2:7d:4d:e4:80:37:3e:1c: e3:e5:ff:19:27:96:16:b8:6a:8e:a9:3d:dd:73:e0:f8:47:14: 26:05:80:70:ff:b7:7d:85:ee:4a:f6:66:c1:67:9d:c7:bb:cb: 54:f1:8c:93:f0:f9:91:b5:27:9f:00:2a:c3:24:c2:0b:fe:6a: 60:78:a3:09:8d:91:99:8c:1d:c7:56:b5:0d:18:4b:0d:41:d3: 5b:f8:90:1d:11:3b:ae:ce:b5:3e:54:5a:d1:6c:b5:10:2f:84: df:71:2d:d0:c0:07:0e:29:f6:fa:2f:64:59:a0:18:e1:8b:39: d0:30:40:b8:19:bd:09:18:f6:2f:e0:e3:57:5c:6e:4a:2b:e3: b7:3c:59:60:b5:98:90:36:6d:b7:5e:7b:69:f7:d5:e3:49:35: 39:41:34:4e:6b:a6:50:59:ce:8e:a3:ec:6e:a5:07:f3:2c:d5: 05:bf:36:fe:3e:e5:b1:4a:a0:f8:d7:c5:c4:43:e0:52:ea:e7: b3:0d:1f:cf:74:30:49:e4:d4:44:e4:cc:51:0c:24:03:a0:09: d0:45:ec:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjUxMjIyMjE0NTQ4WhcNMjUxMjI5MjE0NTQ4WjAYMRYwFAYD VQQDDA02OTQ5YmMwYy0xZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTZUgqHZ8BXhlzgG0XWnFFUt0Ms2fAOSWFFVGOABQYFax8byOHhhijt7Bseh ejWoCwyTVuwvK0x4S1lTHBfk0c9UW6WucT4BWDEBYITsUaFzYo4Qv96Mwhj5FXvj cejd6WaOzIxty3ZWK52JUM8rcnqx6nFjB+x4ZYVuJBf6ZBninXQv8MpeUTckev0q ejEtErPiJQ3Hc5k08K+B/U/cSurmNGVsrtthL9fR4+rnCR1Rx7RFsi3ggJbjmwhb s3Ou7GuhF/9/yF3nC1kFAvUC1Vcbl8ljVsn5Fw0ZUVTZoxbeo6fnrkzDqnlyUp51 k4YxsaFFyctlp3AWhjghb3be7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACQ076o sn1XnCof4RE101ZRNPxrMB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc1RC83RTI3MkY3Q0E2ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhj TWxRZW1PVjFveHhUSUhOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPgIWchHU9WB2gBLumo/qM+pb75OFV12hj/hE/cy05x6m5ufu1QuKV TpPzYQsT4n1N5IA3Phzj5f8ZJ5YWuGqOqT3dc+D4RxQmBYBw/7d9he5K9mbBZ53H u8tU8YyT8PmRtSefACrDJMIL/mpgeKMJjZGZjB3HVrUNGEsNQdNb+JAdETuuzrU+ VFrRbLUQL4TfcS3QwAcOKfb6L2RZoBjhiznQMEC4Gb0JGPYv4ONXXG5KK+O3PFlg tZiQNm23Xntp99XjSTU5QTROa6ZQWc6Oo+xupQfzLNUFvzb+PuWxSqD418XEQ+BS 6uezDR/PdDBJ5NRE5MxRDCQDoAnQRez9 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:47 2025 by rpki-client