This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: Hz4sOoR8wb8JU4WX0NVHtKGH7mQHsXUmOjd086XKnC0= Subject key identifier: 49:E0:BC:AC:B0:89:1A:18:46:1A:0F:19:A5:C9:C6:64:B6:3F:80:33 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 0704 Signing time: Mon 22 Dec 2025 21:09:02 +0000 Manifest this update: Mon 22 Dec 2025 21:09:01 +0000 Manifest next update: Mon 29 Dec 2025 21:09:01 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: u7H4cz6JvBM/bn2cte40hPJL0TT6Oucb/P1ynVDGdgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Dec 22 21:09:01 2025 GMT Not After : Dec 29 21:09:01 2025 GMT Subject: CN=6949b36e-f767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5a:58:77:c2:bc:d5:4a:d9:82:6f:77:37:70: 81:0e:07:08:13:0e:a4:53:98:bb:34:5a:07:e4:06: c2:09:8f:4e:b0:45:f8:01:b2:3b:93:2a:54:c1:f2: 09:cd:0e:a8:8f:dd:70:97:72:8b:b3:45:1e:ec:9e: c8:71:e7:bf:3a:0a:f2:69:4f:e0:12:e7:27:43:a6: 95:e1:0f:5f:49:c4:de:a6:96:a1:e4:b4:ad:9f:3e: b4:19:09:f4:1a:af:27:ba:76:a3:ce:a6:96:8a:35: a2:69:c5:c6:f1:1f:15:9c:12:b2:2a:19:92:8e:5a: df:d6:61:c9:a3:ec:e3:ae:a4:be:b0:68:87:a5:01: 99:88:93:0a:c5:10:81:c8:6b:c9:71:60:62:44:e8: a7:c8:f7:ca:c7:99:01:24:c9:14:61:df:b4:56:12: 1b:1c:ef:67:83:6e:0a:d7:cb:f1:14:29:14:25:3e: 3c:45:0e:f6:63:4e:c1:29:36:a0:d5:94:e9:59:2d: 5f:a6:f2:d0:48:0c:e5:1e:68:05:aa:cd:4c:c2:2a: b3:08:a8:ad:f0:48:34:59:ab:13:0e:2d:84:3a:47: ee:d5:62:d0:be:eb:17:1b:af:47:fa:4d:c4:76:28: 74:00:5a:40:f7:de:a3:32:32:bb:f8:7f:48:7c:70: fe:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E0:BC:AC:B0:89:1A:18:46:1A:0F:19:A5:C9:C6:64:B6:3F:80:33 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:68:b5:89:11:47:3f:1e:ef:5e:d4:44:b2:1b:c6:55:8b:6d: f9:ab:7f:ed:67:8a:0b:fe:e7:6e:42:2d:82:12:95:8a:a9:fe: be:57:cc:73:f0:16:4a:6f:57:85:19:70:bf:d6:b5:41:17:e9: 79:e3:26:06:40:cc:4a:1f:43:12:89:b3:71:72:e2:96:95:f2: 4c:cc:f8:6c:d6:c7:dc:ca:00:91:85:90:7f:6a:9b:45:d6:84: d0:b5:60:7b:9f:e8:8f:45:d7:6e:de:15:f2:53:7e:6b:cc:cd: 09:63:c9:c8:d5:ac:ea:53:9c:89:9f:07:c7:14:1d:17:f3:e6: 5e:19:ba:2d:e7:b7:89:f5:82:cd:f4:bb:e0:6f:b1:e2:21:1b: e5:9f:3f:b2:38:41:42:30:58:c6:3f:9c:2c:29:76:0f:6c:8b: 4e:27:6c:14:3e:3e:bb:ff:1f:d2:08:a9:68:97:d2:da:2c:9c: 6b:72:62:8d:e1:b4:c2:1a:f1:7c:4e:60:18:d9:84:9a:a1:43: 5b:3f:35:d8:87:8f:23:c7:9d:28:3f:c3:8b:88:84:7f:bc:85: 77:9f:27:df:f8:27:a8:21:4d:a4:06:0f:d2:c4:6d:9e:46:88: c9:4e:21:68:8c:ca:83:04:bd:c2:77:37:4c:60:3c:56:b7:2a: 77:5a:02:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUxMjIyMjEwOTAxWhcNMjUxMjI5MjEwOTAxWjAYMRYwFAYD VQQDDA02OTQ5YjM2ZS1mNzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFpYd8K81UrZgm93N3CBDgcIEw6kU5i7NFoH5AbCCY9OsEX4AbI7kypUwfIJ zQ6oj91wl3KLs0Ue7J7Icee/OgryaU/gEucnQ6aV4Q9fScTeppah5LStnz60GQn0 Gq8nunajzqaWijWiacXG8R8VnBKyKhmSjlrf1mHJo+zjrqS+sGiHpQGZiJMKxRCB yGvJcWBiROinyPfKx5kBJMkUYd+0VhIbHO9ng24K18vxFCkUJT48RQ72Y07BKTag 1ZTpWS1fpvLQSAzlHmgFqs1MwiqzCKit8Eg0WasTDi2EOkfu1WLQvusXG69H+k3E dih0AFpA996jMjK7+H9IfHD+TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEngvKyw iRoYRhoPGaXJxmS2P4AzMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwaLWJEUc/Hu9e1ESyG8ZVi235q3/tZ4oL/uduQi2CEpWKqf6+V8xz 8BZKb1eFGXC/1rVBF+l54yYGQMxKH0MSibNxcuKWlfJMzPhs1sfcygCRhZB/aptF 1oTQtWB7n+iPRddu3hXyU35rzM0JY8nI1azqU5yJnwfHFB0X8+ZeGbot57eJ9YLN 9Lvgb7HiIRvlnz+yOEFCMFjGP5wsKXYPbItOJ2wUPj67/x/SCKlol9LaLJxrcmKN 4bTCGvF8TmAY2YSaoUNbPzXYh48jx50oP8OLiIR/vIV3nyff+CeoIU2kBg/SxG2e RojJTiFojMqDBL3CdzdMYDxWtyp3WgIs -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:09 2025 by rpki-client