This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft File: clTejLmzOZRVQ9h-jrBW8VPVH1A.mft (raw, json) Hash identifier: 4hkgagUdDD47DrPiFUcRzoz9lYRkp1EfEhjDGVaXocM= Subject key identifier: E6:79:17:BD:74:46:C5:0B:99:F0:47:82:B1:EB:1A:4F:4B:10:90:80 Authority key identifier: 72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 Certificate issuer: /CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft Manifest number: 0252 Signing time: Fri 19 Dec 2025 00:55:04 +0000 Manifest this update: Fri 19 Dec 2025 00:55:03 +0000 Manifest next update: Fri 26 Dec 2025 00:55:03 +0000 Files and hashes: 1: clTejLmzOZRVQ9h-jrBW8VPVH1A.crl (hash: azdZcjJuwr69Bf/8MnGiTzlzPdF9FIM8lDVH09+Uvug=) 2: A968BCA24C8511ED94579477C4F9AE02.roa (hash: IDoZUSrFV6jx6DSWfjQN2kUHclLhHXH1mPFI6HDO2bY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198166, serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Validity Not Before: Dec 19 00:55:03 2025 GMT Not After : Dec 26 00:55:03 2025 GMT Subject: CN=6944a268-0540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ec:18:e7:0f:10:c4:37:46:af:c3:b4:38:c3: e5:0b:c9:9a:55:4f:5f:19:72:3b:91:1d:c2:e6:3d: f2:d0:09:ed:6b:21:ab:79:32:da:1d:c2:09:88:91: c0:94:73:bf:5c:73:7e:45:e1:3f:9b:d4:b5:cb:58: 14:9f:0c:8f:a4:27:02:b0:06:84:5d:2a:0b:18:13: a0:ed:fc:58:d0:02:56:23:2b:69:ec:20:9c:eb:f9: 7f:c0:51:00:56:26:01:72:d9:df:1c:6d:a6:2a:4b: 1b:d0:4b:6b:27:f1:54:96:af:4f:6a:d0:44:e8:db: 23:90:eb:26:30:bb:0f:36:52:56:e1:07:2d:a1:c9: d6:e6:ad:51:46:71:88:8c:61:d3:e5:63:d3:cd:01: c4:d3:88:19:27:fd:58:65:c4:7f:69:33:26:6c:17: 4a:94:69:a7:00:f9:ca:6c:41:7a:b5:b0:03:75:a2: 3e:66:88:a6:e4:87:1d:62:05:2a:c7:c7:a0:74:73: 1c:70:b9:ad:aa:18:0e:36:b4:5c:7a:20:95:f6:39: 6e:dd:ad:2d:3b:db:be:8f:0a:ec:9a:da:42:66:1d: 37:c5:b6:56:77:e6:ce:ae:c1:e2:d0:eb:49:ea:7a: ff:6e:06:06:7f:e1:44:e3:16:56:1d:5c:3d:20:8d: a6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:79:17:BD:74:46:C5:0B:99:F0:47:82:B1:EB:1A:4F:4B:10:90:80 X509v3 Authority Key Identifier: keyid:72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:26:ef:80:41:00:8c:8e:1a:57:f1:49:eb:99:e9:75:dc:77: 34:12:5a:69:2c:85:20:29:6b:2b:18:b9:8c:ed:6d:27:fb:f4: db:0f:08:a0:39:62:e3:ac:ac:a8:47:a4:83:fc:4a:23:e2:00: 0e:5d:87:71:28:49:b3:86:d7:57:99:57:36:8b:29:37:90:08: a7:35:a0:a1:c4:f2:bf:44:5e:18:f3:a2:73:0d:7d:ef:db:49: ae:67:ea:fc:08:d9:97:50:f9:f2:fd:36:10:44:8c:3d:07:2c: e4:57:f5:11:48:28:8f:41:fc:94:2a:78:5c:6f:ec:84:20:c1: 0a:08:7b:2d:fc:56:d4:f0:ad:5c:34:c8:35:40:06:19:f1:ba: 8f:3d:e5:c5:dc:d6:05:8f:bc:f1:7a:73:f4:3d:73:6c:30:23: 58:42:02:b7:c1:a5:d3:76:6b:df:52:f9:ea:10:f0:5d:67:9b: 64:3a:15:d5:b9:a8:c4:6e:51:02:35:f9:4f:ec:3c:b0:b3:0a: 82:86:09:58:93:db:6b:c5:4b:97:21:bf:6e:63:2e:4b:ec:21: c9:be:df:29:68:de:94:a6:55:fc:f3:e6:c0:f1:7d:07:e4:95: 2e:e1:e7:f5:91:47:23:1f:96:55:36:03:26:a7:5d:bd:18:7f: ae:12:15:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgxNjYxMTAvBgNVBAUTKDcyNTRERThDQjlCMzM5OTQ1NTQzRDg3RThFQjA1NkYx NTNENTFGNTAwHhcNMjUxMjE5MDA1NTAzWhcNMjUxMjI2MDA1NTAzWjAYMRYwFAYD VQQDDA02OTQ0YTI2OC0wNTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+wY5w8QxDdGr8O0OMPlC8maVU9fGXI7kR3C5j3y0AntayGreTLaHcIJiJHA lHO/XHN+ReE/m9S1y1gUnwyPpCcCsAaEXSoLGBOg7fxY0AJWIytp7CCc6/l/wFEA ViYBctnfHG2mKksb0EtrJ/FUlq9PatBE6NsjkOsmMLsPNlJW4QctocnW5q1RRnGI jGHT5WPTzQHE04gZJ/1YZcR/aTMmbBdKlGmnAPnKbEF6tbADdaI+Zoim5IcdYgUq x8egdHMccLmtqhgONrRceiCV9jlu3a0tO9u+jwrsmtpCZh03xbZWd+bOrsHi0OtJ 6nr/bgYGf+FE4xZWHVw9II2mdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZ5F710 RsULmfBHgrHrGk9LEJCAMB8GA1UdIwQYMBaAFHJU3oy5szmUVUPYfo6wVvFT1R9Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODE2Ni8zRTYxMjI5NDRD ODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9aUlZROWgtanJCVzhWUFZI MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsVGVqTG16T1pSVlE5aC1qckJXOFZQVkgxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODE2Ni8zRTYxMjI5NDRDODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9a UlZROWgtanJCVzhWUFZIMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXJu+AQQCMjhpX8Unrmel13Hc0ElppLIUgKWsrGLmM7W0n+/TbDwig OWLjrKyoR6SD/Eoj4gAOXYdxKEmzhtdXmVc2iyk3kAinNaChxPK/RF4Y86JzDX3v 20muZ+r8CNmXUPny/TYQRIw9ByzkV/URSCiPQfyUKnhcb+yEIMEKCHst/FbU8K1c NMg1QAYZ8bqPPeXF3NYFj7zxenP0PXNsMCNYQgK3waXTdmvfUvnqEPBdZ5tkOhXV uajEblECNflP7DywswqChglYk9trxUuXIb9uYy5L7CHJvt8paN6UplX88+bA8X0H 5JUu4ef1kUcjH5ZVNgMmp129GH+uEhWd -----END CERTIFICATE-----Generated at Fri Dec 19 22:10:45 2025 by rpki-client