This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft File: cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft (raw, json) Hash identifier: Pw1x6iZ+aRu/Qjq+z87tSgkGIJcbyLIQH/4xUciBeDQ= Subject key identifier: 74:7B:08:56:44:EB:1C:A5:6D:50:72:3F:B1:E1:C8:F7:A1:E9:BE:50 Authority key identifier: 70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 Certificate issuer: /CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Certificate serial: 10D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft Manifest number: 10CA Signing time: Mon 22 Dec 2025 16:59:56 +0000 Manifest this update: Mon 22 Dec 2025 16:59:56 +0000 Manifest next update: Mon 29 Dec 2025 16:59:56 +0000 Files and hashes: 1: cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl (hash: renqJeRlTRqMUIacEHMgMRpZkUVI1A+wFc1v703i+6Y=) 2: 74087358355111E99EC82E0AC4F9AE02.roa (hash: PB0EHBaY36YHqHC7V47MMIuYWFc+4JG8rzrltMHOFuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4306 (0x10d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D49F, serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Validity Not Before: Dec 22 16:59:56 2025 GMT Not After : Dec 29 16:59:56 2025 GMT Subject: CN=6949790c-40f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8b:90:31:19:8e:28:58:01:6b:46:ca:b1:0f: 1c:cf:93:ae:74:d3:b4:53:ec:62:06:ce:67:32:98: 3f:c4:d7:e5:55:ba:e2:26:29:5e:5b:01:a2:44:f4: d2:c4:d6:c9:32:be:f2:d7:ff:24:ae:c2:56:ba:38: 0e:ba:dd:fa:90:5f:9d:6f:41:ae:3f:66:e6:cc:7c: 8b:70:97:1a:07:d1:44:e5:08:cb:da:78:e4:c9:cc: 2a:29:47:f3:0f:2d:c1:b6:4a:98:af:d0:79:c2:c7: 89:96:78:60:70:42:cc:d4:64:d5:dd:fd:65:1e:9b: 5e:68:a1:c2:e1:71:9d:dd:97:8b:38:69:dd:ee:48: 4e:5c:bc:af:c8:1c:95:ff:b1:ba:d5:6c:e1:ee:20: d9:05:d2:a4:d7:1a:9d:56:39:b0:c4:ed:8e:fd:c9: 0d:dc:30:47:c6:e0:6c:87:8d:04:cc:33:9b:c7:db: 46:3c:21:82:49:6b:59:43:d4:8c:49:2d:a1:a0:cf: 3c:88:d7:78:99:f6:24:24:23:2d:00:3e:ce:9c:86: 5c:2c:3a:b9:68:7e:3e:c2:23:49:56:c9:5e:c9:64: 3d:46:32:25:8a:f5:69:40:f5:ae:0f:e6:41:78:3f: 0d:9a:63:2f:d3:bf:ea:c7:da:12:b7:ac:c7:0e:02: 02:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:7B:08:56:44:EB:1C:A5:6D:50:72:3F:B1:E1:C8:F7:A1:E9:BE:50 X509v3 Authority Key Identifier: keyid:70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:30:3c:ba:49:37:8e:84:6e:a0:15:5e:ef:b3:cb:f2:f8:08: 0e:b0:6d:e7:20:36:5b:3b:d8:a0:97:7d:39:df:f3:67:f4:e3: 13:1d:6a:b7:42:86:ae:ca:b4:0c:a4:9e:df:b7:8f:80:2b:ff: c2:4c:66:59:d4:88:d0:ed:21:b9:3a:e2:44:6f:8e:4b:47:8e: cd:92:f5:6d:18:12:bb:e2:a0:76:df:bb:4d:19:f8:7a:90:b7: e4:c6:2a:ae:0e:f3:80:3e:37:2a:3f:69:c1:46:04:43:3f:f6: 98:18:4c:ff:da:3f:d8:e6:27:77:1d:53:00:d5:e6:0c:3e:0c: d4:a2:4f:7f:86:43:b2:2e:91:1e:71:59:f1:5c:2c:62:22:72: 09:21:82:6c:f9:26:eb:bc:ec:27:3a:a0:67:3a:2c:24:71:18: de:0e:43:64:1e:49:7f:79:ae:e6:13:7d:a0:24:88:0d:6c:7a: 3d:fd:9a:ac:2c:e6:3d:ad:91:d7:00:d3:e8:ad:fc:59:ef:98: 63:2a:fe:31:08:5f:e8:ee:94:0c:f1:ab:ce:34:ad:9a:f6:e8: cd:b4:1e:14:76:c5:43:29:33:7b:75:03:63:8c:a4:03:96:02: c1:ce:13:91:33:fb:48:b7:7f:13:72:f4:43:12:07:93:35:98: 2e:9a:0a:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ0OUYxMTAvBgNVBAUTKDcwN0Q0ODYwNUEwRDg1NzcyRjkwREM0QjExNzJCRUYz MDI5NEEwODcwHhcNMjUxMjIyMTY1OTU2WhcNMjUxMjI5MTY1OTU2WjAYMRYwFAYD VQQDDA02OTQ5NzkwYy00MGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4uQMRmOKFgBa0bKsQ8cz5OudNO0U+xiBs5nMpg/xNflVbriJileWwGiRPTS xNbJMr7y1/8krsJWujgOut36kF+db0GuP2bmzHyLcJcaB9FE5QjL2njkycwqKUfz Dy3BtkqYr9B5wseJlnhgcELM1GTV3f1lHpteaKHC4XGd3ZeLOGnd7khOXLyvyByV /7G61Wzh7iDZBdKk1xqdVjmwxO2O/ckN3DBHxuBsh40EzDObx9tGPCGCSWtZQ9SM SS2hoM88iNd4mfYkJCMtAD7OnIZcLDq5aH4+wiNJVsleyWQ9RjIlivVpQPWuD+ZB eD8NmmMv07/qx9oSt6zHDgICMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHR7CFZE 6xylbVByP7HhyPeh6b5QMB8GA1UdIwQYMBaAFHB9SGBaDYV3L5DcSxFyvvMClKCH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDQ5Ri8wQkFDODU1NjM1 NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhYY3ZrTnhMRVhLLTh3S1Vv SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIMUlZRm9OaFhjdmtOeExFWEstOHdLVW9JYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDQ5Ri8wQkFDODU1NjM1NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhY Y3ZrTnhMRVhLLTh3S1VvSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrMDy6STeOhG6gFV7vs8vy+AgOsG3nIDZbO9igl3053/Nn9OMTHWq3 QoauyrQMpJ7ft4+AK//CTGZZ1IjQ7SG5OuJEb45LR47NkvVtGBK74qB237tNGfh6 kLfkxiquDvOAPjcqP2nBRgRDP/aYGEz/2j/Y5id3HVMA1eYMPgzUok9/hkOyLpEe cVnxXCxiInIJIYJs+SbrvOwnOqBnOiwkcRjeDkNkHkl/ea7mE32gJIgNbHo9/Zqs LOY9rZHXANPorfxZ75hjKv4xCF/o7pQM8avONK2a9ujNtB4UdsVDKTN7dQNjjKQD lgLBzhORM/tIt38TcvRDEgeTNZgumgpC -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:24 2025 by rpki-client