This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: vBTMr3ZMdXTjsaKEw9WtMtyMapkow/WrE0icdWb2MSc= Subject key identifier: 1E:26:3D:2A:4F:DC:56:BA:7D:E2:E8:EA:AE:C9:E1:7C:49:31:70:90 Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 02E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 02DC Signing time: Sun 21 Dec 2025 00:33:36 +0000 Manifest this update: Sun 21 Dec 2025 00:33:35 +0000 Manifest next update: Sun 28 Dec 2025 00:33:35 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: bhs8AUVksN2bMtluRLMGdMuIITVtYMoBCzYPtRtMEaI=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: vW2EZP2Cwb4m+zHwX4dxc62MHLuj24Kv3gEJBseD9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: Dec 21 00:33:35 2025 GMT Not After : Dec 28 00:33:35 2025 GMT Subject: CN=6947405f-b719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:75:ea:40:73:3e:64:72:61:7f:4e:14:af:07: 08:58:2e:b0:62:55:8e:61:ae:17:1c:75:87:21:1f: 3f:9a:9a:75:68:dc:ca:c0:58:c4:84:83:5f:12:45: 10:0a:ca:3d:f9:3e:43:eb:3d:03:3d:57:e5:37:04: 2b:33:bd:ea:63:0b:fa:64:a4:43:8a:db:9d:c6:04: b9:2c:46:d3:98:e5:c7:f7:a7:cb:7d:44:9d:17:06: 8c:45:cc:17:d6:ca:ff:eb:e3:c1:fb:3c:44:51:b1: 20:f3:68:8c:e0:ae:73:de:ad:38:07:62:26:ed:42: 3b:4b:0e:db:6c:e6:87:0b:5e:fd:9e:4e:09:bb:fd: 8a:37:7b:35:09:80:c4:b1:e5:04:48:ad:42:c1:20: 9a:0c:49:44:c1:4f:86:4b:6f:68:55:59:2a:c8:ac: c0:e2:84:94:36:12:fb:97:4a:bb:d2:20:2d:f6:b0: 53:5f:06:bf:5a:46:13:ac:f0:e2:d9:2c:95:fd:e9: f4:fd:ae:0b:07:75:ab:1b:b7:3a:1f:cf:59:9d:30: 5f:d3:9f:13:19:d6:e7:ce:02:a5:82:be:d7:bc:48: bb:9a:90:1c:35:b4:3c:38:9f:c9:d1:f2:2b:40:a8: 59:61:db:6f:3c:1f:0b:2e:7a:96:05:b6:cf:b8:ed: 3b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:26:3D:2A:4F:DC:56:BA:7D:E2:E8:EA:AE:C9:E1:7C:49:31:70:90 X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:94:df:31:4e:68:f4:2a:9a:b4:66:dd:40:5f:20:5f:ef:c4: 63:66:ba:0b:31:bc:02:53:7f:66:4d:a3:26:10:bf:34:6b:7a: b3:09:bf:3b:eb:47:17:9c:0d:86:72:f6:1e:a1:16:4a:11:8a: 4c:e8:e0:e5:4b:b6:d4:fa:15:b5:a6:da:89:eb:c7:5c:ba:43: be:d2:8e:6f:01:f6:85:e9:35:dc:84:ba:32:e0:04:58:2a:ca: bf:9f:2f:5e:08:fa:7f:7a:36:8b:25:30:88:5f:b0:fd:09:ed: 98:1c:da:0d:3b:44:df:ae:e8:a0:20:6c:29:cc:c1:4c:91:5a: 5d:b9:54:05:17:e9:02:b0:6e:e2:10:ca:f1:01:76:07:f7:5b: bd:69:d5:9f:88:04:1e:02:34:18:4e:f1:de:89:33:d7:4e:d0: 7c:47:ec:35:7d:d7:7d:3a:fb:c3:a0:92:b4:93:cd:69:99:43: 80:52:ca:87:e2:79:7d:c7:18:1d:c5:04:8d:64:4d:f8:11:a9: ea:5d:7b:ef:9c:22:81:7a:2f:cd:1f:4f:22:99:4f:6c:9f:2b: 64:9f:ef:b7:1b:71:2d:52:ba:c4:85:35:ec:ea:21:99:34:31: 35:57:e9:9c:4b:51:af:98:48:09:e1:de:ba:1b:96:1b:39:dd: b2:ee:07:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjUxMjIxMDAzMzM1WhcNMjUxMjI4MDAzMzM1WjAYMRYwFAYD VQQDDA02OTQ3NDA1Zi1iNzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nXqQHM+ZHJhf04UrwcIWC6wYlWOYa4XHHWHIR8/mpp1aNzKwFjEhINfEkUQ Cso9+T5D6z0DPVflNwQrM73qYwv6ZKRDitudxgS5LEbTmOXH96fLfUSdFwaMRcwX 1sr/6+PB+zxEUbEg82iM4K5z3q04B2Im7UI7Sw7bbOaHC179nk4Ju/2KN3s1CYDE seUESK1CwSCaDElEwU+GS29oVVkqyKzA4oSUNhL7l0q70iAt9rBTXwa/WkYTrPDi 2SyV/en0/a4LB3WrG7c6H89ZnTBf058TGdbnzgKlgr7XvEi7mpAcNbQ8OJ/J0fIr QKhZYdtvPB8LLnqWBbbPuO07lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4mPSpP 3Fa6feLo6q7J4XxJMXCQMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBblN8xTmj0Kpq0Zt1AXyBf78RjZroLMbwCU39mTaMmEL80a3qzCb87 60cXnA2GcvYeoRZKEYpM6ODlS7bU+hW1ptqJ68dcukO+0o5vAfaF6TXchLoy4ARY Ksq/ny9eCPp/ejaLJTCIX7D9Ce2YHNoNO0TfruigIGwpzMFMkVpduVQFF+kCsG7i EMrxAXYH91u9adWfiAQeAjQYTvHeiTPXTtB8R+w1fdd9OvvDoJK0k81pmUOAUsqH 4nl9xxgdxQSNZE34EanqXXvvnCKBei/NH08imU9snytkn++3G3EtUrrEhTXs6iGZ NDE1V+mcS1GvmEgJ4d66G5YbOd2y7ge8 -----END CERTIFICATE-----Generated at Sun Dec 21 19:25:32 2025 by rpki-client