This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft File: CHspwfvXREICrgAqSXEn_WbyStk.mft (raw, json) Hash identifier: 1fkz5d3H+2F7p/XWarbAHN1osfLb8RQjA1MYFfeMgF4= Subject key identifier: F0:E9:A0:7E:E9:26:1A:27:56:3B:25:42:00:57:DA:DF:6A:9F:A8:81 Authority key identifier: 08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 Certificate issuer: /CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Certificate serial: 04E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft Manifest number: 04DD Signing time: Mon 22 Dec 2025 22:51:48 +0000 Manifest this update: Mon 22 Dec 2025 22:51:47 +0000 Manifest next update: Mon 29 Dec 2025 22:51:47 +0000 Files and hashes: 1: CHspwfvXREICrgAqSXEn_WbyStk.crl (hash: /8x30K7XJRdv+01nFAGj0xtLLWUfqxzmaJP1WeOeCA4=) 2: D3C965FA45F611EC9FB3BB49C4F9AE02.roa (hash: TOciMmg+YXh13dYfOrB14chWnhLKZ+JRHOQLiS8Jf5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAED9, serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Validity Not Before: Dec 22 22:51:47 2025 GMT Not After : Dec 29 22:51:47 2025 GMT Subject: CN=6949cb84-03c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1e:d4:bf:2b:1b:45:b3:96:01:15:b9:47:df: a8:d8:88:20:f2:9a:e9:06:2d:36:b5:86:ac:3c:ee: 20:89:06:4e:0b:4c:d2:a2:60:7c:da:37:3c:de:ce: 41:e3:6f:2b:70:bc:28:59:e4:60:a7:f4:3d:5f:7c: 30:a5:58:bc:f9:aa:52:db:98:07:37:1f:5c:bd:dc: 19:f1:c8:4d:45:f3:11:5b:45:c0:75:7a:6c:fc:bf: 2f:c9:80:2d:35:ee:e5:88:f8:8c:85:19:f3:0a:ca: e3:d6:01:8b:fe:93:dd:a4:dc:2e:a4:2c:b8:3f:d8: 1f:da:3c:03:d8:b8:f0:93:0c:0f:04:a7:72:db:ac: 2e:96:84:61:94:4f:bb:fa:06:e6:cc:16:98:4d:a9: b3:7e:06:86:50:14:a4:5b:ca:05:8f:7e:2c:52:c0: 96:6f:b1:de:bc:09:8d:a3:c5:3d:0e:d9:af:bf:0f: 16:ac:c6:8e:a5:9a:a3:da:f0:89:cc:63:d0:bd:5e: 96:49:c4:81:37:8a:6b:c6:2d:7c:f3:18:7e:f4:50: a8:e0:ab:b8:2a:3c:c5:82:18:34:fe:3e:bd:b3:33: 61:3a:fb:2d:12:da:52:34:2c:76:1e:a9:10:ff:fe: 61:1a:be:d7:49:29:78:c7:7b:85:fe:3d:17:16:c1: 4a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E9:A0:7E:E9:26:1A:27:56:3B:25:42:00:57:DA:DF:6A:9F:A8:81 X509v3 Authority Key Identifier: keyid:08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:12:94:cb:e5:b6:f9:1d:95:f1:3d:94:e0:3c:ce:2c:bf:b2: 09:a2:2c:49:06:e8:0a:48:b2:64:1e:af:33:28:4d:13:b8:c2: 26:10:21:1d:d8:48:d2:d1:bb:aa:de:16:f4:96:20:9b:bf:cb: 20:95:a6:c5:6d:f8:ed:30:4f:1c:94:53:90:10:60:82:5b:5f: 3a:b0:db:3e:61:9b:06:39:14:74:8a:43:74:ed:ef:a1:82:c0: 16:5e:0e:44:ed:47:62:47:da:34:a8:d4:a8:19:e5:a6:28:99: 18:2c:7f:3c:6e:52:e6:b9:81:77:02:30:9e:f6:06:c8:bd:21: 0d:5d:c2:c8:97:5b:62:1c:c2:3f:fb:e3:27:3c:7c:3e:7f:81: 19:b2:54:bd:1f:33:b1:9c:36:e1:9f:40:72:5d:1a:37:a4:0c: f1:53:a3:1e:a0:97:a5:e9:26:bc:15:4f:17:8a:b7:93:e5:f2: 6c:c4:78:77:2b:f3:7e:85:0f:9a:91:81:dd:e8:9c:93:6f:58: a5:15:50:fe:85:d5:07:bd:53:91:fc:f9:bf:f9:10:d1:04:71: 3c:1d:e5:8b:dc:4c:b8:65:c8:4f:0e:a2:c2:0d:55:11:11:79: c4:32:18:91:df:3c:f5:21:ba:4c:6b:1b:1c:d6:d8:09:6a:e7: 24:b1:07:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRDkxMTAvBgNVBAUTKDA4N0IyOUMxRkJENzQ0NDIwMkFFMDAyQTQ5NzEyN0ZE NjZGMjRBRDkwHhcNMjUxMjIyMjI1MTQ3WhcNMjUxMjI5MjI1MTQ3WjAYMRYwFAYD VQQDDA02OTQ5Y2I4NC0wM2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB7UvysbRbOWARW5R9+o2Igg8prpBi02tYasPO4giQZOC0zSomB82jc83s5B 428rcLwoWeRgp/Q9X3wwpVi8+apS25gHNx9cvdwZ8chNRfMRW0XAdXps/L8vyYAt Ne7liPiMhRnzCsrj1gGL/pPdpNwupCy4P9gf2jwD2LjwkwwPBKdy26wuloRhlE+7 +gbmzBaYTamzfgaGUBSkW8oFj34sUsCWb7HevAmNo8U9Dtmvvw8WrMaOpZqj2vCJ zGPQvV6WScSBN4prxi188xh+9FCo4Ku4KjzFghg0/j69szNhOvstEtpSNCx2HqkQ //5hGr7XSSl4x3uF/j0XFsFKIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDpoH7p JhonVjslQgBX2t9qn6iBMB8GA1UdIwQYMBaAFAh7KcH710RCAq4AKklxJ/1m8krZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVEOS82QTc2NUFBQTQ1 REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJFSUNyZ0FxU1hFbl9XYnlT dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIc3B3ZnZYUkVJQ3JnQXFTWEVuX1dieVN0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUVEOS82QTc2NUFBQTQ1REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJF SUNyZ0FxU1hFbl9XYnlTdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzEpTL5bb5HZXxPZTgPM4sv7IJoixJBugKSLJkHq8zKE0TuMImECEd 2EjS0buq3hb0liCbv8sglabFbfjtME8clFOQEGCCW186sNs+YZsGORR0ikN07e+h gsAWXg5E7UdiR9o0qNSoGeWmKJkYLH88blLmuYF3AjCe9gbIvSENXcLIl1tiHMI/ ++MnPHw+f4EZslS9HzOxnDbhn0ByXRo3pAzxU6MeoJel6Sa8FU8XireT5fJsxHh3 K/N+hQ+akYHd6JyTb1ilFVD+hdUHvVOR/Pm/+RDRBHE8HeWL3Ey4ZchPDqLCDVUR EXnEMhiR3zz1IbpMaxsc1tgJaucksQdf -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:52 2025 by rpki-client