This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft File: CO_XGTj3-dyHpp9cs_hMektyoAo.mft (raw, json) Hash identifier: nHfVd22LmciUnqSL2zSuEXZIeWRucjYWg5EvFmQ8SOw= Subject key identifier: 42:02:E4:B8:01:9B:CA:31:4A:B4:54:40:68:E8:8C:36:DF:F2:F1:A4 Authority key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A Certificate issuer: /CN=A91218BB/serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft Manifest number: AD Signing time: Fri 05 Dec 2025 04:07:06 +0000 Manifest this update: Fri 05 Dec 2025 04:07:06 +0000 Manifest next update: Fri 12 Dec 2025 04:07:06 +0000 Files and hashes: 1: CO_XGTj3-dyHpp9cs_hMektyoAo.crl (hash: is5FkzFi5IXsjI/ZyG2r2Zcw5NARLBerHidWy8ZXGf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB, serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Validity Not Before: Dec 5 04:07:06 2025 GMT Not After : Dec 12 04:07:06 2025 GMT Subject: CN=69325a6a-ea48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:62:ee:20:e5:08:4b:f4:ff:cf:62:ea:91:02: 05:e5:66:63:20:a9:7d:94:af:a4:6f:be:0d:30:ef: 6d:37:68:4c:21:ef:f8:cd:48:26:50:e8:fd:80:fc: c3:d3:8f:dc:92:02:5d:8c:30:b3:c3:9a:dd:50:e3: 11:62:e5:50:f7:e4:55:9c:5c:3c:d1:ce:2b:e8:f3: 19:d8:ff:bf:76:f7:12:dd:20:23:ec:55:ca:93:9c: d4:f5:67:e1:86:22:3e:84:49:6c:5c:89:d7:bc:cf: f1:e6:30:98:3f:01:13:6c:0c:0c:c9:88:e8:df:0a: fb:f7:3b:84:6a:2b:20:04:87:94:27:84:b1:8e:e9: cb:4c:05:15:46:20:70:4d:ad:81:9d:7d:60:a9:48: cf:ff:71:c8:30:84:c8:b4:42:65:a0:24:0d:ce:7b: 30:ad:31:d2:f0:a7:72:9f:3f:c8:9e:ee:d9:c1:6a: 1f:12:cf:eb:e9:e1:76:ec:a4:42:a5:8d:7f:9b:9f: 36:ea:eb:73:ed:78:ab:e9:0c:97:c4:9d:75:ff:37: 31:9e:b4:b7:39:44:d7:b7:c2:31:12:7a:a6:d3:61: 0f:0e:16:91:e1:be:d1:89:1d:68:0a:dd:c8:c9:3f: a3:45:df:20:fa:63:92:ac:35:29:84:8c:6f:79:86: 5a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:02:E4:B8:01:9B:CA:31:4A:B4:54:40:68:E8:8C:36:DF:F2:F1:A4 X509v3 Authority Key Identifier: keyid:08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:90:32:20:3d:5c:e0:b9:04:a8:27:17:75:d4:22:90:b3:d0: b9:a6:54:8e:ed:bb:b0:b3:44:77:a3:c0:44:06:1a:b9:59:09: 83:1f:02:28:8f:9c:da:39:8e:ef:2b:eb:3b:71:0d:15:e5:6b: d8:fa:18:d5:6d:57:6f:2d:26:74:20:57:92:69:d4:4c:db:12: cf:a5:bf:1d:62:7c:c1:79:25:f4:11:45:ef:08:b2:d6:5e:1c: 78:6a:a5:49:3d:b3:0e:b4:1b:21:98:91:44:d8:7a:b3:6d:d2: 89:a3:f9:cc:3f:34:5a:c3:1c:7a:48:ff:36:8a:ec:70:7b:16: 39:77:b7:f6:31:00:a0:78:77:45:98:08:96:0f:5e:11:a8:c1: 3e:de:bd:74:af:8e:a5:b0:46:9c:5c:39:40:d5:a6:83:07:88: 3b:a2:9f:13:fc:07:d9:24:48:f0:9b:8a:ab:b8:1f:12:66:c6: 51:a2:d1:f3:9a:c0:8c:0f:5b:b5:e6:64:e3:9a:06:c8:38:bd: 49:28:d9:0c:53:27:85:0a:45:85:2c:51:b1:01:8a:b8:c9:f2: 8b:0c:cb:24:46:2f:d4:3e:99:89:87:be:f4:f1:73:0f:3d:c3: 08:22:84:42:3f:0c:58:2a:77:6c:85:09:8c:9a:34:7d:ad:23: a3:17:25:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4QkIxMTAvBgNVBAUTKDA4RUZENzE5MzhGN0Y5REM4N0E2OUY1Q0IzRjg0QzdB NEI3MkEwMEEwHhcNMjUxMjA1MDQwNzA2WhcNMjUxMjEyMDQwNzA2WjAYMRYwFAYD VQQDEw02OTMyNWE2YS1lYTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GLuIOUIS/T/z2LqkQIF5WZjIKl9lK+kb74NMO9tN2hMIe/4zUgmUOj9gPzD 04/ckgJdjDCzw5rdUOMRYuVQ9+RVnFw80c4r6PMZ2P+/dvcS3SAj7FXKk5zU9Wfh hiI+hElsXInXvM/x5jCYPwETbAwMyYjo3wr79zuEaisgBIeUJ4SxjunLTAUVRiBw Ta2BnX1gqUjP/3HIMITItEJloCQNznswrTHS8Kdynz/Inu7ZwWofEs/r6eF27KRC pY1/m5826utz7Xir6QyXxJ11/zcxnrS3OUTXt8IxEnqm02EPDhaR4b7RiR1oCt3I yT+jRd8g+mOSrDUphIxveYZaKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIC5LgB m8oxSrRUQGjojDbf8vGkMB8GA1UdIwQYMBaAFAjv1xk49/nch6afXLP4THpLcqAK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMThCQi83MUQ1MDYyRUM4 QzUxMUVGOEVDNTU1NjVDNEY5QUUwMi9DT19YR1RqMy1keUhwcDljc19oTWVrdHlv QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NPX1hHVGozLWR5SHBwOWNzX2hNZWt0eW9Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MThCQi83MUQ1MDYyRUM4QzUxMUVGOEVDNTU1NjVDNEY5QUUwMi9DT19YR1RqMy1k eUhwcDljc19oTWVrdHlvQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACkDIgPVzguQSoJxd11CKQs9C5plSO7buws0R3o8BEBhq5WQmDHwIo j5zaOY7vK+s7cQ0V5WvY+hjVbVdvLSZ0IFeSadRM2xLPpb8dYnzBeSX0EUXvCLLW Xhx4aqVJPbMOtBshmJFE2HqzbdKJo/nMPzRawxx6SP82iuxwexY5d7f2MQCgeHdF mAiWD14RqME+3r10r46lsEacXDlA1aaDB4g7op8T/AfZJEjwm4qruB8SZsZRotHz msCMD1u15mTjmgbIOL1JKNkMUyeFCkWFLFGxAYq4yfKLDMskRi/UPpmJh7708XMP PcMIIoRCPwxYKndshQmMmjR9rSOjFyXx -----END CERTIFICATE-----Generated at Sat Dec 6 18:06:00 2025 by rpki-client