This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft File: ck2EEAslmZMZA4aasFIgd2yLrEI.mft (raw, json) Hash identifier: SWwPiJeEQAd6TvJBgA71sKmmlHE0MzrK9hiBALrIgQM= Subject key identifier: 7E:46:35:AC:C7:0D:7E:62:43:81:F3:35:17:4D:64:BE:25:EB:29:48 Authority key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 Certificate issuer: /CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft Manifest number: 01E7 Signing time: Sun 07 Dec 2025 01:09:08 +0000 Manifest this update: Sun 07 Dec 2025 01:09:07 +0000 Manifest next update: Sun 14 Dec 2025 01:09:07 +0000 Files and hashes: 1: ck2EEAslmZMZA4aasFIgd2yLrEI.crl (hash: 7K4K8pZ9ZBj39udUfVCtTGm+6D1AoT5nh8WxoFgefbo=) 2: AF01BB42EE4B11EDA0FDF350C4F9AE02.roa (hash: D711Z8aFp5S41gq5GTKSZhCq3zfbGCfPqwt5JDMk3xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A39E, serialNumber=724D84100B2599931903869AB05220776C8BAC42 Validity Not Before: Dec 7 01:09:07 2025 GMT Not After : Dec 14 01:09:07 2025 GMT Subject: CN=6934d3b4-4e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2c:d2:16:14:68:29:35:38:02:2d:c7:c0:63: b3:3c:64:a4:d3:c4:cd:b9:57:33:fd:1b:07:b0:b8: 83:7a:4f:71:2e:b6:50:15:03:94:bc:f9:e7:80:2d: e3:e1:c0:72:40:34:32:84:ad:4c:c7:c5:43:43:37: c6:91:83:b4:8b:2e:d2:25:7f:bc:99:06:24:b9:cc: 33:be:2b:1b:34:54:7b:4d:b8:bc:e8:92:13:18:30: 43:71:bf:84:6a:36:ca:47:32:40:af:f7:10:0a:f2: f7:cf:4a:8a:7b:08:82:8e:4c:ce:0b:6e:67:66:57: 22:d5:12:eb:10:5e:a2:4c:90:90:dd:b3:b2:0e:1e: ad:56:51:44:ec:93:7e:a3:81:3f:cb:1e:ad:e7:0a: 3f:77:14:f5:5b:5d:b6:ba:9c:67:ba:78:a6:32:3c: 86:fc:ee:97:d9:2e:dc:f9:ea:91:9f:eb:63:b0:fb: 78:4f:e4:84:df:db:ed:32:8e:1c:95:24:0b:b9:25: 5b:35:91:3b:d4:0c:ad:76:4f:27:60:cf:6b:99:f6: 0e:64:71:b4:d3:d6:c2:f8:fe:65:ef:5f:ab:b6:90: f0:74:1d:91:37:65:5a:fa:bb:c4:18:2f:c2:26:e1: fb:61:92:cb:04:2d:04:c2:99:23:14:c4:cc:ad:72: 8f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:46:35:AC:C7:0D:7E:62:43:81:F3:35:17:4D:64:BE:25:EB:29:48 X509v3 Authority Key Identifier: keyid:72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:12:4b:70:ec:63:db:72:60:af:d5:9b:21:fa:f1:21:dc:d0: f1:bd:bb:bf:0c:ba:1d:13:c8:02:e1:5e:3b:03:80:6f:be:91: 0b:0f:56:a3:05:06:c2:4c:1a:32:2b:3d:bc:ac:f7:57:d5:7a: f6:d0:ba:94:7a:9a:f6:35:1a:36:0e:cc:95:b0:40:28:94:11: 42:94:87:b5:0b:7b:ce:32:c0:eb:91:d1:16:6b:18:d1:9e:99: 8d:5f:bc:2b:de:5f:3f:fb:90:b6:0f:a6:94:31:38:47:49:e1: eb:59:36:93:fc:9f:19:0f:f2:8e:d3:2f:4a:4c:c9:87:e8:26: 9b:61:b1:52:87:46:ac:89:19:88:e8:07:b4:85:90:15:bf:12: 9e:64:c7:45:7c:d0:41:75:ba:dc:b6:f8:3f:c8:36:76:00:68: 43:a1:60:2f:ac:0d:00:cf:99:f3:9a:de:6f:66:1a:66:79:97: dd:8b:b8:04:b4:8f:33:ca:a5:88:3d:69:6a:6c:69:a8:8a:50: 25:27:e4:c6:40:a3:b2:a4:e0:90:28:52:94:ef:e9:79:56:e3: e2:ac:13:5c:40:a3:f0:01:e7:0e:35:b3:21:a6:2b:e8:2c:fa: 65:52:19:6a:ad:7b:ac:51:6d:10:d6:8e:b3:96:c1:0b:52:65: 5d:d2:ad:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzOUUxMTAvBgNVBAUTKDcyNEQ4NDEwMEIyNTk5OTMxOTAzODY5QUIwNTIyMDc3 NkM4QkFDNDIwHhcNMjUxMjA3MDEwOTA3WhcNMjUxMjE0MDEwOTA3WjAYMRYwFAYD VQQDEw02OTM0ZDNiNC00ZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4izSFhRoKTU4Ai3HwGOzPGSk08TNuVcz/RsHsLiDek9xLrZQFQOUvPnngC3j 4cByQDQyhK1Mx8VDQzfGkYO0iy7SJX+8mQYkucwzvisbNFR7Tbi86JITGDBDcb+E ajbKRzJAr/cQCvL3z0qKewiCjkzOC25nZlci1RLrEF6iTJCQ3bOyDh6tVlFE7JN+ o4E/yx6t5wo/dxT1W122upxnunimMjyG/O6X2S7c+eqRn+tjsPt4T+SE39vtMo4c lSQLuSVbNZE71Aytdk8nYM9rmfYOZHG009bC+P5l71+rtpDwdB2RN2Va+rvEGC/C JuH7YZLLBC0EwpkjFMTMrXKPTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5GNazH DX5iQ4HzNRdNZL4l6ylIMB8GA1UdIwQYMBaAFHJNhBALJZmTGQOGmrBSIHdsi6xC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTM5RS9ENjQ0ODFGOEVF NDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1aTVpBNGFhc0ZJZ2QyeUxy RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrMkVFQXNsbVpNWkE0YWFzRklnZDJ5THJFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTM5RS9ENjQ0ODFGOEVFNDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1a TVpBNGFhc0ZJZ2QyeUxyRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Ektw7GPbcmCv1Zsh+vEh3NDxvbu/DLodE8gC4V47A4BvvpELD1aj BQbCTBoyKz28rPdX1Xr20LqUepr2NRo2DsyVsEAolBFClIe1C3vOMsDrkdEWaxjR npmNX7wr3l8/+5C2D6aUMThHSeHrWTaT/J8ZD/KO0y9KTMmH6CabYbFSh0asiRmI 6Ae0hZAVvxKeZMdFfNBBdbrctvg/yDZ2AGhDoWAvrA0Az5nzmt5vZhpmeZfdi7gE tI8zyqWIPWlqbGmoilAlJ+TGQKOypOCQKFKU7+l5VuPirBNcQKPwAecONbMhpivo LPplUhlqrXusUW0Q1o6zlsELUmVd0q3H -----END CERTIFICATE-----Generated at Sun Dec 7 02:48:04 2025 by rpki-client