This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: l+J54EXNZXmk6UZwq5lI33aZ/3FFSMmtHGZBFhlrwIU= Subject key identifier: 51:62:23:60:2E:8F:72:6B:05:D4:06:C4:10:4E:76:D1:D9:68:B7:2D Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: FA Signing time: Thu 04 Dec 2025 23:03:00 +0000 Manifest this update: Thu 04 Dec 2025 23:02:59 +0000 Manifest next update: Thu 11 Dec 2025 23:02:59 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: CzOPv2MGpLOoRmLzyuxHa1T7X/uxFeJxGeKOZMO+bBU=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: kCmrnMtq0oO23W6srUkZmhxFZ7143rIIMei/dep36jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Dec 4 23:02:59 2025 GMT Not After : Dec 11 23:02:59 2025 GMT Subject: CN=69321324-98a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2d:0b:ff:53:c5:85:be:60:78:21:10:de:67: a2:48:89:c5:77:51:38:36:d6:b3:d5:86:64:09:8c: d8:77:c0:15:ff:1c:50:26:11:b0:0a:b9:66:86:5b: 69:83:06:6b:b6:85:d9:e3:a8:18:cb:d1:2f:da:63: f4:71:d4:78:34:51:79:ce:45:c1:a3:83:71:df:54: 76:66:c3:14:60:02:91:d1:34:a1:0a:70:4f:ab:81: 4b:9e:b0:3f:ff:7a:c3:ce:7e:af:d2:ef:d4:a0:a5: d7:a1:73:ae:2e:78:65:62:af:6e:39:8a:1b:d6:04: 9e:34:4b:bf:10:8e:20:98:e4:04:98:1c:48:28:5f: b4:e2:8f:f8:91:08:9e:e5:e1:ef:fd:8a:fb:90:d0: 9e:22:72:6a:fd:85:5b:1d:f4:d0:ad:a2:67:3d:b6: bd:d9:d8:4d:5d:e8:f0:b2:a1:d3:77:2a:28:55:04: 0a:c3:9e:c9:4d:be:a2:dd:5e:a8:9e:de:c0:ae:2d: 48:9d:91:1c:4f:93:3d:71:b0:80:3f:e0:d9:5c:4f: 22:12:a0:52:82:e1:10:3f:26:cc:4e:d6:de:91:7f: 8e:e9:3d:21:ff:ee:64:f4:32:d7:46:db:cb:58:5c: e3:29:24:66:39:75:04:77:17:31:1d:93:6b:f1:b8: 9b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:62:23:60:2E:8F:72:6B:05:D4:06:C4:10:4E:76:D1:D9:68:B7:2D X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:65:a1:61:3d:10:7b:c0:46:bf:ea:07:05:28:20:9f:5d:51: 8b:f8:db:1d:04:7e:d0:5a:b8:87:2a:16:f5:3e:ef:d1:02:c3: 7b:06:c5:ce:f4:8f:d6:be:e3:d8:f2:94:79:86:1d:1b:04:33: f1:bb:98:50:12:d0:5e:0d:7c:71:5d:54:a3:76:79:79:b4:f5: ba:8e:01:08:fc:2c:2d:fb:b1:7b:f2:87:25:47:79:84:eb:80: 96:3c:df:5f:a0:d8:96:68:f7:4b:7a:7e:ee:3f:80:c7:8b:9f: bf:be:52:c1:72:58:86:b1:48:45:85:2d:38:91:12:56:c2:93: c4:48:8d:5b:3e:64:ce:f6:fb:8a:fa:7e:de:61:64:12:dc:5a: e6:d6:30:e7:a9:6b:aa:40:ca:fa:e4:82:6e:58:91:28:1d:7f: 33:e9:86:9e:0d:88:f4:86:25:a0:b7:cb:6a:d5:ea:79:63:79: 99:80:c2:24:c3:a4:a4:60:70:ef:ad:82:88:5b:d0:5d:85:75: 7a:39:2b:8d:42:b3:28:b5:47:a2:70:d8:61:06:1a:55:c4:2d: e8:36:7a:2e:ed:11:5d:65:41:89:07:25:27:60:98:56:5d:9c: d9:d4:b3:21:8a:ae:d6:c7:9a:a5:21:26:2f:cf:3d:bf:f9:6a: 7f:19:5a:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjUxMjA0MjMwMjU5WhcNMjUxMjExMjMwMjU5WjAYMRYwFAYD VQQDEw02OTMyMTMyNC05OGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS0L/1PFhb5geCEQ3meiSInFd1E4Ntaz1YZkCYzYd8AV/xxQJhGwCrlmhltp gwZrtoXZ46gYy9Ev2mP0cdR4NFF5zkXBo4Nx31R2ZsMUYAKR0TShCnBPq4FLnrA/ /3rDzn6v0u/UoKXXoXOuLnhlYq9uOYob1gSeNEu/EI4gmOQEmBxIKF+04o/4kQie 5eHv/Yr7kNCeInJq/YVbHfTQraJnPba92dhNXejwsqHTdyooVQQKw57JTb6i3V6o nt7Ari1InZEcT5M9cbCAP+DZXE8iEqBSguEQPybMTtbekX+O6T0h/+5k9DLXRtvL WFzjKSRmOXUEdxcxHZNr8bibpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFiI2Au j3JrBdQGxBBOdtHZaLctMB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtZaFhPRB7wEa/6gcFKCCfXVGL+NsdBH7QWriHKhb1Pu/RAsN7BsXO 9I/WvuPY8pR5hh0bBDPxu5hQEtBeDXxxXVSjdnl5tPW6jgEI/Cwt+7F78oclR3mE 64CWPN9foNiWaPdLen7uP4DHi5+/vlLBcliGsUhFhS04kRJWwpPESI1bPmTO9vuK +n7eYWQS3Frm1jDnqWuqQMr65IJuWJEoHX8z6YaeDYj0hiWgt8tq1ep5Y3mZgMIk w6SkYHDvrYKIW9BdhXV6OSuNQrMotUeicNhhBhpVxC3oNnou7RFdZUGJByUnYJhW XZzZ1LMhiq7Wx5qlISYvzz2/+Wp/GVpB -----END CERTIFICATE-----Generated at Sat Dec 6 11:53:17 2025 by rpki-client