This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: oLfUtABXEHyU8k1bcdPMe0wm/MvGYwv6g+ouUUq4KCU= Subject key identifier: A1:F6:3B:91:65:1D:1B:B4:A2:01:7D:27:94:6F:BF:B6:CA:AB:E4:93 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 07EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 07E9 Signing time: Thu 04 Dec 2025 20:09:15 +0000 Manifest this update: Thu 04 Dec 2025 20:09:15 +0000 Manifest next update: Thu 11 Dec 2025 20:09:15 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: E2NIfdV4IaM0K6tU9rEbKFMPSYoOCu0j/kaEChMIXKw=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 7u9lFldLGtHyxwH20hTfSxqKwvd+3v0Fn/UDNDaczHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2031 (0x7ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Dec 4 20:09:15 2025 GMT Not After : Dec 11 20:09:15 2025 GMT Subject: CN=6931ea6b-6da0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1e:03:aa:3a:ac:7b:ba:9e:29:17:c5:83:ec: d3:7b:fc:88:52:97:e2:43:31:4f:85:91:b0:88:e5: 06:54:32:44:73:bb:0b:45:27:da:e4:ef:71:6d:b9: 8a:c2:11:32:25:af:a7:07:c4:c5:cc:b8:d9:28:df: 3e:22:3b:3f:e1:b8:dc:f8:34:a3:e9:3e:41:b2:96: dd:55:6e:b3:8f:48:76:97:aa:47:e0:e3:51:89:04: d4:b5:1b:20:28:7d:c5:cd:94:70:c2:29:4c:0a:e0: 79:58:1a:dc:81:ee:74:be:ea:8a:05:28:c2:20:80: 28:f0:08:c7:45:8b:b2:52:f4:ba:6e:8d:48:38:9f: 36:32:64:a2:e7:56:bc:52:91:cd:d6:40:87:9a:c7: 62:a2:ea:8b:06:fe:88:0d:ab:09:48:cc:c3:66:6a: 33:85:73:53:78:ad:d0:79:82:42:f1:1f:e4:7a:18: a4:b6:1b:8c:2c:ec:2b:b9:a0:0f:0a:31:31:1c:3d: 65:9a:37:9f:07:d2:73:61:c9:79:47:ef:5f:15:47: 28:df:94:b6:a0:bf:97:3f:f6:00:f2:9b:b0:9f:0c: 8d:bd:72:8e:06:3f:5d:61:43:7b:2e:32:62:50:f9: 19:c5:08:11:4a:e5:4e:2a:b7:0b:d1:f0:f3:eb:89: 2d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F6:3B:91:65:1D:1B:B4:A2:01:7D:27:94:6F:BF:B6:CA:AB:E4:93 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:fe:43:81:b6:01:b1:97:ad:8c:d8:70:08:8f:1b:92:e9:4b: 83:3e:a3:20:21:0e:17:07:7f:f9:3f:b9:2b:4c:fc:f9:89:75: fc:23:24:ec:e9:e2:c7:19:f3:b8:4d:7a:3b:5e:6e:45:46:28: 2d:bc:f0:10:68:a3:43:57:8e:91:39:3d:13:ae:95:fb:c1:de: 73:ca:d6:2d:e0:6e:f8:e4:e9:9a:f5:29:16:8b:4c:ac:4f:0a: 38:0e:8d:37:8d:02:85:a8:46:96:27:e1:44:b1:d1:97:bd:ca: 4e:f7:a5:a2:26:cf:37:ba:16:2b:a1:96:98:ad:4f:e8:1a:f2: 28:93:5f:71:03:6d:d8:22:54:1d:4a:c2:c9:7c:e4:aa:c1:67: e5:05:8b:de:0b:6f:e6:14:01:ef:65:83:af:40:a2:e3:49:50: 5d:c6:08:18:ee:9a:29:76:07:69:d3:72:16:74:73:12:d5:22: fe:0e:08:7e:be:9d:94:4f:14:5c:86:db:30:28:78:85:75:f8: 8e:c5:12:af:86:02:ba:a9:6f:00:a8:ce:37:1f:4c:43:98:be: fb:21:de:50:9b:c8:4e:3a:1a:d1:b3:80:b3:a0:2c:e3:03:63: 34:74:ff:fe:90:72:b2:3f:0e:f0:0b:4d:f7:ae:8a:9d:cc:eb: 4e:c9:c4:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjUxMjA0MjAwOTE1WhcNMjUxMjExMjAwOTE1WjAYMRYwFAYD VQQDEw02OTMxZWE2Yi02ZGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvR4Dqjqse7qeKRfFg+zTe/yIUpfiQzFPhZGwiOUGVDJEc7sLRSfa5O9xbbmK whEyJa+nB8TFzLjZKN8+Ijs/4bjc+DSj6T5BspbdVW6zj0h2l6pH4ONRiQTUtRsg KH3FzZRwwilMCuB5WBrcge50vuqKBSjCIIAo8AjHRYuyUvS6bo1IOJ82MmSi51a8 UpHN1kCHmsdiouqLBv6IDasJSMzDZmozhXNTeK3QeYJC8R/kehikthuMLOwruaAP CjExHD1lmjefB9JzYcl5R+9fFUco35S2oL+XP/YA8puwnwyNvXKOBj9dYUN7LjJi UPkZxQgRSuVOKrcL0fDz64ktwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKH2O5Fl HRu0ogF9J5Rvv7bKq+STMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO/kOBtgGxl62M2HAIjxuS6UuDPqMgIQ4XB3/5P7krTPz5iXX8IyTs 6eLHGfO4TXo7Xm5FRigtvPAQaKNDV46ROT0TrpX7wd5zytYt4G745Oma9SkWi0ys Two4Do03jQKFqEaWJ+FEsdGXvcpO96WiJs83uhYroZaYrU/oGvIok19xA23YIlQd SsLJfOSqwWflBYveC2/mFAHvZYOvQKLjSVBdxggY7popdgdp03IWdHMS1SL+Dgh+ vp2UTxRchtswKHiFdfiOxRKvhgK6qW8AqM43H0xDmL77Id5Qm8hOOhrRs4CzoCzj A2M0dP/+kHKyPw7wC033roqdzOtOycRs -----END CERTIFICATE-----Generated at Sat Dec 6 17:09:39 2025 by rpki-client