This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: 08i3QxBgz0+vOaprvR6bX5Kd5kTdv5RelDRel0uAD+4= Subject key identifier: 3B:06:12:7B:0C:F5:C4:0A:08:84:E0:0B:69:D4:CC:47:06:AD:9D:0E Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 07F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 07EE Signing time: Sun 14 Dec 2025 20:30:39 +0000 Manifest this update: Sun 14 Dec 2025 20:30:38 +0000 Manifest next update: Sun 21 Dec 2025 20:30:38 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: bN6rUjxBAdjsghn8mydmI1B8Sj/aA0QQ1h2AOjhomnM=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 7u9lFldLGtHyxwH20hTfSxqKwvd+3v0Fn/UDNDaczHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 20:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2036 (0x7f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Dec 14 20:30:38 2025 GMT Not After : Dec 21 20:30:38 2025 GMT Subject: CN=693f1e6f-a88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f0:27:2e:36:66:8f:e1:ec:fa:19:84:aa:a6: 31:20:20:8d:24:22:4f:6a:6f:7b:80:b8:b1:92:01: e6:a0:27:0c:bc:79:1a:0c:90:92:f3:95:df:6a:e4: fa:2f:4d:df:19:12:e3:4b:38:de:3b:1c:0f:ad:72: ab:e9:1e:b7:8d:97:b9:fd:4a:59:d0:9b:4a:e8:18: 7d:35:8e:84:9a:f9:d8:e8:4b:ba:d4:3f:39:96:ce: f4:df:20:a2:f5:d1:0c:4e:c7:09:e4:6d:63:06:59: 99:9a:97:63:9f:11:5c:f2:04:f6:ec:f6:b4:50:03: 06:6b:9b:d5:e3:27:a3:51:ff:7e:84:ea:ae:95:a2: a0:22:15:7e:99:05:81:9a:9e:38:f0:f1:97:39:71: 3e:f9:b9:a7:d7:52:a5:94:c5:2f:f0:0b:d2:b6:6d: 72:45:1a:1e:a4:75:f4:27:2b:0a:bd:6e:30:d4:83: 63:2e:70:ad:8a:bf:2f:5d:57:1b:86:f4:09:af:30: cc:f5:ce:9b:0b:df:c4:fd:12:96:9b:89:4f:68:df: 16:25:7e:2d:f4:cf:64:25:d8:dd:14:3a:13:36:bc: 64:a2:5b:6c:11:3b:ff:34:db:f0:31:b4:af:ad:f4: 19:6d:b7:87:5d:48:87:22:31:1a:39:6e:75:21:3e: 10:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:06:12:7B:0C:F5:C4:0A:08:84:E0:0B:69:D4:CC:47:06:AD:9D:0E X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:4e:8d:1b:7e:91:09:76:58:af:08:ae:d3:30:4c:e4:98:e5: e3:d1:d2:b9:2c:15:47:3c:4b:2c:73:c5:c3:92:05:ab:ad:3d: 94:3b:e4:d1:6e:23:36:fd:82:97:14:bd:49:93:57:a9:0e:8a: 48:43:38:db:87:f2:de:02:62:73:a0:3b:27:14:f4:3b:82:8b: a8:5f:bf:24:4a:61:c8:99:27:47:92:93:e9:d7:63:5f:8b:ff: 9a:07:12:a3:06:05:15:b2:84:25:99:a9:ee:ff:03:a5:07:cb: 37:ae:dc:4e:1f:67:eb:46:02:35:60:2b:f7:f9:b0:de:c7:86: a2:bb:2c:58:8f:6c:d0:8f:1c:d5:65:e5:a4:b5:20:83:10:f9: 9f:66:3a:ff:e5:b1:27:e7:0f:40:46:8b:7a:52:e5:fc:9b:f3: 49:fc:95:76:6f:1d:91:7e:7a:1f:28:f7:c8:d6:ae:79:05:e6: 07:e5:b7:28:07:33:e4:33:01:11:74:a1:f1:7e:f1:43:6b:29: 87:af:9f:79:03:dc:33:69:5d:02:c6:bf:76:d8:25:df:6d:a5: 0b:47:10:c6:87:ab:01:3c:f6:54:8d:35:75:1d:93:d2:2a:21: 6f:90:7e:cb:52:5b:a7:9c:e7:50:74:70:05:d1:62:4a:38:d4: a9:34:ec:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjUxMjE0MjAzMDM4WhcNMjUxMjIxMjAzMDM4WjAYMRYwFAYD VQQDDA02OTNmMWU2Zi1hODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvAnLjZmj+Hs+hmEqqYxICCNJCJPam97gLixkgHmoCcMvHkaDJCS85XfauT6 L03fGRLjSzjeOxwPrXKr6R63jZe5/UpZ0JtK6Bh9NY6EmvnY6Eu61D85ls703yCi 9dEMTscJ5G1jBlmZmpdjnxFc8gT27Pa0UAMGa5vV4yejUf9+hOqulaKgIhV+mQWB mp448PGXOXE++bmn11KllMUv8AvStm1yRRoepHX0JysKvW4w1INjLnCtir8vXVcb hvQJrzDM9c6bC9/E/RKWm4lPaN8WJX4t9M9kJdjdFDoTNrxkoltsETv/NNvwMbSv rfQZbbeHXUiHIjEaOW51IT4QqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsGEnsM 9cQKCITgC2nUzEcGrZ0OMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAITo0bfpEJdlivCK7TMEzkmOXj0dK5LBVHPEssc8XDkgWrrT2UO+TR biM2/YKXFL1Jk1epDopIQzjbh/LeAmJzoDsnFPQ7gouoX78kSmHImSdHkpPp12Nf i/+aBxKjBgUVsoQlmanu/wOlB8s3rtxOH2frRgI1YCv3+bDex4aiuyxYj2zQjxzV ZeWktSCDEPmfZjr/5bEn5w9ARot6UuX8m/NJ/JV2bx2RfnofKPfI1q55BeYH5bco BzPkMwERdKHxfvFDaymHr595A9wzaV0Cxr922CXfbaULRxDGh6sBPPZUjTV1HZPS KiFvkH7LUlunnOdQdHAF0WJKONSpNOy3 -----END CERTIFICATE-----Generated at Mon Dec 15 20:13:41 2025 by rpki-client