This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: HM2l/MHXEb3iPkoOsJSL2bbexjFHTRn7kGr1yth4Ia4= Subject key identifier: B1:30:9E:77:19:F3:97:89:67:B3:6E:7C:6C:AD:95:BF:65:FA:A5:32 Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: 99 Signing time: Fri 19 Dec 2025 05:27:48 +0000 Manifest this update: Fri 19 Dec 2025 05:27:47 +0000 Manifest next update: Fri 26 Dec 2025 05:27:47 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: xm5SptHDwECEjywxI82Y/KW7pFLSk7xj36i27ZD+S3c=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: Dec 19 05:27:47 2025 GMT Not After : Dec 26 05:27:47 2025 GMT Subject: CN=6944e254-fcc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:41:2e:fd:c7:dc:3b:6b:08:eb:16:fc:a7:d4: 12:f4:ac:a7:3d:79:25:ab:c8:a2:68:eb:f9:65:78: fa:00:7f:a1:19:ad:54:91:4e:a9:64:9d:4c:10:32: 09:46:2b:a6:ef:65:27:69:9f:38:99:37:83:2e:1a: fc:d5:f6:73:ab:a1:a4:f7:a6:28:9f:a9:cd:51:a1: bd:0a:a2:e4:e2:6e:e1:f0:63:ec:27:2d:73:cc:c0: f5:79:9a:7d:ae:97:d0:26:22:79:53:35:18:37:fa: 24:0b:33:41:78:71:97:b6:48:34:7f:0f:db:2f:36: 77:d4:ec:f1:0c:69:60:9a:a5:8b:5b:b5:e2:f4:d3: 26:67:70:cf:13:53:ba:05:32:7e:27:04:f1:f4:8b: e1:ad:f9:6d:e6:da:26:92:58:01:6e:cc:4b:11:3f: 6d:00:a7:9b:91:47:56:c6:c8:62:75:be:3f:e0:38: 87:7a:26:26:47:ae:b3:2b:76:ca:64:0a:a0:2e:2b: 69:1f:31:0b:dd:e1:7f:a9:b6:8d:94:87:a7:5f:21: 9d:a2:de:d8:3e:c0:0d:9b:9a:0d:d7:65:72:8a:86: 21:f0:29:4e:35:81:30:dc:48:3d:0c:b4:f5:3e:a0: 6e:24:af:ae:a6:3f:9d:aa:8f:91:a0:3a:55:a6:da: c7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:30:9E:77:19:F3:97:89:67:B3:6E:7C:6C:AD:95:BF:65:FA:A5:32 X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f9:59:d4:5f:95:33:13:3f:5c:80:96:51:b1:a8:7f:0e:ba: 92:cc:6e:a0:c4:a3:df:02:84:94:58:44:2c:a1:8a:77:cc:78: fb:8c:9a:e8:48:bf:5e:fc:73:2f:69:b3:bc:bd:7d:4a:5a:41: 7e:de:30:e7:27:a4:08:2c:20:9a:a1:0a:55:8c:8e:6d:ba:c9: db:8b:53:45:c0:f7:4c:ff:8a:29:14:b7:41:4b:fb:31:b2:5c: 91:66:e9:da:aa:0b:34:83:09:c5:a8:c3:8a:d9:7d:54:2c:f8: f2:a8:8c:0a:2a:e5:ee:aa:b1:ad:33:5e:ec:3d:c3:60:80:a1: ec:49:7b:c3:99:7d:ff:15:40:55:44:da:38:b1:62:fe:c8:2f: 50:7c:63:d2:ba:0b:8f:83:5d:d2:95:3b:30:67:7a:1a:16:96: e5:fc:4f:04:37:d8:9a:3d:95:96:14:6b:1d:6f:54:78:bf:f7: 40:ab:e1:52:41:a1:dc:18:36:4c:3b:a8:f7:b9:b2:78:45:1d: 35:30:95:12:a5:a7:9a:80:da:53:78:be:37:6c:70:b5:d3:60: e3:03:5c:19:5e:41:23:41:a6:b2:4f:eb:9b:d2:c8:56:bc:2d: 88:62:2a:45:d2:62:27:ca:54:db:da:ab:f6:d8:9a:1e:b1:48: bd:bb:3d:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE0NzcxMTAvBgNVBAUTKDcyNDFFOEYwMzhCOUYyNTJGQjYxQ0E0MUI2QTRGQzE2 N0I3NzU1MjYwHhcNMjUxMjE5MDUyNzQ3WhcNMjUxMjI2MDUyNzQ3WjAYMRYwFAYD VQQDDA02OTQ0ZTI1NC1mY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhUEu/cfcO2sI6xb8p9QS9KynPXklq8iiaOv5ZXj6AH+hGa1UkU6pZJ1MEDIJ Rium72UnaZ84mTeDLhr81fZzq6Gk96Yon6nNUaG9CqLk4m7h8GPsJy1zzMD1eZp9 rpfQJiJ5UzUYN/okCzNBeHGXtkg0fw/bLzZ31OzxDGlgmqWLW7Xi9NMmZ3DPE1O6 BTJ+JwTx9Ivhrflt5tomklgBbsxLET9tAKebkUdWxshidb4/4DiHeiYmR66zK3bK ZAqgLitpHzEL3eF/qbaNlIenXyGdot7YPsANm5oN12VyioYh8ClONYEw3Eg9DLT1 PqBuJK+upj+dqo+RoDpVptrHgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEwnncZ 85eJZ7NufGytlb9l+qUyMB8GA1UdIwQYMBaAFHJB6PA4ufJS+2HKQbak/BZ7d1Um MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTQ3Ny82QjcwMzVGOEYz RkMxMUVGOTlENTM3MzBDNEY5QUUwMi9ja0hvOERpNThsTDdZY3BCdHFUOEZudDNW U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTQ3Ny82QjcwMzVGOEYzRkMxMUVGOTlENTM3MzBDNEY5QUUwMi9ja0hvOERpNThs TDdZY3BCdHFUOEZudDNWU1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA++VnUX5UzEz9cgJZRsah/DrqSzG6gxKPfAoSUWEQsoYp3zHj7jJro SL9e/HMvabO8vX1KWkF+3jDnJ6QILCCaoQpVjI5tusnbi1NFwPdM/4opFLdBS/sx slyRZunaqgs0gwnFqMOK2X1ULPjyqIwKKuXuqrGtM17sPcNggKHsSXvDmX3/FUBV RNo4sWL+yC9QfGPSuguPg13SlTswZ3oaFpbl/E8EN9iaPZWWFGsdb1R4v/dAq+FS QaHcGDZMO6j3ubJ4RR01MJUSpaeagNpTeL43bHC102DjA1wZXkEjQaayT+ub0shW vC2IYipF0mInylTb2qv22JoesUi9uz1y -----END CERTIFICATE-----Generated at Sat Dec 20 17:19:11 2025 by rpki-client