This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: UNZArOs+rSNPrgkS2cZYwC5IutAIDZSUxhbif6Tg5n8= Subject key identifier: 0B:9D:04:D8:DC:82:37:35:8E:07:3C:D1:AD:FE:4F:14:37:07:9A:60 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 04E7 Signing time: Sat 20 Dec 2025 23:03:17 +0000 Manifest this update: Sat 20 Dec 2025 23:03:17 +0000 Manifest next update: Sat 27 Dec 2025 23:03:17 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: RUI6hKdchb53SdQWwWtZO5YIGdx0A8KwCgFEYz/Yqwo=) 2: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: i1mD+r6XwMu6On3/bUlN+PaLdP6khHenZ0Z0HUab9AI=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: Y2Z1jehKepnssjRVP8joGvXLmK9adM98wErhHrOtaeg=) 4: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: o+VIx3yy8oMDW/C3RImP2D9X9JrFefZYlsNOIecQzAE=) 5: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: TGHGZPpqAj2jmtX8lTQMi8kBaI8ojiWWIFj1IWycEgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Dec 20 23:03:17 2025 GMT Not After : Dec 27 23:03:17 2025 GMT Subject: CN=69472b35-1e0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:9a:83:3a:0e:e6:0d:88:3c:8d:82:4b:b2:8d: 9c:b6:2b:7c:5f:49:06:d3:f9:58:8c:72:40:44:78: bf:d6:7b:64:60:a7:4e:08:7f:f3:1a:28:5a:42:68: 45:2f:3c:76:51:4d:38:b8:c5:1c:8e:37:73:88:51: cd:8e:8d:c4:a7:ac:d7:ad:b9:d4:e4:9a:27:6d:d9: 33:11:9a:1d:78:1a:83:11:18:07:a1:ba:0d:f8:62: 78:5f:cd:ac:3e:25:28:91:ac:0f:24:5c:f7:63:f4: fb:ed:2b:05:fa:50:03:f1:10:ec:55:d8:0a:b5:52: e5:5d:78:e0:44:fe:62:09:33:54:46:24:ed:53:17: a5:a5:77:79:1e:d2:f7:cc:de:85:8c:a0:5e:46:29: 60:d7:7e:01:77:74:91:88:fa:ae:e2:73:26:47:c6: de:79:54:e0:6f:b9:18:0b:68:8c:db:96:b1:9f:9d: 2d:a3:76:80:6a:64:10:db:0a:01:8f:f4:c3:23:e0: bf:ed:d3:6a:c5:72:3a:b4:11:87:90:eb:a1:b4:ce: f7:ed:2a:e8:91:21:22:62:17:70:cd:4b:de:b9:3a: 29:b6:8e:b5:40:d4:12:d8:bf:76:15:ee:2f:12:f3: 5c:54:1c:1a:9a:7e:ef:6a:67:81:29:d5:47:4e:c9: 7f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:9D:04:D8:DC:82:37:35:8E:07:3C:D1:AD:FE:4F:14:37:07:9A:60 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:65:6e:5e:c9:1a:55:b4:19:82:83:e3:d7:a1:09:ee:47:03: a6:8d:ed:45:00:f3:2f:a7:13:e0:97:69:94:9a:3b:e9:84:41: eb:f7:15:13:ca:95:50:48:21:b9:ce:aa:3c:6b:68:ac:81:81: 80:55:91:52:59:03:b0:2c:5b:58:8f:13:52:d8:84:23:27:e8: 22:d7:1a:8a:f7:b9:77:f6:21:d7:bf:27:27:52:93:bf:84:7b: 46:b8:55:f7:a5:e7:b0:32:ad:36:87:5a:1f:12:bc:34:63:50: 87:12:95:23:fa:1f:15:af:12:e3:e2:98:60:80:20:28:19:7a: f3:e8:2c:d9:de:ff:ff:98:97:7e:8e:9f:14:17:01:01:4e:83: 92:3b:44:d6:8e:52:3c:4f:e5:e6:a3:3a:95:8d:bf:40:bf:4b: 24:0b:af:92:01:d8:fa:9a:a2:cd:87:de:60:5d:b9:84:f0:38: d9:45:f8:e3:b4:69:b5:83:87:6d:3c:73:74:e3:2b:d6:87:0b: 71:1a:65:82:54:b7:da:27:03:d9:4d:a3:ef:ec:7c:43:b4:24: c0:74:23:f9:88:c1:54:c1:85:5b:31:ba:2c:af:40:34:e1:22: 02:5a:ec:bc:75:12:30:1b:d8:7b:69:c8:ec:d4:f0:6a:3b:58: 5f:69:07:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUxMjIwMjMwMzE3WhcNMjUxMjI3MjMwMzE3WjAYMRYwFAYD VQQDDA02OTQ3MmIzNS0xZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiZqDOg7mDYg8jYJLso2ctit8X0kG0/lYjHJARHi/1ntkYKdOCH/zGihaQmhF Lzx2UU04uMUcjjdziFHNjo3Ep6zXrbnU5JonbdkzEZodeBqDERgHoboN+GJ4X82s PiUokawPJFz3Y/T77SsF+lAD8RDsVdgKtVLlXXjgRP5iCTNURiTtUxelpXd5HtL3 zN6FjKBeRilg134Bd3SRiPqu4nMmR8beeVTgb7kYC2iM25axn50to3aAamQQ2woB j/TDI+C/7dNqxXI6tBGHkOuhtM737SrokSEiYhdwzUveuTopto61QNQS2L92Fe4v EvNcVBwamn7vameBKdVHTsl/JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAudBNjc gjc1jgc80a3+TxQ3B5pgMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByZW5eyRpVtBmCg+PXoQnuRwOmje1FAPMvpxPgl2mUmjvphEHr9xUT ypVQSCG5zqo8a2isgYGAVZFSWQOwLFtYjxNS2IQjJ+gi1xqK97l39iHXvycnUpO/ hHtGuFX3peewMq02h1ofErw0Y1CHEpUj+h8VrxLj4phggCAoGXrz6CzZ3v//mJd+ jp8UFwEBToOSO0TWjlI8T+XmozqVjb9Av0skC6+SAdj6mqLNh95gXbmE8DjZRfjj tGm1g4dtPHN04yvWhwtxGmWCVLfaJwPZTaPv7HxDtCTAdCP5iMFUwYVbMbosr0A0 4SICWuy8dRIwG9h7acjs1PBqO1hfaQfx -----END CERTIFICATE-----Generated at Sun Dec 21 16:43:48 2025 by rpki-client