This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: aXidZBaObLDicARTTmNZmBBovFGA52BoY+EBV4UIz1g= Subject key identifier: 08:2E:A3:7A:9D:52:6A:FD:4F:D3:FC:A5:37:B9:8E:5C:7E:D1:74:83 Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 06DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 06D8 Signing time: Wed 24 Dec 2025 21:22:27 +0000 Manifest this update: Wed 24 Dec 2025 21:22:27 +0000 Manifest next update: Wed 31 Dec 2025 21:22:27 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: 68151u+Fxbh2jbwrmAaNiAeajS6aQMHeay8libxNEK8=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: FCcszwJptQkcVppu2l7EfA+c1nSvvhedE2ZFRuB0CdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8, serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Dec 24 21:22:27 2025 GMT Not After : Dec 31 21:22:27 2025 GMT Subject: CN=694c5993-0873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:39:d7:46:4d:d2:4f:f5:c8:4c:50:87:6a:46: 6a:dd:c9:72:cf:30:0b:d4:65:20:6e:d9:b3:b7:95: 59:37:a0:fb:e3:60:0f:23:40:f6:34:ff:ff:e2:64: d3:56:7e:b6:13:dc:a4:bc:43:a8:1a:43:a5:c5:76: de:e2:6b:1d:d9:5f:86:b4:f9:77:60:ce:70:8d:be: 56:34:9d:a7:b6:b8:3e:9a:f5:d2:55:af:f8:29:4e: 30:cc:b0:78:5a:9e:a5:c0:9d:dd:2a:1c:a9:16:8c: 89:ec:3f:3b:3b:ea:9a:83:3b:af:93:c4:4e:5b:82: 12:6c:e7:a2:84:0f:47:a1:16:83:66:25:ed:34:06: 95:db:3c:f5:fc:c8:a6:3e:07:17:c6:de:2e:e5:56: 20:38:1f:a0:30:85:c3:92:a4:df:f7:5f:05:3c:3d: ed:1c:f1:ae:c7:17:c5:60:a2:00:f2:f0:15:f4:5f: 41:3d:6a:6e:a4:0b:7c:6f:c8:9d:35:c2:47:9e:f9: 81:86:fe:5f:d6:4e:63:42:9c:32:06:a8:18:21:2b: 1b:61:7c:06:53:81:3f:27:04:45:af:12:e3:09:75: a6:be:d3:d4:2b:23:6a:00:51:ec:bf:7e:2a:4a:02: c6:81:36:c4:fe:a0:98:89:a2:8f:0e:f5:4f:89:b7: d9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2E:A3:7A:9D:52:6A:FD:4F:D3:FC:A5:37:B9:8E:5C:7E:D1:74:83 X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1c:84:92:a1:dc:1e:f2:02:86:e3:ae:3e:a0:3c:d9:ce:1a: dc:10:b7:6a:6b:4e:d9:c3:c3:37:6c:92:ec:26:37:23:f2:be: 21:74:ac:96:97:65:f7:e1:48:19:5f:28:52:89:de:e2:6c:9f: bc:05:88:18:48:45:b6:6b:fe:61:51:63:7e:84:a5:57:90:f8: 0f:85:71:95:64:52:58:f6:6c:50:35:5c:fc:3a:d7:e6:c6:a2: 21:3b:81:f8:de:3c:c5:08:6f:41:59:fc:71:72:a9:3d:e1:c4: d5:b3:b3:3a:89:54:00:15:c4:2c:81:b3:9c:18:b0:83:52:fe: 7c:63:26:73:8e:39:42:80:a8:bc:71:03:e3:ec:d4:6d:46:6c: 61:82:3b:d8:71:6b:9b:f4:2e:28:0b:fb:f7:f2:a4:6c:67:b8: d0:63:d2:e1:fe:24:5b:7f:ac:4f:a0:73:de:58:6e:c8:ab:e2: 77:e7:ae:16:48:fc:99:52:ed:91:57:c6:ba:53:66:bd:ea:c3: db:36:b1:77:48:b6:66:0e:c8:0f:23:70:47:ae:05:0d:19:ca: 03:0a:42:73:22:56:a7:51:e2:01:af:03:ce:a4:3f:8c:0e:34: 96:9b:7e:76:66:bf:7e:36:e5:77:73:10:9b:dc:42:6c:69:6b: f5:eb:11:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjUxMjI0MjEyMjI3WhcNMjUxMjMxMjEyMjI3WjAYMRYwFAYD VQQDDA02OTRjNTk5My0wODczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjnXRk3ST/XITFCHakZq3clyzzAL1GUgbtmzt5VZN6D742API0D2NP//4mTT Vn62E9ykvEOoGkOlxXbe4msd2V+GtPl3YM5wjb5WNJ2ntrg+mvXSVa/4KU4wzLB4 Wp6lwJ3dKhypFoyJ7D87O+qagzuvk8ROW4ISbOeihA9HoRaDZiXtNAaV2zz1/Mim PgcXxt4u5VYgOB+gMIXDkqTf918FPD3tHPGuxxfFYKIA8vAV9F9BPWpupAt8b8id NcJHnvmBhv5f1k5jQpwyBqgYISsbYXwGU4E/JwRFrxLjCXWmvtPUKyNqAFHsv34q SgLGgTbE/qCYiaKPDvVPibfZ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAguo3qd Umr9T9P8pTe5jlx+0XSDMB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiHISSodwe8gKG464+oDzZzhrcELdqa07Zw8M3bJLsJjcj8r4hdKyW l2X34UgZXyhSid7ibJ+8BYgYSEW2a/5hUWN+hKVXkPgPhXGVZFJY9mxQNVz8Otfm xqIhO4H43jzFCG9BWfxxcqk94cTVs7M6iVQAFcQsgbOcGLCDUv58YyZzjjlCgKi8 cQPj7NRtRmxhgjvYcWub9C4oC/v38qRsZ7jQY9Lh/iRbf6xPoHPeWG7Iq+J3564W SPyZUu2RV8a6U2a96sPbNrF3SLZmDsgPI3BHrgUNGcoDCkJzIlanUeIBrwPOpD+M DjSWm352Zr9+NuV3cxCb3EJsaWv16xFZ -----END CERTIFICATE-----Generated at Thu Dec 25 10:42:07 2025 by rpki-client