This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft File: CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json) Hash identifier: xFHSQUt4LRUb4uLzD+bD2VzA14ZULQ2MeB+FS3KYb1M= Subject key identifier: E3:45:1A:B3:D0:43:65:C6:16:CB:12:C1:54:5D:BC:97:AF:98:01:F8 Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B Certificate issuer: /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft Manifest number: AE Signing time: Sat 20 Dec 2025 22:23:24 +0000 Manifest this update: Sat 20 Dec 2025 22:23:24 +0000 Manifest next update: Sat 27 Dec 2025 22:23:24 +0000 Files and hashes: 1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: bENYLTgnI4u6v1k2ThIEsb1fW24l36cqpjd3TYupu1I=) 2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: IwOryXN0CLNaxtv7IBy7ZDsktAOlHn3+ya1AEPZi2Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Validity Not Before: Dec 20 22:23:24 2025 GMT Not After : Dec 27 22:23:24 2025 GMT Subject: CN=694721dc-8d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ff:11:34:c0:8b:8d:41:cc:3c:c1:1c:e3:6a: bd:a8:eb:f5:2d:73:d1:99:4d:c5:f7:64:20:c2:79: 77:e1:a9:e3:f3:93:0a:62:76:80:f9:2b:45:5b:3e: 04:43:10:fc:86:58:ea:af:6f:f1:77:bc:13:d1:57: 5a:76:2b:1b:4a:ca:2d:72:5c:70:50:a3:cb:f0:5e: 05:d1:cd:76:97:23:f2:d6:1b:6a:ee:df:6c:7f:d4: 15:7a:87:83:5d:ec:93:78:e0:d6:a4:64:a7:20:ab: c5:cc:1c:05:35:c4:60:7a:a1:e9:68:84:2a:5a:29: 76:76:ec:c8:2b:a4:f0:ef:c1:76:9f:f8:fe:46:e7: b6:57:df:da:be:de:5d:3d:24:08:04:ff:ae:e4:88: 47:8d:4d:e1:21:71:cd:70:77:ef:1a:30:ed:40:dc: f9:1e:09:98:7f:4b:43:ed:81:a4:10:e2:8d:e7:3d: e6:7d:ba:e9:32:f6:2a:e9:c1:cd:d4:b3:43:98:76: cb:5d:8f:57:57:f7:00:41:0f:9e:0d:d2:5f:35:4f: f9:f9:f1:7c:7f:8d:a9:b1:ed:bb:64:f5:95:66:83: a0:37:7c:72:39:ec:a7:d1:50:96:3d:1b:31:a0:b6: a8:f0:38:3d:f8:10:25:3a:f7:c7:10:97:8f:7d:74: c8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:45:1A:B3:D0:43:65:C6:16:CB:12:C1:54:5D:BC:97:AF:98:01:F8 X509v3 Authority Key Identifier: keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:67:d5:49:cb:81:60:7a:12:2a:78:b8:48:d8:01:fc:15:dc: 30:e9:e1:cf:07:74:96:9b:2c:28:91:76:67:b1:ff:84:88:16: fb:20:21:4b:ce:27:1b:67:5a:87:e6:09:e4:c4:ac:95:ab:5c: bf:9a:51:99:38:7e:fd:8a:81:2f:6f:04:3c:c5:c5:67:81:1d: 97:bd:ba:01:0e:a4:0a:86:25:b7:29:c0:43:e7:e5:85:78:c2: d5:00:48:5e:13:cc:e7:9b:7f:35:1e:5d:58:cf:c2:73:4c:6e: be:10:2f:71:b2:7e:e9:8a:5d:28:eb:31:38:4f:fe:c5:30:80: b7:6b:1e:e0:ec:26:bb:de:f4:a5:7b:81:1c:c0:85:f8:20:af: b4:80:f0:a7:a0:dc:35:f0:8d:5d:2d:e2:ed:fb:53:c5:0b:b4: 95:72:0f:15:8c:ee:33:f5:67:0c:09:8e:40:ca:72:56:aa:19: 75:7a:ef:c7:ee:87:57:0f:8b:3c:70:68:a6:a0:d1:d9:5d:72: 4b:2a:d8:23:48:b6:bc:2a:51:f8:97:8d:06:23:3d:14:7f:2e: d0:e8:4e:db:5b:c7:d5:9e:bb:74:39:eb:da:56:4e:26:02:c8: b0:dc:97:25:7f:ff:5c:d4:b2:dc:90:5c:9c:17:70:5f:5d:d9: d3:89:f7:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDA4MzU4NzQ5NzhCQTMwOUVEN0RBNDY3M0U3NzM5RDkz MjJGMjYyOUIwHhcNMjUxMjIwMjIyMzI0WhcNMjUxMjI3MjIyMzI0WjAYMRYwFAYD VQQDDA02OTQ3MjFkYy04ZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/8RNMCLjUHMPMEc42q9qOv1LXPRmU3F92Qgwnl34anj85MKYnaA+StFWz4E QxD8hljqr2/xd7wT0VdadisbSsotclxwUKPL8F4F0c12lyPy1htq7t9sf9QVeoeD XeyTeODWpGSnIKvFzBwFNcRgeqHpaIQqWil2duzIK6Tw78F2n/j+Rue2V9/avt5d PSQIBP+u5IhHjU3hIXHNcHfvGjDtQNz5HgmYf0tD7YGkEOKN5z3mfbrpMvYq6cHN 1LNDmHbLXY9XV/cAQQ+eDdJfNU/5+fF8f42pse27ZPWVZoOgN3xyOeyn0VCWPRsx oLao8Dg9+BAlOvfHEJePfXTIqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONFGrPQ Q2XGFssSwVRdvJevmAH4MB8GA1UdIwQYMBaAFAg1h0l4ujCe19pGc+dznZMi8mKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi83RDJCMURGMEQ3 RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1KN1gya1p6NTNPZGt5THlZ cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi83RDJCMURGMEQ3RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1K N1gya1p6NTNPZGt5THlZcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdZ9VJy4FgehIqeLhI2AH8Fdww6eHPB3SWmywokXZnsf+EiBb7ICFL zicbZ1qH5gnkxKyVq1y/mlGZOH79ioEvbwQ8xcVngR2XvboBDqQKhiW3KcBD5+WF eMLVAEheE8znm381Hl1Yz8JzTG6+EC9xsn7pil0o6zE4T/7FMIC3ax7g7Ca73vSl e4EcwIX4IK+0gPCnoNw18I1dLeLt+1PFC7SVcg8VjO4z9WcMCY5AynJWqhl1eu/H 7odXD4s8cGimoNHZXXJLKtgjSLa8KlH4l40GIz0Ufy7Q6E7bW8fVnrt0OevaVk4m Asiw3Jclf/9c1LLckFycF3BfXdnTife0 -----END CERTIFICATE-----Generated at Sun Dec 21 17:27:23 2025 by rpki-client