This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft File: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft (raw, json) Hash identifier: WlOQDqrU/M0/jANFSHu5Ir5gueJQoyLW2bQDdcFJAAA= Subject key identifier: C9:F9:8B:1B:2C:EB:71:09:A2:F8:8F:F6:24:AB:78:2E:2F:92:67:94 Authority key identifier: 08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 Certificate issuer: /CN=A91A2C5D/serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft Manifest number: 01DB Signing time: Wed 17 Dec 2025 03:14:00 +0000 Manifest this update: Wed 17 Dec 2025 03:14:00 +0000 Manifest next update: Wed 24 Dec 2025 03:14:00 +0000 Files and hashes: 1: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl (hash: 0tYjaUXMx9a5WNVLsKFWA7SfK56IsVXqzgVXdz9Xf5Q=) 2: 218937DC5E5011F0B9404662C4F9AE02.roa (hash: AYUrmB0VmSIUZcI9YP+6cvDLUzAB6YwYDgaBWNY/PRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 03:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Validity Not Before: Dec 17 03:14:00 2025 GMT Not After : Dec 24 03:14:00 2025 GMT Subject: CN=69421ff8-b1ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ce:44:8f:0b:4d:ff:a5:ea:3c:9d:bc:83:31: 08:38:71:22:d7:a0:65:76:a8:b1:39:f6:bc:9e:e6: d7:5c:ec:6a:9d:9e:7c:fa:34:3f:59:48:d3:c0:2c: fd:a8:5f:7e:27:4c:51:9e:7c:02:30:a2:d3:f5:fa: 89:e3:2f:f4:ce:fa:13:e4:f8:65:c2:2a:e8:02:30: fd:08:cc:45:d0:6d:20:5a:c3:c3:c0:61:36:59:c1: 25:85:4e:2d:a8:6e:a6:7a:11:bd:f7:63:3a:4f:15: 80:1a:ec:f4:91:d3:51:4f:bb:fa:12:93:95:a7:bc: ef:cd:cb:e1:c0:1b:03:20:39:c5:33:1e:8c:8c:75: 51:4b:78:a2:ea:05:b1:32:57:d2:dd:ff:e7:09:2a: d9:3a:f2:73:d7:0a:44:7f:e7:87:35:11:4b:b8:3e: d3:bd:68:33:91:6a:50:1a:26:bb:5a:08:23:a9:3f: 1f:f8:f2:9b:f1:6b:fc:7d:9b:b6:c3:e3:42:e0:ce: e6:22:ba:3b:85:ad:c5:6e:50:ea:50:c0:ea:26:69: 43:aa:09:ce:36:c9:5f:2d:36:35:11:f4:54:7f:0b: 5f:ae:4e:97:9c:60:33:67:e2:1a:05:ec:9b:f0:4e: ca:13:60:7f:7b:c3:4f:58:cf:96:a9:19:80:3f:22: 1a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F9:8B:1B:2C:EB:71:09:A2:F8:8F:F6:24:AB:78:2E:2F:92:67:94 X509v3 Authority Key Identifier: keyid:08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:6f:fc:ed:10:4d:87:94:48:34:60:b9:48:79:e5:d0:92:a0: 77:bf:d1:38:cd:5b:1a:c3:f3:f4:4d:2a:27:ad:22:e8:fe:48: 29:1e:a8:d5:77:11:60:2d:5a:03:b9:7d:96:31:f3:6a:dd:4b: 58:86:77:a8:ec:50:84:0d:9f:a6:94:22:c0:61:50:dc:02:f1: 21:b7:1c:94:5f:0e:06:87:d2:ff:5e:8d:20:93:a3:b2:89:a1: e7:2c:d1:3a:39:7f:a7:02:ad:15:f1:cd:f8:22:64:14:30:4c: 3d:dd:43:b8:b4:e1:e7:9d:5e:e1:56:2b:37:71:2b:53:58:bc: fb:7b:66:90:c5:65:3a:da:62:f9:84:76:20:32:d6:8c:04:24: 3b:12:8b:98:89:2c:39:ac:18:be:3b:98:60:76:93:07:68:f3: 1a:a4:97:70:a5:37:fc:11:99:3f:59:30:3d:13:cd:18:96:14: 8f:57:a4:3e:7f:c1:1c:57:fb:0d:0e:08:5c:c9:1b:a9:ba:c6: 90:4b:65:17:98:da:79:93:17:ba:f2:87:7b:3c:d0:4d:4d:af: aa:c4:23:83:05:e5:83:84:cf:85:4d:87:49:b7:75:df:8c:f7: cc:bc:5b:ca:42:06:8f:fb:da:13:ab:b8:24:f0:fd:ca:f0:e4: 8b:04:50:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MkM1RDExMC8GA1UEBRMoMDg3NzdGQTM4MUJGMjU4RTBDQUMzN0Q1MDlFRjBCQUM3 MDY2NDg0NDAeFw0yNTEyMTcwMzE0MDBaFw0yNTEyMjQwMzE0MDBaMBgxFjAUBgNV BAMMDTY5NDIxZmY4LWIxZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4zkSPC03/peo8nbyDMQg4cSLXoGV2qLE59rye5tdc7Gqdnnz6ND9ZSNPALP2o X34nTFGefAIwotP1+onjL/TO+hPk+GXCKugCMP0IzEXQbSBaw8PAYTZZwSWFTi2o bqZ6Eb33YzpPFYAa7PSR01FPu/oSk5WnvO/Ny+HAGwMgOcUzHoyMdVFLeKLqBbEy V9Ld/+cJKtk68nPXCkR/54c1EUu4PtO9aDORalAaJrtaCCOpPx/48pvxa/x9m7bD 40LgzuYiujuFrcVuUOpQwOomaUOqCc42yV8tNjUR9FR/C1+uTpecYDNn4hoF7Jvw TsoTYH97w09Yz5apGYA/IhrTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyfmLGyzr cQmi+I/2JKt4Li+SZ5QwHwYDVR0jBBgwFoAUCHd/o4G/JY4MrDfVCe8LrHBmSEQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyQzVELzNCOURENDEwOTJD NDExRUVCNTIxQkI0OUM0RjlBRTAyL0NIZF9vNEdfSlk0TXJEZlZDZThMckhCbVNF US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0hkX280R19KWTRNckRmVkNlOExySEJtU0VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy QzVELzNCOURENDEwOTJDNDExRUVCNTIxQkI0OUM0RjlBRTAyL0NIZF9vNEdfSlk0 TXJEZlZDZThMckhCbVNFUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACFv/O0QTYeUSDRguUh55dCSoHe/0TjNWxrD8/RNKietIuj+SCkeqNV3 EWAtWgO5fZYx82rdS1iGd6jsUIQNn6aUIsBhUNwC8SG3HJRfDgaH0v9ejSCTo7KJ oecs0To5f6cCrRXxzfgiZBQwTD3dQ7i04eedXuFWKzdxK1NYvPt7ZpDFZTraYvmE diAy1owEJDsSi5iJLDmsGL47mGB2kwdo8xqkl3ClN/wRmT9ZMD0TzRiWFI9XpD5/ wRxX+w0OCFzJG6m6xpBLZReY2nmTF7ryh3s80E1Nr6rEI4MF5YOEz4VNh0m3dd+M 98y8W8pCBo/72hOruCTw/crw5IsEUPQ= -----END CERTIFICATE-----Generated at Wed Dec 17 13:09:49 2025 by rpki-client