This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft File: CO-lQmZek61vuSE1pf1ZJF_V-uM.mft (raw, json) Hash identifier: KZBM2ICu18NY/sNwWdU4YhqwDSLEDnnQaazzuFzaqCU= Subject key identifier: E0:37:93:A6:48:F9:F3:E6:0B:93:D2:C1:5E:C0:32:05:82:F1:BE:77 Authority key identifier: 08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 Certificate issuer: /CN=A91C8AF2/serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft Manifest number: 0222 Signing time: Fri 19 Dec 2025 01:19:58 +0000 Manifest this update: Fri 19 Dec 2025 01:19:57 +0000 Manifest next update: Fri 26 Dec 2025 01:19:57 +0000 Files and hashes: 1: CO-lQmZek61vuSE1pf1ZJF_V-uM.crl (hash: aeHGxoO0rId03rG18NRiRdGSBKkCkI2wQb5sQH6D/hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8AF2, serialNumber=08EFA542665E93AD6FB92135A5FD59245FD5FAE3 Validity Not Before: Dec 19 01:19:57 2025 GMT Not After : Dec 26 01:19:57 2025 GMT Subject: CN=6944a83e-2d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d8:d8:f6:ee:57:bb:08:62:39:31:cd:72:97: c5:9b:93:bc:0e:35:1e:a8:36:1a:77:84:7f:50:b7: d4:6e:38:35:5c:d9:41:3d:f4:02:9c:90:a7:f0:fe: ee:ad:ea:6f:38:19:79:12:e2:fd:28:3b:db:15:17: 43:92:5d:9c:d7:e1:b5:43:d5:45:8b:55:28:8f:f1: 6e:e3:50:2a:d9:22:da:42:78:b2:82:a9:2c:88:75: cd:4f:ba:40:91:d2:f3:00:b7:d5:43:70:e9:d4:68: c0:60:8d:7c:b3:1f:84:12:a5:48:d6:ae:39:33:57: cc:39:f6:75:b8:03:ca:91:1b:64:bd:36:26:e6:2c: e3:46:e9:a1:94:c4:92:ad:d1:b7:5a:da:0b:a0:fa: 3d:3d:f3:d6:a2:07:52:3c:43:8f:59:81:e7:a1:bb: 89:1f:0b:ae:0f:0e:60:fd:d8:d4:74:fa:e0:d4:5c: 08:55:d6:1e:e6:59:73:00:80:0f:eb:fa:05:1c:96: 62:41:4e:10:2c:4e:43:ed:35:76:b7:4e:07:63:6b: 49:d9:4b:92:25:e8:d1:17:e2:ed:92:c3:2c:b5:10: 20:5c:25:30:84:74:1f:97:42:82:4a:1f:88:eb:ae: 19:ef:d1:42:80:55:18:34:ac:4b:4d:ab:09:e0:73: 2d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:37:93:A6:48:F9:F3:E6:0B:93:D2:C1:5E:C0:32:05:82:F1:BE:77 X509v3 Authority Key Identifier: keyid:08:EF:A5:42:66:5E:93:AD:6F:B9:21:35:A5:FD:59:24:5F:D5:FA:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO-lQmZek61vuSE1pf1ZJF_V-uM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8AF2/C7E9F43A912611ED9AE65277C4F9AE02/CO-lQmZek61vuSE1pf1ZJF_V-uM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:05:5f:0a:cd:bf:d8:b4:fd:50:e2:85:14:d1:07:27:c1:21: 81:9f:89:2c:9e:94:cc:0e:e9:95:89:c8:64:20:86:cb:3a:77: dc:a6:44:53:4a:e1:00:d8:40:45:06:5e:31:4f:01:f5:4d:fe: ee:b7:d8:dc:a7:53:36:59:7e:68:35:24:65:88:6b:bb:62:d9: e6:da:8a:4a:50:b7:b6:2b:cc:54:e6:b4:aa:09:65:c2:86:fc: 69:71:b7:b5:78:89:9a:39:d1:aa:b1:64:26:d7:50:ce:19:38: 57:e8:49:b6:e7:46:83:4e:99:f1:02:58:44:48:f0:54:1b:3f: eb:cd:38:eb:d9:86:06:da:2a:5d:c8:1e:87:a8:42:67:32:02: 5e:06:25:43:f0:c2:62:c9:69:bf:e9:34:c8:b5:f0:87:c7:57: 5b:a6:50:c2:e3:9b:af:9e:3b:0e:85:39:fe:84:4c:a7:d9:07: 8a:5e:63:6c:90:7c:d3:44:91:27:31:0a:04:11:f5:ff:01:bf: 77:8b:17:cb:2f:ac:3b:af:4f:45:36:0a:1c:ef:a5:72:0b:9e: 02:ce:95:ff:c0:bc:23:87:03:cd:40:74:02:7f:f3:f4:4e:12: 2a:5d:cc:60:94:6e:c5:86:0e:26:fb:be:fb:46:50:89:ca:db: 2e:b1:00:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhBRjIxMTAvBgNVBAUTKDA4RUZBNTQyNjY1RTkzQUQ2RkI5MjEzNUE1RkQ1OTI0 NUZENUZBRTMwHhcNMjUxMjE5MDExOTU3WhcNMjUxMjI2MDExOTU3WjAYMRYwFAYD VQQDDA02OTQ0YTgzZS0yZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9jY9u5XuwhiOTHNcpfFm5O8DjUeqDYad4R/ULfUbjg1XNlBPfQCnJCn8P7u repvOBl5EuL9KDvbFRdDkl2c1+G1Q9VFi1Uoj/Fu41Aq2SLaQniygqksiHXNT7pA kdLzALfVQ3Dp1GjAYI18sx+EEqVI1q45M1fMOfZ1uAPKkRtkvTYm5izjRumhlMSS rdG3WtoLoPo9PfPWogdSPEOPWYHnobuJHwuuDw5g/djUdPrg1FwIVdYe5llzAIAP 6/oFHJZiQU4QLE5D7TV2t04HY2tJ2UuSJejRF+LtksMstRAgXCUwhHQfl0KCSh+I 664Z79FCgFUYNKxLTasJ4HMt1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOA3k6ZI +fPmC5PSwV7AMgWC8b53MB8GA1UdIwQYMBaAFAjvpUJmXpOtb7khNaX9WSRf1frj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEFGMi9DN0U5RjQzQTkx MjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2MXZ1U0UxcGYxWkpGX1Yt dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NPLWxRbVplazYxdnVTRTFwZjFaSkZfVi11TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEFGMi9DN0U5RjQzQTkxMjYxMUVEOUFFNjUyNzdDNEY5QUUwMi9DTy1sUW1aZWs2 MXZ1U0UxcGYxWkpGX1YtdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpBV8Kzb/YtP1Q4oUU0QcnwSGBn4ksnpTMDumVichkIIbLOnfcpkRT SuEA2EBFBl4xTwH1Tf7ut9jcp1M2WX5oNSRliGu7Ytnm2opKULe2K8xU5rSqCWXC hvxpcbe1eImaOdGqsWQm11DOGThX6Em250aDTpnxAlhESPBUGz/rzTjr2YYG2ipd yB6HqEJnMgJeBiVD8MJiyWm/6TTItfCHx1dbplDC45uvnjsOhTn+hEyn2QeKXmNs kHzTRJEnMQoEEfX/Ab93ixfLL6w7r09FNgoc76VyC54CzpX/wLwjhwPNQHQCf/P0 ThIqXcxglG7Fhg4m+777RlCJytsusQB/ -----END CERTIFICATE-----Generated at Fri Dec 19 23:47:20 2025 by rpki-client