This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft File: cPEzmWaoGrwgfjvuM3CR2fLzydc.mft (raw, json) Hash identifier: 8+lSSLqPSgS0/POBxW6CUY7DpU43vl4YXLs+iBxXAAM= Subject key identifier: DF:37:2A:FC:DF:C4:8F:D2:A6:A9:BD:A6:43:FB:0C:E7:43:1E:46:AB Authority key identifier: 70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 Certificate issuer: /CN=A91C9324/serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft Manifest number: 01F2 Signing time: Fri 19 Dec 2025 00:05:36 +0000 Manifest this update: Fri 19 Dec 2025 00:05:36 +0000 Manifest next update: Fri 26 Dec 2025 00:05:36 +0000 Files and hashes: 1: cPEzmWaoGrwgfjvuM3CR2fLzydc.crl (hash: WtIFyWZTiGy1UJzcAzQF5YSCaFWsiJAgzMdlFjX1g4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9324, serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Validity Not Before: Dec 19 00:05:36 2025 GMT Not After : Dec 26 00:05:36 2025 GMT Subject: CN=694496d0-1ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:bd:0e:50:71:59:16:44:9b:fc:8a:e9:8c:4e: a9:b4:c8:fc:a7:9c:e9:b4:88:fd:f1:fe:81:09:ee: 93:94:53:bd:8f:95:4b:5f:14:bc:2c:f6:ae:e0:83: fe:6d:b0:50:2f:fa:cb:f9:b1:9a:ee:37:2b:db:a3: 82:df:e4:c4:15:a9:a3:d9:67:6d:84:76:4b:8d:5d: 9a:0b:a0:32:ff:da:af:c4:1b:ad:c7:5a:a3:d2:0b: e2:d8:ed:b9:96:47:6b:5c:dd:d1:26:93:3c:cb:5a: d3:01:0d:21:6d:2f:ba:b7:25:b9:62:41:de:98:71: dd:2b:3a:e6:d5:1c:9f:2a:7d:60:34:44:3a:d8:22: 16:8e:bb:87:ae:11:6d:88:27:1b:69:69:2b:ac:f9: 14:bf:b8:e9:6d:65:db:c5:30:b3:64:56:8f:af:c7: 4d:c3:6b:eb:8b:31:d7:5e:72:36:5c:ba:a8:2d:07: a7:ff:6b:d9:68:20:4d:39:cd:8c:1a:d2:21:1b:12: 03:26:93:07:3f:2e:b5:40:b8:cf:37:71:82:cf:2d: 09:8c:a6:9e:31:50:cb:3c:62:a7:58:fb:a2:8c:68: 94:92:d6:7a:36:9b:45:5e:56:c5:92:7b:9b:ce:45: 3b:c2:c8:7c:28:ac:84:a8:b4:c1:32:ff:ef:b8:da: 2f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:37:2A:FC:DF:C4:8F:D2:A6:A9:BD:A6:43:FB:0C:E7:43:1E:46:AB X509v3 Authority Key Identifier: keyid:70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:8f:1b:7c:70:10:bc:4f:6a:ac:0a:47:ab:ee:b9:6b:97:a1: 45:3f:f7:c5:d4:45:8f:c1:9a:6f:59:8b:ee:a1:3c:f7:b9:08: ba:8f:12:65:3c:5e:c7:85:89:15:19:dd:6c:ca:58:c3:3c:76: 46:f9:77:6d:76:f3:8a:cb:06:c7:70:b2:0c:71:26:31:c4:7c: 6e:98:5c:83:e3:ec:b0:61:84:62:81:ec:06:78:8a:a1:a9:45: ac:90:81:16:be:30:4d:4e:8a:5a:a5:40:8e:66:b6:20:b8:cc: bf:ef:b8:65:55:57:43:f6:ba:f0:4e:92:c1:51:92:cc:0f:28: af:f3:a1:33:cf:2f:15:cd:84:e6:e2:4f:e4:ea:58:c4:fc:8f: 01:30:0d:94:09:90:27:f9:c4:29:31:a5:cf:9c:e2:21:93:e6: 0a:89:96:bb:ff:4e:2f:3f:6e:28:f3:69:c6:15:85:33:ee:3c: 20:3f:5f:18:b7:2d:38:f1:07:97:0d:ab:ba:7c:5e:4e:ba:27: 21:a9:d8:b8:34:de:df:96:64:a0:8b:e8:95:fd:38:b0:38:bf: 26:3d:2e:2d:cf:f7:f7:b5:13:a2:25:38:5e:99:be:bc:48:89: 1c:ea:fc:02:93:b9:73:cf:df:0d:a9:dc:ba:15:90:d0:b2:ee: a5:e5:a2:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjQxMTAvBgNVBAUTKDcwRjEzMzk5NjZBODFBQkMyMDdFM0JFRTMzNzA5MUQ5 RjJGM0M5RDcwHhcNMjUxMjE5MDAwNTM2WhcNMjUxMjI2MDAwNTM2WjAYMRYwFAYD VQQDDA02OTQ0OTZkMC0xZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoL0OUHFZFkSb/IrpjE6ptMj8p5zptIj98f6BCe6TlFO9j5VLXxS8LPau4IP+ bbBQL/rL+bGa7jcr26OC3+TEFamj2WdthHZLjV2aC6Ay/9qvxButx1qj0gvi2O25 lkdrXN3RJpM8y1rTAQ0hbS+6tyW5YkHemHHdKzrm1RyfKn1gNEQ62CIWjruHrhFt iCcbaWkrrPkUv7jpbWXbxTCzZFaPr8dNw2vrizHXXnI2XLqoLQen/2vZaCBNOc2M GtIhGxIDJpMHPy61QLjPN3GCzy0JjKaeMVDLPGKnWPuijGiUktZ6NptFXlbFknub zkU7wsh8KKyEqLTBMv/vuNovgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN83Kvzf xI/Spqm9pkP7DOdDHkarMB8GA1UdIwQYMBaAFHDxM5lmqBq8IH477jNwkdny88nX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNC8yMkJGOEQzMkUw MkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dyd2dmanZ1TTNDUjJmTHp5 ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NQRXptV2FvR3J3Z2ZqdnVNM0NSMmZMenlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTMyNC8yMkJGOEQzMkUwMkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dy d2dmanZ1TTNDUjJmTHp5ZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6jxt8cBC8T2qsCker7rlrl6FFP/fF1EWPwZpvWYvuoTz3uQi6jxJl PF7HhYkVGd1syljDPHZG+XdtdvOKywbHcLIMcSYxxHxumFyD4+ywYYRigewGeIqh qUWskIEWvjBNTopapUCOZrYguMy/77hlVVdD9rrwTpLBUZLMDyiv86Ezzy8VzYTm 4k/k6ljE/I8BMA2UCZAn+cQpMaXPnOIhk+YKiZa7/04vP24o82nGFYUz7jwgP18Y ty048QeXDau6fF5Ouichqdi4NN7flmSgi+iV/TiwOL8mPS4tz/f3tROiJThemb68 SIkc6vwCk7lzz98Nqdy6FZDQsu6l5aKJ -----END CERTIFICATE-----Generated at Sat Dec 20 02:48:03 2025 by rpki-client