This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: /eAD4IKEBE2Qx32XiRDXQBB6hKUaI4bmD9Jk8zKA2Bw= Subject key identifier: C8:2C:99:B5:E4:31:1A:F4:E9:0E:7A:CE:32:15:30:6A:F7:FF:86:E0 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 0158 Signing time: Tue 23 Dec 2025 03:11:18 +0000 Manifest this update: Tue 23 Dec 2025 03:11:17 +0000 Manifest next update: Tue 30 Dec 2025 03:11:17 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: JIIbiPC6CR8BOuukM2MInwRjr3pda1DSqYt0sBjr/fc=) 2: C63D0814097B11F0B1329480C4F9AE02.roa (hash: BxZpcifR3l7qhnt+56VpPmZ3hTQmgPYYxX/h3b9rorE=) 3: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: g8goRa5uN0098PK1vnqVTndrxAdY1S5JKnq752ZsLOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Dec 23 03:11:17 2025 GMT Not After : Dec 30 03:11:17 2025 GMT Subject: CN=694a0855-19c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8a:e4:33:8d:f2:6d:71:ff:ad:68:a9:7c:de: 06:e4:92:35:b5:ac:54:96:78:a5:1b:b5:a5:e4:2a: c1:bb:7d:d2:c2:6a:50:82:0d:41:9e:01:83:7c:c3: 06:dc:5c:7d:99:2a:ad:e4:19:49:c0:bd:1b:19:22: 91:ad:4e:09:45:a9:3c:c6:b9:9a:c6:91:fb:41:6a: 8f:49:11:51:de:c3:9a:8b:d3:a6:f5:14:aa:7a:69: e6:69:7f:4a:20:8d:83:dd:26:ef:1a:00:96:ed:2c: e8:27:42:ef:3e:6f:11:37:2b:34:1b:9d:2c:46:76: 1e:74:f9:29:5f:d2:e7:e2:a5:df:77:1b:c4:e1:25: 5f:66:9a:98:d0:a2:d3:b7:3b:75:c8:a0:03:de:f7: 54:32:ba:71:fa:82:79:3d:da:d3:39:73:70:6d:bd: 21:24:a5:86:65:6b:7b:31:b4:df:d6:8a:1e:c7:05: 24:ae:ec:d0:53:e6:11:85:79:b4:d9:48:14:9b:93: 46:71:d5:87:60:35:c9:24:81:31:9e:aa:d3:c1:d2: 4d:ba:7c:63:18:16:70:42:6c:00:bd:c7:2b:e5:19: 51:93:7a:d3:fd:72:41:32:e3:40:29:3a:30:6b:86: fd:1d:31:95:0e:02:5b:98:e0:2c:6b:66:5a:d5:8c: bf:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:2C:99:B5:E4:31:1A:F4:E9:0E:7A:CE:32:15:30:6A:F7:FF:86:E0 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:97:6b:d9:6a:b7:70:eb:e8:b6:aa:61:fe:24:5b:53:f0:39: 50:8a:4d:30:80:98:68:7a:ab:77:17:7d:40:93:7a:e4:b6:51: 37:44:4e:00:61:55:e8:ed:6f:ca:aa:a1:2e:6c:44:c3:c4:a2: e2:63:5c:f0:53:fb:69:80:c6:0e:9e:65:3e:3a:36:51:34:e4: ca:36:7f:27:23:71:c0:12:1d:e8:0a:3c:55:ec:fa:37:24:e1: e1:5e:5f:d7:68:1a:76:73:8c:9b:51:b5:76:e4:e8:28:f6:80: 06:aa:2c:c3:97:95:93:8c:42:39:09:d0:fe:cf:e5:f8:95:40: 16:87:ca:59:4f:c0:37:a7:c1:2b:1c:b3:c3:bd:1e:5b:b6:0c: 2e:07:c7:7e:ea:a1:6b:43:cc:94:b2:57:90:d9:ea:93:fc:f2: 1b:01:69:51:4d:f2:4b:a3:f9:3c:89:36:40:8b:6c:6d:8a:df: 28:15:8e:11:e8:2d:05:2a:9e:ab:71:45:d4:1f:3c:c9:0f:cd: cc:7b:3e:98:a1:1a:83:b9:06:07:a1:fb:2b:dc:aa:67:9a:06: aa:75:aa:09:3c:f5:d9:ff:d4:61:01:10:0d:3f:bb:f2:01:ac: ad:c9:01:c4:c2:58:65:e3:dc:43:73:12:67:7e:f8:f9:ca:b8: 92:80:f7:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUxMjIzMDMxMTE3WhcNMjUxMjMwMDMxMTE3WjAYMRYwFAYD VQQDDA02OTRhMDg1NS0xOWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4rkM43ybXH/rWipfN4G5JI1taxUlnilG7Wl5CrBu33SwmpQgg1BngGDfMMG 3Fx9mSqt5BlJwL0bGSKRrU4JRak8xrmaxpH7QWqPSRFR3sOai9Om9RSqemnmaX9K II2D3SbvGgCW7SzoJ0LvPm8RNys0G50sRnYedPkpX9Ln4qXfdxvE4SVfZpqY0KLT tzt1yKAD3vdUMrpx+oJ5PdrTOXNwbb0hJKWGZWt7MbTf1ooexwUkruzQU+YRhXm0 2UgUm5NGcdWHYDXJJIExnqrTwdJNunxjGBZwQmwAvccr5RlRk3rT/XJBMuNAKTow a4b9HTGVDgJbmOAsa2Za1Yy/lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgsmbXk MRr06Q56zjIVMGr3/4bgMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGl2vZardw6+i2qmH+JFtT8DlQik0wgJhoeqt3F31Ak3rktlE3RE4A YVXo7W/KqqEubETDxKLiY1zwU/tpgMYOnmU+OjZRNOTKNn8nI3HAEh3oCjxV7Po3 JOHhXl/XaBp2c4ybUbV25Ogo9oAGqizDl5WTjEI5CdD+z+X4lUAWh8pZT8A3p8Er HLPDvR5btgwuB8d+6qFrQ8yUsleQ2eqT/PIbAWlRTfJLo/k8iTZAi2xtit8oFY4R 6C0FKp6rcUXUHzzJD83Mez6YoRqDuQYHofsr3KpnmgaqdaoJPPXZ/9RhARANP7vy AaytyQHEwlhl49xDcxJnfvj5yriSgPch -----END CERTIFICATE-----Generated at Wed Dec 24 18:54:39 2025 by rpki-client