This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft File: X-7enTglQ_BRUn-lM9R6kXB35jI.mft (raw, json) Hash identifier: MI8yEhh3DA51hk7VFjaNP6GTl59SZUR6slQ/8R8En28= Subject key identifier: ED:72:F0:56:6A:7B:9B:49:4B:4A:2E:80:81:9D:53:7A:61:C1:22:EC Authority key identifier: 5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 Certificate issuer: /CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Certificate serial: 1E98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft Manifest number: 1E0E Signing time: Mon 22 Dec 2025 15:54:36 +0000 Manifest this update: Mon 22 Dec 2025 15:54:35 +0000 Manifest next update: Mon 29 Dec 2025 15:54:35 +0000 Files and hashes: 1: X-7enTglQ_BRUn-lM9R6kXB35jI.crl (hash: oOk1i/YeGcaKjB8MQdtppVLdQ4pjEN9cbPlQNfYA2Lo=) 2: 4EA15AE44FD811ED8AEB0282C4F9AE02.roa (hash: 7VUDQQ8W+yMq4k3JhlRD5lkUdapcGclMwPc7X53c30w=) 3: DF730482A32311EFBE77BA2EC4F9AE02.roa (hash: o8L/PqYXiS4orlOuZR2u1QhWMHWvebV1Ky25VXoxZZo=) 4: B8BA4E603B5211EAA0D53F12C4F9AE02.roa (hash: j/ajHdeg0X7dlj/Rcn6ptql8neD8yJ/Pvjoo4MQmzOc=) 5: 1A0D44FA3B5411EABAC6EE18C4F9AE02.roa (hash: M0IwLj/xH026H0t6T0vGOFmJMiOXNEIts7DE9pu76dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7832 (0x1e98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Validity Not Before: Dec 22 15:54:35 2025 GMT Not After : Dec 29 15:54:35 2025 GMT Subject: CN=694969bc-563f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:17:a3:3e:f7:b7:8d:d6:db:d5:46:c2:9d:c7: a1:18:7c:a3:2b:3d:71:25:56:18:40:5c:f4:f3:50: 45:09:7d:d3:af:5c:c4:05:7b:e4:65:0e:bd:4d:d5: f1:51:90:11:f7:9b:7d:05:a4:e6:f7:88:8c:9b:ef: 97:c1:98:5c:cd:56:01:8a:b8:74:8e:40:81:e3:a8: 3d:39:09:a0:ac:9b:aa:1c:01:06:c8:2c:92:62:3a: f5:3b:87:ab:f7:da:db:37:fb:94:f6:d7:c2:80:56: 68:d3:6a:4e:76:77:31:54:20:cb:e1:6e:c5:c6:99: ca:c0:c5:ca:5c:37:9c:16:69:9b:8e:d7:8c:28:be: 6a:6b:1c:71:37:3d:14:cc:0a:02:5c:d3:c7:94:18: ac:a2:58:7c:92:8e:fc:4c:3b:c5:4c:01:d9:62:e4: 20:6a:c6:c1:4c:8f:db:10:62:47:4f:6b:da:c4:9a: 0e:57:2d:3b:85:73:f3:7a:d8:cb:2a:38:a5:b3:65: e4:b0:cd:72:b5:a3:d8:d8:5f:9c:d3:0c:0e:c0:a8: 59:aa:5c:be:55:29:c2:83:da:fd:e8:fe:df:2c:f7: 18:b7:40:e6:42:37:7b:1f:82:19:a0:31:8c:46:e4: 2a:a4:45:54:56:b2:5a:87:d6:60:8f:d4:a9:27:e7: 6b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:72:F0:56:6A:7B:9B:49:4B:4A:2E:80:81:9D:53:7A:61:C1:22:EC X509v3 Authority Key Identifier: keyid:5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:fa:d6:11:3d:81:f8:af:d3:e9:97:d2:c7:48:70:d2:82:e3: c9:af:2a:f3:a5:d9:77:c1:aa:f5:57:ce:8f:d3:51:3f:80:26: 2b:21:ce:02:50:3a:f9:ae:f6:ae:3f:95:40:f3:e0:62:f1:82: b9:5f:b2:36:48:e8:68:94:32:8b:96:11:18:40:db:7a:fe:e7: f9:b2:e4:f2:4e:2a:39:4d:8f:ca:aa:4f:76:4e:b0:eb:2a:e3: 94:d7:d6:57:3a:79:de:62:57:ac:30:fd:13:9f:dc:e1:b3:f4: 20:23:24:0b:03:7e:ae:68:d5:76:ba:17:ab:9b:99:19:a0:9c: 69:ed:02:2f:69:59:82:6f:e6:c1:c7:c5:e2:3d:8a:cc:4a:89: 40:be:ce:eb:52:c3:84:6b:e9:4d:38:8e:5d:b2:91:5f:72:5b: bd:fc:f5:f9:b7:b4:e5:b5:ea:cd:ad:8f:30:ff:0a:5b:01:d9: 47:76:02:88:2c:c9:c0:61:de:4d:6d:38:59:7c:3c:38:0f:3f: f5:18:1a:3d:b1:b2:d0:11:d2:94:8e:09:03:dd:34:65:6a:3f: 8e:5e:4d:1e:8d:53:ca:d3:ec:ff:bd:92:3b:08:19:98:62:2a: 74:3f:c3:f0:1b:75:84:a1:c2:df:be:8c:be:0a:c1:de:ce:37: d6:6e:94:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDVGRUVERTlEMzgyNTQzRjA1MTUyN0ZBNTMzRDQ3QTkx NzA3N0U2MzIwHhcNMjUxMjIyMTU1NDM1WhcNMjUxMjI5MTU1NDM1WjAYMRYwFAYD VQQDDA02OTQ5NjliYy01NjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+hejPve3jdbb1UbCncehGHyjKz1xJVYYQFz081BFCX3Tr1zEBXvkZQ69TdXx UZAR95t9BaTm94iMm++XwZhczVYBirh0jkCB46g9OQmgrJuqHAEGyCySYjr1O4er 99rbN/uU9tfCgFZo02pOdncxVCDL4W7FxpnKwMXKXDecFmmbjteMKL5qaxxxNz0U zAoCXNPHlBisolh8ko78TDvFTAHZYuQgasbBTI/bEGJHT2vaxJoOVy07hXPzetjL Kjils2XksM1ytaPY2F+c0wwOwKhZqly+VSnCg9r96P7fLPcYt0DmQjd7H4IZoDGM RuQqpEVUVrJah9Zgj9SpJ+drjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1y8FZq e5tJS0ougIGdU3phwSLsMB8GA1UdIwQYMBaAFF/u3p04JUPwUVJ/pTPUepFwd+Yy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC9BRDYyOTIyMkI1 MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFfQlJVbi1sTTlSNmtYQjM1 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1gtN2VuVGdsUV9CUlVuLWxNOVI2a1hCMzVqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE5OC9BRDYyOTIyMkI1MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFf QlJVbi1sTTlSNmtYQjM1akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD+tYRPYH4r9Ppl9LHSHDSguPJryrzpdl3war1V86P01E/gCYrIc4C UDr5rvauP5VA8+Bi8YK5X7I2SOholDKLlhEYQNt6/uf5suTyTio5TY/Kqk92TrDr KuOU19ZXOnneYlesMP0Tn9zhs/QgIyQLA36uaNV2uherm5kZoJxp7QIvaVmCb+bB x8XiPYrMSolAvs7rUsOEa+lNOI5dspFfclu9/PX5t7TlterNrY8w/wpbAdlHdgKI LMnAYd5NbThZfDw4Dz/1GBo9sbLQEdKUjgkD3TRlaj+OXk0ejVPK0+z/vZI7CBmY Yip0P8PwG3WEocLfvoy+CsHezjfWbpRK -----END CERTIFICATE-----Generated at Wed Dec 24 15:15:06 2025 by rpki-client