This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft File: RMCz5V6PTVgxhgXnITScArKJwv0.mft (raw, json) Hash identifier: RQ2tVE9t5Y1OsQb0yUUL9hGLhKmMDyQtavGLaz80Wkc= Subject key identifier: 9F:FC:AF:39:D0:B5:79:E5:1B:A8:C0:13:83:87:59:F9:78:F9:17:73 Authority key identifier: 44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD Certificate issuer: /CN=A91167F7/serialNumber=44C0B3E55E8F4D58318605E721349C02B289C2FD Certificate serial: 0744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft Manifest number: 073E Signing time: Sat 20 Dec 2025 21:04:08 +0000 Manifest this update: Sat 20 Dec 2025 21:04:08 +0000 Manifest next update: Sat 27 Dec 2025 21:04:08 +0000 Files and hashes: 1: RMCz5V6PTVgxhgXnITScArKJwv0.crl (hash: v+OgJlXDh0lSo2al3+Ttj+scL58DtFmt7JaxqFp1FE0=) 2: 980A0D7254B511EBAC30E864C4F9AE02.roa (hash: q+i3wafgejbFMbyjX77ENtsRan2UT1Ux8wQq92JlMS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.crl rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91167F7, serialNumber=44C0B3E55E8F4D58318605E721349C02B289C2FD Validity Not Before: Dec 20 21:04:08 2025 GMT Not After : Dec 27 21:04:08 2025 GMT Subject: CN=69470f48-ea4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ff:61:4f:4e:bd:9d:fa:0b:4b:ad:6d:2b:ca: a4:e8:9d:f4:33:30:3c:5c:53:15:b4:7e:73:10:03: 19:c3:5d:e1:17:9c:50:dc:0a:13:fb:b4:5d:f4:08: 25:a1:89:f5:40:78:81:d4:f2:e1:7a:d0:01:03:41: 03:4f:0b:4f:60:64:be:31:14:e5:45:a1:f2:79:9c: eb:82:45:07:d0:a4:5b:54:f6:69:63:03:56:b0:7b: 0d:0a:48:38:80:53:9b:73:4e:aa:b0:0e:12:8b:f4: 21:ba:41:19:61:1d:be:c5:93:38:ac:f1:77:15:60: 53:b5:30:b8:39:d0:78:8b:15:a2:e8:52:94:58:04: 31:40:5e:82:ff:9c:e9:ff:3d:ab:43:c0:c4:66:79: c5:64:3e:57:50:31:42:db:f9:4f:bd:d9:dc:e7:b9: ea:41:5b:68:20:d0:0b:94:c8:37:d8:b6:20:f3:8f: 60:82:c1:77:c2:5a:cb:e0:17:6f:eb:73:4f:eb:8f: ea:a2:ac:c7:97:8f:63:44:d3:05:a5:9e:1c:b8:44: 18:cd:82:a5:1b:a7:34:24:41:f2:99:a3:8e:55:cc: 9e:a1:f0:94:5b:8e:6c:01:6d:99:d1:59:0c:78:3f: db:f5:6c:f8:a9:c0:82:95:2c:9f:2f:51:f1:d1:b3: a6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:FC:AF:39:D0:B5:79:E5:1B:A8:C0:13:83:87:59:F9:78:F9:17:73 X509v3 Authority Key Identifier: keyid:44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:56:5a:fd:2a:3d:65:71:87:10:73:ba:5a:ad:65:5e:72:b5: 51:a3:7b:ff:fb:9f:64:21:a8:3f:73:65:76:f5:97:97:c2:d0: dc:4c:7e:cc:8b:56:31:6d:d8:cb:e5:0c:25:e0:66:b7:6e:b8: 51:71:13:fa:48:92:35:5c:3d:de:d3:c9:77:ad:43:bc:5e:7a: f2:1b:06:42:e9:67:03:00:7f:b8:4a:46:21:9c:46:f6:0c:39: 2c:ff:c5:5c:6d:f1:bf:7c:e4:2f:84:ab:38:5c:63:49:71:d8: 62:4b:5e:43:09:3b:8c:1b:fb:70:ef:1e:c2:eb:24:9c:f6:81: 7b:58:fa:cf:20:a9:02:ae:23:f1:98:75:59:0a:3c:98:a0:fe: 60:43:55:8f:36:89:c0:45:fe:e2:7c:90:5b:69:e8:29:07:05: c1:9f:6d:ea:76:d0:08:2d:24:9f:93:d3:fd:09:11:4e:93:94: 15:54:3e:1c:e1:d0:0d:1d:8a:8d:26:ca:ba:a8:c5:8a:0c:29: 20:eb:91:09:46:e9:cd:8e:52:1c:8e:d5:e0:4b:1b:94:76:54: 95:78:55:98:39:e9:19:32:e8:ad:a2:3a:de:c8:dc:f9:b0:69: 44:14:6f:a7:79:ab:ab:d8:18:88:5a:d4:61:48:69:1b:e5:7b: ea:fa:77:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY3RjcxMTAvBgNVBAUTKDQ0QzBCM0U1NUU4RjRENTgzMTg2MDVFNzIxMzQ5QzAy QjI4OUMyRkQwHhcNMjUxMjIwMjEwNDA4WhcNMjUxMjI3MjEwNDA4WjAYMRYwFAYD VQQDDA02OTQ3MGY0OC1lYTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvv9hT069nfoLS61tK8qk6J30MzA8XFMVtH5zEAMZw13hF5xQ3AoT+7Rd9Agl oYn1QHiB1PLhetABA0EDTwtPYGS+MRTlRaHyeZzrgkUH0KRbVPZpYwNWsHsNCkg4 gFObc06qsA4Si/QhukEZYR2+xZM4rPF3FWBTtTC4OdB4ixWi6FKUWAQxQF6C/5zp /z2rQ8DEZnnFZD5XUDFC2/lPvdnc57nqQVtoINALlMg32LYg849ggsF3wlrL4Bdv 63NP64/qoqzHl49jRNMFpZ4cuEQYzYKlG6c0JEHymaOOVcyeofCUW45sAW2Z0VkM eD/b9Wz4qcCClSyfL1Hx0bOmoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/8rznQ tXnlG6jAE4OHWfl4+RdzMB8GA1UdIwQYMBaAFETAs+Vej01YMYYF5yE0nAKyicL9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjdGNy9CRkQzRUIxQTU0 MTYxMUVCQTRENTY4NjNDNEY5QUUwMi9STUN6NVY2UFRWZ3hoZ1huSVRTY0FyS0p3 djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JNQ3o1VjZQVFZneGhnWG5JVFNjQXJLSnd2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjdGNy9CRkQzRUIxQTU0MTYxMUVCQTRENTY4NjNDNEY5QUUwMi9STUN6NVY2UFRW Z3hoZ1huSVRTY0FyS0p3djAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtVlr9Kj1lcYcQc7parWVecrVRo3v/+59kIag/c2V29ZeXwtDcTH7M i1YxbdjL5Qwl4Ga3brhRcRP6SJI1XD3e08l3rUO8XnryGwZC6WcDAH+4SkYhnEb2 DDks/8VcbfG/fOQvhKs4XGNJcdhiS15DCTuMG/tw7x7C6ySc9oF7WPrPIKkCriPx mHVZCjyYoP5gQ1WPNonARf7ifJBbaegpBwXBn23qdtAILSSfk9P9CRFOk5QVVD4c 4dANHYqNJsq6qMWKDCkg65EJRunNjlIcjtXgSxuUdlSVeFWYOekZMuitojreyNz5 sGlEFG+neaur2BiIWtRhSGkb5Xvq+nch -----END CERTIFICATE-----Generated at Sun Dec 21 04:42:57 2025 by rpki-client