This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: v6PO0XzuFU/TjMbse667n6CVAzem++qVE/wWW4LRGgY= Subject key identifier: B4:B0:0B:79:2C:B2:B1:06:DA:C7:B9:D8:50:9A:F2:4A:5A:2B:13:74 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 8F Signing time: Tue 23 Dec 2025 05:29:36 +0000 Manifest this update: Tue 23 Dec 2025 05:29:36 +0000 Manifest next update: Tue 30 Dec 2025 05:29:36 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: mQ+Ld+BGzyErzc+7ge9aYLlyYoNppkHnUBkZ+yArQM8=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Dec 23 05:29:36 2025 GMT Not After : Dec 30 05:29:36 2025 GMT Subject: CN=694a28c0-1d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:37:54:90:58:72:07:47:46:6e:c1:d5:71:47: 07:82:7f:51:c4:c6:ee:b3:8b:8d:25:f1:a3:f4:d8: ca:7d:9a:e1:8c:4a:d0:d1:5f:87:da:62:f4:7f:60: 1b:74:ea:a8:90:31:84:b4:3a:bf:32:58:92:cf:84: a7:1c:5c:d2:b6:6b:59:b4:16:83:0a:99:72:db:d2: 7c:ff:cd:6e:d8:0c:2f:cc:f4:1f:4f:d7:4f:3f:45: 6a:aa:fd:e7:6f:da:00:01:92:6a:52:ac:c4:09:b2: bc:3b:98:89:11:78:4a:51:ea:cb:d2:c4:c0:16:e0: 6e:de:73:b7:1f:66:7a:c8:58:61:78:37:2f:87:fa: 4c:50:e0:b8:d6:1e:9c:39:55:46:e1:83:c9:35:80: 55:ee:e8:00:fa:3a:47:85:8f:fe:9d:c9:61:1b:1c: 0c:85:96:67:db:dd:74:05:3e:43:1b:f7:b6:d8:27: 5a:fc:46:75:55:a6:e5:e8:8d:57:88:a3:16:88:30: d1:43:61:71:d7:57:83:6a:08:0d:dd:e3:14:32:45: b5:55:e2:67:b1:6e:11:a6:3c:f7:4d:ca:ba:c6:f5: 1f:36:a9:41:88:99:1b:11:72:6a:90:7a:e6:96:3e: 12:60:fc:66:c9:9d:92:30:dc:ce:af:51:17:b0:34: 4d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B0:0B:79:2C:B2:B1:06:DA:C7:B9:D8:50:9A:F2:4A:5A:2B:13:74 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:4f:50:01:d4:cc:72:59:e4:55:a7:2a:d6:bb:2a:ad:c6:9e: 06:56:6d:3e:80:62:b9:eb:aa:13:44:18:75:ac:78:3c:ff:8f: 0f:1c:66:f5:73:f5:7e:c7:d0:f4:10:c7:11:ee:3d:2f:0f:3f: bf:c9:58:06:ff:60:c1:ce:28:7b:a7:78:5c:98:99:d1:b7:3f: a1:ca:14:74:c5:67:a5:b3:b0:7e:25:a7:44:a7:f4:a3:d9:c3: 12:a6:de:fd:eb:ba:4c:cb:a4:48:30:93:9d:a2:06:9c:dc:f3: 81:5c:b7:f6:15:d4:56:7f:d0:67:7a:1a:cb:de:45:b1:9b:99: c7:83:04:9b:84:77:e6:a0:60:95:90:34:4b:32:e7:9a:1e:74: 21:62:3b:d0:c3:ef:12:a4:4a:3a:39:6e:a9:3e:5b:36:36:8c: 70:67:d6:8d:78:de:2b:2d:93:b5:7f:37:f2:a7:d6:76:10:7b: fb:2d:e7:9a:2d:ca:d7:5e:d2:04:f2:6b:bb:70:94:9c:05:e2: 00:5e:93:2b:ca:79:6f:e7:88:11:9f:32:4d:2b:22:39:a2:b6: 33:75:29:31:e5:93:34:83:54:1e:c0:2a:5a:ad:bd:5c:f3:9a: f1:b4:77:63:f9:95:46:d1:45:1f:05:79:3b:0a:56:51:be:3b: 77:8c:8e:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5Q0ExMTAvBgNVBAUTKDFCQjRFMTcxQ0FDNDE5RTYxNjdCQTNBN0Q3MjUzQzc2 MTYzMUEyOEQwHhcNMjUxMjIzMDUyOTM2WhcNMjUxMjMwMDUyOTM2WjAYMRYwFAYD VQQDDA02OTRhMjhjMC0xZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzdUkFhyB0dGbsHVcUcHgn9RxMbus4uNJfGj9NjKfZrhjErQ0V+H2mL0f2Ab dOqokDGEtDq/MliSz4SnHFzStmtZtBaDCply29J8/81u2AwvzPQfT9dPP0Vqqv3n b9oAAZJqUqzECbK8O5iJEXhKUerL0sTAFuBu3nO3H2Z6yFhheDcvh/pMUOC41h6c OVVG4YPJNYBV7ugA+jpHhY/+nclhGxwMhZZn2910BT5DG/e22Cda/EZ1Vabl6I1X iKMWiDDRQ2Fx11eDaggN3eMUMkW1VeJnsW4Rpjz3Tcq6xvUfNqlBiJkbEXJqkHrm lj4SYPxmyZ2SMNzOr1EXsDRNbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSwC3ks srEG2se52FCa8kpaKxN0MB8GA1UdIwQYMBaAFBu04XHKxBnmFnujp9clPHYWMaKN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTlDQS9BOUYyNzIyRTA4 QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi9HN1RoY2NyRUdlWVdlNk9uMXlVOGRoWXhv bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTlDQS9BOUYyNzIyRTA4QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi9HN1RoY2NyRUdl WVdlNk9uMXlVOGRoWXhvbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPT1AB1MxyWeRVpyrWuyqtxp4GVm0+gGK566oTRBh1rHg8/48PHGb1 c/V+x9D0EMcR7j0vDz+/yVgG/2DBzih7p3hcmJnRtz+hyhR0xWels7B+JadEp/Sj 2cMSpt7967pMy6RIMJOdogac3POBXLf2FdRWf9BnehrL3kWxm5nHgwSbhHfmoGCV kDRLMueaHnQhYjvQw+8SpEo6OW6pPls2NoxwZ9aNeN4rLZO1fzfyp9Z2EHv7Leea LcrXXtIE8mu7cJScBeIAXpMrynlv54gRnzJNKyI5orYzdSkx5ZM0g1QewCparb1c 85rxtHdj+ZVG0UUfBXk7ClZRvjt3jI55 -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:46 2025 by rpki-client