This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft File: u7bmAQQ3QyUFSIC308E15vx8yrE.mft (raw, json) Hash identifier: HQcIX06qCkuUPkNZA8Ih4LNjxV4pqKKEaW/s8vOs668= Subject key identifier: B1:5F:A2:97:FA:79:52:44:55:52:DA:2F:DE:50:A0:CB:4B:74:EA:71 Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft Manifest number: 0256 Signing time: Sun 21 Dec 2025 00:57:28 +0000 Manifest this update: Sun 21 Dec 2025 00:57:27 +0000 Manifest next update: Sun 28 Dec 2025 00:57:27 +0000 Files and hashes: 1: u7bmAQQ3QyUFSIC308E15vx8yrE.crl (hash: YkaO7ADcqINw+lC5/xogOy9k9PgwqJmcUpoSxVK0zGE=) 2: 003D7FEE15E811F0841B1A7DC4F9AE02.roa (hash: d9uK2WHtAsxBM3XUZiIW2tQcJ8Ym1sXb/vkuZKSK3yI=) 3: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (hash: hTqAJeFz8PTA6anqEQNdKINuIjAXAozH9CZXJQVA+Tc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A, serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: Dec 21 00:57:27 2025 GMT Not After : Dec 28 00:57:27 2025 GMT Subject: CN=694745f8-a826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:ba:3f:2b:0d:0c:a7:6a:4d:c2:8b:71:63: ac:c3:22:b1:f1:5b:fe:b9:b1:25:8c:3a:1a:b9:af: 87:e0:96:8c:ae:52:51:54:98:47:3a:b2:4f:e1:ee: 9f:d0:b8:33:37:4a:b3:5c:12:1c:6b:b7:2a:52:6e: 3b:df:0f:8e:a6:bf:f7:7a:48:8c:b2:68:94:8e:89: 13:fd:f7:ba:2c:51:a5:96:7b:b6:d5:88:6f:a3:29: 32:c3:95:e7:db:77:57:20:4b:f0:f5:0d:8c:78:8a: 70:2e:35:36:3f:77:73:15:89:d0:82:1b:48:ef:04: 33:c0:4a:e4:5f:c2:4a:c6:1e:c5:e2:b9:87:ed:80: 56:ef:0a:89:7d:ad:12:98:54:a4:34:b1:13:9f:7d: e5:14:88:fb:6c:d1:f1:38:65:48:f2:cb:e8:fb:5d: c5:76:7d:84:c6:27:38:82:2f:c6:de:79:65:83:1d: 6b:bd:b1:95:cd:08:6b:09:a1:46:66:49:ef:b6:13: 8e:b1:4d:58:78:49:47:b3:2b:2f:20:5d:1a:b2:c5: a9:7f:85:03:8d:42:e2:84:e6:70:24:a1:56:b7:bb: 71:fc:a0:ef:44:69:b8:73:a3:99:a9:8c:c4:ad:04: ea:d0:ba:43:4a:61:a5:c4:d0:92:18:cd:51:bc:17: 95:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5F:A2:97:FA:79:52:44:55:52:DA:2F:DE:50:A0:CB:4B:74:EA:71 X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:74:05:a4:b9:32:1a:56:8b:07:24:5f:fb:08:8e:ba:14:03: 27:04:81:e5:f0:4c:64:1f:16:2b:77:13:c0:8d:14:e9:21:1d: c7:aa:e8:32:44:b7:22:ef:e8:49:9c:4e:1f:c4:1c:cf:be:5c: 64:49:2e:75:6c:f3:c4:3a:93:7c:59:12:a5:b8:86:7c:4e:59: 2f:63:cb:02:cb:13:d7:4e:74:8e:17:f2:23:53:55:e5:86:79: ac:aa:26:d3:94:05:50:75:22:c1:f4:44:b0:5a:cf:87:06:4b: 40:1d:dc:5f:ab:0a:3f:34:d0:35:17:aa:06:be:e2:e9:85:db: eb:88:a3:b0:8d:a7:17:c0:b8:a8:81:b2:f8:02:b3:9c:68:30: f5:ec:c9:6e:53:d3:a8:70:bf:c4:bc:72:b6:7a:a1:6c:69:3b: db:c0:6a:26:36:41:cc:cb:f1:a2:0f:16:95:e9:f6:b8:ab:ac: 48:4a:3b:cd:da:9a:41:1b:a0:14:6a:1b:22:af:51:c7:b9:44: 6b:ce:ef:54:d7:0e:e7:8d:24:da:37:73:69:b7:7d:d7:21:e4: 46:46:98:0e:08:ca:b2:a8:af:1a:7e:64:67:be:86:5c:d0:58: 0c:58:46:5c:40:f1:c5:63:a0:cd:f4:e1:c7:52:6e:88:4b:d2: 58:ec:36:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjUxMjIxMDA1NzI3WhcNMjUxMjI4MDA1NzI3WjAYMRYwFAYD VQQDDA02OTQ3NDVmOC1hODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7K6PysNDKdqTcKLcWOswyKx8Vv+ubEljDoaua+H4JaMrlJRVJhHOrJP4e6f 0LgzN0qzXBIca7cqUm473w+Opr/3ekiMsmiUjokT/fe6LFGllnu21Yhvoykyw5Xn 23dXIEvw9Q2MeIpwLjU2P3dzFYnQghtI7wQzwErkX8JKxh7F4rmH7YBW7wqJfa0S mFSkNLETn33lFIj7bNHxOGVI8svo+13Fdn2Exic4gi/G3nllgx1rvbGVzQhrCaFG ZknvthOOsU1YeElHsysvIF0assWpf4UDjULihOZwJKFWt7tx/KDvRGm4c6OZqYzE rQTq0LpDSmGlxNCSGM1RvBeV2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFfopf6 eVJEVVLaL95QoMtLdOpxMB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA0QS85NUE4MTAxNDUwNzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5 VUZTSUMzMDhFMTV2eDh5ckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJdAWkuTIaVosHJF/7CI66FAMnBIHl8ExkHxYrdxPAjRTpIR3Hqugy RLci7+hJnE4fxBzPvlxkSS51bPPEOpN8WRKluIZ8TlkvY8sCyxPXTnSOF/IjU1Xl hnmsqibTlAVQdSLB9ESwWs+HBktAHdxfqwo/NNA1F6oGvuLphdvriKOwjacXwLio gbL4ArOcaDD17MluU9OocL/EvHK2eqFsaTvbwGomNkHMy/GiDxaV6fa4q6xISjvN 2ppBG6AUahsir1HHuURrzu9U1w7njSTaN3Npt33XIeRGRpgOCMqyqK8afmRnvoZc 0FgMWEZcQPHFY6DN9OHHUm6IS9JY7DaK -----END CERTIFICATE-----Generated at Sun Dec 21 22:44:17 2025 by rpki-client