This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft File: C7AFcf321rzGNEbrOmSR-uqpCG8.mft (raw, json) Hash identifier: WZCNs5K8bwsIM7d/lomErh6Ab6IAl39ZeLHXSYPGvY0= Subject key identifier: D1:AE:0E:32:ED:94:D5:9A:23:47:AF:7E:28:B7:D1:C2:47:42:8F:C8 Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 05A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft Manifest number: 05A1 Signing time: Mon 22 Dec 2025 22:18:10 +0000 Manifest this update: Mon 22 Dec 2025 22:18:09 +0000 Manifest next update: Mon 29 Dec 2025 22:18:09 +0000 Files and hashes: 1: C7AFcf321rzGNEbrOmSR-uqpCG8.crl (hash: NKBnnshEnc0DtMCIXTs8s1IR4t6O8RgBIxww+1dOkgE=) 2: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (hash: gIqEUytD692JqpeV91M06iKGJH68vEW3s4YtICieKE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1446 (0x5a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83, serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: Dec 22 22:18:09 2025 GMT Not After : Dec 29 22:18:09 2025 GMT Subject: CN=6949c3a2-9ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:53:1c:41:02:5a:04:59:f3:2b:7a:d9:a9:77: f9:b3:e8:e3:7f:ac:d7:96:72:62:47:a2:19:14:7a: d9:07:67:af:73:3c:8d:25:cf:97:64:9a:ba:60:2e: 89:1f:63:10:04:ba:bc:22:dc:db:c5:44:b7:a6:be: 69:23:e8:59:c7:ff:61:26:fc:0f:7a:fd:36:6e:0b: 99:5b:c1:1d:f8:6b:66:3c:ec:73:87:93:13:8f:bf: 12:e9:a3:2a:d1:bc:d2:eb:b9:15:bf:d2:5e:3e:56: 4d:68:dd:ed:f3:0d:29:ed:90:75:56:c2:d4:6c:08: 95:94:b3:6d:e3:38:8d:e2:95:0f:66:07:2f:33:1f: f5:85:d0:bb:16:cf:ce:09:4d:24:b0:e9:b7:17:98: 08:0f:d7:49:14:a7:fe:cf:dc:d4:75:d1:9c:cc:2b: c3:81:2e:c2:6c:8a:52:36:f8:35:1c:25:47:fd:80: 0d:eb:12:cc:68:83:83:51:36:56:a1:33:a8:fd:47: 52:6a:f3:a5:cc:99:3d:d3:20:f7:29:10:10:3c:a7: b9:65:6f:fd:e6:b5:4b:07:c2:3a:e2:4a:06:3b:ee: c5:0c:f0:e5:46:e4:76:d0:cf:be:9f:35:99:0a:79: fd:c3:52:79:30:69:a0:01:d7:df:68:10:ce:3c:a1: dc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AE:0E:32:ED:94:D5:9A:23:47:AF:7E:28:B7:D1:C2:47:42:8F:C8 X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:17:73:8c:c2:34:71:ba:20:df:9b:f4:ba:cc:d8:88:3c:ec: eb:15:ae:e4:a5:b6:70:7f:4a:53:8f:c1:f8:24:2c:5e:61:da: 68:e1:91:66:e1:a3:c3:2b:5a:fd:7c:7c:b8:e5:4f:9a:77:d2: a1:6e:44:53:76:c3:54:9a:72:b6:0d:85:e0:14:72:7f:f2:79: a9:17:61:54:5f:c4:d4:e4:f8:e3:3f:65:a9:f4:c5:de:32:bd: c3:b5:91:ae:75:f4:9d:8b:41:83:0e:dc:e0:49:f0:5a:d5:15: cc:0d:b8:92:67:dd:26:32:50:f6:63:24:91:63:97:fa:b1:a4: 6d:c8:b7:08:a3:f3:af:4f:cd:cf:a7:4f:b4:d6:f7:ab:1b:26: 59:bf:ed:a0:d7:54:65:a3:fb:b6:ab:f8:46:7b:bc:18:90:fe: 01:c4:bb:ec:a4:ef:be:5d:06:b6:e9:97:5c:a6:c0:fb:4d:c9: 53:f5:3b:32:45:84:64:18:c6:dd:eb:b2:3a:dd:43:51:31:75: c3:c1:e0:76:c3:4b:6f:72:d6:59:f7:70:aa:68:f9:6d:c9:9b: 36:b6:04:90:ad:65:df:f7:7e:48:ba:5a:3a:56:a1:ef:b8:f8: 20:98:71:ce:d4:eb:76:ec:2a:a7:b6:9c:23:f8:97:fd:f9:1b: 01:5b:1a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjUxMjIyMjIxODA5WhcNMjUxMjI5MjIxODA5WjAYMRYwFAYD VQQDDA02OTQ5YzNhMi05YWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FMcQQJaBFnzK3rZqXf5s+jjf6zXlnJiR6IZFHrZB2evczyNJc+XZJq6YC6J H2MQBLq8ItzbxUS3pr5pI+hZx/9hJvwPev02bguZW8Ed+GtmPOxzh5MTj78S6aMq 0bzS67kVv9JePlZNaN3t8w0p7ZB1VsLUbAiVlLNt4ziN4pUPZgcvMx/1hdC7Fs/O CU0ksOm3F5gID9dJFKf+z9zUddGczCvDgS7CbIpSNvg1HCVH/YAN6xLMaIODUTZW oTOo/UdSavOlzJk90yD3KRAQPKe5ZW/95rVLB8I64koGO+7FDPDlRuR20M++nzWZ Cnn9w1J5MGmgAdffaBDOPKHcMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGuDjLt lNWaI0evfii30cJHQo/IMB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM4My80QkFGQjExOEY3NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFy ekdORWJyT21TUi11cXBDRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaF3OMwjRxuiDfm/S6zNiIPOzrFa7kpbZwf0pTj8H4JCxeYdpo4ZFm 4aPDK1r9fHy45U+ad9KhbkRTdsNUmnK2DYXgFHJ/8nmpF2FUX8TU5PjjP2Wp9MXe Mr3DtZGudfSdi0GDDtzgSfBa1RXMDbiSZ90mMlD2YySRY5f6saRtyLcIo/OvT83P p0+01verGyZZv+2g11Rlo/u2q/hGe7wYkP4BxLvspO++XQa26ZdcpsD7TclT9Tsy RYRkGMbd67I63UNRMXXDweB2w0tvctZZ93CqaPltyZs2tgSQrWXf935Iulo6VqHv uPggmHHO1Ot27Cqntpwj+Jf9+RsBWxo+ -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:46 2025 by rpki-client