This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: WFDmxYLLRIPFw8W0/Pyt1aPmMxgwYLUr6QclJiZTGnw= Subject key identifier: 30:B5:30:85:DA:37:96:D7:51:BA:11:89:D3:8D:84:D7:1E:1D:70:9D Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: C5 Signing time: Tue 23 Dec 2025 04:50:18 +0000 Manifest this update: Tue 23 Dec 2025 04:50:18 +0000 Manifest next update: Tue 30 Dec 2025 04:50:18 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: lqx1w/zc0M+mheM9kjPKPYLFWAhiaBjnFi1NogZCHro=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Dec 23 04:50:18 2025 GMT Not After : Dec 30 04:50:18 2025 GMT Subject: CN=694a1f8a-96f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f5:fd:4e:63:57:77:52:d2:52:49:0e:8d:2e: f5:49:94:fb:67:55:dd:42:f0:40:44:66:ca:26:1b: 8c:bc:2a:81:7c:35:53:d4:ef:34:69:24:04:1f:ff: 27:98:ba:64:22:4f:a2:9e:53:d2:94:02:db:1a:f7: 6a:1a:69:72:95:80:61:0b:2d:a0:51:44:b3:fa:a1: e5:f2:0d:ed:3b:82:d3:d7:d3:4a:de:97:ed:34:42: e6:75:6f:86:9b:0b:cb:b1:7e:a9:76:42:98:04:5c: 0c:8e:85:5b:3f:12:47:69:5f:3c:0a:e1:ab:4a:2c: ec:13:5b:6d:2e:8b:b1:bc:15:de:a6:66:24:67:d6: db:9b:69:4f:d8:92:d8:1d:9c:8a:67:73:56:97:f9: d3:b4:b5:d2:7a:82:6e:f3:dc:8f:9e:2a:bf:48:c8: e4:1e:07:0a:57:57:0d:63:2e:f7:72:f7:a8:9f:0d: 24:fe:78:e1:c5:3e:12:26:8a:81:3f:59:82:18:06: f8:ce:cb:9c:11:16:4e:6b:30:ee:9a:60:55:a9:9f: 96:f4:38:18:f2:11:1b:a2:e2:ed:9f:bb:1e:b0:ae: 5d:16:5d:e1:97:9a:ab:28:d2:40:dc:23:d4:3a:00: eb:5f:eb:8d:c5:fa:7e:75:a2:ed:68:79:1c:0a:7f: 11:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B5:30:85:DA:37:96:D7:51:BA:11:89:D3:8D:84:D7:1E:1D:70:9D X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:e3:68:14:f7:db:4a:3d:96:1a:d1:56:18:22:6d:20:80:ad: d5:26:2d:f5:87:36:12:b0:05:16:b8:8a:08:2a:38:78:1d:e5: 32:89:ae:d5:4d:75:3d:71:03:a1:d4:ad:ff:d0:21:38:51:80: fa:98:8a:ed:93:48:40:a6:32:5f:f8:7b:1d:20:bb:f4:da:a5: 25:5a:50:ea:00:6e:6b:13:d7:2a:5d:db:c1:e8:b0:94:4f:86: 94:e1:33:70:da:24:c2:a5:e0:62:6c:b1:08:f6:2b:f9:a6:b7: ba:19:ae:d7:a1:98:f0:32:cc:92:e6:0a:cb:9b:dd:94:30:24: 74:05:fe:55:0c:89:08:6b:ba:ab:96:22:af:ef:70:0f:9f:bd: 8e:f8:db:a4:27:73:1c:13:52:63:7b:12:86:ac:67:55:95:24: a7:b2:a5:88:bb:fe:3e:cf:4c:3e:00:bb:63:f1:4c:e2:52:3b: 2a:53:82:79:b0:3b:60:18:3e:31:73:35:32:88:9e:a4:8d:77: c9:7d:d5:a5:9a:a8:1e:8c:e3:74:29:25:de:60:ab:28:86:b9: d4:de:bc:2e:6f:c1:4a:43:86:f7:ba:49:ff:87:e3:d8:86:d1: 89:70:84:7c:11:57:a0:d6:dd:aa:2b:21:b1:a6:d7:f6:e8:bc: f7:d2:87:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3Q0YxMTAvBgNVBAUTKEVDM0Q4MDdGNzkzQzlDRjVGQ0UzMzVFRTE1RTA5ODQ0 NDlCNDMwOTYwHhcNMjUxMjIzMDQ1MDE4WhcNMjUxMjMwMDQ1MDE4WjAYMRYwFAYD VQQDDA02OTRhMWY4YS05NmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvX9TmNXd1LSUkkOjS71SZT7Z1XdQvBARGbKJhuMvCqBfDVT1O80aSQEH/8n mLpkIk+inlPSlALbGvdqGmlylYBhCy2gUUSz+qHl8g3tO4LT19NK3pftNELmdW+G mwvLsX6pdkKYBFwMjoVbPxJHaV88CuGrSizsE1ttLouxvBXepmYkZ9bbm2lP2JLY HZyKZ3NWl/nTtLXSeoJu89yPniq/SMjkHgcKV1cNYy73cveonw0k/njhxT4SJoqB P1mCGAb4zsucERZOazDummBVqZ+W9DgY8hEbouLtn7sesK5dFl3hl5qrKNJA3CPU OgDrX+uNxfp+daLtaHkcCn8RaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDC1MIXa N5bXUboRidONhNceHXCdMB8GA1UdIwQYMBaAFOw9gH95PJz1/OM17hXgmERJtDCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTdDRi9CNDE1NTQ1OEIy QzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5QWDg0elh1RmVDWVJFbTBN SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1KWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTdDRi9CNDE1NTQ1OEIyQzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5Q WDg0elh1RmVDWVJFbTBNSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf42gU99tKPZYa0VYYIm0ggK3VJi31hzYSsAUWuIoIKjh4HeUyia7V TXU9cQOh1K3/0CE4UYD6mIrtk0hApjJf+HsdILv02qUlWlDqAG5rE9cqXdvB6LCU T4aU4TNw2iTCpeBibLEI9iv5pre6Ga7XoZjwMsyS5grLm92UMCR0Bf5VDIkIa7qr liKv73APn72O+NukJ3McE1JjexKGrGdVlSSnsqWIu/4+z0w+ALtj8UziUjsqU4J5 sDtgGD4xczUyiJ6kjXfJfdWlmqgejON0KSXeYKsohrnU3rwub8FKQ4b3ukn/h+PY htGJcIR8EVeg1t2qKyGxptf26Lz30oec -----END CERTIFICATE-----Generated at Tue Dec 23 20:22:04 2025 by rpki-client