This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft (raw, json) Hash identifier: nz47WX+iDrRH9y0eQQolpIJxhYIQo5K3nnER91cfbeo= Subject key identifier: F0:44:31:AA:20:61:76:A5:18:28:32:E7:E0:E2:C2:35:35:AE:D3:DC Authority key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 Certificate issuer: /CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft Manifest number: DC Signing time: Tue 23 Dec 2025 04:32:26 +0000 Manifest this update: Tue 23 Dec 2025 04:32:26 +0000 Manifest next update: Tue 30 Dec 2025 04:32:26 +0000 Files and hashes: 1: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl (hash: hteVRO2x7WIHNteNfoP73qNH18s+Ju6gwhqw75oO5PE=) 2: 45D37CC28F8111EFB699FB63C4F9AE02.roa (hash: W3ELMdd+4Z64t5VfbCPMdcy4Vijaf3NYkhFRRrOXtfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Validity Not Before: Dec 23 04:32:26 2025 GMT Not After : Dec 30 04:32:26 2025 GMT Subject: CN=694a1b5a-991b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b8:16:75:be:db:31:df:51:85:98:a5:16:9c: 24:d8:ba:7d:32:69:7a:d3:9e:ae:86:76:c5:c1:f6: 70:96:53:ef:ed:b3:3d:22:a1:0b:7c:24:d7:29:f3: 87:ac:50:4b:93:8c:ee:b5:e3:7e:e2:7c:bc:9f:5a: 61:06:5c:1b:34:a5:e5:e5:7e:6d:b2:e6:59:e2:58: 24:6b:9a:e6:40:f1:50:76:65:5b:88:dd:6c:be:b2: f4:72:92:ea:2b:44:b5:9f:a5:2c:50:96:85:ae:94: 60:00:4e:fa:2e:a4:15:46:2f:17:7d:db:16:ba:e7: 44:fe:0b:fd:ff:f8:a2:ec:94:b4:8d:a9:b8:d7:b6: 93:53:63:41:2d:3c:be:48:0d:1d:c2:10:d6:5f:85: 71:00:c9:0f:d1:b2:04:56:a2:77:f1:c1:f2:bb:04: 04:53:a0:24:14:5b:38:4f:39:82:6d:9c:4c:df:ab: 7c:93:08:ad:a1:3d:e8:5b:f4:6a:30:88:fd:5a:7b: 01:79:72:72:2f:56:87:f1:75:2d:b0:0e:3e:10:60: 79:f8:0b:c5:9a:89:7b:f6:01:d5:c5:ab:9e:a1:f3: e5:2c:28:88:2d:22:6e:11:7e:cc:6f:82:2a:d6:e4: 4a:b8:82:63:bf:57:8e:47:b6:75:78:63:1c:20:8e: 06:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:44:31:AA:20:61:76:A5:18:28:32:E7:E0:E2:C2:35:35:AE:D3:DC X509v3 Authority Key Identifier: keyid:ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:72:93:17:50:59:30:cd:44:89:97:2f:68:31:c6:4c:82:ce: b0:7a:47:fd:9c:cd:83:84:03:7e:c4:ec:fa:29:23:34:1f:14: 32:12:75:77:92:3a:53:cc:5d:e6:45:5a:0f:f6:af:9a:57:3e: 01:7f:d2:26:8d:1e:b2:15:5b:68:16:20:c7:de:b0:80:f1:99: 51:0e:86:23:44:eb:fd:fa:80:b1:8a:2d:a9:79:52:b1:3c:f9: 23:62:05:8a:1d:7b:03:1d:ad:21:2f:58:50:9d:f3:f7:df:a4: bf:b5:63:65:f8:9c:81:91:94:52:87:d7:3e:ed:77:66:a9:54: 30:01:8d:5f:bc:6a:ae:79:c3:3d:6d:44:df:8f:ed:c3:84:2b: 48:e6:25:c2:a8:03:10:9b:d5:58:6c:4e:9e:fd:93:d0:cf:cd: 42:ea:c8:1c:43:73:dc:1f:9a:0c:42:ed:a8:25:cf:f5:65:99: c1:13:86:c3:58:d9:0c:dd:58:8a:0a:e9:ff:2a:1b:4e:40:42: d9:23:99:ef:87:fa:a2:b6:6b:a6:10:e6:f2:f3:17:21:51:21: 81:12:9a:29:13:d1:e7:42:85:95:70:9d:73:55:00:7f:0e:0f: ea:cf:62:6c:12:3a:67:ab:33:c0:7e:66:8b:15:cb:79:53:eb: 55:7e:e1:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKEVEODJBMkZEN0RFMTQ3NTI3Q0ZDQzQyNDdBMjU2QzFB MEVEQjRFRDMwHhcNMjUxMjIzMDQzMjI2WhcNMjUxMjMwMDQzMjI2WjAYMRYwFAYD VQQDDA02OTRhMWI1YS05OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7gWdb7bMd9RhZilFpwk2Lp9Mml6056uhnbFwfZwllPv7bM9IqELfCTXKfOH rFBLk4zuteN+4ny8n1phBlwbNKXl5X5tsuZZ4lgka5rmQPFQdmVbiN1svrL0cpLq K0S1n6UsUJaFrpRgAE76LqQVRi8XfdsWuudE/gv9//ii7JS0jam417aTU2NBLTy+ SA0dwhDWX4VxAMkP0bIEVqJ38cHyuwQEU6AkFFs4TzmCbZxM36t8kwitoT3oW/Rq MIj9WnsBeXJyL1aH8XUtsA4+EGB5+AvFmol79gHVxaueofPlLCiILSJuEX7Mb4Iq 1uRKuIJjv1eOR7Z1eGMcII4GfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBEMaog YXalGCgy5+DiwjU1rtPcMB8GA1UdIwQYMBaAFO2Cov194UdSfPzEJHolbBoO207T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yQjFDNDdGRThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi83WUtpX1gzaFIxSjhfTVFrZWlWc0dnN2JU dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZS2lfWDNoUjFKOF9NUWtlaVZzR2c3YlR0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yQjFDNDdGRThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi83WUtpX1gzaFIx SjhfTVFrZWlWc0dnN2JUdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2cpMXUFkwzUSJly9oMcZMgs6wekf9nM2DhAN+xOz6KSM0HxQyEnV3 kjpTzF3mRVoP9q+aVz4Bf9ImjR6yFVtoFiDH3rCA8ZlRDoYjROv9+oCxii2peVKx PPkjYgWKHXsDHa0hL1hQnfP336S/tWNl+JyBkZRSh9c+7XdmqVQwAY1fvGquecM9 bUTfj+3DhCtI5iXCqAMQm9VYbE6e/ZPQz81C6sgcQ3PcH5oMQu2oJc/1ZZnBE4bD WNkM3ViKCun/KhtOQELZI5nvh/qitmumEOby8xchUSGBEpopE9HnQoWVcJ1zVQB/ Dg/qz2JsEjpnqzPAfmaLFct5U+tVfuGQ -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:16 2025 by rpki-client