This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft File: rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft (raw, json) Hash identifier: 55zuWTa4YjBx82UWUinnHE7EHWEDFIGB045loDKM0mE= Subject key identifier: DC:36:90:85:C5:E7:8D:65:DC:F7:CE:AD:89:8F:4A:F7:AD:8F:56:79 Authority key identifier: AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 Certificate issuer: /CN=A91878B2/serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Certificate serial: 06E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft Manifest number: 06D5 Signing time: Mon 22 Dec 2025 21:19:22 +0000 Manifest this update: Mon 22 Dec 2025 21:19:22 +0000 Manifest next update: Mon 29 Dec 2025 21:19:22 +0000 Files and hashes: 1: rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl (hash: V9n5vmHc9ia59a0Hoj8Vvs5v3KTbV66YtEkn/Dy+KzI=) 2: 47249F9E7D7D11EBA5FADA5FC4F9AE02.roa (hash: nOK4DMRRD7EMHW1vygJSaZC/Q2N8Vn6fopdd1X9izD0=) 3: 467830CE7D7D11EBA5FADA5FC4F9AE02.roa (hash: Hr3eqEAtIPRi0Gbgk6nGIIh7VqbumXAU2t+2EOfBUjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1761 (0x6e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91878B2, serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Validity Not Before: Dec 22 21:19:22 2025 GMT Not After : Dec 29 21:19:22 2025 GMT Subject: CN=6949b5da-e96c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:1d:ba:90:76:a9:61:f6:f9:45:8e:52:28: e4:11:4d:3d:59:00:e5:af:90:cf:04:09:42:ef:0e: 69:6f:3e:60:7f:de:39:e5:37:e5:34:d8:15:46:4f: 5e:34:8d:de:98:e7:30:3e:ba:68:33:01:52:a2:e0: 7b:7a:91:44:7d:5f:ff:69:9d:1f:8d:e8:f5:c5:99: 29:2b:13:36:ed:46:15:b1:83:5c:3d:28:51:bd:eb: 0a:a4:a5:16:0f:4b:c4:4c:18:85:b6:5d:0c:56:cc: 08:97:65:3e:5c:97:b0:a4:0c:ec:84:e8:20:77:07: 51:59:57:57:b3:71:d3:e2:83:06:64:b5:67:cd:29: b6:12:0a:27:0d:58:6f:d7:71:45:59:59:0e:fe:57: 81:d7:4d:43:85:ec:44:a5:af:c0:9a:26:2f:2b:7a: fb:e8:62:58:de:31:48:25:9c:0a:39:8f:7c:c8:d3: 55:65:5e:91:c3:f5:eb:1f:ca:ec:a1:5e:d1:89:12: a2:f1:b9:30:38:28:23:47:37:e6:36:41:9b:e1:e4: 1c:54:60:90:ec:8e:d2:33:9e:a4:b0:c2:aa:cc:fb: 5d:85:ca:7d:0c:8f:b4:15:25:6c:f4:95:43:77:68: b1:45:20:f5:a9:08:ce:0e:66:0e:c0:1a:6e:2e:6b: 9f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:36:90:85:C5:E7:8D:65:DC:F7:CE:AD:89:8F:4A:F7:AD:8F:56:79 X509v3 Authority Key Identifier: keyid:AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:ea:b2:97:a0:ab:df:15:35:48:e6:7c:dc:63:81:0c:b6:bf: 97:f2:ed:f5:3a:08:fe:72:81:97:43:83:90:09:75:a3:be:f6: f5:e8:71:41:41:de:4a:3e:0f:7e:b3:3f:54:8e:85:bc:d6:a5: 13:5b:60:ab:87:66:f9:c9:39:84:f2:2d:8f:33:a7:d6:fd:78: 4a:0b:d6:cd:ca:63:9f:47:a2:ef:67:80:10:9c:1a:18:96:28: 6a:ee:e7:4c:2b:cb:24:01:cb:c4:51:68:60:8c:9f:cc:75:9b: 8e:f7:95:01:0f:bc:8e:73:e5:26:b4:15:2f:4e:7c:9e:b6:10: 62:f6:22:18:7d:a0:0e:4c:34:b5:3f:58:28:3a:b9:6e:68:2a: 4d:c3:a7:6a:b5:6d:89:a2:20:7a:7d:d3:1c:b6:8d:a7:51:3e: 56:d2:fb:1d:40:90:53:90:8e:ae:5c:45:cc:d5:86:c3:87:c6: 0f:a0:b4:de:30:ef:b8:1f:9b:a1:e0:0f:d5:e7:ed:8a:37:a7: 7c:e3:cd:56:82:97:87:86:95:17:76:f7:ca:c6:34:82:fa:1d: 17:6f:8f:1d:72:48:e2:e2:ba:93:7c:76:c1:a8:72:ef:d2:03: a3:c6:ff:bd:03:e0:87:39:69:2e:0b:a4:fb:64:67:6f:f8:c7: 47:a7:e3:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc4QjIxMTAvBgNVBAUTKEFEREVFOTA5QTMxNjc2MjE1NTNGRDQ0RTAyMjREMzhB MDY3ODc5ODcwHhcNMjUxMjIyMjExOTIyWhcNMjUxMjI5MjExOTIyWjAYMRYwFAYD VQQDDA02OTQ5YjVkYS1lOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro8dupB2qWH2+UWOUijkEU09WQDlr5DPBAlC7w5pbz5gf9455TflNNgVRk9e NI3emOcwPrpoMwFSouB7epFEfV//aZ0fjej1xZkpKxM27UYVsYNcPShRvesKpKUW D0vETBiFtl0MVswIl2U+XJewpAzshOggdwdRWVdXs3HT4oMGZLVnzSm2EgonDVhv 13FFWVkO/leB101DhexEpa/AmiYvK3r76GJY3jFIJZwKOY98yNNVZV6Rw/XrH8rs oV7RiRKi8bkwOCgjRzfmNkGb4eQcVGCQ7I7SM56ksMKqzPtdhcp9DI+0FSVs9JVD d2ixRSD1qQjODmYOwBpuLmufPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNw2kIXF 541l3PfOrYmPSvetj1Z5MB8GA1UdIwQYMBaAFK3e6QmjFnYhVT/UTgIk04oGeHmH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzhCMi83MzlCQkE1QTdE N0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2RpRlZQOVJPQWlUVGlnWjRl WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkN3BDYU1XZGlGVlA5Uk9BaVRUaWdaNGVZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzhCMi83MzlCQkE1QTdEN0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2Rp RlZQOVJPQWlUVGlnWjRlWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn6rKXoKvfFTVI5nzcY4EMtr+X8u31Ogj+coGXQ4OQCXWjvvb16HFB Qd5KPg9+sz9UjoW81qUTW2Crh2b5yTmE8i2PM6fW/XhKC9bNymOfR6LvZ4AQnBoY lihq7udMK8skAcvEUWhgjJ/MdZuO95UBD7yOc+UmtBUvTnyethBi9iIYfaAOTDS1 P1goOrluaCpNw6dqtW2JoiB6fdMcto2nUT5W0vsdQJBTkI6uXEXM1YbDh8YPoLTe MO+4H5uh4A/V5+2KN6d8481WgpeHhpUXdvfKxjSC+h0Xb48dckji4rqTfHbBqHLv 0gOjxv+9A+CHOWkuC6T7ZGdv+MdHp+OW -----END CERTIFICATE-----Generated at Wed Dec 24 14:13:58 2025 by rpki-client