This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft File: 7qiugNcT5rItsOxgkVfwxZpS_X8.mft (raw, json) Hash identifier: LM+xeS2YjmDodOOWCPxwX73OT/xXbRvpyzVYcmH692U= Subject key identifier: 17:92:CA:86:62:61:4F:2C:4D:27:55:E7:45:05:B1:D4:60:D4:00:06 Authority key identifier: EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F Certificate issuer: /CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Certificate serial: 355A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft Manifest number: 351E Signing time: Mon 22 Dec 2025 14:47:07 +0000 Manifest this update: Mon 22 Dec 2025 14:47:07 +0000 Manifest next update: Mon 29 Dec 2025 14:47:07 +0000 Files and hashes: 1: 7qiugNcT5rItsOxgkVfwxZpS_X8.crl (hash: nB5mnql0nd77p/4X+Sj5A6ihs6aa60tK1GE0oq5NQa8=) 2: 6C0C85D0A43011ECA230771BC4F9AE02.roa (hash: 7ZkKrwIf5dxU1AyQHdEtx/cZNmt12RU0pVuLQbnEwD8=) 3: 2A73A3403A0711F081048A4EC4F9AE02.roa (hash: Sb9dKZUra617yJWr0DgG7F51M0rwa4KtVZlgSlPgYpw=) 4: 2ACF9E0C855C11EB8C076013C4F9AE02.roa (hash: /XOWg1DL5Ca4WTABh7nowkgqWfXA9qIHVM17A2ry+Ak=) 5: F026CE74927411EDB020A481C4F9AE02.roa (hash: D3nZr89FC3B/hYB2ABfVDlFpa9Kx2bcJix0bhxq7u3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13658 (0x355a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6B7, serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Validity Not Before: Dec 22 14:47:07 2025 GMT Not After : Dec 29 14:47:07 2025 GMT Subject: CN=694959eb-d35c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7d:56:48:70:df:28:40:77:11:aa:00:80:d3: 56:92:04:8b:9f:e8:e4:e0:b1:3e:bd:90:99:30:d2: 98:13:ac:ef:c3:29:62:81:c6:c1:b3:d3:aa:58:3c: 11:83:a4:21:4e:f1:54:3a:af:ab:c3:0d:e3:0c:96: 5c:c9:8b:6a:94:cd:17:43:84:2b:cc:7f:70:73:f6: 09:c5:13:5d:4b:50:2a:4d:6a:5c:36:60:3b:c0:10: 46:06:ab:86:5a:1b:89:00:46:43:a8:14:8a:8a:55: 31:0c:e6:62:fe:5e:58:50:d6:f9:2b:e1:49:0c:39: b9:24:46:ad:b1:14:38:2a:6a:f8:5d:00:c7:66:b7: a4:77:74:f1:7b:d2:1a:08:c8:63:f6:ff:ff:74:4c: b8:58:49:23:c2:d5:95:69:0a:7c:e9:74:a4:8a:e8: f1:1b:c0:97:47:c4:33:bb:b4:28:93:fa:6a:02:bb: 25:ba:97:3b:42:08:b8:28:3a:e3:a9:15:54:5d:bc: 5a:91:31:24:66:8e:6e:80:b5:64:af:dd:4b:ad:43: 48:8f:47:88:89:c7:05:ee:bf:73:04:89:16:bb:4c: 8e:a4:df:93:72:c4:c3:fe:b6:f1:e1:0d:73:85:9f: a5:8b:8d:04:75:1f:45:48:73:68:a9:ac:a3:65:80: f5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:92:CA:86:62:61:4F:2C:4D:27:55:E7:45:05:B1:D4:60:D4:00:06 X509v3 Authority Key Identifier: keyid:EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ca:30:d2:7d:f6:9c:d1:eb:17:0e:a3:68:f8:c7:3e:9b:8b: 34:62:00:9b:5c:65:c3:d3:87:e6:d5:9c:cd:9a:05:d9:3b:02: dc:38:89:88:7e:70:aa:8b:4c:22:41:91:6b:55:80:41:7c:f7: d4:84:7f:e7:d8:d9:29:07:19:87:1d:35:91:e7:91:64:9b:e5: ff:d2:e8:e5:11:38:e2:b1:d1:58:82:f6:c6:cb:69:bc:ff:92: 9a:88:b0:5f:2f:09:93:f8:1b:3f:3b:45:47:83:62:97:bf:ed: ee:2c:d4:4f:e5:d3:3d:2a:80:72:0b:9d:c1:80:46:59:eb:a0: e4:21:a0:50:fd:24:9b:a7:d6:eb:97:aa:36:71:36:0a:f3:9d: 9b:6e:1e:56:06:4c:0f:b1:94:6b:17:95:98:7c:6e:16:42:70: 5c:68:93:4e:9c:85:1f:80:2d:c7:00:7a:02:ef:58:bb:fe:d3: f2:4c:91:10:e6:f1:86:25:ab:85:aa:6a:75:e3:a9:74:4d:1e: 13:31:9d:b7:ed:a3:50:97:27:3d:dd:fa:9a:69:43:d1:67:aa: 52:03:52:59:98:76:f1:55:10:ff:dc:81:ba:5c:bb:79:59:34: 3f:16:49:8e:e9:0b:a7:1a:62:4f:f0:81:b9:45:92:11:20:33: 23:2f:0d:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2QjcxMTAvBgNVBAUTKEVFQThBRTgwRDcxM0U2QjIyREIwRUM2MDkxNTdGMEM1 OUE1MkZEN0YwHhcNMjUxMjIyMTQ0NzA3WhcNMjUxMjI5MTQ0NzA3WjAYMRYwFAYD VQQDDA02OTQ5NTllYi1kMzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0X1WSHDfKEB3EaoAgNNWkgSLn+jk4LE+vZCZMNKYE6zvwyligcbBs9OqWDwR g6QhTvFUOq+rww3jDJZcyYtqlM0XQ4QrzH9wc/YJxRNdS1AqTWpcNmA7wBBGBquG WhuJAEZDqBSKilUxDOZi/l5YUNb5K+FJDDm5JEatsRQ4Kmr4XQDHZrekd3Txe9Ia CMhj9v//dEy4WEkjwtWVaQp86XSkiujxG8CXR8Qzu7Qok/pqArslupc7Qgi4KDrj qRVUXbxakTEkZo5ugLVkr91LrUNIj0eIiccF7r9zBIkWu0yOpN+TcsTD/rbx4Q1z hZ+li40EdR9FSHNoqayjZYD1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeSyoZi YU8sTSdV50UFsdRg1AAGMB8GA1UdIwQYMBaAFO6oroDXE+ayLbDsYJFX8MWaUv1/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDZCNy8xQzE2NjQxQzFE OTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVySXRzT3hna1Zmd3hacFNf WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdxaXVnTmNUNXJJdHNPeGdrVmZ3eFpwU19YOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDZCNy8xQzE2NjQxQzFEOTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVy SXRzT3hna1Zmd3hacFNfWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzyjDSffac0esXDqNo+Mc+m4s0YgCbXGXD04fm1ZzNmgXZOwLcOImI fnCqi0wiQZFrVYBBfPfUhH/n2NkpBxmHHTWR55Fkm+X/0ujlETjisdFYgvbGy2m8 /5KaiLBfLwmT+Bs/O0VHg2KXv+3uLNRP5dM9KoByC53BgEZZ66DkIaBQ/SSbp9br l6o2cTYK852bbh5WBkwPsZRrF5WYfG4WQnBcaJNOnIUfgC3HAHoC71i7/tPyTJEQ 5vGGJauFqmp146l0TR4TMZ237aNQlyc93fqaaUPRZ6pSA1JZmHbxVRD/3IG6XLt5 WTQ/FkmO6QunGmJP8IG5RZIRIDMjLw3K -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:30 2025 by rpki-client