This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft File: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft (raw, json) Hash identifier: dDJYzapbqyHA0qgxk0ATzY/MxaA16uut5TG/rdo0oCU= Subject key identifier: 52:56:EB:6A:79:A6:7B:48:D0:FB:EB:17:12:F7:A2:FA:4C:FB:10:0F Authority key identifier: EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 Certificate issuer: /CN=A91982B6/serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft Manifest number: B3 Signing time: Tue 23 Dec 2025 04:59:29 +0000 Manifest this update: Tue 23 Dec 2025 04:59:28 +0000 Manifest next update: Tue 30 Dec 2025 04:59:28 +0000 Files and hashes: 1: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl (hash: d2WMV7aqKJpkQvBH9+dta9hxPwS2qRPDHSpSfHBwg4g=) 2: 739C8BDECB5A11EFBEE64062C4F9AE02.roa (hash: WVqv1JuSt8hSNNolUiV5z8//m1vJSnq0q+Q8Ooe/S0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Validity Not Before: Dec 23 04:59:28 2025 GMT Not After : Dec 30 04:59:28 2025 GMT Subject: CN=694a21b1-749f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ee:c1:bd:7d:0e:09:f5:e9:67:13:cd:35:71: c9:06:a4:42:60:24:38:d0:14:29:b6:59:9e:c9:8c: 28:4a:9a:87:31:1f:0c:0e:cd:9f:31:08:4f:b0:65: 07:6d:0f:66:44:8c:f9:2b:58:85:16:95:ae:be:28: f4:3d:c6:62:d3:52:12:83:10:48:60:40:ac:20:ed: a6:1e:ea:51:58:70:34:a6:27:95:75:8e:90:32:dd: 45:71:d2:e2:68:0e:f8:8d:64:95:15:62:d1:41:b5: f0:f4:87:bf:29:88:2e:f8:1b:c3:1b:69:0f:30:cb: 97:55:46:69:c2:bb:20:83:12:f0:f6:8b:60:db:f8: 15:01:30:04:fd:85:db:eb:17:4c:e3:62:7b:f3:08: fb:dd:4b:af:ad:85:3c:32:56:88:e7:dc:1a:50:5c: 0f:57:f7:22:b2:71:f0:df:ed:42:e5:e9:bc:1b:f0: e8:4e:07:75:0a:55:94:17:dc:f0:bf:50:62:43:24: f5:64:89:b4:f6:29:d2:8b:d6:cd:4e:aa:83:1f:48: 22:4c:62:7b:38:34:48:8c:c0:97:34:1c:ee:c6:cd: 85:b2:52:e4:a7:b7:ea:a8:59:d3:fe:bd:99:fb:32: 65:37:1d:63:57:70:dc:35:31:7f:4a:40:e4:1c:28: f7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:56:EB:6A:79:A6:7B:48:D0:FB:EB:17:12:F7:A2:FA:4C:FB:10:0F X509v3 Authority Key Identifier: keyid:EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:98:ae:32:05:f9:05:cc:1c:13:b7:d2:fa:da:8d:7e:e2:17: 50:86:fc:03:a6:63:1a:f2:7c:33:94:8c:5a:95:a0:cc:c0:66: 3f:c3:fc:e6:dd:98:90:e2:0e:70:4d:76:9f:a5:c4:4f:8e:0a: 86:3e:b4:d6:b1:7f:c6:c9:3c:f5:cb:7f:0a:f1:f0:d5:4a:8e: 7c:3a:38:2f:89:fb:7b:72:c7:5b:8e:c4:44:83:e1:d4:f0:5a: 23:eb:86:d4:b6:ea:60:c4:46:69:4e:39:92:5b:3d:b3:4a:bc: 34:dc:b4:27:11:52:70:61:0b:b5:3a:30:04:2c:f1:54:e3:1e: 50:97:ec:54:f5:71:9f:c4:0b:67:66:bb:3b:26:ab:ea:7b:7b: aa:51:26:7b:aa:2c:de:99:b7:dc:34:cc:1f:86:ff:17:fd:94: 22:79:f4:7a:0b:a9:ea:ef:3e:e0:fc:27:34:b7:c1:60:79:3a: 4a:08:9b:b5:ca:92:6f:8c:c9:07:6c:0d:6c:c6:53:60:9e:74: 9d:ee:cb:24:a2:9c:0d:22:0c:05:38:f5:15:1b:e0:97:9d:9e: 52:a6:67:16:5b:38:a8:48:0d:d3:87:71:71:7d:03:fa:e4:a4: cf:ef:5e:df:93:b5:6e:c6:2f:01:d0:ba:be:6c:a7:45:c9:c8: a0:7e:06:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKEVDNjc5MTY5MTc3QjlFMTMxRDBEQUEwMTM5OEQ3MDAz OTgyN0QxRjYwHhcNMjUxMjIzMDQ1OTI4WhcNMjUxMjMwMDQ1OTI4WjAYMRYwFAYD VQQDDA02OTRhMjFiMS03NDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4O7BvX0OCfXpZxPNNXHJBqRCYCQ40BQptlmeyYwoSpqHMR8MDs2fMQhPsGUH bQ9mRIz5K1iFFpWuvij0PcZi01ISgxBIYECsIO2mHupRWHA0pieVdY6QMt1FcdLi aA74jWSVFWLRQbXw9Ie/KYgu+BvDG2kPMMuXVUZpwrsggxLw9otg2/gVATAE/YXb 6xdM42J78wj73UuvrYU8MlaI59waUFwPV/cisnHw3+1C5em8G/DoTgd1ClWUF9zw v1BiQyT1ZIm09inSi9bNTqqDH0giTGJ7ODRIjMCXNBzuxs2FslLkp7fqqFnT/r2Z +zJlNx1jV3DcNTF/SkDkHCj3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJW62p5 pntI0PvrFxL3ovpM+xAPMB8GA1UdIwQYMBaAFOxnkWkXe54THQ2qATmNcAOYJ9H2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9FNjRCMDNCNENC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi83R2VSYVJkN25oTWREYW9CT1kxd0E1Z24w ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdHZVJhUmQ3bmhNZERhb0JPWTF3QTVnbjBmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9FNjRCMDNCNENCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi83R2VSYVJkN25o TWREYW9CT1kxd0E1Z24wZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVmK4yBfkFzBwTt9L62o1+4hdQhvwDpmMa8nwzlIxalaDMwGY/w/zm 3ZiQ4g5wTXafpcRPjgqGPrTWsX/GyTz1y38K8fDVSo58Ojgvift7csdbjsREg+HU 8Foj64bUtupgxEZpTjmSWz2zSrw03LQnEVJwYQu1OjAELPFU4x5Ql+xU9XGfxAtn Zrs7Jqvqe3uqUSZ7qizembfcNMwfhv8X/ZQiefR6C6nq7z7g/Cc0t8FgeTpKCJu1 ypJvjMkHbA1sxlNgnnSd7sskopwNIgwFOPUVG+CXnZ5SpmcWWzioSA3Th3FxfQP6 5KTP717fk7Vuxi8B0Lq+bKdFycigfgYc -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:57 2025 by rpki-client