This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: HAxnLVwAa5CFq61TCivTopzVBOIfwYQnxlDIFndW2CY= Subject key identifier: 9B:B3:B2:04:DA:21:E7:2F:58:3D:D0:CB:86:05:D6:6C:1C:01:13:BB Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 06D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 06CD Signing time: Sat 20 Dec 2025 21:25:53 +0000 Manifest this update: Sat 20 Dec 2025 21:25:52 +0000 Manifest next update: Sat 27 Dec 2025 21:25:52 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: Z9/nXxWfcYMqoyiU9hc3HvkPk2emDZOHVZIkVOefKiY=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:25:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Dec 20 21:25:52 2025 GMT Not After : Dec 27 21:25:52 2025 GMT Subject: CN=69471460-b0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c2:33:60:b1:ca:e6:8d:f9:b9:4c:d7:b2:8c: 77:03:aa:b4:ac:f6:a1:41:bd:97:2d:b9:35:93:a8: 3d:a8:b8:29:28:27:23:26:7e:e3:ad:49:46:ca:90: 55:e3:50:92:1c:b8:b7:b1:6f:f1:90:0d:0d:46:7f: 8d:58:86:ef:1c:d7:7d:18:34:e8:57:fa:88:70:49: 5d:13:3c:67:be:83:05:35:26:cd:96:a4:c1:99:28: 2c:a3:7f:91:7d:b0:6d:6c:5f:09:13:e9:e7:43:6e: 9e:15:d0:4f:1c:f3:96:54:9d:51:9d:ae:09:23:1a: 71:6a:18:b4:3c:4d:ee:37:da:58:81:6d:17:6a:e3: 70:59:18:52:cb:0f:f5:66:c1:31:25:a2:65:a1:ce: fc:03:06:a5:83:d5:b7:f2:6c:11:40:56:c8:c7:30: 68:8d:cc:7d:7f:7e:57:51:a0:2a:7b:99:0d:75:35: 45:77:ee:03:14:bb:f8:d4:b6:29:de:3b:09:2b:79: 11:26:71:59:58:48:79:c9:95:15:fc:38:3b:79:8c: 67:59:3e:4a:6e:e6:8b:11:2b:d2:21:3c:f7:bd:81: 93:3d:c5:b1:84:81:2a:a5:91:b9:04:8e:af:d1:ba: 19:75:82:d7:2b:d2:26:7a:f0:a9:c8:ad:65:f2:bb: 0a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B3:B2:04:DA:21:E7:2F:58:3D:D0:CB:86:05:D6:6C:1C:01:13:BB X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:eb:ad:b2:c8:bc:b9:49:c8:0d:82:78:e2:0b:01:54:be:60: c3:df:f1:d1:87:3b:0c:3e:33:8b:5e:be:34:7d:ec:07:1f:8a: 87:7f:07:f8:26:ff:29:25:9b:ab:c8:4d:8b:f4:57:1c:15:bc: 70:e4:9b:f8:e2:6f:0b:cc:92:a5:af:56:39:d2:51:b9:b6:02: a0:2b:e8:c1:42:80:e4:f9:38:53:4b:12:8a:f2:79:b0:eb:9e: 20:55:30:d7:b7:34:17:67:48:fa:34:de:b3:0c:9e:79:9c:78: 19:a0:fd:1b:b5:fa:ad:89:be:c0:a9:4d:fa:ba:55:b1:4f:f6: 99:5c:dc:e4:9e:50:3a:d1:ce:7b:7b:c3:32:c4:36:c2:24:be: 87:08:16:41:ae:23:d4:80:1f:b3:67:4e:c9:59:9a:87:7d:56: b0:08:82:cb:d6:b6:c2:ec:90:ac:07:d4:cd:49:54:75:12:28: a8:7a:27:71:66:79:24:5c:04:41:ed:83:d7:73:c2:9f:fb:c5: bc:b1:6f:ee:fc:9f:64:6a:a4:71:47:31:7c:a3:0a:64:6a:53: 68:ef:90:a1:94:bc:bf:15:9b:96:9a:8b:5a:f0:a9:48:61:72: 6a:6f:17:03:b7:df:4e:92:58:9b:c9:c2:eb:2d:1c:05:f1:db: 0a:1b:1f:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUxMjIwMjEyNTUyWhcNMjUxMjI3MjEyNTUyWjAYMRYwFAYD VQQDDA02OTQ3MTQ2MC1iMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMIzYLHK5o35uUzXsox3A6q0rPahQb2XLbk1k6g9qLgpKCcjJn7jrUlGypBV 41CSHLi3sW/xkA0NRn+NWIbvHNd9GDToV/qIcEldEzxnvoMFNSbNlqTBmSgso3+R fbBtbF8JE+nnQ26eFdBPHPOWVJ1Rna4JIxpxahi0PE3uN9pYgW0XauNwWRhSyw/1 ZsExJaJloc78Awalg9W38mwRQFbIxzBojcx9f35XUaAqe5kNdTVFd+4DFLv41LYp 3jsJK3kRJnFZWEh5yZUV/Dg7eYxnWT5KbuaLESvSITz3vYGTPcWxhIEqpZG5BI6v 0boZdYLXK9ImevCpyK1l8rsKnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuzsgTa IecvWD3Qy4YF1mwcARO7MB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE662yyLy5ScgNgnjiCwFUvmDD3/HRhzsMPjOLXr40fewHH4qHfwf4 Jv8pJZuryE2L9FccFbxw5Jv44m8LzJKlr1Y50lG5tgKgK+jBQoDk+ThTSxKK8nmw 654gVTDXtzQXZ0j6NN6zDJ55nHgZoP0btfqtib7AqU36ulWxT/aZXNzknlA60c57 e8MyxDbCJL6HCBZBriPUgB+zZ07JWZqHfVawCILL1rbC7JCsB9TNSVR1Eiioeidx ZnkkXARB7YPXc8Kf+8W8sW/u/J9kaqRxRzF8owpkalNo75ChlLy/FZuWmota8KlI YXJqbxcDt99OklibycLrLRwF8dsKGx+D -----END CERTIFICATE-----Generated at Sun Dec 21 06:08:53 2025 by rpki-client