This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: VwuJiui33I+LyRUwKPuSbhz+XsRf3vvB/84+DImwD2Y= Subject key identifier: 79:51:6B:48:B8:33:7A:03:AA:71:B9:9A:E9:28:B6:5D:D0:18:36:9C Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 022C Signing time: Thu 27 Nov 2025 00:21:16 +0000 Manifest this update: Thu 27 Nov 2025 00:21:15 +0000 Manifest next update: Thu 04 Dec 2025 00:21:15 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: yVgaHa6NGQ1m22j2utU48Nsl9HkeW70Vqt5xXTnZg24=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 00:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Nov 27 00:21:15 2025 GMT Not After : Dec 4 00:21:15 2025 GMT Subject: CN=6927997c-3e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5f:ad:4d:15:7e:c1:b9:3d:fe:c1:47:ef:5d: e1:c7:17:4e:fd:83:52:c5:f6:c9:9f:60:32:b3:d8: a1:c1:6e:db:52:1e:bb:d6:2c:ae:07:37:81:b9:ea: 72:7f:8c:80:1f:98:ff:03:d7:a8:53:29:4e:99:81: 38:13:9b:87:ff:ba:fd:2f:c5:98:e8:ec:3b:2c:20: ae:71:07:41:b9:c5:dd:10:52:6a:1c:fa:cd:26:b0: 1d:e9:d8:f6:06:ff:94:1e:a7:b3:34:94:91:fb:86: 70:bf:a5:cd:94:2d:d6:d5:3f:69:5d:12:b3:1d:52: 4f:d1:14:c6:a6:e3:e1:22:5e:6a:4e:e6:04:3f:c1: dc:ff:7e:d3:44:34:af:c8:d1:23:78:23:34:c3:f9: 87:da:0b:15:b4:9f:ca:f5:1d:6a:2a:8b:56:ed:e2: 87:62:f5:59:98:cd:63:b3:2f:09:28:be:34:73:ee: 3e:e4:4f:43:47:a5:e6:95:85:39:74:b1:a1:9f:c1: a8:18:c3:44:09:da:6f:b1:fc:ae:9b:6b:81:56:be: ef:23:2f:af:ae:b3:de:86:f0:22:c7:8b:c8:ce:f1: 3e:42:26:76:c0:78:4b:10:d4:e8:97:ad:f6:14:6c: 6e:e3:66:e9:f0:cc:54:07:06:f9:46:21:5e:ea:33: c8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:51:6B:48:B8:33:7A:03:AA:71:B9:9A:E9:28:B6:5D:D0:18:36:9C X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:18:80:2f:f0:5e:e4:0b:21:57:8a:4b:49:94:35:f4:38:42: ae:80:e6:26:e4:2c:67:68:bc:fe:ff:97:fd:61:01:eb:64:aa: 8c:47:d5:4e:ea:b8:9c:04:2d:66:99:af:59:46:14:b7:ad:49: 7a:ad:fa:15:a1:26:b7:c5:a9:45:f0:70:5b:dd:44:9e:2b:66: 85:4e:d5:97:a3:63:9a:b2:f8:7f:2c:49:1e:45:a4:de:7b:0c: 73:af:ae:e1:50:72:98:3f:08:c5:3d:ed:da:b1:a0:8a:34:a2: 71:50:da:c0:99:b6:30:57:ea:6b:64:03:2e:a7:b4:e7:9a:58: cc:2b:4a:1c:a4:4c:fe:16:2c:22:f0:5f:20:a8:69:b7:5b:6f: 9e:67:e2:02:a4:79:72:75:e1:ac:ae:86:a5:55:2e:5b:2f:64: 17:3b:5f:d0:de:fe:97:25:01:37:80:ce:d0:9a:86:95:f1:7c: c0:ff:90:d2:e4:c0:4b:2e:ab:25:13:e3:bf:f5:88:b9:15:21: ff:7f:59:90:74:e1:f4:99:19:4c:84:ca:4f:8c:9e:f4:3c:57: a9:79:03:7f:ac:68:51:8f:79:bc:03:27:2e:ec:eb:29:84:fd: 5e:a4:ce:af:06:24:74:ba:06:40:1f:78:c8:69:47:4b:0a:49: 4b:03:c2:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUxMTI3MDAyMTE1WhcNMjUxMjA0MDAyMTE1WjAYMRYwFAYD VQQDEw02OTI3OTk3Yy0zZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6V+tTRV+wbk9/sFH713hxxdO/YNSxfbJn2Ays9ihwW7bUh671iyuBzeBuepy f4yAH5j/A9eoUylOmYE4E5uH/7r9L8WY6Ow7LCCucQdBucXdEFJqHPrNJrAd6dj2 Bv+UHqezNJSR+4Zwv6XNlC3W1T9pXRKzHVJP0RTGpuPhIl5qTuYEP8Hc/37TRDSv yNEjeCM0w/mH2gsVtJ/K9R1qKotW7eKHYvVZmM1jsy8JKL40c+4+5E9DR6XmlYU5 dLGhn8GoGMNECdpvsfyum2uBVr7vIy+vrrPehvAix4vIzvE+QiZ2wHhLENTol632 FGxu42bp8MxUBwb5RiFe6jPIUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlRa0i4 M3oDqnG5mukotl3QGDacMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcGIAv8F7kCyFXiktJlDX0OEKugOYm5CxnaLz+/5f9YQHrZKqMR9VO 6ricBC1mma9ZRhS3rUl6rfoVoSa3xalF8HBb3USeK2aFTtWXo2Oasvh/LEkeRaTe ewxzr67hUHKYPwjFPe3asaCKNKJxUNrAmbYwV+prZAMup7TnmljMK0ocpEz+Fiwi 8F8gqGm3W2+eZ+ICpHlydeGsroalVS5bL2QXO1/Q3v6XJQE3gM7QmoaV8XzA/5DS 5MBLLqslE+O/9Yi5FSH/f1mQdOH0mRlMhMpPjJ70PFepeQN/rGhRj3m8Aycu7Osp hP1epM6vBiR0ugZAH3jIaUdLCklLA8KI -----END CERTIFICATE-----Generated at Fri Nov 28 15:54:54 2025 by rpki-client