This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: S62n15uSUIezlVyN6FCNiNyLWbV9g+aJbr/H2UAlxHI= Subject key identifier: F9:D7:FE:10:53:1F:0D:B6:C9:78:7C:B1:A2:B2:31:12:9C:37:C6:3F Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0230 Signing time: Fri 05 Dec 2025 00:21:38 +0000 Manifest this update: Fri 05 Dec 2025 00:21:37 +0000 Manifest next update: Fri 12 Dec 2025 00:21:37 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: 4NdvMHNgvWwJBkTfdb1X6voXtQbSyMwvWs9MZ8JrgmM=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Dec 5 00:21:37 2025 GMT Not After : Dec 12 00:21:37 2025 GMT Subject: CN=69322591-a0c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e0:ca:2e:4a:dc:32:f2:19:c6:c4:27:9f:4b: d0:73:2d:ef:ea:32:cd:c8:35:20:1f:9e:fb:9a:bb: 30:7a:a4:c3:b1:73:d5:a7:fc:1e:e8:2c:10:f0:5d: ed:19:90:7a:be:de:2f:69:53:eb:9b:08:c6:7f:44: 5e:d6:e8:b6:e7:9c:fc:15:24:d5:3c:ee:8a:e2:db: c2:a1:60:07:28:ca:5d:b4:0f:47:38:55:18:b1:79: 33:88:8c:59:7e:e0:a4:d5:71:69:b3:bc:23:86:33: 83:4e:82:ba:bf:00:cd:2f:e0:b0:5c:bf:62:ab:92: e1:c0:de:48:19:7f:9d:37:11:17:df:23:12:f4:9a: e2:91:ae:6a:09:c3:b6:40:24:51:9d:a0:83:1e:33: 18:5f:0e:9d:24:a3:37:99:7a:4a:77:52:cb:67:ec: 8b:10:89:12:f6:8f:0d:e8:46:77:37:dd:0a:0e:07: 2d:26:e1:f1:4d:b6:43:64:1d:33:09:ff:91:a3:d8: 16:ff:21:fb:2f:ef:4b:de:11:71:c4:23:88:48:92: e3:0a:60:b4:c3:7b:9a:49:16:cb:d9:1d:79:5a:1f: fc:74:25:f1:25:81:fb:df:ff:12:95:0e:03:4a:a1: 08:7a:99:12:f6:46:99:a9:51:8d:d5:6b:6f:a3:e4: 5c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D7:FE:10:53:1F:0D:B6:C9:78:7C:B1:A2:B2:31:12:9C:37:C6:3F X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:56:bd:a9:e4:36:5b:05:45:ba:09:72:4f:24:89:dc:7a:dd: c0:4f:a4:35:a3:d5:b8:c1:c8:d3:cb:ab:18:b0:be:96:0a:2a: 3f:1d:1a:9e:53:0b:30:51:12:88:06:c4:26:f3:7c:08:56:55: a4:b4:6e:1f:06:ad:df:da:82:99:59:03:3c:ef:66:7c:85:fa: 1d:58:b3:70:cd:bc:c6:4f:4f:6a:ce:04:8d:25:67:1c:a2:f7: f5:9a:00:5c:04:cd:3b:9a:24:24:4e:5a:39:f0:6a:b8:aa:f1: d1:bc:c8:9a:bf:c2:f1:65:cb:d8:fe:98:c2:94:f5:79:74:34: 55:73:51:78:0a:5b:1f:42:36:3e:7f:ca:45:6f:95:04:f0:0d: b0:81:50:d0:d0:c1:5e:c3:51:8b:04:bb:02:4b:ba:db:74:5b: 1b:5f:7d:3f:3d:3b:f7:1c:f3:a3:0e:59:2b:29:c7:b2:7b:8a: be:66:ac:fa:a4:c7:84:a0:fa:b6:8a:34:6b:b6:4a:6b:70:fb: 17:cf:ea:98:f9:93:45:c2:8e:1c:1a:7d:1e:1f:a4:9b:0c:91: ca:d5:80:60:3a:82:cc:89:19:8c:05:30:f5:9e:78:11:13:83: 97:68:90:25:34:90:52:98:c8:ef:b1:69:2a:cd:28:b3:20:de: 09:ee:2e:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUxMjA1MDAyMTM3WhcNMjUxMjEyMDAyMTM3WjAYMRYwFAYD VQQDEw02OTMyMjU5MS1hMGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uDKLkrcMvIZxsQnn0vQcy3v6jLNyDUgH577mrsweqTDsXPVp/we6CwQ8F3t GZB6vt4vaVPrmwjGf0Re1ui255z8FSTVPO6K4tvCoWAHKMpdtA9HOFUYsXkziIxZ fuCk1XFps7wjhjODToK6vwDNL+CwXL9iq5LhwN5IGX+dNxEX3yMS9Jrika5qCcO2 QCRRnaCDHjMYXw6dJKM3mXpKd1LLZ+yLEIkS9o8N6EZ3N90KDgctJuHxTbZDZB0z Cf+Ro9gW/yH7L+9L3hFxxCOISJLjCmC0w3uaSRbL2R15Wh/8dCXxJYH73/8SlQ4D SqEIepkS9kaZqVGN1Wtvo+RcgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnX/hBT Hw22yXh8saKyMRKcN8Y/MB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTVr2p5DZbBUW6CXJPJIncet3AT6Q1o9W4wcjTy6sYsL6WCio/HRqe UwswURKIBsQm83wIVlWktG4fBq3f2oKZWQM872Z8hfodWLNwzbzGT09qzgSNJWcc ovf1mgBcBM07miQkTlo58Gq4qvHRvMiav8LxZcvY/pjClPV5dDRVc1F4ClsfQjY+ f8pFb5UE8A2wgVDQ0MFew1GLBLsCS7rbdFsbX30/PTv3HPOjDlkrKceye4q+Zqz6 pMeEoPq2ijRrtkprcPsXz+qY+ZNFwo4cGn0eH6SbDJHK1YBgOoLMiRmMBTD1nngR E4OXaJAlNJBSmMjvsWkqzSizIN4J7i6B -----END CERTIFICATE-----Generated at Fri Dec 5 21:50:53 2025 by rpki-client