This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: h151cjzUPGUvHjyEmIxr0lae28ME0YOayXve+gvi34M= Subject key identifier: 7D:84:84:6B:A5:3D:C0:A5:AE:54:24:63:0A:89:5F:D5:61:88:FC:18 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0229 Signing time: Fri 21 Nov 2025 00:33:39 +0000 Manifest this update: Fri 21 Nov 2025 00:33:38 +0000 Manifest next update: Fri 28 Nov 2025 00:33:38 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: d84BHVy+kkGcDBSJqfYMSEXHWDI1WQJdPBMpCQq+3Jw=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Nov 2025 00:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Nov 21 00:33:38 2025 GMT Not After : Nov 28 00:33:38 2025 GMT Subject: CN=691fb362-1668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c8:89:8a:86:1c:df:e7:19:5f:0b:7d:18:eb: 48:32:fb:e6:33:7a:40:26:f3:6b:4f:4c:22:86:e9: 74:8b:ee:59:0f:80:29:61:0b:7b:ca:93:23:ee:12: d8:8f:f8:6a:4c:85:76:06:45:44:f6:6d:77:42:75: ca:50:a9:45:37:ee:db:cd:9a:6b:49:a2:7a:3f:09: ff:81:fa:62:c4:9c:ff:d7:1b:94:48:47:72:ae:69: 2b:1a:ea:04:f0:79:2c:e7:6a:39:3b:78:f0:6e:14: b2:73:1b:0b:1c:57:15:69:e9:9d:6f:51:c0:86:8e: c9:0c:e3:03:64:cb:2a:d3:61:5b:a2:39:7d:01:1f: c6:29:66:3f:4c:9c:aa:35:32:1f:a7:87:cb:90:14: 18:62:a3:1c:8c:ba:d9:f1:72:c1:52:e6:49:2d:0f: 6e:f2:12:eb:bc:bb:67:a0:40:10:19:39:a4:d1:0f: 19:76:ab:32:fd:b7:49:07:c1:8c:bc:22:d8:9a:23: 32:4b:ef:e9:5e:43:9b:e3:70:3c:b6:92:47:ca:26: b2:bb:41:bc:58:51:c2:64:be:a2:53:67:fd:6a:38: 2b:c5:05:2e:2e:76:6f:7c:36:16:14:c9:ed:cf:8a: b9:6f:be:3b:40:b2:46:2f:d5:5f:d6:2b:6b:df:77: e6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:84:84:6B:A5:3D:C0:A5:AE:54:24:63:0A:89:5F:D5:61:88:FC:18 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:71:1d:a2:de:75:f5:a6:ae:09:d0:a2:06:03:64:d9:bd:15: e9:73:36:16:b7:1f:fc:c3:b6:95:fb:1b:f2:72:db:6c:88:df: 1b:52:3b:fc:4d:a8:8e:af:50:dd:ed:d8:6f:90:08:fc:77:fe: a2:c3:07:2d:8a:3c:28:9b:ce:cc:7d:86:69:71:40:67:ec:ab: 8b:39:2f:89:4d:19:72:7e:94:62:e4:46:a5:ea:80:0b:7a:4a: a7:66:e9:f7:cb:bc:56:0c:e0:cc:94:6d:e7:9f:18:51:18:6b: b4:55:8a:65:2f:a4:e5:aa:01:09:de:be:2a:d6:68:27:61:6d: 8a:3c:ca:20:6a:87:29:5b:f0:4b:26:0c:b3:76:82:ef:e8:e9: b7:aa:d1:b5:e9:8a:6d:3e:52:59:e1:92:ef:be:e1:77:02:75: 00:4d:2d:2f:16:54:3b:e2:27:12:5c:da:5e:b2:08:53:b5:3e: 05:e9:f4:e3:98:49:41:dc:15:e7:3d:24:3d:0d:4a:d6:c5:c0: b0:67:f0:6e:70:78:c0:c9:93:6e:e4:aa:f6:2f:a3:15:dc:e9: fc:90:79:90:02:8a:65:11:db:50:50:a1:28:d4:aa:96:20:f5: 4b:38:fb:16:dc:88:05:be:11:0c:68:17:54:9f:02:c2:df:d6: 66:4c:43:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUxMTIxMDAzMzM4WhcNMjUxMTI4MDAzMzM4WjAYMRYwFAYD VQQDEw02OTFmYjM2Mi0xNjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosiJioYc3+cZXwt9GOtIMvvmM3pAJvNrT0wihul0i+5ZD4ApYQt7ypMj7hLY j/hqTIV2BkVE9m13QnXKUKlFN+7bzZprSaJ6Pwn/gfpixJz/1xuUSEdyrmkrGuoE 8Hks52o5O3jwbhSycxsLHFcVaemdb1HAho7JDOMDZMsq02Fbojl9AR/GKWY/TJyq NTIfp4fLkBQYYqMcjLrZ8XLBUuZJLQ9u8hLrvLtnoEAQGTmk0Q8Zdqsy/bdJB8GM vCLYmiMyS+/pXkOb43A8tpJHyiayu0G8WFHCZL6iU2f9ajgrxQUuLnZvfDYWFMnt z4q5b747QLJGL9Vf1itr33fmNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2EhGul PcClrlQkYwqJX9VhiPwYMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4cR2i3nX1pq4J0KIGA2TZvRXpczYWtx/8w7aV+xvycttsiN8bUjv8 TaiOr1Dd7dhvkAj8d/6iwwctijwom87MfYZpcUBn7KuLOS+JTRlyfpRi5Eal6oAL ekqnZun3y7xWDODMlG3nnxhRGGu0VYplL6TlqgEJ3r4q1mgnYW2KPMogaocpW/BL JgyzdoLv6Om3qtG16YptPlJZ4ZLvvuF3AnUATS0vFlQ74icSXNpesghTtT4F6fTj mElB3BXnPSQ9DUrWxcCwZ/BucHjAyZNu5Kr2L6MV3On8kHmQAoplEdtQUKEo1KqW IPVLOPsW3IgFvhEMaBdUnwLC39ZmTEO0 -----END CERTIFICATE-----Generated at Fri Nov 21 15:24:04 2025 by rpki-client