This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: FPR6IzautW6K5xDhGpWxZ/RkhlpiBfm2wxRujaiXCTo= Subject key identifier: 9B:E4:19:DF:1F:F1:B5:C6:99:55:A0:FF:24:13:24:11:6C:AD:BC:0E Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B89 Signing time: Mon 22 Dec 2025 18:34:03 +0000 Manifest this update: Mon 22 Dec 2025 18:34:02 +0000 Manifest next update: Mon 29 Dec 2025 18:34:02 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: NimcVhljZe0UA5Uljldrq0hz4IK6A6uF678yGHROIiU=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: bzYatoV9vXAn/TFneZ8B1b8ytRqlQM8seu8F8tZug0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2969 (0xb99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Dec 22 18:34:02 2025 GMT Not After : Dec 29 18:34:02 2025 GMT Subject: CN=69498f1b-4d26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:34:ce:ab:52:58:da:8b:71:91:86:58:e4:29: 33:de:14:9a:7c:73:a5:5e:c5:76:62:cf:fa:e6:a2: ef:fb:78:00:73:8e:5b:43:93:79:46:bb:34:de:65: f2:5f:10:e5:4b:4d:92:4f:61:3a:ed:68:fe:47:b5: 44:27:aa:84:23:15:bd:0a:3c:08:f3:73:49:c9:ec: 3c:da:ca:7d:7d:c3:03:6c:4e:c7:8c:69:86:09:f7: 39:b9:ba:33:b0:fc:1c:08:b8:7b:53:ff:7e:f0:60: 96:ce:ab:8f:10:43:20:49:da:63:11:4b:5e:e4:b3: 0b:b7:6c:2b:e1:f8:12:7c:cf:ff:6e:26:6b:db:58: 52:99:1f:3c:19:28:1b:93:81:0e:0f:22:f4:2a:ea: 8f:ab:f5:0a:c6:03:dd:fd:c1:60:a7:a5:37:90:3d: 05:91:f4:1c:05:3e:11:c0:0d:17:87:80:d3:bd:b7: 79:d7:c1:54:0f:97:a4:76:92:e8:b5:c2:3e:83:65: 02:5b:46:e3:dd:97:05:55:54:1e:99:5a:79:de:db: c9:0f:74:93:ae:2c:c1:89:a6:84:90:13:fc:51:70: 17:19:51:79:a3:87:57:6f:7e:44:40:7d:4a:ab:9d: 1c:b2:d1:ba:bb:1e:5e:b6:2a:14:78:33:1d:88:35: 61:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E4:19:DF:1F:F1:B5:C6:99:55:A0:FF:24:13:24:11:6C:AD:BC:0E X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:96:28:e0:42:0d:76:f9:bc:a1:1f:a5:b3:1c:25:88:f4:b2: f4:e9:ba:22:ab:b9:a2:da:f1:fb:45:4d:04:39:d8:d4:be:8e: cd:0f:ce:c3:09:32:8f:db:f8:a1:9e:cd:2d:43:16:fa:c4:80: 1d:5f:45:df:ba:19:95:f8:82:ba:8a:6e:66:c3:a5:e0:9f:27: 95:81:1c:8b:29:8c:f0:3c:16:46:a2:b0:40:2e:b0:49:c0:86: c5:3d:c6:e8:ea:70:63:73:00:b3:0a:25:9b:92:8c:cf:b5:19: dc:36:3a:7d:06:24:03:14:d5:67:b1:d4:50:22:56:d2:b6:00: 24:e7:fd:20:9f:d0:0e:63:02:92:d0:69:0c:e3:63:5c:09:c9: 88:90:dd:e4:a1:18:58:57:b9:90:15:04:ff:1a:c9:b0:71:9e: f4:ff:a0:50:d8:7d:b5:b5:37:ac:5f:47:9e:a7:a6:77:e1:db: 73:10:59:79:fc:57:71:e1:72:dc:0a:e6:5c:70:ee:87:65:53: 6e:67:9b:57:27:00:28:dd:24:19:ad:c5:21:90:8e:22:25:86: 6f:b2:c6:c8:fe:95:17:a4:da:58:21:b6:8b:9d:68:15:6e:9c: 02:8a:9f:aa:e9:fe:2f:8b:a6:7d:84:11:92:0e:c2:8b:e4:11: 5b:eb:4d:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUxMjIyMTgzNDAyWhcNMjUxMjI5MTgzNDAyWjAYMRYwFAYD VQQDDA02OTQ5OGYxYi00ZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DTOq1JY2otxkYZY5Ckz3hSafHOlXsV2Ys/65qLv+3gAc45bQ5N5Rrs03mXy XxDlS02ST2E67Wj+R7VEJ6qEIxW9CjwI83NJyew82sp9fcMDbE7HjGmGCfc5uboz sPwcCLh7U/9+8GCWzquPEEMgSdpjEUte5LMLt2wr4fgSfM//biZr21hSmR88GSgb k4EODyL0KuqPq/UKxgPd/cFgp6U3kD0FkfQcBT4RwA0Xh4DTvbd518FUD5ekdpLo tcI+g2UCW0bj3ZcFVVQemVp53tvJD3STrizBiaaEkBP8UXAXGVF5o4dXb35EQH1K q50cstG6ux5etioUeDMdiDVhNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvkGd8f 8bXGmVWg/yQTJBFsrbwOMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0lijgQg12+byhH6WzHCWI9LL06boiq7mi2vH7RU0EOdjUvo7ND87D CTKP2/ihns0tQxb6xIAdX0XfuhmV+IK6im5mw6XgnyeVgRyLKYzwPBZGorBALrBJ wIbFPcbo6nBjcwCzCiWbkozPtRncNjp9BiQDFNVnsdRQIlbStgAk5/0gn9AOYwKS 0GkM42NcCcmIkN3koRhYV7mQFQT/GsmwcZ70/6BQ2H21tTesX0eep6Z34dtzEFl5 /Fdx4XLcCuZccO6HZVNuZ5tXJwAo3SQZrcUhkI4iJYZvssbI/pUXpNpYIbaLnWgV bpwCip+q6f4vi6Z9hBGSDsKL5BFb602c -----END CERTIFICATE-----Generated at Tue Dec 23 09:41:55 2025 by rpki-client