This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: sdmUtKKbjcqlMP1bZy6vUVOATpEr60V0rc1Nomes0sg= Subject key identifier: 6F:F8:0E:C9:15:A8:D7:68:56:6F:EE:21:86:5D:61:86:96:74:C3:D1 Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 4091 Signing time: Mon 22 Dec 2025 14:45:23 +0000 Manifest this update: Mon 22 Dec 2025 14:45:22 +0000 Manifest next update: Mon 29 Dec 2025 14:45:22 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: FeAhuuS6AdXo5eHdt/feq96AeKvuI3rgQrmE0R+lSSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Dec 22 14:45:22 2025 GMT Not After : Dec 29 14:45:22 2025 GMT Subject: CN=69495982-2af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b4:65:c0:ca:41:be:01:2a:75:ca:e0:57:51: 08:7a:40:81:00:77:bd:90:71:67:bd:c0:2b:dd:64: 55:9b:95:b4:0c:a3:c9:1b:35:5e:fc:1a:ac:82:95: 73:f1:39:a2:62:c9:6a:d2:a7:72:9e:f3:bb:d5:a2: 32:9e:57:85:a0:45:35:38:76:42:db:bc:e8:db:a8: 6e:0b:a5:c5:4a:50:11:c7:b5:7c:23:c0:3e:db:a7: 27:72:69:8b:90:73:94:eb:cb:11:3d:7f:0c:ea:ae: 94:7d:ce:17:e5:dd:1c:1d:d4:2a:6a:a3:88:ad:67: 41:01:af:4c:04:17:f1:74:bb:85:fc:ea:20:30:7b: e7:d5:f8:f3:80:86:4e:f6:2f:d2:04:fd:87:e6:90: a2:18:39:3a:51:b4:99:3d:d1:ab:45:cf:ad:4d:e4: a1:fc:47:9a:18:a3:97:bc:58:73:dd:cb:36:17:18: 96:89:ea:86:3b:d5:54:4e:7b:83:f8:fb:1d:fe:0c: de:e9:5d:7b:59:ec:b4:97:bb:37:7e:98:13:de:ee: d3:22:11:9b:05:92:f1:2e:cc:fe:b7:14:71:10:39: 68:47:58:96:c5:a3:01:9e:cf:df:58:f7:a6:de:3b: 80:da:87:96:1c:6f:cb:fd:e4:41:11:cb:1f:a9:4d: ea:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F8:0E:C9:15:A8:D7:68:56:6F:EE:21:86:5D:61:86:96:74:C3:D1 X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:2f:2e:87:2e:a5:58:74:15:58:76:cd:96:83:27:c4:63:7e: c5:76:64:6d:c0:6e:ef:34:79:1e:69:b7:a5:55:66:b6:56:69: 92:88:1d:d1:87:e3:7c:b9:a7:ae:30:07:45:01:0d:68:98:88: 00:19:e5:35:bf:c1:8f:9c:21:a2:95:fc:98:da:0f:b3:e1:52: fd:62:3e:15:bb:fa:5b:65:1d:ec:90:0e:67:65:62:b2:34:eb: b9:18:79:91:1c:44:00:b0:fd:50:e5:ba:4a:5f:09:7d:6f:2d: cf:20:4c:80:66:0a:7d:b2:08:b6:52:f4:f2:b2:a3:57:64:5a: ce:be:66:03:93:ca:d0:ff:90:4b:ab:8e:f4:ac:80:1b:59:5e: c0:f1:20:fb:97:d9:b0:db:27:4b:47:3a:8c:af:0c:f2:ec:7d: d6:4a:cf:40:1d:53:68:60:26:7d:fc:13:f7:7e:d0:c3:94:4d: 02:fe:61:5a:16:2d:40:e4:e0:95:26:9e:c9:ec:f7:fb:2c:93: 12:a0:12:8b:18:85:bc:90:ad:f1:d8:dd:95:6a:52:39:8a:c0: 73:77:c3:d1:6d:7e:9a:81:a8:9c:03:3d:3c:5b:b6:c4:f7:d2: 15:5f:7c:35:6f:ea:f8:bc:00:a5:71:ae:5a:c0:9c:17:5b:d0: b0:22:50:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUxMjIyMTQ0NTIyWhcNMjUxMjI5MTQ0NTIyWjAYMRYwFAYD VQQDDA02OTQ5NTk4Mi0yYWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7RlwMpBvgEqdcrgV1EIekCBAHe9kHFnvcAr3WRVm5W0DKPJGzVe/BqsgpVz 8TmiYslq0qdynvO71aIynleFoEU1OHZC27zo26huC6XFSlARx7V8I8A+26cncmmL kHOU68sRPX8M6q6Ufc4X5d0cHdQqaqOIrWdBAa9MBBfxdLuF/OogMHvn1fjzgIZO 9i/SBP2H5pCiGDk6UbSZPdGrRc+tTeSh/EeaGKOXvFhz3cs2FxiWieqGO9VUTnuD +Psd/gze6V17Wey0l7s3fpgT3u7TIhGbBZLxLsz+txRxEDloR1iWxaMBns/fWPem 3juA2oeWHG/L/eRBEcsfqU3qjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/4DskV qNdoVm/uIYZdYYaWdMPRMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCLy6HLqVYdBVYds2WgyfEY37FdmRtwG7vNHkeabelVWa2VmmSiB3R h+N8uaeuMAdFAQ1omIgAGeU1v8GPnCGilfyY2g+z4VL9Yj4Vu/pbZR3skA5nZWKy NOu5GHmRHEQAsP1Q5bpKXwl9by3PIEyAZgp9sgi2UvTysqNXZFrOvmYDk8rQ/5BL q470rIAbWV7A8SD7l9mw2ydLRzqMrwzy7H3WSs9AHVNoYCZ9/BP3ftDDlE0C/mFa Fi1A5OCVJp7J7Pf7LJMSoBKLGIW8kK3x2N2ValI5isBzd8PRbX6agaicAz08W7bE 99IVX3w1b+r4vAClca5awJwXW9CwIlB0 -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:09 2025 by rpki-client