This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: Nwt0Abx+QUSVGCH7a1XlfG4WibogmpGcNrL2nFhwlew= Subject key identifier: 02:14:4B:FF:55:6F:67:29:49:0F:93:E8:D9:CF:F1:EF:E8:48:BB:E2 Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: 011E Signing time: Tue 23 Dec 2025 03:44:30 +0000 Manifest this update: Tue 23 Dec 2025 03:44:30 +0000 Manifest next update: Tue 30 Dec 2025 03:44:30 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: xMF+Vk6wYWZk/oFSQIc5fF6L/63zgYF9QGrz+6eHdic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85, serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Validity Not Before: Dec 23 03:44:30 2025 GMT Not After : Dec 30 03:44:30 2025 GMT Subject: CN=694a101e-743d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:01:1e:06:8b:c6:53:b5:05:a4:f1:68:00: 00:75:96:e4:39:c0:f8:99:75:62:4d:7c:42:dd:14: 21:79:76:ad:94:38:6a:43:94:9b:be:95:5c:f6:25: b1:40:16:29:d4:6e:d1:76:d4:56:b9:f2:2d:a8:4e: 44:87:4d:41:b4:90:bf:3c:40:d7:9a:cb:3f:3d:87: 9e:ca:71:2b:66:44:ae:9d:5d:ee:a0:7d:31:5b:22: 23:2f:92:70:e9:fc:00:51:48:f0:35:12:69:e8:f6: e1:73:ab:8d:c6:6b:75:08:67:81:28:a3:bc:c3:8c: fb:99:e9:75:c1:85:1e:04:0a:94:43:ec:e2:57:94: 5c:d9:d9:17:19:8b:72:d0:0b:67:a6:7a:8c:5e:d9: 6c:fc:84:e9:a8:33:54:35:83:39:69:e3:7b:f6:b1: d4:33:38:e3:5e:98:cb:d1:c1:34:13:99:9c:86:ec: 90:6b:ba:a8:65:da:5e:f0:de:12:26:2a:76:ee:43: 01:f9:bd:94:6c:df:42:49:cd:32:74:01:59:a6:86: eb:e8:e7:35:66:25:ff:a9:df:2f:60:04:bf:ab:dc: 39:d5:8f:02:39:7b:42:96:3c:bb:0c:aa:9a:18:40: 3c:a4:27:1d:55:51:09:a4:e0:b4:d9:3c:80:2d:17: e2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:14:4B:FF:55:6F:67:29:49:0F:93:E8:D9:CF:F1:EF:E8:48:BB:E2 X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:80:04:16:00:4c:3e:85:a7:66:ad:a7:97:a9:2e:db:3f:bc: d6:f7:ca:81:17:74:73:5e:32:11:e1:48:8e:79:27:70:61:74: b9:ef:54:80:03:5a:f2:00:ee:07:d9:45:79:42:d2:61:35:eb: 71:12:4b:1e:89:1b:60:ad:db:39:79:af:82:35:04:d6:86:c9: 01:54:39:95:2e:4a:28:7c:99:8f:91:85:a2:f9:7d:2b:3e:01: 52:ba:32:72:04:ac:9f:de:37:5b:b4:6d:cd:27:1d:16:92:c7: 56:94:eb:55:a9:3c:9b:49:cd:96:fd:c9:b5:9d:79:52:ee:09: 19:d2:4a:88:4e:6d:96:17:7d:3b:65:de:4e:51:79:39:17:cd: 5d:49:b2:10:d8:8a:67:b2:32:49:3d:dc:4d:aa:82:67:cb:96: 8a:2d:94:6f:98:01:2f:60:8e:89:4d:0e:bf:6b:61:16:8f:b7: a4:c6:d0:e3:21:67:da:1e:6e:94:96:d9:99:99:db:a0:3a:d4: 79:3c:fa:e5:d1:65:ef:c3:41:bb:40:3c:87:77:b7:1c:bd:9f: 46:e3:df:2a:82:d9:ee:58:12:76:c5:ed:fc:c2:34:5e:9a:86: 52:f5:07:ac:2f:bf:4b:44:e9:42:e7:70:e2:6a:77:ab:8c:f7: 4b:3c:38:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDODUxMTAvBgNVBAUTKEVEMzE2MDg0N0RDNEFFRDkyRDhDNTlEMTk4NDY1QjFD QkVGMkRGMjIwHhcNMjUxMjIzMDM0NDMwWhcNMjUxMjMwMDM0NDMwWjAYMRYwFAYD VQQDDA02OTRhMTAxZS03NDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuewBHgaLxlO1BaTxaAAAdZbkOcD4mXViTXxC3RQheXatlDhqQ5SbvpVc9iWx QBYp1G7RdtRWufItqE5Eh01BtJC/PEDXmss/PYeeynErZkSunV3uoH0xWyIjL5Jw 6fwAUUjwNRJp6Pbhc6uNxmt1CGeBKKO8w4z7mel1wYUeBAqUQ+ziV5Rc2dkXGYty 0AtnpnqMXtls/ITpqDNUNYM5aeN79rHUMzjjXpjL0cE0E5mchuyQa7qoZdpe8N4S Jip27kMB+b2UbN9CSc0ydAFZpobr6Oc1ZiX/qd8vYAS/q9w51Y8COXtCljy7DKqa GEA8pCcdVVEJpOC02TyALRfisQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIUS/9V b2cpSQ+T6NnP8e/oSLviMB8GA1UdIwQYMBaAFO0xYIR9xK7ZLYxZ0ZhGWxy+8t8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkM4NS8yODcwN0NCRTI4 ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0a3RqRm5SbUVaYkhMN3kz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkM4NS8yODcwN0NCRTI4ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0 a3RqRm5SbUVaYkhMN3kzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLgAQWAEw+hadmraeXqS7bP7zW98qBF3RzXjIR4UiOeSdwYXS571SA A1ryAO4H2UV5QtJhNetxEkseiRtgrds5ea+CNQTWhskBVDmVLkoofJmPkYWi+X0r PgFSujJyBKyf3jdbtG3NJx0WksdWlOtVqTybSc2W/cm1nXlS7gkZ0kqITm2WF307 Zd5OUXk5F81dSbIQ2IpnsjJJPdxNqoJny5aKLZRvmAEvYI6JTQ6/a2EWj7ekxtDj IWfaHm6UltmZmdugOtR5PPrl0WXvw0G7QDyHd7ccvZ9G498qgtnuWBJ2xe38wjRe moZS9QesL79LROlC53DianerjPdLPDjB -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:14 2025 by rpki-client