This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft File: 7LW7UwpypAlWiey7FY8q5e_pElU.mft (raw, json) Hash identifier: JmXQKe5zdN6CF1rKOYVVtcHHFWy/FZbX82UnsariMs4= Subject key identifier: CA:6A:80:35:30:84:76:EF:49:00:62:52:2E:0E:89:1A:89:D4:4D:21 Authority key identifier: EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 Certificate issuer: /CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Certificate serial: 34EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft Manifest number: 34E7 Signing time: Mon 22 Dec 2025 15:02:03 +0000 Manifest this update: Mon 22 Dec 2025 15:02:02 +0000 Manifest next update: Mon 29 Dec 2025 15:02:02 +0000 Files and hashes: 1: 7LW7UwpypAlWiey7FY8q5e_pElU.crl (hash: +/KXOEoWlx5bbZfU4f6HwtU7WlRXDE9GoHOPMu2ScV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13546 (0x34ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9FB9, serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Validity Not Before: Dec 22 15:02:02 2025 GMT Not After : Dec 29 15:02:02 2025 GMT Subject: CN=69495d6b-1f41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:38:b7:b7:4e:86:bc:e9:67:89:8a:1f:b3:aa: 82:51:d5:c9:fc:24:aa:6f:21:a3:62:85:40:dc:12: 11:5d:8c:6b:e5:b2:22:b4:04:91:b4:13:a5:8e:aa: 89:65:d1:61:fd:0c:40:fa:4b:9e:14:28:50:5e:15: 1b:97:67:13:7a:d2:37:9d:9f:14:03:bd:49:9a:c9: 67:98:61:08:bf:df:94:f8:c4:04:9c:dd:dd:d7:27: 64:eb:99:f8:fc:27:63:fb:f6:11:08:5a:18:0a:14: fd:43:ad:83:64:4b:b7:bb:59:e3:ef:42:ba:38:30: 31:df:c1:ad:e0:b9:c8:d8:bf:fc:a4:08:2b:41:26: 35:48:7a:c2:1d:5b:91:80:e0:aa:11:6e:c6:5a:64: 52:4e:88:d9:b6:7d:f1:4a:2e:0f:b3:1e:09:96:1f: 5c:ed:f6:9f:d1:e2:1e:f5:e7:36:50:79:e7:eb:57: 1b:03:14:e2:4c:20:64:0c:ac:31:b6:a3:68:95:15: 60:e9:29:68:38:13:05:96:f8:b1:d0:15:92:44:20: cc:a9:c0:0f:f1:38:93:14:9d:be:10:4d:a5:d2:3d: d0:28:dc:0a:9d:56:f5:49:82:51:1b:9e:2a:d5:a3: d6:7d:ba:ee:e8:84:32:20:0b:b6:37:eb:f6:c7:62: 5b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6A:80:35:30:84:76:EF:49:00:62:52:2E:0E:89:1A:89:D4:4D:21 X509v3 Authority Key Identifier: keyid:EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:3b:79:32:eb:84:0f:7c:c9:19:0f:c4:06:f7:c7:69:71:cd: 40:32:52:fd:fa:be:1e:77:c3:72:39:a6:5c:ad:c3:78:cc:92: 25:85:41:dc:94:70:1e:d7:0f:0c:ad:8c:e9:6f:97:09:98:13: 87:95:73:d9:18:12:c2:74:5b:79:ed:cd:5a:d9:e7:9b:9a:32: 12:f6:33:9b:9a:78:e6:40:5f:41:a7:f3:b5:55:d1:2d:e0:3c: 84:9d:e6:55:17:8f:d5:1e:af:fc:1f:62:2f:cd:ac:aa:ad:9b: 13:84:78:dc:1d:42:1b:22:7f:7c:c9:b5:2e:05:ce:f1:73:4b: 9d:e1:62:67:af:64:47:54:58:02:0e:9c:ad:c5:9c:fa:6e:be: 4d:be:33:17:d7:92:a1:a1:80:f2:f3:57:fe:23:34:37:76:d7: 8c:7a:b5:88:c1:fb:a1:5b:de:67:92:35:5f:5d:db:55:a9:21: ce:04:d4:70:c3:84:19:42:3f:75:38:8b:73:4d:bd:06:74:de: 39:f7:8a:32:13:d6:92:84:a9:9a:57:6a:03:97:7d:7b:09:2e: 0c:29:13:22:c3:f4:e5:a3:a4:ea:bb:f9:5f:17:17:42:39:f7: 10:0c:8e:1a:17:38:21:48:ce:dd:e5:de:67:18:86:38:7a:f3: e5:0c:f5:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGQjkxMTAvBgNVBAUTKEVDQjVCQjUzMEE3MkE0MDk1Njg5RUNCQjE1OEYyQUU1 RUZFOTEyNTUwHhcNMjUxMjIyMTUwMjAyWhcNMjUxMjI5MTUwMjAyWjAYMRYwFAYD VQQDDA02OTQ5NWQ2Yi0xZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzi3t06GvOlniYofs6qCUdXJ/CSqbyGjYoVA3BIRXYxr5bIitASRtBOljqqJ ZdFh/QxA+kueFChQXhUbl2cTetI3nZ8UA71JmslnmGEIv9+U+MQEnN3d1ydk65n4 /Cdj+/YRCFoYChT9Q62DZEu3u1nj70K6ODAx38Gt4LnI2L/8pAgrQSY1SHrCHVuR gOCqEW7GWmRSTojZtn3xSi4Psx4Jlh9c7faf0eIe9ec2UHnn61cbAxTiTCBkDKwx tqNolRVg6SloOBMFlvix0BWSRCDMqcAP8TiTFJ2+EE2l0j3QKNwKnVb1SYJRG54q 1aPWfbru6IQyIAu2N+v2x2Jb3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpqgDUw hHbvSQBiUi4OiRqJ1E0hMB8GA1UdIwQYMBaAFOy1u1MKcqQJVonsuxWPKuXv6RJV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUZCOS8yMTE0RDU2ODFE QTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBBbFdpZXk3Rlk4cTVlX3BF bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMVzdVd3B5cEFsV2lleTdGWThxNWVfcEVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUZCOS8yMTE0RDU2ODFEQTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBB bFdpZXk3Rlk4cTVlX3BFbFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOO3ky64QPfMkZD8QG98dpcc1AMlL9+r4ed8NyOaZcrcN4zJIlhUHc lHAe1w8MrYzpb5cJmBOHlXPZGBLCdFt57c1a2eebmjIS9jObmnjmQF9Bp/O1VdEt 4DyEneZVF4/VHq/8H2IvzayqrZsThHjcHUIbIn98ybUuBc7xc0ud4WJnr2RHVFgC DpytxZz6br5NvjMX15KhoYDy81f+IzQ3dteMerWIwfuhW95nkjVfXdtVqSHOBNRw w4QZQj91OItzTb0GdN4594oyE9aShKmaV2oDl317CS4MKRMiw/Tlo6Tqu/lfFxdC OfcQDI4aFzghSM7d5d5nGIY4evPlDPXS -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:44 2025 by rpki-client