This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft File: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft (raw, json) Hash identifier: 30WIGYPOzcmBKUvErBNy8CnueGIGfMl3Uuaszz1t8kg= Subject key identifier: A3:31:2C:69:C0:A7:42:F3:0C:3B:54:F5:2A:CB:DB:BF:85:9D:03:6E Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft Manifest number: 6F Signing time: Sun 07 Dec 2025 05:00:04 +0000 Manifest this update: Sun 07 Dec 2025 05:00:03 +0000 Manifest next update: Sun 14 Dec 2025 05:00:03 +0000 Files and hashes: 1: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl (hash: WJz8GpAmSkHxOQFqlvANbO8Zz5o5KsJV0pJJAtR+Wzk=) 2: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (hash: 9fyJQPuQiZFhFR8voAxZ+5tLkOfoUmhI0rtIPoaKy8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Dec 7 05:00:03 2025 GMT Not After : Dec 14 05:00:03 2025 GMT Subject: CN=693509d3-2b69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3b:56:5c:73:35:af:9e:60:d9:e0:6b:26:13: 1c:eb:44:f1:76:9e:51:ba:a7:93:a8:eb:57:5d:44: 82:f3:fa:4d:2b:a4:24:ed:fd:66:1c:1e:ab:bd:37: b9:d1:1f:52:2a:7c:8f:5d:11:47:17:48:9d:b1:5c: dc:07:50:d6:30:6f:88:d7:ec:c4:61:3a:ad:74:14: 8e:62:0e:34:7f:d7:61:67:1e:87:de:d2:f1:70:8b: a8:0d:e3:e8:64:ff:e0:a1:93:05:af:f7:9f:e9:52: 32:8c:7b:15:b8:8f:ab:12:cd:7e:6a:8c:c7:5b:82: 37:55:80:30:01:16:c0:ab:92:2b:50:d9:08:0a:75: 81:b9:db:e7:00:8b:29:fe:3a:57:68:dd:7e:7c:aa: 5c:41:2c:5f:73:4b:c7:90:f4:e7:85:66:4e:89:ce: 3e:fe:b6:19:33:bd:86:b8:95:d0:38:41:43:0b:e5: 7e:6d:11:c4:19:a3:3b:45:4f:d3:c8:21:d9:09:37: ad:62:43:93:56:d1:ad:9b:d7:bf:32:12:21:1f:10: c8:f8:39:a0:37:16:27:6d:73:1f:2a:78:87:0a:64: 86:1a:68:02:17:40:81:1d:c9:5e:31:b9:32:b1:97: 9a:51:dd:b7:72:01:a8:db:7b:25:4d:28:41:74:03: de:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:31:2C:69:C0:A7:42:F3:0C:3B:54:F5:2A:CB:DB:BF:85:9D:03:6E X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:0c:d1:2d:3b:d4:ed:dd:5c:39:b3:2d:f4:96:75:e8:2a:84: 65:cb:c1:ea:8b:e6:0b:a8:72:b4:85:0b:89:b2:c7:4a:35:a0: c4:ea:7e:76:64:44:0e:31:04:23:ea:00:61:d2:87:e5:64:b1: a2:ba:16:77:58:2e:d0:2d:28:b9:49:85:49:63:df:01:7d:be: ac:78:cb:da:89:92:19:62:8e:5f:c4:bd:9b:96:70:24:88:32: b8:be:7a:b9:d6:49:b7:de:80:76:7e:f7:b4:89:cc:ff:93:9f: a3:7a:51:29:5c:7c:65:3a:b2:c9:de:0d:a2:99:27:f4:f7:bf: bb:7c:1c:ab:a3:43:89:bf:2c:95:94:53:0c:71:71:be:ac:de: 10:79:83:28:09:ca:69:3c:53:9e:05:2a:7d:3b:ad:c2:be:be: 92:ea:46:c4:d3:d6:07:1d:ce:76:bc:89:79:1f:48:40:72:c1: 7a:e3:33:8c:86:00:4c:8c:f7:bc:66:4f:92:f7:f4:c8:38:4b: 98:ea:88:d8:82:d6:c9:9a:2f:09:64:87:78:f4:d7:c4:1b:3a: 86:c2:d6:74:e9:c6:f6:b5:27:4a:20:d2:c0:2a:fa:41:5d:25: fb:1e:c7:20:70:bc:f3:35:e7:66:5a:6a:6e:23:28:69:26:00: 26:94:11:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTEyMDcwNTAwMDNaFw0yNTEyMTQwNTAwMDNaMBgxFjAUBgNV BAMTDTY5MzUwOWQzLTJiNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClO1ZcczWvnmDZ4GsmExzrRPF2nlG6p5Oo61ddRILz+k0rpCTt/WYcHqu9N7nR H1IqfI9dEUcXSJ2xXNwHUNYwb4jX7MRhOq10FI5iDjR/12FnHofe0vFwi6gN4+hk /+ChkwWv95/pUjKMexW4j6sSzX5qjMdbgjdVgDABFsCrkitQ2QgKdYG52+cAiyn+ Oldo3X58qlxBLF9zS8eQ9OeFZk6Jzj7+thkzvYa4ldA4QUML5X5tEcQZoztFT9PI IdkJN61iQ5NW0a2b178yEiEfEMj4OaA3Fidtcx8qeIcKZIYaaAIXQIEdyV4xuTKx l5pR3bdyAajbeyVNKEF0A94BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUozEsacCn QvMMO1T1Ksvbv4WdA24wHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB QTI0LzE3MzlDMzVBMkJDOTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVox REJqSV91cVIwdlV0TjV4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADIM0S071O3dXDmzLfSWdegqhGXLweqL5guocrSFC4myx0o1oMTqfnZk RA4xBCPqAGHSh+VksaK6FndYLtAtKLlJhUlj3wF9vqx4y9qJkhlijl/EvZuWcCSI Mri+ernWSbfegHZ+97SJzP+Tn6N6USlcfGU6ssneDaKZJ/T3v7t8HKujQ4m/LJWU Uwxxcb6s3hB5gygJymk8U54FKn07rcK+vpLqRsTT1gcdzna8iXkfSEBywXrjM4yG AEyM97xmT5L39Mg4S5jqiNiC1smaLwlkh3j018QbOobC1nTpxva1J0og0sAq+kFd JfsexyBwvPM152Zaam4jKGkmACaUEck= -----END CERTIFICATE-----Generated at Mon Dec 8 06:02:09 2025 by rpki-client