This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: GCXI6HTflo0o3mSDfarPaHyXlpK3oQc3HEv/LvIoTTI= Subject key identifier: D9:27:BB:CA:F0:31:1C:7F:7B:84:20:24:77:4F:F1:3A:B0:FB:0B:33 Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 0711 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 070A Signing time: Mon 22 Dec 2025 21:08:55 +0000 Manifest this update: Mon 22 Dec 2025 21:08:55 +0000 Manifest next update: Mon 29 Dec 2025 21:08:55 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: hmo8FMmyutwyNF4Llh5IgnlnkqSBp0kn62ERwYc3MFk=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: oHlo3Sofjys47IZ2Ei8IuoMAeL8C2VUTJUZO9aDUVcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F, serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: Dec 22 21:08:55 2025 GMT Not After : Dec 29 21:08:55 2025 GMT Subject: CN=6949b367-cae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:03:2a:16:63:d1:13:06:12:39:2b:0e:c2:b5: fa:2b:b7:53:f0:2d:b0:e2:c2:8b:ee:d2:6c:48:91: 70:e2:12:dd:dd:0c:d7:83:1b:48:6c:2a:33:9d:15: 3f:bf:1f:8d:eb:a0:e7:7c:7e:9c:57:b1:b9:a0:01: e9:34:a5:a7:2a:fe:a0:8b:c9:c7:a3:12:05:54:db: 09:bc:86:6a:b3:7b:89:00:da:83:23:94:c7:98:36: 4d:5e:ce:96:c9:03:2b:80:8e:79:24:fd:43:a2:a8: f8:fb:e2:2e:6d:ca:23:d0:01:78:88:bc:3b:ce:36: 29:3c:03:f8:c9:9e:f2:49:6e:ca:0a:78:01:8a:4a: a0:75:c1:06:a6:05:c2:a3:68:e2:4e:44:b4:f3:67: 5c:a3:19:c0:e7:07:8a:ba:cc:16:37:1f:9d:98:9a: 0f:27:b4:67:f4:b2:17:1e:d9:1d:8c:2a:c3:bb:20: f4:01:5b:39:bd:64:64:46:15:b8:39:09:79:66:10: 82:65:7e:d1:38:d5:44:5b:d3:ba:ee:50:94:fb:7f: 4e:7c:ce:76:af:40:96:57:62:9e:5c:60:88:53:ba: 9e:f8:12:f0:ea:97:67:4d:75:3d:1f:f7:42:d4:84: b2:42:7c:3e:53:8c:67:28:05:92:87:c7:c8:2f:8e: ad:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:27:BB:CA:F0:31:1C:7F:7B:84:20:24:77:4F:F1:3A:B0:FB:0B:33 X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:50:06:31:5d:bb:23:27:35:f9:e2:20:33:a7:fa:c3:54:39: 20:2a:35:61:ba:b8:77:b2:cb:a2:17:89:94:5e:d2:4f:5d:b7: 06:a8:f3:87:e6:bf:06:0a:e8:af:11:66:02:41:d7:27:eb:e3: a7:23:58:20:09:63:70:7a:d1:c2:3b:9e:40:0d:72:71:7b:c8: 9b:80:cd:57:a1:d5:d8:98:e3:a9:3b:c1:1d:89:28:a2:fc:9f: 81:28:1c:e8:e7:31:0a:64:dd:c4:ac:4d:a7:23:94:82:7d:b3: 2a:cb:d0:9d:b1:48:4d:c7:95:09:0d:6c:f5:70:b3:02:5a:c3: 52:67:d4:ca:a0:3b:c6:8a:75:d4:9e:5c:fd:fd:7a:81:dd:06: 8d:c1:79:fa:a5:f2:fe:0a:59:18:91:dd:95:77:bc:3b:b4:24: cc:22:dd:a4:6d:4e:16:5e:dd:82:96:1e:c6:93:bb:fe:b5:d2: 40:c9:2d:96:92:76:8c:1d:70:bc:fa:32:0b:39:ec:30:85:6e: 9c:28:fd:e8:5a:6d:aa:9d:8e:10:9e:4f:09:bb:71:c7:77:17: 4a:86:4e:79:26:ff:65:8e:77:f1:00:e6:63:76:1f:7f:6d:ac: 59:e3:f6:f0:b1:dc:5a:38:33:5b:a7:a3:88:b2:bd:fe:5d:9c: ff:ca:55:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjUxMjIyMjEwODU1WhcNMjUxMjI5MjEwODU1WjAYMRYwFAYD VQQDDA02OTQ5YjM2Ny1jYWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwMqFmPREwYSOSsOwrX6K7dT8C2w4sKL7tJsSJFw4hLd3QzXgxtIbCoznRU/ vx+N66DnfH6cV7G5oAHpNKWnKv6gi8nHoxIFVNsJvIZqs3uJANqDI5THmDZNXs6W yQMrgI55JP1Doqj4++Iubcoj0AF4iLw7zjYpPAP4yZ7ySW7KCngBikqgdcEGpgXC o2jiTkS082dcoxnA5weKuswWNx+dmJoPJ7Rn9LIXHtkdjCrDuyD0AVs5vWRkRhW4 OQl5ZhCCZX7RONVEW9O67lCU+39OfM52r0CWV2KeXGCIU7qe+BLw6pdnTXU9H/dC 1ISyQnw+U4xnKAWSh8fIL46toQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNknu8rw MRx/e4QgJHdP8Tqw+wszMB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/UAYxXbsjJzX54iAzp/rDVDkgKjVhurh3ssuiF4mUXtJPXbcGqPOH 5r8GCuivEWYCQdcn6+OnI1ggCWNwetHCO55ADXJxe8ibgM1XodXYmOOpO8EdiSii /J+BKBzo5zEKZN3ErE2nI5SCfbMqy9CdsUhNx5UJDWz1cLMCWsNSZ9TKoDvGinXU nlz9/XqB3QaNwXn6pfL+ClkYkd2Vd7w7tCTMIt2kbU4WXt2Clh7Gk7v+tdJAyS2W knaMHXC8+jILOewwhW6cKP3oWm2qnY4Qnk8Ju3HHdxdKhk55Jv9ljnfxAOZjdh9/ baxZ4/bwsdxaODNbp6OIsr3+XZz/ylW8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:30 2025 by rpki-client