This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: b0MxMzg0I+RqqLNFRxQVGPRCG2u2XJyvj9iWuVmDrhg= Subject key identifier: 92:4D:03:EA:FD:72:FA:90:4C:78:3D:2F:86:A5:E9:D8:D2:F3:49:38 Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0BAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0B97 Signing time: Wed 24 Dec 2025 18:36:38 +0000 Manifest this update: Wed 24 Dec 2025 18:36:38 +0000 Manifest next update: Wed 31 Dec 2025 18:36:38 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: sVfC6FOciQ+DyKXrawG9PJVQupiVg//Y6ygh2W0jzHk=) 2: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: 1f6aFvhkVa/N7iAPf2YxVBmmTzpTWpZU9hllszfOpEI=) 3: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: eQjSLvcTPm64WJsuRzl8viIdz6G/ld4B/GelvP5rP4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2989 (0xbad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Dec 24 18:36:38 2025 GMT Not After : Dec 31 18:36:38 2025 GMT Subject: CN=694c32b6-d9e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8d:00:bd:02:e5:bf:d7:b7:ca:fc:f7:90:44: 7b:6f:f6:a8:2b:69:29:60:de:e1:45:4c:af:19:e2: 6a:9f:6a:a4:e3:91:00:31:27:fb:3f:4f:82:e4:df: c1:31:b0:2a:c6:88:03:71:7c:35:2a:bf:cb:1d:34: 81:8c:a5:78:a5:00:32:53:15:13:85:5a:22:29:41: 1d:c3:e3:bd:b7:f0:9a:5f:11:71:fc:c5:a7:b0:db: df:84:af:fa:b4:c4:0c:4a:30:57:a7:04:65:24:ec: f9:ae:f2:fb:c8:e7:d7:58:34:91:5b:08:19:46:fd: 34:60:63:af:e5:7c:79:cd:17:78:f5:6e:ee:cd:99: ea:95:9a:39:a8:01:e3:73:f0:00:b6:34:02:a2:8b: 7c:8d:22:a5:8a:2a:7e:99:e4:f3:c7:c5:91:18:71: 47:70:46:40:30:62:0c:fd:5e:d4:31:d5:c0:d2:95: 59:d7:dc:48:70:9a:f6:55:4c:c7:5f:d3:9d:a9:44: aa:90:7c:09:54:7c:68:0b:e3:77:57:72:28:be:4e: b6:ff:0a:c5:f8:0e:b7:96:1d:45:ad:22:c2:93:b9: 28:07:41:3e:35:a4:0a:b0:6a:29:04:7e:e4:01:3f: cb:99:82:69:74:e7:0b:03:7e:24:d8:03:04:d5:98: 43:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4D:03:EA:FD:72:FA:90:4C:78:3D:2F:86:A5:E9:D8:D2:F3:49:38 X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:eb:81:a4:37:bf:84:dc:ce:7f:94:64:69:ef:f4:f0:b1:08: d2:e7:75:b2:55:53:76:50:d2:c2:13:45:2d:2d:31:4a:9d:eb: 27:ca:4b:45:82:cf:29:90:a8:5c:2a:83:cc:0c:98:20:2c:23: f8:15:6b:33:04:ac:1f:76:3d:47:8d:61:70:c5:4d:15:97:2d: 80:ed:32:b0:e4:ba:96:d2:c9:d7:de:97:07:71:b2:13:9b:0b: 4c:d9:f7:64:64:71:2d:6f:0f:bd:b0:3d:af:83:b8:fb:e9:a5: 46:57:e7:52:13:5e:92:e3:ca:45:81:2d:5c:ba:e2:d4:62:06: 29:99:5c:0e:93:6a:f8:a7:64:55:0b:f2:46:49:c5:05:4c:15: 24:42:c6:7f:17:fa:9d:cf:ca:66:25:5d:a5:4c:78:28:f0:72: 50:66:51:5d:5d:97:0a:a5:b2:f4:a0:89:0d:19:39:32:b5:e7: 83:55:58:e5:6a:4b:9a:79:fd:21:ad:61:24:59:3f:f7:67:e9: ff:be:c2:fb:1f:c8:f2:5e:7c:16:71:71:6d:09:4d:48:ff:8b: 65:f1:10:a8:eb:14:13:ef:69:83:a5:47:cd:59:00:ca:df:f2: ab:21:6c:90:2f:59:c1:74:84:1a:60:51:a4:d5:7c:30:4f:eb: bd:d2:5d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUxMjI0MTgzNjM4WhcNMjUxMjMxMTgzNjM4WjAYMRYwFAYD VQQDDA02OTRjMzJiNi1kOWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAko0AvQLlv9e3yvz3kER7b/aoK2kpYN7hRUyvGeJqn2qk45EAMSf7P0+C5N/B MbAqxogDcXw1Kr/LHTSBjKV4pQAyUxUThVoiKUEdw+O9t/CaXxFx/MWnsNvfhK/6 tMQMSjBXpwRlJOz5rvL7yOfXWDSRWwgZRv00YGOv5Xx5zRd49W7uzZnqlZo5qAHj c/AAtjQCoot8jSKliip+meTzx8WRGHFHcEZAMGIM/V7UMdXA0pVZ19xIcJr2VUzH X9OdqUSqkHwJVHxoC+N3V3Iovk62/wrF+A63lh1FrSLCk7koB0E+NaQKsGopBH7k AT/LmYJpdOcLA34k2AME1ZhDMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJNA+r9 cvqQTHg9L4al6djS80k4MB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU64GkN7+E3M5/lGRp7/TwsQjS53WyVVN2UNLCE0UtLTFKnesnyktF gs8pkKhcKoPMDJggLCP4FWszBKwfdj1HjWFwxU0Vly2A7TKw5LqW0snX3pcHcbIT mwtM2fdkZHEtbw+9sD2vg7j76aVGV+dSE16S48pFgS1cuuLUYgYpmVwOk2r4p2RV C/JGScUFTBUkQsZ/F/qdz8pmJV2lTHgo8HJQZlFdXZcKpbL0oIkNGTkyteeDVVjl akuaef0hrWEkWT/3Z+n/vsL7H8jyXnwWcXFtCU1I/4tl8RCo6xQT72mDpUfNWQDK 3/KrIWyQL1nBdIQaYFGk1XwwT+u90l3R -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:20 2025 by rpki-client