This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft File: 7unhDCkeVsgtdwcgELDlgAg_5yk.mft (raw, json) Hash identifier: ji8534sW/nFK9tWTpezmvYp8dGB+j4Hr+Agn0OIIsZo= Subject key identifier: B8:B5:1A:46:F0:19:9B:61:C4:84:27:9F:AB:9F:3B:4C:82:59:50:AC Authority key identifier: EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 Certificate issuer: /CN=A91E82F0/serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft Manifest number: 0188 Signing time: Tue 23 Dec 2025 02:33:09 +0000 Manifest this update: Tue 23 Dec 2025 02:33:08 +0000 Manifest next update: Tue 30 Dec 2025 02:33:08 +0000 Files and hashes: 1: 7unhDCkeVsgtdwcgELDlgAg_5yk.crl (hash: c7cew2M+0VIjgFOLtAFj5v87CMm+pRZN585pg7xvKBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82F0, serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Validity Not Before: Dec 23 02:33:08 2025 GMT Not After : Dec 30 02:33:08 2025 GMT Subject: CN=6949ff64-5d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2c:94:97:72:53:17:84:44:41:b1:dc:d7:c1: d2:e5:e8:af:1d:a3:db:c6:3f:18:f7:8e:a9:28:35: db:d9:4f:af:44:d0:8e:22:d9:5d:d5:bb:70:55:9a: 04:54:f3:d6:18:e1:ff:61:87:f5:e3:09:67:c1:76: 22:b8:75:34:ca:55:c1:ab:9e:af:9c:57:d7:71:7e: 28:0e:b6:b9:28:83:4c:46:0d:a3:8b:81:c4:be:40: e6:02:28:e6:35:dc:7f:dd:c9:b0:7e:f3:f5:50:97: f6:9d:14:c4:cb:8c:4a:d2:7a:3d:c8:14:9a:67:57: e5:81:64:12:fd:34:15:3d:cb:ad:ed:ab:39:60:e6: fe:0a:6b:d8:d5:de:18:33:24:18:33:6f:46:bb:da: 00:8e:b1:18:da:db:cb:2b:bc:d5:77:82:73:d0:63: d4:11:db:3e:f8:ec:29:49:c3:f7:d1:81:7b:1e:44: 1f:c1:fb:39:bf:d8:52:09:6e:d1:99:f1:6b:4c:42: bc:b6:b6:20:c7:3b:83:57:5a:f7:f0:0e:ce:99:9c: bf:cb:79:62:e7:be:b0:e5:e3:21:0d:51:b1:76:69: b3:89:ce:41:54:6e:e7:fa:0e:a6:88:5d:62:a1:03: df:c9:e2:d5:d8:4a:8a:57:65:f3:10:d7:bf:03:c0: 62:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B5:1A:46:F0:19:9B:61:C4:84:27:9F:AB:9F:3B:4C:82:59:50:AC X509v3 Authority Key Identifier: keyid:EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f0:a0:6c:19:35:f3:39:d2:cb:d4:5f:8b:4a:55:02:6b:99: 84:b8:1e:80:b6:97:88:67:15:5d:f5:5b:fa:6e:58:fb:f0:a6: f1:fd:8e:77:11:1b:73:19:e1:fb:86:ca:13:8e:29:5f:2d:d3: c8:70:10:61:67:14:e5:e7:74:93:30:43:6e:df:85:a0:9e:f8: d8:21:ea:b0:8e:38:d5:98:96:a4:c9:5f:4b:e2:b2:b7:15:9b: 22:b3:c5:b7:2d:cf:00:6c:76:ee:e7:3f:6a:05:d2:04:93:15: 9e:19:87:16:a5:ee:8e:aa:b9:15:71:8d:dd:b1:77:80:2f:7b: ee:4a:be:f1:ad:b5:3a:a3:3b:3b:a3:d2:c6:b7:12:19:5f:73: ad:7f:74:33:a8:ab:1e:ab:b4:fb:26:83:5b:a6:e5:93:26:c1: 93:21:ec:99:9a:6d:f7:36:42:00:3c:a7:ca:0b:73:8a:a5:75: 5c:70:b3:d2:69:92:6d:19:34:71:23:cc:6f:e8:97:c1:d2:2d: 6e:84:d6:e1:84:7f:4a:ed:1e:33:a6:b6:d9:7c:f3:72:d5:e1: 9c:15:c9:0e:db:64:a6:9d:77:db:c1:d5:80:cb:77:10:d4:7e: 56:9d:8c:54:a6:97:6f:63:f6:56:49:8e:ae:5d:ee:8c:19:65: 13:c6:f4:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgyRjAxMTAvBgNVBAUTKEVFRTlFMTBDMjkxRTU2QzgyRDc3MDcyMDEwQjBFNTgw MDgzRkU3MjkwHhcNMjUxMjIzMDIzMzA4WhcNMjUxMjMwMDIzMzA4WjAYMRYwFAYD VQQDDA02OTQ5ZmY2NC01ZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSyUl3JTF4REQbHc18HS5eivHaPbxj8Y946pKDXb2U+vRNCOItld1btwVZoE VPPWGOH/YYf14wlnwXYiuHU0ylXBq56vnFfXcX4oDra5KINMRg2ji4HEvkDmAijm Ndx/3cmwfvP1UJf2nRTEy4xK0no9yBSaZ1flgWQS/TQVPcut7as5YOb+CmvY1d4Y MyQYM29Gu9oAjrEY2tvLK7zVd4Jz0GPUEds++OwpScP30YF7HkQfwfs5v9hSCW7R mfFrTEK8trYgxzuDV1r38A7OmZy/y3li576w5eMhDVGxdmmzic5BVG7n+g6miF1i oQPfyeLV2EqKV2XzENe/A8BiIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLi1Gkbw GZthxIQnn6ufO0yCWVCsMB8GA1UdIwQYMBaAFO7p4QwpHlbILXcHIBCw5YAIP+cp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODJGMC81QzU3RTVDMDgy ODMxMUVFOTBDODgxNkFDNEY5QUUwMi83dW5oRENrZVZzZ3Rkd2NnRUxEbGdBZ181 eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd1bmhEQ2tlVnNndGR3Y2dFTERsZ0FnXzV5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODJGMC81QzU3RTVDMDgyODMxMUVFOTBDODgxNkFDNEY5QUUwMi83dW5oRENrZVZz Z3Rkd2NnRUxEbGdBZ181eWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs8KBsGTXzOdLL1F+LSlUCa5mEuB6AtpeIZxVd9Vv6blj78Kbx/Y53 ERtzGeH7hsoTjilfLdPIcBBhZxTl53STMENu34WgnvjYIeqwjjjVmJakyV9L4rK3 FZsis8W3Lc8AbHbu5z9qBdIEkxWeGYcWpe6OqrkVcY3dsXeAL3vuSr7xrbU6ozs7 o9LGtxIZX3Otf3QzqKseq7T7JoNbpuWTJsGTIeyZmm33NkIAPKfKC3OKpXVccLPS aZJtGTRxI8xv6JfB0i1uhNbhhH9K7R4zprbZfPNy1eGcFckO22SmnXfbwdWAy3cQ 1H5WnYxUppdvY/ZWSY6uXe6MGWUTxvT8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:50 2025 by rpki-client