This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft File: 7IKxn5B5ht6zu4AtInPQNNFBSy0.mft (raw, json) Hash identifier: hZwLup4Y7K2Ju+68pBW0u/iZP4endxWf9L9N4hOgzUc= Subject key identifier: EB:8D:AA:62:C1:00:58:69:31:F2:43:49:5F:F9:99:C1:78:29:CB:1B Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0C1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft Manifest number: 0C16 Signing time: Mon 22 Dec 2025 18:20:05 +0000 Manifest this update: Mon 22 Dec 2025 18:20:04 +0000 Manifest next update: Mon 29 Dec 2025 18:20:04 +0000 Files and hashes: 1: 7IKxn5B5ht6zu4AtInPQNNFBSy0.crl (hash: fuoTeOP2PmWaiQATrMu0eUkgyZBBjjYokJN0dAcsTCY=) 2: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (hash: ygQ6vfqXgCOjWaI/M9+8sSQcLe6CReohgnbLpV4rvKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA, serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Dec 22 18:20:04 2025 GMT Not After : Dec 29 18:20:04 2025 GMT Subject: CN=69498bd5-1811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:68:44:2e:6c:7a:3c:12:9b:7c:60:91:44:1b: 02:ce:bc:87:5b:4b:ea:e2:fa:99:de:d0:dc:3c:ad: 43:67:b1:72:a8:15:79:bb:17:e0:24:04:bc:e6:6f: 18:30:db:31:23:f2:49:6b:53:e7:5b:bf:64:16:3c: 3e:ee:17:a2:1e:21:da:00:55:1a:02:ca:e5:34:21: ca:16:84:bd:a2:df:28:81:7c:ba:14:b3:59:05:12: dd:e5:27:68:4e:49:61:04:b7:5e:3d:36:96:6a:59: cd:6c:9d:69:93:b8:41:78:ef:c6:f9:98:cf:25:50: 83:bc:dd:bf:3c:4c:4e:e9:c5:bc:af:c9:86:15:50: 34:6e:4f:94:54:64:ed:d6:77:21:c8:c8:ba:29:4e: 1a:12:d6:ab:cd:c6:64:ca:1e:f7:6d:b8:f6:10:a4: 3b:d4:bd:b2:84:79:8b:1a:c5:c0:0f:a4:8c:0f:aa: c3:9d:14:45:96:08:c7:d0:ef:46:b0:4f:0d:fd:0d: 63:a9:dc:8e:da:55:78:50:b3:1b:81:ae:fc:9b:73: f6:cc:df:5b:6e:3f:00:08:2f:77:d4:47:63:e3:0d: 7e:12:9c:e7:d5:09:e8:19:59:5c:0c:a6:5c:9f:ad: bd:b6:df:19:f2:e8:8f:35:17:83:67:af:2e:20:30: 7f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8D:AA:62:C1:00:58:69:31:F2:43:49:5F:F9:99:C1:78:29:CB:1B X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:af:6f:3b:cf:09:ce:88:63:d7:94:26:a5:92:0c:13:a7:fc: 88:e1:38:63:f7:45:0f:e0:4f:5a:1a:0f:58:bc:df:28:f9:23: 5f:83:68:ed:75:f9:60:ff:85:62:8f:ea:79:bb:c4:88:6e:0a: e0:40:f7:57:33:30:c4:ed:26:bb:2c:70:98:54:56:75:e3:17: 56:6b:a2:69:ac:e1:a1:b8:e5:96:eb:3f:5b:63:ce:7d:b9:e8: a2:77:fa:aa:e1:5b:e7:1d:e4:19:cc:cd:95:a3:94:c6:7c:1e: c9:ae:57:99:77:50:df:9d:1c:13:1c:1d:94:f5:64:33:14:23: cb:07:2e:b1:3a:79:3d:d9:5e:cc:a0:d9:73:c6:1c:1e:ec:31: 68:2d:db:69:28:2d:b8:5f:8d:62:c4:e3:cc:5d:2a:0b:9f:a5: bc:45:f1:05:ba:e2:a8:22:ca:27:34:03:ed:f2:a0:6a:1e:e6: e3:0c:62:ca:a1:5f:c2:aa:6b:b3:36:a7:e7:56:90:7e:b0:da: 2c:4b:76:2d:c9:99:0e:83:59:84:6b:c4:f0:80:fd:12:e1:37: 7e:76:05:d6:c3:8c:32:d4:84:f7:52:61:20:69:eb:6b:5f:d2: 31:78:6e:37:64:00:a6:b1:56:8b:29:cb:f9:93:af:45:75:22: 18:74:3d:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjUxMjIyMTgyMDA0WhcNMjUxMjI5MTgyMDA0WjAYMRYwFAYD VQQDDA02OTQ5OGJkNS0xODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmhELmx6PBKbfGCRRBsCzryHW0vq4vqZ3tDcPK1DZ7FyqBV5uxfgJAS85m8Y MNsxI/JJa1PnW79kFjw+7heiHiHaAFUaAsrlNCHKFoS9ot8ogXy6FLNZBRLd5Sdo TklhBLdePTaWalnNbJ1pk7hBeO/G+ZjPJVCDvN2/PExO6cW8r8mGFVA0bk+UVGTt 1nchyMi6KU4aEtarzcZkyh73bbj2EKQ71L2yhHmLGsXAD6SMD6rDnRRFlgjH0O9G sE8N/Q1jqdyO2lV4ULMbga78m3P2zN9bbj8ACC931Edj4w1+Epzn1QnoGVlcDKZc n629tt8Z8uiPNReDZ68uIDB/ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuNqmLB AFhpMfJDSV/5mcF4KcsbMB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNDQS84MTM4NjA0NjIxODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0 Nnp1NEF0SW5QUU5ORkJTeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcr287zwnOiGPXlCalkgwTp/yI4Thj90UP4E9aGg9YvN8o+SNfg2jt dflg/4Vij+p5u8SIbgrgQPdXMzDE7Sa7LHCYVFZ14xdWa6JprOGhuOWW6z9bY859 ueiid/qq4VvnHeQZzM2Vo5TGfB7JrleZd1DfnRwTHB2U9WQzFCPLBy6xOnk92V7M oNlzxhwe7DFoLdtpKC24X41ixOPMXSoLn6W8RfEFuuKoIsonNAPt8qBqHubjDGLK oV/CqmuzNqfnVpB+sNosS3YtyZkOg1mEa8TwgP0S4Td+dgXWw4wy1IT3UmEgaetr X9IxeG43ZACmsVaLKcv5k69FdSIYdD3s -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:54 2025 by rpki-client