This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: kRs2sX/IIc1jhvgBn1rf1AF02zeSiHeyLngSW1bHE4g= Subject key identifier: 99:27:88:0E:E8:C7:E6:B6:66:0D:68:A9:23:C2:F9:F1:84:FD:A4:2D Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 0327 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 030E Signing time: Sat 06 Dec 2025 23:46:53 +0000 Manifest this update: Sat 06 Dec 2025 23:46:52 +0000 Manifest next update: Sat 13 Dec 2025 23:46:52 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: bjXF3UUm3V0HLmWTGjDlXSC+Bj2Deo1LaXDVJATRZl4=) 2: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: BW5tT5Fwnb90kCw3kdyCo6pAhP8PZLajj0fwMdIDbDA=) 3: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: z4aaUTQPt4LTmxBrxqPbGwAQr9ekPHI1lkNmNVVH7mw=) 4: 652A87CC65EC11F0BAEF8066C4F9AE02.roa (hash: 9Lyfdf8jewXKDNNSejND0Fdao81XqhdSmTyOn0pVCEo=) 5: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: zUxzk8PVVaES9EMN0VkIqcIxDvXdbV+4WJwr6H3F2mM=) 6: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: 2FTQfXCf5iEijrWaIGoqW7OkD23cYHWReHvkr3RdiVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Dec 6 23:46:52 2025 GMT Not After : Dec 13 23:46:52 2025 GMT Subject: CN=6934c06d-507e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:08:61:07:f6:b6:83:19:79:1a:3b:4d:3c:dc: 32:5c:1c:82:f2:50:25:e8:73:fb:54:71:f7:8c:6b: bc:a6:54:94:e3:a7:7c:d9:50:e4:b4:d4:21:e9:4e: 23:ff:a1:83:b3:3c:da:2d:ef:7c:0a:f6:84:c0:f9: 57:b9:76:d5:f8:2c:e7:1d:42:9a:00:34:93:7d:9b: 71:76:84:4d:91:04:b5:ad:cf:59:0a:61:77:bf:46: 77:a9:9e:f1:ce:de:7f:db:d1:0f:82:a7:6a:28:51: 07:de:f7:1a:fb:a9:27:4e:f3:7f:56:74:9d:4e:4e: 98:84:10:20:d3:6b:ad:de:4f:90:da:08:ea:62:7f: cb:cd:b3:53:94:b7:dc:7f:d9:0a:b7:44:2c:71:c7: 97:e1:bf:c0:14:24:2a:d5:57:9f:03:49:be:04:86: 3e:75:ab:ba:25:f3:ec:07:4c:c7:73:9b:26:f0:53: df:42:6d:cf:f1:78:0b:4d:d2:2a:fd:ec:9f:f7:97: 5e:90:c5:81:78:14:c4:1c:01:fc:1f:55:70:70:ab: 35:13:58:1a:f3:48:04:79:57:dd:48:4b:87:7b:94: 9d:e2:8d:cd:b2:25:51:7a:56:73:48:82:da:99:74: f2:1b:48:d4:ee:a1:61:1b:f2:65:ef:7e:a2:cd:70: 7e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:27:88:0E:E8:C7:E6:B6:66:0D:68:A9:23:C2:F9:F1:84:FD:A4:2D X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:ab:69:96:f5:75:f8:b4:5e:4e:2c:db:f2:67:f7:52:9f:44: 52:41:20:2f:c9:fc:7e:6b:7e:34:be:70:05:29:74:e3:9a:99: 9e:8e:a5:07:ce:7a:f1:e9:fc:dc:9b:7f:69:2d:1a:6f:5c:c7: d4:e8:40:18:ba:53:ce:79:bd:38:b3:ef:38:6c:ff:62:ee:15: a6:65:64:c8:4e:94:05:61:46:f8:f3:ab:b0:44:a2:b1:7d:a0: 3c:4f:08:2d:33:6c:80:fa:10:42:d1:c2:f7:91:c1:97:ba:6d: c8:19:80:7e:23:3e:5e:a8:d9:5e:fb:46:4b:ab:d5:8e:b0:5c: 2d:f4:bf:6f:8e:95:88:23:8c:7d:d8:0d:08:32:4d:2d:3e:fd: 2e:c3:c7:c6:15:39:b8:c6:67:07:bb:89:73:81:87:17:f3:9a: d0:ec:39:95:1d:4f:28:88:28:02:28:5c:c4:d3:af:c7:f9:86: ec:3a:4d:d7:a5:9e:d9:7e:8c:1c:42:a5:40:bf:06:c3:22:2f: 1f:b0:21:1c:84:1f:aa:7d:70:19:33:33:c9:63:ff:fe:8b:90: 89:f9:3a:b0:1f:b0:1c:d0:e4:4d:a6:9b:b3:ad:24:a2:02:cb: 55:fc:8f:a3:e7:e5:b9:1f:35:b7:6e:d0:ef:c6:ef:d0:2b:64: 56:ed:49:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUxMjA2MjM0NjUyWhcNMjUxMjEzMjM0NjUyWjAYMRYwFAYD VQQDEw02OTM0YzA2ZC01MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QhhB/a2gxl5GjtNPNwyXByC8lAl6HP7VHH3jGu8plSU46d82VDktNQh6U4j /6GDszzaLe98CvaEwPlXuXbV+CznHUKaADSTfZtxdoRNkQS1rc9ZCmF3v0Z3qZ7x zt5/29EPgqdqKFEH3vca+6knTvN/VnSdTk6YhBAg02ut3k+Q2gjqYn/LzbNTlLfc f9kKt0QscceX4b/AFCQq1VefA0m+BIY+dau6JfPsB0zHc5sm8FPfQm3P8XgLTdIq /eyf95dekMWBeBTEHAH8H1VwcKs1E1ga80gEeVfdSEuHe5Sd4o3NsiVRelZzSILa mXTyG0jU7qFhG/Jl736izXB+OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkniA7o x+a2Zg1oqSPC+fGE/aQtMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByq2mW9XX4tF5OLNvyZ/dSn0RSQSAvyfx+a340vnAFKXTjmpmejqUH znrx6fzcm39pLRpvXMfU6EAYulPOeb04s+84bP9i7hWmZWTITpQFYUb486uwRKKx faA8TwgtM2yA+hBC0cL3kcGXum3IGYB+Iz5eqNle+0ZLq9WOsFwt9L9vjpWII4x9 2A0IMk0tPv0uw8fGFTm4xmcHu4lzgYcX85rQ7DmVHU8oiCgCKFzE06/H+YbsOk3X pZ7ZfowcQqVAvwbDIi8fsCEchB+qfXAZMzPJY//+i5CJ+TqwH7Ac0ORNppuzrSSi AstV/I+j5+W5HzW3btDvxu/QK2RW7Uk7 -----END CERTIFICATE-----Generated at Mon Dec 8 12:28:21 2025 by rpki-client