This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: d0yR/zxLqlddIrTt/GwMFOnYN5j5AZiU+KKyzPHgYyY= Subject key identifier: 6B:40:A8:51:6D:1F:7B:C3:83:8A:E5:FF:D4:02:4A:9C:E5:05:BF:EE Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 020F Signing time: Fri 19 Dec 2025 01:31:42 +0000 Manifest this update: Fri 19 Dec 2025 01:31:41 +0000 Manifest next update: Fri 26 Dec 2025 01:31:41 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: bH/mZaepoXY9+oKZGRjtm1uVI4W8kuJEBIItXpkDt+8=) 2: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: Tv8VFI61ht6g4zpgpyoiarorIdL71VBSjtb/bqzuKfo=) 3: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: Dec 19 01:31:41 2025 GMT Not After : Dec 26 01:31:41 2025 GMT Subject: CN=6944aafd-a437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:c6:18:a0:95:92:ac:06:af:48:3e:33:30: ed:b4:96:ca:6c:3f:fd:42:e9:8d:b3:2f:3c:10:cf: c6:0e:bd:26:ec:0a:0f:0c:2a:cb:b8:6f:db:c9:e9: 42:2b:de:18:ae:b4:eb:87:b2:a8:b8:d2:09:2c:5d: 7c:29:68:cf:07:f1:af:af:95:40:9e:37:0d:92:c7: b9:85:80:62:0c:b9:4f:27:eb:75:7b:67:00:9d:2d: a3:77:7e:88:90:a2:b9:82:aa:b2:29:04:de:49:22: 4b:67:be:47:d6:cc:36:82:8a:78:f2:88:ec:4d:e4: f1:35:51:1e:0f:c5:aa:2b:2a:16:40:f1:9c:06:2b: f7:23:1c:78:2b:2c:bb:0b:ab:46:d0:08:67:d2:2c: 61:cf:9a:fc:e7:bf:47:78:8d:49:57:23:b0:7f:1a: 73:3a:49:a5:ac:c6:bd:2c:ff:de:76:f1:94:f4:d0: ce:3e:d8:9c:2b:5e:e7:2a:52:88:a6:24:5f:ea:61: 7c:c0:51:c6:ad:0e:e3:3d:75:8e:ce:ef:63:ed:67: b2:28:ce:9b:42:e4:9f:d4:e8:b8:d6:41:b5:f6:ab: dd:bd:04:f7:2d:28:3d:2a:ad:bd:ce:b7:d2:6b:f6: 25:a0:15:8b:b6:30:bb:aa:40:a2:c1:cf:df:cc:d3: 74:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:40:A8:51:6D:1F:7B:C3:83:8A:E5:FF:D4:02:4A:9C:E5:05:BF:EE X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:8e:42:cc:e9:2d:b6:2e:95:83:da:a3:f0:58:ea:4f:f7:77: 99:8c:24:36:fb:a5:93:ee:8f:d6:a0:b5:28:e9:97:20:8c:47: b2:8c:13:db:1a:cf:73:23:ee:f1:85:f8:0b:be:b9:1a:aa:4a: 13:4e:52:26:ea:81:e0:f4:fb:73:4d:34:f3:a5:a6:43:3a:73: 88:ac:30:0f:e3:e4:3e:c1:e2:26:89:a8:48:ec:51:14:f1:08: 02:f1:ae:d4:25:f5:22:3b:3b:e9:cc:7a:f4:17:87:71:f1:73: c9:82:80:97:23:92:b3:63:12:50:f7:c1:bf:3c:ab:e6:c9:d1: 29:b2:1c:28:00:f4:b9:0c:80:c5:99:66:1a:6f:8e:2e:79:39: 8d:7d:a3:89:da:80:fa:09:b2:53:7f:8b:5e:cf:d3:b2:42:87: e3:f1:c0:6b:1c:21:f0:c3:ad:d8:dc:20:18:1f:65:92:16:3b: e7:5b:c7:fc:58:e5:ab:c6:dc:71:45:1c:5f:5d:b2:3a:7a:d9: ec:6d:50:e3:f1:ef:bf:2a:87:01:b3:11:99:d0:46:3c:6f:31: 80:17:65:04:5d:92:92:c0:b6:d1:b0:60:27:63:44:4d:8a:30: 41:3e:90:4d:12:2e:a0:fd:fe:80:06:6a:08:8d:ce:e1:73:fb: 4a:61:f4:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUxMjE5MDEzMTQxWhcNMjUxMjI2MDEzMTQxWjAYMRYwFAYD VQQDDA02OTQ0YWFmZC1hNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr83GGKCVkqwGr0g+MzDttJbKbD/9QumNsy88EM/GDr0m7AoPDCrLuG/byelC K94YrrTrh7KouNIJLF18KWjPB/Gvr5VAnjcNkse5hYBiDLlPJ+t1e2cAnS2jd36I kKK5gqqyKQTeSSJLZ75H1sw2gop48ojsTeTxNVEeD8WqKyoWQPGcBiv3Ixx4Kyy7 C6tG0Ahn0ixhz5r8579HeI1JVyOwfxpzOkmlrMa9LP/edvGU9NDOPticK17nKlKI piRf6mF8wFHGrQ7jPXWOzu9j7WeyKM6bQuSf1Oi41kG19qvdvQT3LSg9Kq29zrfS a/YloBWLtjC7qkCiwc/fzNN0jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtAqFFt H3vDg4rl/9QCSpzlBb/uMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbjkLM6S22LpWD2qPwWOpP93eZjCQ2+6WT7o/WoLUo6ZcgjEeyjBPb Gs9zI+7xhfgLvrkaqkoTTlIm6oHg9PtzTTTzpaZDOnOIrDAP4+Q+weImiahI7FEU 8QgC8a7UJfUiOzvpzHr0F4dx8XPJgoCXI5KzYxJQ98G/PKvmydEpshwoAPS5DIDF mWYab44ueTmNfaOJ2oD6CbJTf4tez9OyQofj8cBrHCHww63Y3CAYH2WSFjvnW8f8 WOWrxtxxRRxfXbI6etnsbVDj8e+/KocBsxGZ0EY8bzGAF2UEXZKSwLbRsGAnY0RN ijBBPpBNEi6g/f6ABmoIjc7hc/tKYfR0 -----END CERTIFICATE-----Generated at Sat Dec 20 19:01:53 2025 by rpki-client