This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft File: h7_uyP-fsmiAINtZpiLBOhXlryA.mft (raw, json) Hash identifier: Ohu6jtBGkeB8lmGlgmNqohQ+J6R/oy5BcRS3jOSgQyY= Subject key identifier: 8F:7B:A9:38:8B:AB:75:0E:57:7A:CB:C4:0A:5B:38:FE:FE:CF:DB:48 Authority key identifier: 87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 Certificate issuer: /CN=A9132B7A/serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft Manifest number: 01A5 Signing time: Fri 19 Dec 2025 02:33:24 +0000 Manifest this update: Fri 19 Dec 2025 02:33:24 +0000 Manifest next update: Fri 26 Dec 2025 02:33:24 +0000 Files and hashes: 1: h7_uyP-fsmiAINtZpiLBOhXlryA.crl (hash: mm7yjUJhs6pa3jlhBn5IeP0M4av4429d5/UUcP45YZE=) 2: ADB02E5C5CB411F0BE8D2465C4F9AE02.roa (hash: GlElYR4MQ+WjHEq4StdZmipu3LXVNxIXh4H6eysyH+4=) 3: 81D3CB186B7D11F0A482004CC4F9AE02.roa (hash: qNYtSlmPM+Uvz/D6x/pLP0palJS2i+Z/G329nGefhRQ=) 4: 28382F96644E11EEA1DCB653C4F9AE02.roa (hash: MZA1jTBziSRkZxVdEK+65v62wmBfkDBZ419ZGEizQBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B7A, serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Validity Not Before: Dec 19 02:33:24 2025 GMT Not After : Dec 26 02:33:24 2025 GMT Subject: CN=6944b974-a38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:aa:c8:84:80:17:11:74:8c:b5:1e:f4:dd:cc: a1:a0:c2:88:36:4e:48:b3:f9:aa:cd:02:3f:7c:06: db:80:58:1c:76:e0:8e:3c:c1:2d:fd:0c:04:60:cb: d1:0d:dd:e4:a9:6b:2d:68:11:bf:5e:96:75:af:df: 32:99:d3:66:8d:91:af:78:30:18:73:74:a5:7e:99: c6:1e:84:7d:6a:d3:18:b7:42:8e:54:43:25:f4:dd: 3c:a9:cf:fc:b9:1e:cf:e3:19:2c:90:91:71:71:bf: 1b:1f:c6:55:53:b0:f7:1b:d0:4e:90:d9:ef:4a:cd: ca:70:89:ba:ca:2f:40:42:1e:c0:05:21:17:5a:2d: 5e:0d:45:c4:c6:9e:72:6e:cb:2d:e3:a8:10:2f:9a: a8:0a:20:e7:38:60:9f:4a:92:87:cb:c9:f6:1a:6f: 00:39:a0:05:6d:43:d3:75:aa:62:f3:67:cd:cf:1e: 38:41:aa:10:f4:7c:0d:fa:22:8a:7f:54:b6:6b:f0: fe:cf:56:5b:86:71:6b:85:6d:63:f3:d9:db:35:e4: 0f:e0:2d:2e:e5:3a:f6:38:f7:8d:64:bb:43:9d:7c: 28:20:7d:48:39:95:dd:eb:5b:76:9a:5d:03:0d:3a: e9:b5:bd:20:8e:4c:0f:30:6b:2c:93:49:4e:e7:f4: 3c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7B:A9:38:8B:AB:75:0E:57:7A:CB:C4:0A:5B:38:FE:FE:CF:DB:48 X509v3 Authority Key Identifier: keyid:87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a8:c2:12:40:b9:3d:c8:ae:4d:76:1d:74:6e:63:ce:c0:2a: 9b:a9:ba:45:43:05:fb:f1:2b:f8:73:50:60:ba:bd:98:24:6f: ff:bc:88:36:c9:c3:e8:1d:69:7e:8e:a4:8b:7a:3f:fe:85:1d: 18:b5:ee:1e:c7:fe:b1:66:7d:2a:ec:f2:83:0d:a8:1b:ee:e7: 94:2c:7b:c5:08:16:cc:15:05:42:67:5f:5b:4a:d8:65:38:af: b0:47:a4:87:00:44:31:42:d5:c6:c0:e4:51:36:f6:87:b6:b3: f1:51:3d:b7:72:c2:5a:43:8a:5d:db:00:a0:37:2d:cc:19:8d: 95:81:a3:c3:d5:3d:e0:51:f9:fe:c9:f9:11:3a:ac:ec:55:ed: 95:50:00:75:5f:ab:78:f3:d0:c8:27:05:80:fd:82:5c:8a:aa: 88:c4:db:6d:cd:44:b8:9c:8e:4f:7b:92:d9:95:3a:fa:22:59: d7:ce:7e:ef:83:e0:74:fd:5b:88:f0:13:c8:9d:08:3c:dc:60: de:ac:c3:29:91:9d:d8:9b:cb:f6:73:93:75:94:b7:60:cd:3e: a9:a1:c8:17:32:12:18:25:2a:c7:88:13:27:95:6e:3a:1f:cd: b8:7d:77:09:cb:16:7b:31:cf:74:be:7f:0c:39:7f:24:95:20: da:fb:fc:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCN0ExMTAvBgNVBAUTKDg3QkZFRUM4RkY5RkIyNjg4MDIwREI1OUE2MjJDMTNB MTVFNUFGMjAwHhcNMjUxMjE5MDIzMzI0WhcNMjUxMjI2MDIzMzI0WjAYMRYwFAYD VQQDDA02OTQ0Yjk3NC1hMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsarIhIAXEXSMtR703cyhoMKINk5Is/mqzQI/fAbbgFgcduCOPMEt/QwEYMvR Dd3kqWstaBG/XpZ1r98ymdNmjZGveDAYc3SlfpnGHoR9atMYt0KOVEMl9N08qc/8 uR7P4xkskJFxcb8bH8ZVU7D3G9BOkNnvSs3KcIm6yi9AQh7ABSEXWi1eDUXExp5y bsst46gQL5qoCiDnOGCfSpKHy8n2Gm8AOaAFbUPTdapi82fNzx44QaoQ9HwN+iKK f1S2a/D+z1ZbhnFrhW1j89nbNeQP4C0u5Tr2OPeNZLtDnXwoIH1IOZXd61t2ml0D DTrptb0gjkwPMGssk0lO5/Q82QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI97qTiL q3UOV3rLxApbOP7+z9tIMB8GA1UdIwQYMBaAFIe/7sj/n7JogCDbWaYiwToV5a8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI3QS8wNkExOTYwMjY0 NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNtaUFJTnRacGlMQk9oWGxy eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3X3V5UC1mc21pQUlOdFpwaUxCT2hYbHJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkI3QS8wNkExOTYwMjY0NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNt aUFJTnRacGlMQk9oWGxyeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8qMISQLk9yK5Ndh10bmPOwCqbqbpFQwX78Sv4c1Bgur2YJG//vIg2 ycPoHWl+jqSLej/+hR0Yte4ex/6xZn0q7PKDDagb7ueULHvFCBbMFQVCZ19bSthl OK+wR6SHAEQxQtXGwORRNvaHtrPxUT23csJaQ4pd2wCgNy3MGY2VgaPD1T3gUfn+ yfkROqzsVe2VUAB1X6t489DIJwWA/YJciqqIxNttzUS4nI5Pe5LZlTr6IlnXzn7v g+B0/VuI8BPInQg83GDerMMpkZ3Ym8v2c5N1lLdgzT6pocgXMhIYJSrHiBMnlW46 H824fXcJyxZ7Mc90vn8MOX8klSDa+/x9 -----END CERTIFICATE-----Generated at Sat Dec 20 19:06:54 2025 by rpki-client