This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft File: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json) Hash identifier: LYOvvz8DL1343Y0aWP/5BZbkEc/J9aCFi5pOcs8WJjc= Subject key identifier: 3F:32:29:32:36:E5:35:E8:6D:17:01:98:17:8A:73:29:4E:94:02:4B Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 Certificate issuer: /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Certificate serial: 083D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft Manifest number: 0836 Signing time: Mon 22 Dec 2025 20:09:44 +0000 Manifest this update: Mon 22 Dec 2025 20:09:44 +0000 Manifest next update: Mon 29 Dec 2025 20:09:44 +0000 Files and hashes: 1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: UkSkrRchXMYUR4zkoaLvjx/wmG1nucPha1b0CZO/YIQ=) 2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: GW9s3WIygsKZLnHwRZ6mSkc9+Me0q/KYVWFIK75BZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2109 (0x83d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D8B, serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Validity Not Before: Dec 22 20:09:44 2025 GMT Not After : Dec 29 20:09:44 2025 GMT Subject: CN=6949a588-2200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:49:b7:c6:16:55:88:a2:c9:d2:fb:77:24:d5: 07:c5:b8:ef:ed:99:fc:0a:c2:d6:4d:ce:6f:6d:fd: b0:14:52:f9:bb:85:f4:2b:2c:22:61:85:74:75:3e: 97:46:b4:ad:04:aa:e9:83:d9:f8:82:3d:c5:e5:9f: 42:bb:af:d2:69:1d:98:45:c7:90:94:44:1c:4c:2e: 95:de:db:d6:59:37:1b:e8:d4:38:4a:9c:c6:9b:3d: cc:d9:bb:7c:e6:06:91:3b:32:e2:a5:ae:77:89:e2: 2c:03:76:e6:38:ae:32:27:5f:55:ea:48:a7:ba:2d: 04:16:87:6c:fe:8a:dc:6e:fb:53:c5:29:03:4a:d9: 5a:2a:de:47:e1:a6:49:39:a7:25:d1:26:cb:47:65: 9a:1f:54:38:25:00:9a:5d:62:f9:96:e1:9b:37:5d: e9:ed:52:ba:19:d3:ff:e4:27:14:40:99:c5:16:13: c8:f5:f7:d7:75:21:aa:8e:d1:1a:22:22:78:ad:a3: 80:bf:70:d3:8e:85:b7:2b:dc:d9:55:5a:af:af:b9: ed:48:e8:d8:67:98:83:2a:97:15:d5:56:df:34:35: 86:86:1a:c3:7b:9a:98:f9:1d:da:b6:ae:23:a0:65: df:46:77:38:81:78:10:23:32:4b:03:49:5b:74:50: 19:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:32:29:32:36:E5:35:E8:6D:17:01:98:17:8A:73:29:4E:94:02:4B X509v3 Authority Key Identifier: keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:5a:c8:dd:43:9a:e5:b5:3a:24:9e:ca:cb:98:07:47:e5:99: ac:ca:97:8d:c8:f5:4f:36:6a:9a:2d:22:51:61:fb:b5:9b:91: 1d:46:a1:fa:65:c3:12:7a:06:5c:db:f1:93:fb:d4:b1:49:ed: 20:9c:b7:84:15:b2:ed:3b:da:fa:d4:23:12:0e:10:d1:80:c2: 62:ce:d3:73:ee:06:d7:ef:b5:0d:ff:f2:5a:77:08:4b:bc:f1: 31:d9:b2:8c:24:d1:5c:0e:34:76:b5:ad:57:45:88:05:c8:4a: e4:9d:93:cc:49:37:ae:89:a7:29:bd:16:81:5b:d1:75:86:3e: bb:ee:c7:db:af:58:d7:82:17:99:91:ff:cd:09:c6:69:9d:29: ed:b1:7e:69:b7:78:18:1e:85:8d:db:13:26:d0:fa:da:49:e0: 7e:e0:bd:d1:09:69:84:c4:f3:f6:be:58:8c:86:42:ce:3c:38: 81:7d:a1:3d:9c:12:88:34:83:eb:4f:f2:fe:01:92:03:61:46: ff:42:84:dd:e6:40:2e:a4:13:50:37:ba:00:4c:09:3d:20:5d: dd:11:67:ae:06:55:8c:08:89:27:af:e9:55:a8:0c:77:e0:a4: b9:64:4b:68:a7:70:bb:a0:87:8f:c2:03:7b:33:40:72:93:ba: bd:64:c5:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw RURENkFCMDAwHhcNMjUxMjIyMjAwOTQ0WhcNMjUxMjI5MjAwOTQ0WjAYMRYwFAYD VQQDDA02OTQ5YTU4OC0yMjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8km3xhZViKLJ0vt3JNUHxbjv7Zn8CsLWTc5vbf2wFFL5u4X0KywiYYV0dT6X RrStBKrpg9n4gj3F5Z9Cu6/SaR2YRceQlEQcTC6V3tvWWTcb6NQ4SpzGmz3M2bt8 5gaROzLipa53ieIsA3bmOK4yJ19V6kinui0EFods/orcbvtTxSkDStlaKt5H4aZJ Oacl0SbLR2WaH1Q4JQCaXWL5luGbN13p7VK6GdP/5CcUQJnFFhPI9ffXdSGqjtEa IiJ4raOAv3DTjoW3K9zZVVqvr7ntSOjYZ5iDKpcV1VbfNDWGhhrDe5qY+R3atq4j oGXfRnc4gXgQIzJLA0lbdFAZbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8yKTI2 5TXobRcBmBeKcylOlAJLMB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0 MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOWsjdQ5rltToknsrLmAdH5ZmsypeNyPVPNmqaLSJRYfu1m5EdRqH6 ZcMSegZc2/GT+9SxSe0gnLeEFbLtO9r61CMSDhDRgMJiztNz7gbX77UN//JadwhL vPEx2bKMJNFcDjR2ta1XRYgFyErknZPMSTeuiacpvRaBW9F1hj677sfbr1jXgheZ kf/NCcZpnSntsX5pt3gYHoWN2xMm0PraSeB+4L3RCWmExPP2vliMhkLOPDiBfaE9 nBKINIPrT/L+AZIDYUb/QoTd5kAupBNQN7oATAk9IF3dEWeuBlWMCIknr+lVqAx3 4KS5ZEtop3C7oIePwgN7M0Byk7q9ZMWJ -----END CERTIFICATE-----Generated at Wed Dec 24 13:39:55 2025 by rpki-client