This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft File: CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft (raw, json) Hash identifier: 7XAm3Pi9Vlh62jy8uFOAlRU0VOG9Oa1eKwLCXJEd6PM= Subject key identifier: 90:49:FC:CD:9E:90:BF:B3:EC:77:4F:7A:9F:EA:72:1C:CF:37:9C:71 Authority key identifier: 08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 Certificate issuer: /CN=A9137627/serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft Manifest number: CC Signing time: Thu 25 Dec 2025 04:47:59 +0000 Manifest this update: Thu 25 Dec 2025 04:47:58 +0000 Manifest next update: Thu 01 Jan 2026 04:47:58 +0000 Files and hashes: 1: CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl (hash: R6unykzb02WqayrsmlV+fFmetbIdBLnC0CNheyRAJBQ=) 2: 4F148EC8A89211EFBE18B52EC4F9AE02.roa (hash: Ac/uc/BnLL5OC5L/oElWDyPEyaU4HTEnF9nDubVxykg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 04:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137627, serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Validity Not Before: Dec 25 04:47:58 2025 GMT Not After : Jan 1 04:47:58 2026 GMT Subject: CN=694cc1ff-ec9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8c:71:d7:49:40:86:40:26:6d:57:97:58:b4: 23:c8:85:32:44:b9:8d:e8:ec:20:c3:c2:6c:02:5b: 3b:bc:37:48:90:82:64:18:60:8b:74:a5:80:10:4f: cf:ff:45:96:b4:82:cb:f5:1c:78:b5:77:88:cd:2a: 43:a8:78:f2:11:2e:cd:25:3c:45:54:9d:b1:58:63: 9e:f1:1a:a6:c2:88:e1:4a:aa:c3:47:9a:b9:2a:b6: f6:2c:fa:83:ec:15:8b:5e:8e:6c:a4:be:27:aa:3e: f7:e1:f0:f9:5a:17:3a:e5:0e:dc:e7:76:12:c2:6a: 1a:19:96:08:40:f8:a5:f3:a2:ff:3f:76:7d:0e:d4: 0e:04:b4:b0:6e:4a:21:f1:05:be:e2:07:1e:5d:44: 84:27:0a:b5:52:4c:58:e7:bf:7a:65:04:a8:58:63: 2f:b4:d3:9a:49:c2:b4:c0:4b:52:fa:9a:3f:b1:b0: 2a:5a:5f:e1:f0:b2:31:87:da:df:11:19:4b:99:25: 4e:8f:bc:c8:e6:18:91:a3:8e:5f:59:a5:59:4c:6a: ee:4f:0e:57:fc:57:46:f4:2a:21:8c:6a:4e:ed:d8: a7:5d:0d:ad:37:0c:9f:54:3d:ae:05:8d:45:7e:e2: 6c:08:62:14:b3:c4:c3:a5:15:c6:6c:13:95:c7:b8: 50:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:49:FC:CD:9E:90:BF:B3:EC:77:4F:7A:9F:EA:72:1C:CF:37:9C:71 X509v3 Authority Key Identifier: keyid:08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d2:f0:ca:35:d3:8f:fd:81:67:d5:be:88:4b:bb:de:fb:e1: 49:32:31:1d:b6:9a:07:d0:b0:7d:b1:b2:64:f1:3a:3d:36:5d: c7:42:a4:d8:6e:8a:41:81:29:b8:7d:a0:1d:02:55:b2:68:fb: 2d:18:85:5b:54:d2:11:1e:46:26:5d:2a:be:c7:b1:56:04:57: 2d:42:91:05:7a:01:06:d6:4b:fe:00:9c:94:0b:2f:ee:15:f4: 36:70:3f:4d:be:cb:3a:6d:8b:ad:a6:f7:88:94:1c:01:ee:7c: 65:6d:30:e5:40:8d:f0:12:0d:39:03:60:82:2a:39:8f:16:03: fd:5f:db:1f:1c:97:d2:55:70:f5:c7:25:55:58:8f:37:06:39: 95:db:40:09:40:9d:40:3f:44:0c:f9:45:b0:47:d2:2c:a2:57: 86:6c:d0:33:d3:b4:a8:f2:33:7a:2a:cc:c0:c5:88:2a:ae:69: 52:8d:51:be:3b:9e:91:a9:54:34:71:92:44:29:7e:1c:57:5f: 20:55:c0:32:2f:63:c8:86:6f:99:d1:49:b5:cc:aa:53:8c:b0: eb:da:00:60:fc:99:35:58:d9:a3:90:41:dd:75:80:57:dc:11: 58:d5:8d:e5:72:45:ac:15:81:f9:9a:b6:f2:b1:4b:60:81:79: 18:43:ad:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2MjcxMTAvBgNVBAUTKDA4MEVDMTRBMDAxMjVEOTE0QzdFNjI4NURFOUM1NjY4 OUM1ODcyQTQwHhcNMjUxMjI1MDQ0NzU4WhcNMjYwMTAxMDQ0NzU4WjAYMRYwFAYD VQQDDA02OTRjYzFmZi1lYzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYxx10lAhkAmbVeXWLQjyIUyRLmN6Owgw8JsAls7vDdIkIJkGGCLdKWAEE/P /0WWtILL9Rx4tXeIzSpDqHjyES7NJTxFVJ2xWGOe8RqmwojhSqrDR5q5Krb2LPqD 7BWLXo5spL4nqj734fD5Whc65Q7c53YSwmoaGZYIQPil86L/P3Z9DtQOBLSwbkoh 8QW+4gceXUSEJwq1UkxY5796ZQSoWGMvtNOaScK0wEtS+po/sbAqWl/h8LIxh9rf ERlLmSVOj7zI5hiRo45fWaVZTGruTw5X/FdG9CohjGpO7dinXQ2tNwyfVD2uBY1F fuJsCGIUs8TDpRXGbBOVx7hQMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBJ/M2e kL+z7HdPep/qchzPN5xxMB8GA1UdIwQYMBaAFAgOwUoAEl2RTH5ihd6cVmicWHKk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzYyNy9FN0QyNTc4NkE4 OTExMUVGOTI2ODhCMkJDNEY5QUUwMi9DQTdCU2dBU1haRk1mbUtGM3B4V2FKeFlj cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBN0JTZ0FTWFpGTWZtS0YzcHhXYUp4WWNxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzYyNy9FN0QyNTc4NkE4OTExMUVGOTI2ODhCMkJDNEY5QUUwMi9DQTdCU2dBU1ha Rk1mbUtGM3B4V2FKeFljcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl0vDKNdOP/YFn1b6IS7ve++FJMjEdtpoH0LB9sbJk8To9Nl3HQqTY bopBgSm4faAdAlWyaPstGIVbVNIRHkYmXSq+x7FWBFctQpEFegEG1kv+AJyUCy/u FfQ2cD9Nvss6bYutpveIlBwB7nxlbTDlQI3wEg05A2CCKjmPFgP9X9sfHJfSVXD1 xyVVWI83BjmV20AJQJ1AP0QM+UWwR9IsoleGbNAz07So8jN6KszAxYgqrmlSjVG+ O56RqVQ0cZJEKX4cV18gVcAyL2PIhm+Z0Um1zKpTjLDr2gBg/Jk1WNmjkEHddYBX 3BFY1Y3lckWsFYH5mrbysUtggXkYQ638 -----END CERTIFICATE-----Generated at Thu Dec 25 15:33:02 2025 by rpki-client