This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/C48FA8FAD74811F0BA1B0D9E6BD3641D/7KeHdUGmkz3VBhpsggg9O4ORXIU.mft File: 7KeHdUGmkz3VBhpsggg9O4ORXIU.mft (raw, json) Hash identifier: l+QGfl/gA6MT6TH9N4lg6WNobuIVJvGku41dyiV5te0= Subject key identifier: 0D:49:92:9E:31:21:94:64:84:65:BB:07:72:63:18:C7:95:B2:59:2B Authority key identifier: EC:A7:87:75:41:A6:93:3D:D5:06:1A:6C:82:08:3D:3B:83:91:5C:85 Certificate issuer: /CN=A9142127/serialNumber=ECA7877541A6933DD5061A6C82083D3B83915C85 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7KeHdUGmkz3VBhpsggg9O4ORXIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/C48FA8FAD74811F0BA1B0D9E6BD3641D/7KeHdUGmkz3VBhpsggg9O4ORXIU.mft Manifest number: 07 Signing time: Thu 18 Dec 2025 18:58:17 +0000 Manifest this update: Thu 18 Dec 2025 18:58:17 +0000 Manifest next update: Thu 25 Dec 2025 18:58:17 +0000 Files and hashes: 1: 7KeHdUGmkz3VBhpsggg9O4ORXIU.crl (hash: AAjacGd0pvdYPBqml0b20ZlOpxrXhkNzYXHCHHGxnNY=) 2: 0A6F23BCD89011F0809DF24792D3641D.roa (hash: w54n3xroRGH8dke7e/Dx0FmQj9Q9lWiOIK95NdES2bA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/C48FA8FAD74811F0BA1B0D9E6BD3641D/7KeHdUGmkz3VBhpsggg9O4ORXIU.crl rsync://rpki.apnic.net/member_repository/A9142127/C48FA8FAD74811F0BA1B0D9E6BD3641D/7KeHdUGmkz3VBhpsggg9O4ORXIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7KeHdUGmkz3VBhpsggg9O4ORXIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=ECA7877541A6933DD5061A6C82083D3B83915C85 Validity Not Before: Dec 18 18:58:17 2025 GMT Not After : Dec 25 18:58:17 2025 GMT Subject: CN=69444ec9-5e2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2b:af:99:20:80:b1:b3:14:fa:d4:e9:f7:a4: 3c:99:cb:c2:35:6a:d3:2e:fd:b2:82:7a:82:26:22: 08:46:b4:17:1d:02:37:5a:9a:94:f9:a5:72:91:a8: 67:46:3b:6f:2a:7f:58:84:85:c6:ae:01:85:ed:74: 50:ca:0c:9e:d5:ca:18:0f:15:0a:51:3a:6e:5e:1b: 82:fc:08:33:4c:46:0d:c0:d4:99:b9:68:29:bd:39: e1:66:a8:c7:92:ca:91:93:8f:8a:24:ba:fb:c4:2f: ce:86:ac:22:f8:09:7a:c4:62:ae:94:17:cb:bc:d8: 51:fa:b6:f4:78:43:d6:ff:d6:96:e7:7b:36:43:9e: 05:50:83:bc:34:d2:d7:03:5d:4e:a5:2f:d7:8c:4f: 4d:7b:d6:92:85:fa:7b:db:17:83:e2:81:15:98:aa: 5f:9a:28:79:37:7e:5e:28:12:4c:6c:90:45:5a:52: c8:1e:65:12:4a:f8:91:63:33:e5:09:5d:16:74:d4: cd:b9:f8:a4:fe:5b:bc:31:78:a4:5d:bf:66:09:8e: 89:bb:ef:7c:67:41:60:4f:51:70:ad:37:7f:bd:a8: d2:37:50:fa:b0:56:21:71:9e:a2:8b:1f:07:fa:b9: 05:e4:37:2e:da:da:03:84:f0:de:86:f4:d4:8d:74: d7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:49:92:9E:31:21:94:64:84:65:BB:07:72:63:18:C7:95:B2:59:2B X509v3 Authority Key Identifier: keyid:EC:A7:87:75:41:A6:93:3D:D5:06:1A:6C:82:08:3D:3B:83:91:5C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/C48FA8FAD74811F0BA1B0D9E6BD3641D/7KeHdUGmkz3VBhpsggg9O4ORXIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7KeHdUGmkz3VBhpsggg9O4ORXIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/C48FA8FAD74811F0BA1B0D9E6BD3641D/7KeHdUGmkz3VBhpsggg9O4ORXIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:27:d2:ee:f3:66:d1:8d:68:11:c4:c4:0f:0c:d5:b4:6d:c5: e1:38:cd:f9:31:97:1c:95:f2:db:2e:3c:bd:48:4b:9c:42:36: d0:bb:1d:11:56:a0:ba:1d:8d:db:5c:06:95:57:68:b2:18:4f: ce:e7:28:af:08:ed:86:7f:b3:db:c4:77:0d:72:46:1d:f4:9b: c9:71:bb:f2:3a:df:94:f5:7a:e6:36:ca:fd:71:cf:04:d4:bf: 20:c1:cd:17:a2:15:8d:b3:82:de:6b:4d:13:e1:04:94:03:31: 96:47:8b:f7:86:df:bc:32:22:43:40:10:18:8a:0d:70:50:f4: c2:a1:ae:18:bd:6e:cb:d4:e1:79:50:f6:f0:d4:13:5e:4d:5d: 26:c1:25:a5:77:69:12:66:ac:33:1a:95:76:04:27:ee:12:f8: 96:e2:84:d3:a9:ea:e5:50:e3:1f:9a:76:2c:41:f5:aa:07:68: b1:b3:df:6e:81:dc:7e:aa:eb:d4:9b:6f:3c:b9:59:02:5c:bf: e2:b7:fa:6f:21:28:cd:7b:79:32:d5:74:80:50:8c:cf:71:e7: 9a:1a:38:f3:0e:3d:4d:c7:10:97:0d:80:f6:0b:10:2b:87:d9: e9:7e:1c:75:0d:d2:ed:66:dc:c4:bf:a8:f7:be:90:49:a9:3d: 15:b2:a5:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjEyNzExMC8GA1UEBRMoRUNBNzg3NzU0MUE2OTMzREQ1MDYxQTZDODIwODNEM0I4 MzkxNUM4NTAeFw0yNTEyMTgxODU4MTdaFw0yNTEyMjUxODU4MTdaMBgxFjAUBgNV BAMMDTY5NDQ0ZWM5LTVlMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKK6+ZIICxsxT61On3pDyZy8I1atMu/bKCeoImIghGtBcdAjdampT5pXKRqGdG O28qf1iEhcauAYXtdFDKDJ7VyhgPFQpROm5eG4L8CDNMRg3A1Jm5aCm9OeFmqMeS ypGTj4okuvvEL86GrCL4CXrEYq6UF8u82FH6tvR4Q9b/1pbnezZDngVQg7w00tcD XU6lL9eMT0171pKF+nvbF4PigRWYql+aKHk3fl4oEkxskEVaUsgeZRJK+JFjM+UJ XRZ01M25+KT+W7wxeKRdv2YJjom773xnQWBPUXCtN3+9qNI3UPqwViFxnqKLHwf6 uQXkNy7a2gOE8N6G9NSNdNepAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDUmSnjEh lGSEZbsHcmMYx5WyWSswHwYDVR0jBBgwFoAU7KeHdUGmkz3VBhpsggg9O4ORXIUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMTI3L0M0OEZBOEZBRDc0 ODExRjBCQTFCMEQ5RTZCRDM2NDFELzdLZUhkVUdta3ozVkJocHNnZ2c5TzRPUlhJ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0tlSGRVR21rejNWQmhwc2dnZzlPNE9SWElVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy MTI3L0M0OEZBOEZBRDc0ODExRjBCQTFCMEQ5RTZCRDM2NDFELzdLZUhkVUdta3oz VkJocHNnZ2c5TzRPUlhJVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH8n0u7zZtGNaBHExA8M1bRtxeE4zfkxlxyV8tsuPL1IS5xCNtC7HRFW oLodjdtcBpVXaLIYT87nKK8I7YZ/s9vEdw1yRh30m8lxu/I635T1euY2yv1xzwTU vyDBzReiFY2zgt5rTRPhBJQDMZZHi/eG37wyIkNAEBiKDXBQ9MKhrhi9bsvU4XlQ 9vDUE15NXSbBJaV3aRJmrDMalXYEJ+4S+JbihNOp6uVQ4x+adixB9aoHaLGz326B 3H6q69Sbbzy5WQJcv+K3+m8hKM17eTLVdIBQjM9x55oaOPMOPU3HEJcNgPYLECuH 2el+HHUN0u1m3MS/qPe+kEmpPRWypQw= -----END CERTIFICATE-----Generated at Sat Dec 20 00:57:25 2025 by rpki-client