This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: KYDP7GdRxQ9LhbTxRWkxjhyh5y72G4WGPp38XKXVhH8= Subject key identifier: 24:1D:18:DF:4E:63:24:60:24:E7:D1:9F:9A:16:AF:3E:88:46:16:0B Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: C4 Signing time: Sun 21 Dec 2025 05:01:05 +0000 Manifest this update: Sun 21 Dec 2025 05:01:05 +0000 Manifest next update: Sun 28 Dec 2025 05:01:05 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: by3WkyuUU9Q89aU3liOmpQiBY+VaboStVFoXP1aSUBA=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Dec 21 05:01:05 2025 GMT Not After : Dec 28 05:01:05 2025 GMT Subject: CN=69477f11-da07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f3:57:df:8f:7d:34:80:23:50:f3:5f:fd:fb: bf:99:70:c5:c1:b8:ca:07:71:50:d3:c4:36:5c:34: 99:3a:00:79:10:74:9a:b7:8f:1e:e3:8b:6d:f5:cc: 63:53:bf:6b:1b:a8:4a:c5:5b:da:cc:50:16:81:df: 4c:c7:2c:95:93:04:6a:f8:f1:cc:bf:68:13:ac:3d: 68:19:c2:e9:65:eb:e4:6d:01:cc:c1:9f:c3:0d:f8: 7c:3e:bf:fc:90:d1:cc:76:0b:0e:18:48:c4:01:dd: f5:02:fe:e8:56:6b:e6:12:f2:f5:0a:d4:34:f0:bf: 8d:5d:c1:67:30:d3:aa:47:36:bc:ff:c1:9c:23:13: 36:0c:6e:b4:4a:3c:9c:45:23:c5:3e:d6:0b:05:a4: 8c:19:92:44:af:6f:b7:52:46:72:9f:58:a6:78:91: 50:93:9a:b7:e7:60:34:41:c5:92:33:a3:c7:63:37: 23:1d:3b:71:59:b3:b2:fc:27:15:14:b0:95:9f:ae: d2:f5:c0:01:7d:45:08:bf:e5:d3:f1:10:a1:75:8f: 0e:38:a8:cf:4a:35:e5:f0:83:7a:7e:f6:65:3a:1a: 9f:cd:65:a3:8d:35:e5:dd:12:ad:16:36:4d:5d:59: 60:ee:5d:d7:c1:81:7e:cd:a8:9b:04:ff:3f:0d:82: 44:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1D:18:DF:4E:63:24:60:24:E7:D1:9F:9A:16:AF:3E:88:46:16:0B X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ef:83:3d:a4:50:65:78:fc:92:81:26:1b:7e:7c:38:c5:08: 24:62:15:ca:ec:8f:e6:dc:4d:b3:bf:51:63:ed:b3:d9:d3:f7: 01:4d:ee:c3:f3:ce:4e:43:34:fa:4e:48:53:a1:e3:bd:27:1a: 39:e3:66:fa:63:79:dd:72:1f:d1:ca:a7:34:60:8a:9c:ba:6a: 19:9c:28:80:40:08:4c:8b:38:b8:ef:0e:36:c8:f1:09:69:71: b2:5c:b5:10:b9:ff:6c:b4:16:e0:5c:b3:b6:c3:15:02:7f:e1: d8:0e:b6:05:0e:63:77:27:64:1a:24:a6:9c:b6:4b:4f:c5:72: 4f:21:f4:b0:8f:15:f3:7f:a3:e0:fb:ae:3e:81:fc:b6:f8:20: c2:67:86:75:45:d5:68:8b:21:e1:3d:69:47:a2:fd:ba:c1:c5: cb:13:3c:96:da:09:04:77:25:d3:4d:20:51:10:8f:a9:6e:76: f8:ef:e1:41:24:b8:0f:dd:2b:71:23:e5:a7:c3:c7:eb:26:e4: 84:2c:ed:29:d2:b5:3a:45:c5:85:47:5c:7f:62:63:6e:59:09: 24:8b:cd:1d:38:4c:e7:33:91:a8:46:a2:98:9a:1b:6f:1f:2a: d6:c5:58:9b:eb:f1:7d:17:5d:d5:a4:a8:3d:01:7c:26:41:e8: a7:fc:c5:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3Q0YxMTAvBgNVBAUTKEVDM0Q4MDdGNzkzQzlDRjVGQ0UzMzVFRTE1RTA5ODQ0 NDlCNDMwOTYwHhcNMjUxMjIxMDUwMTA1WhcNMjUxMjI4MDUwMTA1WjAYMRYwFAYD VQQDDA02OTQ3N2YxMS1kYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vNX3499NIAjUPNf/fu/mXDFwbjKB3FQ08Q2XDSZOgB5EHSat48e44tt9cxj U79rG6hKxVvazFAWgd9MxyyVkwRq+PHMv2gTrD1oGcLpZevkbQHMwZ/DDfh8Pr/8 kNHMdgsOGEjEAd31Av7oVmvmEvL1CtQ08L+NXcFnMNOqRza8/8GcIxM2DG60Sjyc RSPFPtYLBaSMGZJEr2+3UkZyn1imeJFQk5q352A0QcWSM6PHYzcjHTtxWbOy/CcV FLCVn67S9cABfUUIv+XT8RChdY8OOKjPSjXl8IN6fvZlOhqfzWWjjTXl3RKtFjZN XVlg7l3XwYF+zaibBP8/DYJEEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQdGN9O YyRgJOfRn5oWrz6IRhYLMB8GA1UdIwQYMBaAFOw9gH95PJz1/OM17hXgmERJtDCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTdDRi9CNDE1NTQ1OEIy QzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5QWDg0elh1RmVDWVJFbTBN SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1KWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTdDRi9CNDE1NTQ1OEIyQzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5Q WDg0elh1RmVDWVJFbTBNSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB74M9pFBlePySgSYbfnw4xQgkYhXK7I/m3E2zv1Fj7bPZ0/cBTe7D 885OQzT6TkhToeO9Jxo542b6Y3ndch/Ryqc0YIqcumoZnCiAQAhMizi47w42yPEJ aXGyXLUQuf9stBbgXLO2wxUCf+HYDrYFDmN3J2QaJKactktPxXJPIfSwjxXzf6Pg +64+gfy2+CDCZ4Z1RdVoiyHhPWlHov26wcXLEzyW2gkEdyXTTSBREI+pbnb47+FB JLgP3StxI+Wnw8frJuSELO0p0rU6RcWFR1x/YmNuWQkki80dOEznM5GoRqKYmhtv HyrWxVib6/F9F13VpKg9AXwmQein/MWD -----END CERTIFICATE-----Generated at Mon Dec 22 14:31:07 2025 by rpki-client