This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: bd8g6ziJ5VPgb760l7qYffjCvex0Bsg05kPJ4W3mteU= Subject key identifier: DC:91:F9:28:8E:90:4F:09:59:67:40:14:F1:20:49:33:26:F7:2B:51 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0D11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0D07 Signing time: Sat 20 Dec 2025 17:44:07 +0000 Manifest this update: Sat 20 Dec 2025 17:44:07 +0000 Manifest next update: Sat 27 Dec 2025 17:44:07 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: 8a8KG2/cRqtSZpsxuwN1CMDL/RJeylAFWOpQek0fsJI=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: Lgb8GqRFfTjU3W3z9LRFwwnC1h3FLvp4weLwp44Pmyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3345 (0xd11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Dec 20 17:44:07 2025 GMT Not After : Dec 27 17:44:07 2025 GMT Subject: CN=6946e067-1ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:01:dd:b3:5d:93:5a:a0:2d:37:1d:d0:bf:29: e1:c0:aa:07:97:87:32:1c:3a:b8:9e:3b:9d:dc:d5: 97:3c:43:1b:16:0c:a3:77:29:25:06:b0:bd:ee:03: a6:b4:f4:a7:56:c0:6c:ab:a2:42:54:af:eb:d8:be: 59:36:60:d9:fb:70:57:3c:1f:97:7b:72:1b:9e:62: 52:0f:58:de:17:b7:08:90:bd:c1:3c:ac:3f:2d:d3: ac:eb:52:c2:fe:72:93:e4:eb:4e:d6:32:44:97:3e: fe:38:3d:15:5a:b2:aa:1b:d3:56:2b:6d:13:ed:87: c5:23:5b:c0:21:5a:a8:cc:c6:e0:18:94:57:eb:a5: 4d:c3:ac:87:b5:1e:23:f6:19:c4:18:4e:48:f5:8e: ba:91:ad:a4:00:c8:69:53:89:4f:ed:b0:16:42:b4: 45:3e:55:10:0f:cb:ca:94:a7:f8:32:f2:4a:b9:ad: ab:79:73:55:47:66:11:e6:e6:aa:dd:d0:f7:5e:42: 7c:c9:35:4f:db:63:d1:39:7d:01:22:d8:7d:fc:26: a4:10:f4:57:07:22:1a:23:98:47:b7:86:64:95:c1: 69:ea:bd:92:19:8c:5a:de:0a:d0:51:fa:52:06:9c: 40:0d:36:2a:3e:38:92:23:f5:b4:4d:4f:0f:38:c6: 61:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:91:F9:28:8E:90:4F:09:59:67:40:14:F1:20:49:33:26:F7:2B:51 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:32:0b:fe:d5:3b:7a:cb:f2:52:a8:ff:2a:4c:e7:eb:73:9d: 2c:7b:ee:af:55:31:54:9f:77:ca:ee:22:65:aa:c4:3a:73:9e: 90:79:0d:5c:77:52:be:82:e9:e5:b3:8d:42:91:65:c9:23:3b: eb:0a:fa:30:79:41:27:3a:9e:98:2d:72:08:83:a8:11:84:a8: fc:b7:18:9e:73:8d:a8:e7:1a:54:dd:f6:f2:61:61:fa:99:ec: 79:11:87:50:64:79:61:35:75:de:8d:23:eb:aa:0c:30:1e:64: 4e:a8:77:5b:c8:03:cb:36:e2:bf:ee:0a:4c:b9:8c:c5:0b:46: 66:f1:29:de:33:7a:fc:42:9f:2f:13:9e:0c:3b:a5:6f:53:a7: 92:89:21:55:61:0f:0d:0f:fa:45:a2:28:9d:9f:2d:84:3c:3e: 4e:fc:56:bc:79:54:b0:d2:f4:65:5c:b2:15:a5:7c:ea:f4:61: cf:dd:52:6b:cc:fc:f2:bd:f8:33:19:69:cc:7d:7c:31:3b:45: cc:bf:2c:f4:7f:f9:ee:0e:aa:57:82:7a:31:32:dc:b7:bc:4f: da:33:25:12:32:6b:a7:c6:f2:71:41:c6:4d:f3:0a:89:11:33: 57:9c:1d:f3:de:0e:69:62:f7:0e:3d:93:e9:6e:42:e2:68:3d: 95:c6:18:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUxMjIwMTc0NDA3WhcNMjUxMjI3MTc0NDA3WjAYMRYwFAYD VQQDDA02OTQ2ZTA2Ny0xY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAHds12TWqAtNx3QvynhwKoHl4cyHDq4njud3NWXPEMbFgyjdyklBrC97gOm tPSnVsBsq6JCVK/r2L5ZNmDZ+3BXPB+Xe3IbnmJSD1jeF7cIkL3BPKw/LdOs61LC /nKT5OtO1jJElz7+OD0VWrKqG9NWK20T7YfFI1vAIVqozMbgGJRX66VNw6yHtR4j 9hnEGE5I9Y66ka2kAMhpU4lP7bAWQrRFPlUQD8vKlKf4MvJKua2reXNVR2YR5uaq 3dD3XkJ8yTVP22PROX0BIth9/CakEPRXByIaI5hHt4ZklcFp6r2SGYxa3grQUfpS BpxADTYqPjiSI/W0TU8POMZhawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyR+SiO kE8JWWdAFPEgSTMm9ytRMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnMgv+1Tt6y/JSqP8qTOfrc50se+6vVTFUn3fK7iJlqsQ6c56QeQ1c d1K+gunls41CkWXJIzvrCvoweUEnOp6YLXIIg6gRhKj8txiec42o5xpU3fbyYWH6 mex5EYdQZHlhNXXejSPrqgwwHmROqHdbyAPLNuK/7gpMuYzFC0Zm8SneM3r8Qp8v E54MO6VvU6eSiSFVYQ8ND/pFoiidny2EPD5O/Fa8eVSw0vRlXLIVpXzq9GHP3VJr zPzyvfgzGWnMfXwxO0XMvyz0f/nuDqpXgnoxMty3vE/aMyUSMmunxvJxQcZN8wqJ ETNXnB3z3g5pYvcOPZPpbkLiaD2Vxhg9 -----END CERTIFICATE-----Generated at Sun Dec 21 16:15:33 2025 by rpki-client