This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft File: 7CxkBsqh85689Fh1MVANVrlTYsA.mft (raw, json) Hash identifier: 31+e/97pNjt46xO3TpwREAt8TX63qEAzuEhoS8jHzg0= Subject key identifier: CA:62:D3:01:03:A9:BC:F8:23:AD:5C:20:F7:1F:8D:79:4D:6D:03:E4 Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 3535 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft Manifest number: 350F Signing time: Tue 30 Dec 2025 14:16:46 +0000 Manifest this update: Tue 30 Dec 2025 14:16:46 +0000 Manifest next update: Tue 06 Jan 2026 14:16:46 +0000 Files and hashes: 1: 7CxkBsqh85689Fh1MVANVrlTYsA.crl (hash: YQ5w9EwxZRQHEEaHOCg28af4glhNfZvkuuJMIsGdy/0=) 2: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (hash: JRg1LZXcFPzNHPCZgdhpiNiCJWsLCkY/WCIHJGUF1Yc=) 3: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (hash: Un+gRmwEe7RmL1YJ6V7sBXAGRc3bNfxPT16yGupUBnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 14:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13621 (0x3535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Dec 30 14:16:46 2025 GMT Not After : Jan 6 14:16:46 2026 GMT Subject: CN=6953dece-af7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:d9:81:01:2c:6d:e1:56:d3:e1:d4:33:de: e8:6c:a9:d8:d2:82:46:42:5b:75:f9:1b:8f:b3:19: 50:a8:81:20:71:ed:36:b5:28:d9:5f:d8:e9:55:ab: 44:a4:2a:a1:d7:ac:06:d0:c3:ba:ab:ed:2e:3e:05: 3a:cb:1d:63:9a:1d:2c:92:eb:7e:0e:6b:97:da:02: 94:d0:51:37:ea:ff:77:c3:0d:2f:07:6d:fa:d6:07: 00:67:d6:42:20:ed:c4:1e:8c:21:43:30:07:18:ec: d0:86:0b:3a:ed:31:8a:66:57:d4:43:cb:b2:24:5f: 1c:29:ab:79:b5:10:30:d2:70:32:19:d2:28:be:0b: 07:c3:4e:f6:8d:a1:2b:9f:05:8e:83:2b:f4:ed:be: 29:c7:74:8f:30:a7:53:b2:77:82:31:98:c6:19:69: b6:bb:45:3a:05:e4:d6:81:6b:ca:70:c8:8b:c0:73: ce:2e:df:dc:cd:66:17:ce:21:1d:ba:d2:60:b5:4a: e1:a6:5a:35:1d:c5:49:f3:0b:83:25:9a:9b:1f:a6: a0:5e:55:e8:3a:3a:07:72:5e:fa:99:44:36:65:ae: e7:d1:44:d8:21:b4:e9:99:d5:43:e8:72:5b:01:8c: 4d:78:6a:4f:80:e8:62:66:c2:40:c0:59:2b:6d:76: 1f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:62:D3:01:03:A9:BC:F8:23:AD:5C:20:F7:1F:8D:79:4D:6D:03:E4 X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:35:ea:6f:2d:d7:77:7b:06:0b:2b:48:c5:16:aa:71:65:04: 61:7a:25:8f:da:06:4e:f7:5e:73:43:b2:cb:49:f9:9c:03:4a: 24:c2:92:60:3a:0e:7b:97:d8:fa:a9:08:bb:9e:4e:ab:67:91: 87:d0:35:e9:7a:e1:29:1a:f2:e9:1c:23:f9:58:72:62:35:ed: 72:97:15:30:c3:8b:b0:37:40:3a:71:c3:53:6c:81:a1:cf:1d: 13:40:b4:46:d2:20:86:5b:82:2a:dc:88:80:d7:71:f3:22:f1: 21:a8:21:d8:ca:19:41:52:52:98:da:a3:ea:8a:88:da:71:52: 8f:cf:00:ea:24:a6:62:b6:a1:bd:cb:73:37:b8:6a:98:dc:2f: a0:f0:99:40:9c:72:c9:d4:c0:df:dc:26:e2:65:27:69:e2:17: ec:25:ec:1e:7e:07:da:8e:29:0b:d6:f1:01:a0:9c:7f:67:43: 64:64:76:c8:dc:49:bc:bd:8c:6c:ab:8a:2a:5f:d2:7e:fe:69: 77:60:90:dc:1f:18:f3:75:9a:39:c5:13:26:da:d4:69:fd:75: 94:e1:6e:cd:2f:3b:6d:9e:ce:7c:12:38:1e:b1:8d:cd:9e:a3: ea:73:47:04:d3:a5:6c:54:0d:f3:11:d0:97:25:2b:84:2d:e3: df:17:c2:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjUxMjMwMTQxNjQ2WhcNMjYwMTA2MTQxNjQ2WjAYMRYwFAYD VQQDDA02OTUzZGVjZS1hZjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf3ZgQEsbeFW0+HUM97obKnY0oJGQlt1+RuPsxlQqIEgce02tSjZX9jpVatE pCqh16wG0MO6q+0uPgU6yx1jmh0skut+DmuX2gKU0FE36v93ww0vB2361gcAZ9ZC IO3EHowhQzAHGOzQhgs67TGKZlfUQ8uyJF8cKat5tRAw0nAyGdIovgsHw072jaEr nwWOgyv07b4px3SPMKdTsneCMZjGGWm2u0U6BeTWgWvKcMiLwHPOLt/czWYXziEd utJgtUrhplo1HcVJ8wuDJZqbH6agXlXoOjoHcl76mUQ2Za7n0UTYIbTpmdVD6HJb AYxNeGpPgOhiZsJAwFkrbXYf+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpi0wED qbz4I61cIPcfjXlNbQPkMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC80RTg2NDUwQzFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1 Njg5RmgxTVZBTlZybFRZc0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsNepvLdd3ewYLK0jFFqpxZQRheiWP2gZO915zQ7LLSfmcA0okwpJg Og57l9j6qQi7nk6rZ5GH0DXpeuEpGvLpHCP5WHJiNe1ylxUww4uwN0A6ccNTbIGh zx0TQLRG0iCGW4Iq3IiA13HzIvEhqCHYyhlBUlKY2qPqiojacVKPzwDqJKZitqG9 y3M3uGqY3C+g8JlAnHLJ1MDf3CbiZSdp4hfsJewefgfajikL1vEBoJx/Z0NkZHbI 3Em8vYxsq4oqX9J+/ml3YJDcHxjzdZo5xRMm2tRp/XWU4W7NLzttns58EjgesY3N nqPqc0cE06VsVA3zEdCXJSuELePfF8L+ -----END CERTIFICATE-----Generated at Wed Dec 31 04:17:10 2025 by rpki-client