This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: tgDZQ9MLkj/8TZNWZkR5a/Pnc1M8OIkjHhk2v970f9U= Subject key identifier: 9B:CB:EF:B5:0F:5B:F6:65:E1:2F:BC:25:ED:BF:2E:E4:FE:65:E5:E3 Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 408D Signing time: Thu 18 Dec 2025 14:46:38 +0000 Manifest this update: Thu 18 Dec 2025 14:46:37 +0000 Manifest next update: Thu 25 Dec 2025 14:46:37 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: tiaZ+UwoyM0r4Z5hyvnEaSdq2zYpM9Q2sD4uWQUadbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13546 (0x34ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Dec 18 14:46:37 2025 GMT Not After : Dec 25 14:46:37 2025 GMT Subject: CN=694413cd-1e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:89:80:22:6c:b2:ee:1a:ca:26:bd:51:ac:f4: da:15:70:cf:de:f4:0d:4a:c2:dd:b3:da:64:2b:50: 3c:a1:fc:3f:f9:2c:35:b6:4a:c7:3e:9a:f0:cd:24: 40:c3:5d:4d:75:e3:9e:16:61:a9:5f:07:a6:0d:76: 07:ac:17:af:ae:79:a8:fc:ce:ac:cd:40:39:e4:a4: 2f:18:6c:8b:94:b0:01:34:6c:eb:c4:27:c2:a1:da: 59:d1:74:9b:85:a5:62:1a:46:ee:ca:01:ed:ce:e3: 4a:d7:a0:02:38:af:c3:75:74:b3:2b:a0:6a:99:90: 95:52:8c:6d:53:0c:00:3d:3c:16:1d:17:1b:41:da: 28:51:94:bf:74:f1:5d:fc:09:62:5a:b6:1f:88:e1: 45:f3:53:d9:23:8f:e3:e4:94:2b:ea:60:7c:ae:1e: 24:1a:21:c4:d2:9a:00:bf:3a:84:40:cb:78:ea:af: 1f:4e:f0:af:24:18:3f:f9:d4:c9:30:88:98:1d:01: d4:f0:6a:64:b5:6f:3e:8f:26:c0:1a:e5:33:71:7e: 4a:28:ce:93:f7:6b:d2:bc:0e:20:6c:bf:9e:02:6a: 80:62:7a:aa:e6:de:26:58:2e:a1:06:73:07:2b:29: 70:70:dc:4d:f4:c6:a7:ac:ec:58:bb:c9:af:f1:07: 35:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CB:EF:B5:0F:5B:F6:65:E1:2F:BC:25:ED:BF:2E:E4:FE:65:E5:E3 X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:e7:73:c0:8b:a1:21:40:a3:db:43:cf:28:7d:9d:fe:73:1b: b9:17:06:5e:dd:11:41:f1:7c:ba:fd:77:3b:f2:7d:48:54:5f: 97:96:ae:f3:fa:98:c5:6d:1b:6b:fa:2b:94:e5:53:6e:c6:d4: f3:cd:20:ce:34:91:02:77:d6:06:ae:d9:d8:63:29:6c:89:df: b2:1e:f6:45:5d:62:a4:e3:a4:41:fe:40:84:26:c7:5e:1f:87: e5:ec:21:a2:40:b4:5b:10:57:b9:ca:62:cc:e7:ca:e1:45:24: 98:8f:08:5e:e8:12:d5:bf:56:f9:a4:88:e9:40:00:6d:fa:d4: 4e:c4:2a:64:9b:64:83:80:e5:b6:b8:3e:0b:f3:00:5b:7c:d3: 88:42:8a:30:3a:99:14:7e:62:a6:0d:1c:cb:50:4e:de:40:d7: 0f:60:0e:71:ee:1c:9b:87:f8:c3:a1:34:88:94:36:3c:56:10: e6:86:f3:83:14:60:7e:27:06:a4:83:64:96:7f:fa:b6:ba:9d: 99:ac:fe:df:96:b9:17:4a:ea:12:df:79:a1:4c:bd:5a:ed:7f: 40:0f:cd:87:89:b8:2a:d9:a2:a4:36:51:b1:4c:dc:da:07:40: 37:1d:6e:ae:3e:fc:b1:ca:b7:3b:9b:65:fc:44:89:d2:7c:ff: 44:1f:6b:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUxMjE4MTQ0NjM3WhcNMjUxMjI1MTQ0NjM3WjAYMRYwFAYD VQQDDA02OTQ0MTNjZC0xZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkYmAImyy7hrKJr1RrPTaFXDP3vQNSsLds9pkK1A8ofw/+Sw1tkrHPprwzSRA w11NdeOeFmGpXwemDXYHrBevrnmo/M6szUA55KQvGGyLlLABNGzrxCfCodpZ0XSb haViGkbuygHtzuNK16ACOK/DdXSzK6BqmZCVUoxtUwwAPTwWHRcbQdooUZS/dPFd /AliWrYfiOFF81PZI4/j5JQr6mB8rh4kGiHE0poAvzqEQMt46q8fTvCvJBg/+dTJ MIiYHQHU8GpktW8+jybAGuUzcX5KKM6T92vSvA4gbL+eAmqAYnqq5t4mWC6hBnMH KylwcNxN9ManrOxYu8mv8Qc14QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvL77UP W/Zl4S+8Je2/LuT+ZeXjMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB853PAi6EhQKPbQ88ofZ3+cxu5FwZe3RFB8Xy6/Xc78n1IVF+Xlq7z +pjFbRtr+iuU5VNuxtTzzSDONJECd9YGrtnYYylsid+yHvZFXWKk46RB/kCEJsde H4fl7CGiQLRbEFe5ymLM58rhRSSYjwhe6BLVv1b5pIjpQABt+tROxCpkm2SDgOW2 uD4L8wBbfNOIQoowOpkUfmKmDRzLUE7eQNcPYA5x7hybh/jDoTSIlDY8VhDmhvOD FGB+Jwakg2SWf/q2up2ZrP7flrkXSuoS33mhTL1a7X9AD82Hibgq2aKkNlGxTNza B0A3HW6uPvyxyrc7m2X8RInSfP9EH2tN -----END CERTIFICATE-----Generated at Fri Dec 19 20:15:34 2025 by rpki-client