This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft File: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft (raw, json) Hash identifier: jXN+iIl6bwskmq1ZfG2Mm21RG8arhwpNZhCQGs0n3/U= Subject key identifier: 05:6B:4B:14:EB:13:4B:F0:94:BF:0D:95:78:CE:D1:AB:12:C7:0E:ED Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft Manifest number: 7A Signing time: Thu 25 Dec 2025 05:45:27 +0000 Manifest this update: Thu 25 Dec 2025 05:45:27 +0000 Manifest next update: Thu 01 Jan 2026 05:45:27 +0000 Files and hashes: 1: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl (hash: 3U0IfxyaRTaWtCV5qlTpMQIJ4cE7v/TtSkpCSuF5oVc=) 2: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (hash: TaTTQc4nWO7SbQiY1TzciA986qQtAe9dKiOICLaP5yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 05:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Dec 25 05:45:27 2025 GMT Not After : Jan 1 05:45:27 2026 GMT Subject: CN=694ccf77-4a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:27:90:4a:17:5e:4f:51:ed:e7:9d:95:24:91: a2:71:47:ce:9a:3c:6e:7e:fa:38:54:3f:ce:92:96: ed:33:f1:8e:ab:bb:40:a2:a7:87:a3:d4:b2:57:e2: 26:5a:05:5e:9e:39:65:ba:71:8f:38:c1:5b:74:c9: 52:f6:a5:81:16:dc:03:27:00:f1:1d:0b:d5:e2:39: 2e:3b:a8:69:29:72:3f:34:fa:a9:52:23:47:35:85: 47:c2:8a:ee:0b:08:8e:63:8c:0f:ce:38:1a:c5:27: 04:d5:6a:b5:c1:e6:ab:0d:b9:0f:36:16:b4:42:d5: 25:e5:a1:a6:9d:54:ac:b2:fa:14:d5:ed:d5:8d:f0: d0:86:10:16:11:b4:74:4f:ac:0f:cd:2d:01:17:6d: 6f:43:b1:83:4b:e4:58:76:f7:b3:28:22:50:57:db: 3b:f8:e0:74:b8:8a:1c:a6:ae:18:46:8c:44:8c:e4: f2:82:d7:35:94:3d:67:f0:3f:b3:4d:59:1e:0f:32: d4:49:6e:70:32:51:e2:af:23:e5:2c:d1:27:40:27: bf:4f:0f:0e:66:5e:7a:65:a3:ff:5e:d3:07:ff:27: 31:62:c1:54:55:fd:1b:a4:8c:dc:32:e2:77:9d:55: 06:37:f5:38:70:7e:14:6b:0a:9a:1f:93:d6:06:41: c3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6B:4B:14:EB:13:4B:F0:94:BF:0D:95:78:CE:D1:AB:12:C7:0E:ED X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:7a:b3:1c:2a:84:37:05:1d:4c:9d:ce:4f:1f:e9:1e:d2:27: 2e:e7:f3:5c:d3:aa:63:1d:23:25:fd:c3:6b:54:5d:5b:76:f3: f2:f6:4f:35:18:06:f2:35:9b:c8:d6:78:aa:41:b7:b9:03:64: 8c:0e:85:4d:3b:98:8b:a6:b4:64:b7:bf:79:44:3e:f7:dd:dc: 48:5a:d8:db:42:48:6a:be:1b:1f:65:d6:4b:6a:a0:fe:6f:5c: 6d:cd:40:69:8b:58:88:ec:06:64:b8:c7:a3:c2:97:78:cf:11: e9:82:4f:81:63:7c:81:f7:f0:9e:3a:53:95:32:37:71:27:50: e5:d9:fc:fd:9a:ed:67:13:43:68:55:9d:45:89:d5:1d:15:12: ec:f0:7a:b0:a4:78:59:95:e2:19:ec:f7:84:05:3d:10:c6:00: 52:7e:a9:32:07:a8:66:27:46:c6:2e:54:21:2d:6e:94:bc:01: 26:29:c7:18:eb:2e:db:6b:b0:78:d2:e0:59:bc:e5:39:cd:7b: c1:d0:24:0c:0f:d8:e3:22:6d:d5:cd:3a:57:e0:85:9f:2a:14: 75:05:d7:e6:bd:e4:95:c8:ab:20:e0:05:6c:de:e6:bb:e0:e9: e2:81:1a:95:9c:6c:d5:24:f1:0e:4a:47:de:39:23:aa:9a:11: 80:75:f6:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTEyMjUwNTQ1MjdaFw0yNjAxMDEwNTQ1MjdaMBgxFjAUBgNV BAMMDTY5NGNjZjc3LTRhODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTJ5BKF15PUe3nnZUkkaJxR86aPG5++jhUP86Slu0z8Y6ru0Cip4ej1LJX4iZa BV6eOWW6cY84wVt0yVL2pYEW3AMnAPEdC9XiOS47qGkpcj80+qlSI0c1hUfCiu4L CI5jjA/OOBrFJwTVarXB5qsNuQ82FrRC1SXloaadVKyy+hTV7dWN8NCGEBYRtHRP rA/NLQEXbW9DsYNL5Fh297MoIlBX2zv44HS4ihymrhhGjESM5PKC1zWUPWfwP7NN WR4PMtRJbnAyUeKvI+Us0SdAJ79PDw5mXnplo/9e0wf/JzFiwVRV/RukjNwy4ned VQY39ThwfhRrCpofk9YGQcPLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBWtLFOsT S/CUvw2VeM7RqxLHDu0wHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB QTI0LzE3MzlDMzVBMkJDOTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVox REJqSV91cVIwdlV0TjV4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACB6sxwqhDcFHUydzk8f6R7SJy7n81zTqmMdIyX9w2tUXVt28/L2TzUY BvI1m8jWeKpBt7kDZIwOhU07mIumtGS3v3lEPvfd3Eha2NtCSGq+Gx9l1ktqoP5v XG3NQGmLWIjsBmS4x6PCl3jPEemCT4FjfIH38J46U5UyN3EnUOXZ/P2a7WcTQ2hV nUWJ1R0VEuzwerCkeFmV4hns94QFPRDGAFJ+qTIHqGYnRsYuVCEtbpS8ASYpxxjr LttrsHjS4Fm85TnNe8HQJAwP2OMibdXNOlfghZ8qFHUF1+a95JXIqyDgBWze5rvg 6eKBGpWcbNUk8Q5KR945I6qaEYB19lo= -----END CERTIFICATE-----Generated at Thu Dec 25 21:10:13 2025 by rpki-client