This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft File: 7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft (raw, json) Hash identifier: Jpsx0OvX9K+X8RmZDMnEkHCM5UZnq30NE8RJbZ2xU9A= Subject key identifier: EA:CA:87:60:B4:32:2B:EC:75:9B:A8:8D:38:21:6E:1F:93:FC:87:7C Authority key identifier: EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 Certificate issuer: /CN=A91BCB3A/serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Certificate serial: 0B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft Manifest number: 0B74 Signing time: Thu 18 Dec 2025 18:49:24 +0000 Manifest this update: Thu 18 Dec 2025 18:49:23 +0000 Manifest next update: Thu 25 Dec 2025 18:49:23 +0000 Files and hashes: 1: 7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl (hash: yxcJjV+poeTPcRtdJUGvJppof0XXsvZ+L0WX/efGz8E=) 2: 34492F3A13A011F0B2541067C4F9AE02.roa (hash: CB9T3Z9Kr+65LPAMP9ETCGEmFvpN7j5O01tRCMGo/Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCB3A, serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Validity Not Before: Dec 18 18:49:23 2025 GMT Not After : Dec 25 18:49:23 2025 GMT Subject: CN=69444cb3-efac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:cb:e9:46:82:24:32:39:7f:10:35:b4:24:da: c1:83:65:f0:89:56:cc:48:89:bc:20:57:3a:2c:ba: 2f:09:62:38:54:7a:dd:60:cb:60:99:b6:c9:32:c0: 15:54:9d:31:39:8a:0b:90:d6:d9:5f:c3:4d:bf:66: e4:64:31:f7:34:d4:0d:b7:73:0e:12:f4:8b:c5:7a: db:a5:67:04:c2:7f:71:f9:cc:b6:b5:62:04:59:fb: 0e:19:98:dd:3f:5c:b3:3e:d8:b7:ea:3b:cb:10:33: eb:55:d3:06:9e:c0:66:d6:14:3f:80:25:21:65:90: 69:69:25:a2:b5:d9:d1:f4:62:5c:c5:0b:e2:03:8c: 2d:40:6b:8a:b4:7f:80:94:a0:90:5d:d3:6e:a0:d7: 97:8f:a2:e6:04:67:34:3f:a1:63:ab:20:1d:21:70: f3:f2:b5:a6:a0:14:74:14:aa:39:a0:e2:8d:d7:35: 2e:db:8f:b6:bf:72:9f:9c:91:9c:e7:17:0a:2e:a7: ad:54:21:7e:1f:e2:c1:8d:2b:a0:91:e0:e6:0f:1e: 04:44:87:04:e7:be:8e:4c:74:e5:45:f5:ac:39:41: 8f:87:95:31:d4:50:20:26:b7:3c:a1:11:e7:e0:45: 30:ac:59:c3:0a:16:36:c1:9d:39:aa:c3:54:47:d4: 66:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:CA:87:60:B4:32:2B:EC:75:9B:A8:8D:38:21:6E:1F:93:FC:87:7C X509v3 Authority Key Identifier: keyid:EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:eb:e5:0e:07:9d:3a:89:d2:23:78:22:f4:cb:0b:fc:72:a8: 36:2b:5f:dc:90:22:7b:03:92:91:38:4c:c7:78:96:b0:b3:8a: 97:e2:5a:79:fe:f9:ef:d4:0b:c7:35:47:a6:6e:c6:0c:24:13: 87:68:e1:7d:ea:f5:ff:a5:07:6f:9d:2d:db:16:11:78:ac:69: dc:45:06:2b:1f:0e:94:f2:9c:93:61:a2:73:b8:c0:35:54:a1: 2e:79:6a:85:56:72:77:c9:c1:70:8b:d2:ff:6b:b4:2a:38:21: 19:9e:1a:8f:80:61:17:d1:83:0c:7a:4f:80:30:2e:bd:8d:32: 47:76:c3:5c:41:0f:dc:31:c3:64:00:e6:d4:76:bf:56:4b:6e: b1:15:45:b7:4d:41:b8:9b:82:f6:fa:2c:b8:77:ea:5f:15:a3: c2:b0:f3:93:3f:35:26:cf:de:fe:0f:b8:42:60:01:61:50:b2: cd:8d:dc:3f:9f:c6:b2:7a:fc:fc:ee:18:19:cc:fd:4c:91:f4: 66:51:6b:20:2d:a6:24:98:a4:2d:a0:fa:87:8d:43:52:9e:1d: d4:f8:8d:07:6c:18:63:a8:ca:50:d0:1f:0e:a1:a1:c7:4e:c4: 8a:ef:f6:d9:03:70:90:fa:8e:20:91:7a:20:03:13:83:a8:c3: 9e:b7:bb:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNCM0ExMTAvBgNVBAUTKEVFNUVDMzdGM0QzQkM1NzU5OUYzQzczQzUyMjI2RTdF RTA1MEJGOTYwHhcNMjUxMjE4MTg0OTIzWhcNMjUxMjI1MTg0OTIzWjAYMRYwFAYD VQQDDA02OTQ0NGNiMy1lZmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8MvpRoIkMjl/EDW0JNrBg2XwiVbMSIm8IFc6LLovCWI4VHrdYMtgmbbJMsAV VJ0xOYoLkNbZX8NNv2bkZDH3NNQNt3MOEvSLxXrbpWcEwn9x+cy2tWIEWfsOGZjd P1yzPti36jvLEDPrVdMGnsBm1hQ/gCUhZZBpaSWitdnR9GJcxQviA4wtQGuKtH+A lKCQXdNuoNeXj6LmBGc0P6FjqyAdIXDz8rWmoBR0FKo5oOKN1zUu24+2v3KfnJGc 5xcKLqetVCF+H+LBjSugkeDmDx4ERIcE576OTHTlRfWsOUGPh5Ux1FAgJrc8oRHn 4EUwrFnDChY2wZ05qsNUR9RmZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrKh2C0 MivsdZuojTghbh+T/Id8MB8GA1UdIwQYMBaAFO5ew389O8V1mfPHPFIibn7gUL+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0IzQS85QUQ2QzVCODQ1 ODQxMUVBQTQ2RTc1NzFDNEY5QUUwMi83bDdEZnowN3hYV1o4OGM4VWlKdWZ1QlF2 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdsN0RmejA3eFhXWjg4YzhVaUp1ZnVCUXY1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0IzQS85QUQ2QzVCODQ1ODQxMUVBQTQ2RTc1NzFDNEY5QUUwMi83bDdEZnowN3hY V1o4OGM4VWlKdWZ1QlF2NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq6+UOB506idIjeCL0ywv8cqg2K1/ckCJ7A5KROEzHeJaws4qX4lp5 /vnv1AvHNUembsYMJBOHaOF96vX/pQdvnS3bFhF4rGncRQYrHw6U8pyTYaJzuMA1 VKEueWqFVnJ3ycFwi9L/a7QqOCEZnhqPgGEX0YMMek+AMC69jTJHdsNcQQ/cMcNk AObUdr9WS26xFUW3TUG4m4L2+iy4d+pfFaPCsPOTPzUmz97+D7hCYAFhULLNjdw/ n8ayevz87hgZzP1MkfRmUWsgLaYkmKQtoPqHjUNSnh3U+I0HbBhjqMpQ0B8OoaHH TsSK7/bZA3CQ+o4gkXogAxODqMOet7ua -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:16 2025 by rpki-client