This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: aO2GWM6M4PThjYlCP702/JUzAEutNIl9sOGnWCXF6Nc= Subject key identifier: 7F:25:26:72:4B:1E:69:E3:FA:14:5F:00:C7:6F:8A:A1:EE:11:2A:C1 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 0635 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 062C Signing time: Thu 18 Dec 2025 22:08:49 +0000 Manifest this update: Thu 18 Dec 2025 22:08:48 +0000 Manifest next update: Thu 25 Dec 2025 22:08:48 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: Y9kjKg2QwmVZ7yqvRk09Ebi9R0TAQ/IfFnJ2kMt1UXs=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 9l/idt3LJislssNxfPBsqgjifz4U+6PzxoXpIp44G34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1589 (0x635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Dec 18 22:08:48 2025 GMT Not After : Dec 25 22:08:48 2025 GMT Subject: CN=69447b71-5723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4f:32:13:37:68:62:6e:04:c3:ce:13:f1:7e: ce:2a:11:06:cb:32:21:cc:a8:c1:a0:b6:86:99:7f: 4b:68:a6:75:16:1d:6f:24:51:ce:a3:a1:f2:f6:7f: f4:0f:c6:69:57:13:c0:18:84:1b:72:15:7f:d5:96: 53:1e:de:91:63:c8:88:bf:03:a8:81:dc:d0:8f:45: 39:a7:4a:ab:03:ea:1c:ac:e9:f5:34:61:f9:68:5d: 1b:25:45:9c:8b:24:a4:77:d8:35:c9:d4:2d:1f:c5: 82:d8:09:74:60:b1:e8:ad:d3:62:5f:22:c2:ab:f3: 6f:2d:d1:73:27:99:60:31:f8:81:65:61:1d:17:a4: 2e:4d:ac:a2:ab:f4:3b:70:41:28:00:58:3b:69:ba: 73:bb:2b:9f:b6:13:20:1c:a7:cc:c1:ed:08:5b:df: 24:c3:52:a4:d5:e6:e4:3a:38:5c:61:61:d3:28:01: fe:62:fc:7b:3a:ec:28:c4:6a:26:93:da:ba:76:38: e2:3e:e1:92:3a:4b:26:d3:d2:df:49:52:88:01:8e: 01:1a:67:7b:9b:df:5f:8c:20:06:53:ff:ea:a8:61: 0a:c6:6c:a2:f8:e1:62:b3:4e:af:53:d0:e5:a1:4b: 92:58:e5:53:5d:0b:a3:cf:b0:94:1c:85:9f:b5:5f: 91:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:25:26:72:4B:1E:69:E3:FA:14:5F:00:C7:6F:8A:A1:EE:11:2A:C1 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:2d:27:a3:b1:bf:a2:e3:18:fd:7c:b0:8e:4d:6c:5c:0f:64: 3c:15:63:55:58:34:2e:aa:45:17:4e:40:0e:8a:da:d6:cb:98: d8:66:6e:de:76:2a:71:5c:5d:a3:b0:a1:19:9f:f8:d8:63:40: 91:90:81:ed:92:12:c6:f8:f9:76:04:b1:f6:a3:93:42:26:e6: c5:24:78:d8:a9:d5:ad:c0:83:ac:e8:73:24:19:a7:c4:8b:28: c9:f0:13:37:ae:4f:85:9c:01:9e:4e:c7:0e:6f:5c:c1:21:29: 73:42:a1:7e:5d:e6:88:10:3c:9a:76:69:de:bd:eb:fe:d2:2d: 92:eb:ec:7d:b9:2d:4f:3d:57:db:79:c3:8d:35:d3:89:b8:b5: 06:3e:f7:2a:e3:2e:a5:10:82:bf:f0:8f:37:6f:76:98:29:a8: 39:e2:9a:d7:19:28:a7:f1:03:b8:64:95:34:4b:11:6c:69:2c: 61:e0:9d:c3:34:4a:73:f5:50:25:e5:94:a7:4c:b4:3c:ac:3a: d7:73:97:c9:0a:9b:6e:bf:f4:92:41:a6:2b:b9:41:b5:64:94: 16:7b:14:85:02:f0:9a:b1:71:05:ec:84:8a:3d:66:31:cd:a9: c5:37:a3:1a:92:9a:d0:cf:25:4b:2b:84:ca:78:06:b4:cd:83: a6:07:38:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUxMjE4MjIwODQ4WhcNMjUxMjI1MjIwODQ4WjAYMRYwFAYD VQQDDA02OTQ0N2I3MS01NzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U8yEzdoYm4Ew84T8X7OKhEGyzIhzKjBoLaGmX9LaKZ1Fh1vJFHOo6Hy9n/0 D8ZpVxPAGIQbchV/1ZZTHt6RY8iIvwOogdzQj0U5p0qrA+ocrOn1NGH5aF0bJUWc iySkd9g1ydQtH8WC2Al0YLHordNiXyLCq/NvLdFzJ5lgMfiBZWEdF6QuTayiq/Q7 cEEoAFg7abpzuyufthMgHKfMwe0IW98kw1Kk1ebkOjhcYWHTKAH+Yvx7OuwoxGom k9q6djjiPuGSOksm09LfSVKIAY4BGmd7m99fjCAGU//qqGEKxmyi+OFis06vU9Dl oUuSWOVTXQujz7CUHIWftV+R7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8lJnJL Hmnj+hRfAMdviqHuESrBMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2LSejsb+i4xj9fLCOTWxcD2Q8FWNVWDQuqkUXTkAOitrWy5jYZm7e dipxXF2jsKEZn/jYY0CRkIHtkhLG+Pl2BLH2o5NCJubFJHjYqdWtwIOs6HMkGafE iyjJ8BM3rk+FnAGeTscOb1zBISlzQqF+XeaIEDyadmnevev+0i2S6+x9uS1PPVfb ecONNdOJuLUGPvcq4y6lEIK/8I83b3aYKag54prXGSin8QO4ZJU0SxFsaSxh4J3D NEpz9VAl5ZSnTLQ8rDrXc5fJCptuv/SSQaYruUG1ZJQWexSFAvCasXEF7ISKPWYx zanFN6MakprQzyVLK4TKeAa0zYOmBzig -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:58 2025 by rpki-client