This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft File: 7DavWXkJHGv6WA6juiJXeTV1cNc.mft (raw, json) Hash identifier: S5ukPapGh7fpZ/GM8L+/PAeNNvbXqoq8diWyaIdwGzg= Subject key identifier: BD:17:4C:4A:EF:24:81:A8:5C:1A:85:E5:03:6F:B7:D1:14:33:D6:15 Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft Manifest number: 065A Signing time: Sat 20 Dec 2025 22:02:16 +0000 Manifest this update: Sat 20 Dec 2025 22:02:16 +0000 Manifest next update: Sat 27 Dec 2025 22:02:16 +0000 Files and hashes: 1: 7DavWXkJHGv6WA6juiJXeTV1cNc.crl (hash: g3jTkYZOcm+dAetZ+S51M8ZkIMqpfPncyVezw8HDAS8=) 2: 26E44986BE8311F0B427BB65C4F9AE02.roa (hash: WDe5+WCW+WUnfyj9lW0W66HhFFb2k+ZltOdwdXoQMHI=) 3: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (hash: TeJpD3Jj2YvGpGUMH39dSWrHPG/q0+u5tAy2AR+WaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578, serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: Dec 20 22:02:16 2025 GMT Not After : Dec 27 22:02:16 2025 GMT Subject: CN=69471ce8-1e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f9:a6:f1:26:03:62:29:4f:ae:1b:99:8e:68: 93:90:43:38:46:5d:02:97:1a:ba:07:f8:25:3d:a7: a0:a6:f4:d3:e2:e2:89:72:fd:80:29:2b:14:02:e9: 01:8c:ac:8a:61:68:5f:88:71:1f:35:44:ef:d3:1e: 9e:3a:25:91:50:85:7e:50:08:bb:6c:f3:eb:ae:e0: 8b:d3:3a:a2:14:ac:9b:f5:59:2a:df:bb:e6:31:2e: 30:27:ac:24:04:83:5d:db:b4:e8:f0:2b:1c:a8:da: 2c:93:dd:29:52:d6:06:be:16:6e:6f:35:3e:9d:05: 0c:26:22:d3:ed:59:ec:8d:21:c5:1c:e3:f0:ea:b0: b9:84:3b:12:de:2f:99:01:67:51:db:bb:b7:97:91: 8b:ef:21:c4:8c:81:28:6c:e9:2c:ba:c6:7a:69:18: 7f:f7:f1:7c:6c:2f:b2:a3:87:63:72:62:fa:83:42: 44:1e:e5:e6:c9:b2:25:c3:a8:fd:1f:e3:16:82:d5: 00:45:f2:19:a0:93:ab:49:7b:ff:4c:e8:1a:3c:6c: d8:64:49:da:5f:a0:5b:2e:fc:3d:e6:e2:0c:03:5c: 12:79:48:86:5f:d7:3c:37:45:18:0b:99:3c:26:24: 3e:54:4e:bc:26:aa:a2:73:a8:83:77:ac:96:92:2b: 65:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:17:4C:4A:EF:24:81:A8:5C:1A:85:E5:03:6F:B7:D1:14:33:D6:15 X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:6f:c2:90:be:ba:d4:f9:5e:dc:f0:ed:8a:17:50:d2:9c:fd: 36:53:37:32:b0:f3:4b:05:b6:11:17:14:49:77:23:c1:27:30: 76:10:cd:ac:33:99:99:10:9c:be:59:2e:0d:b0:cf:2b:14:82: 59:b3:7f:52:c6:e8:49:e7:f4:2d:54:66:4e:b4:4b:7c:d6:ea: 31:62:91:b9:73:2a:0c:0e:c3:b3:52:eb:0c:6e:4e:65:8c:f5: 21:57:68:2b:20:19:a3:a1:0c:76:02:f4:e5:50:f9:48:9e:48: e4:73:ed:40:dc:bc:8a:21:cc:7a:2c:14:55:62:b0:cb:61:f4: 3c:52:e5:fc:93:f3:0f:57:61:0f:3f:5b:58:82:79:96:1d:95: cf:27:be:d2:db:5e:c6:f2:fd:b8:2c:13:09:59:ac:c7:c1:4e: 31:51:7a:1d:15:31:13:2a:2a:68:83:2b:23:98:20:e5:08:ee: bf:67:9a:5d:35:91:6d:d4:3c:41:be:73:b5:80:39:78:76:d7: 84:42:f4:bb:50:97:65:72:80:d0:7f:a8:f6:33:c8:6f:1a:3f: 39:8c:c2:05:46:84:00:d5:21:04:56:6d:81:5c:c3:0b:8c:bf: 0d:f9:11:a8:53:2d:b8:3c:e4:b4:d8:e8:f0:85:4c:b4:62:d9: 10:f1:6b:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjUxMjIwMjIwMjE2WhcNMjUxMjI3MjIwMjE2WjAYMRYwFAYD VQQDDA02OTQ3MWNlOC0xZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufmm8SYDYilPrhuZjmiTkEM4Rl0Clxq6B/glPaegpvTT4uKJcv2AKSsUAukB jKyKYWhfiHEfNUTv0x6eOiWRUIV+UAi7bPPrruCL0zqiFKyb9Vkq37vmMS4wJ6wk BINd27To8CscqNosk90pUtYGvhZubzU+nQUMJiLT7VnsjSHFHOPw6rC5hDsS3i+Z AWdR27u3l5GL7yHEjIEobOksusZ6aRh/9/F8bC+yo4djcmL6g0JEHuXmybIlw6j9 H+MWgtUARfIZoJOrSXv/TOgaPGzYZEnaX6BbLvw95uIMA1wSeUiGX9c8N0UYC5k8 JiQ+VE68Jqqic6iDd6yWkitlpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0XTErv JIGoXBqF5QNvt9EUM9YVMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzU3OC9EM0MwMTkwQ0JCOUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhH djZXQTZqdWlKWGVUVjFjTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5b8KQvrrU+V7c8O2KF1DSnP02UzcysPNLBbYRFxRJdyPBJzB2EM2s M5mZEJy+WS4NsM8rFIJZs39SxuhJ5/QtVGZOtEt81uoxYpG5cyoMDsOzUusMbk5l jPUhV2grIBmjoQx2AvTlUPlInkjkc+1A3LyKIcx6LBRVYrDLYfQ8UuX8k/MPV2EP P1tYgnmWHZXPJ77S217G8v24LBMJWazHwU4xUXodFTETKipogysjmCDlCO6/Z5pd NZFt1DxBvnO1gDl4dteEQvS7UJdlcoDQf6j2M8hvGj85jMIFRoQA1SEEVm2BXMML jL8N+RGoUy24POS02OjwhUy0YtkQ8WuT -----END CERTIFICATE-----Generated at Sun Dec 21 06:33:57 2025 by rpki-client