This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft File: 7IKxn5B5ht6zu4AtInPQNNFBSy0.mft (raw, json) Hash identifier: cQ2ATjDYi0ySbMOgbagkYLjQVJt3T+MYQ41sj7r/HXA= Subject key identifier: 3D:8B:E9:85:68:24:C6:D5:A7:9D:56:CA:B2:4C:53:AF:20:0B:50:38 Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0C1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft Manifest number: 0C17 Signing time: Wed 24 Dec 2025 18:23:36 +0000 Manifest this update: Wed 24 Dec 2025 18:23:35 +0000 Manifest next update: Wed 31 Dec 2025 18:23:35 +0000 Files and hashes: 1: 7IKxn5B5ht6zu4AtInPQNNFBSy0.crl (hash: aRmmxRCWmumqFN1U/cZo1rzpTyeuzZV/29Y/bqq220A=) 2: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (hash: ygQ6vfqXgCOjWaI/M9+8sSQcLe6CReohgnbLpV4rvKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 18:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3101 (0xc1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA, serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Dec 24 18:23:35 2025 GMT Not After : Dec 31 18:23:35 2025 GMT Subject: CN=694c2fa7-0495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:62:0f:59:22:c3:87:99:e0:3d:b0:26:89:86: 88:5b:a0:58:b3:82:63:33:d0:d5:19:8d:d2:cd:94: 76:e5:4b:93:ee:25:52:70:ba:ad:8e:0a:7f:fc:64: 85:3f:c6:3e:6f:1b:58:a3:9d:0f:0a:d2:ba:f3:4e: 11:29:79:f7:7a:60:ea:a5:15:6f:75:de:42:af:e5: 1b:af:bb:31:88:b6:84:61:88:bd:bb:43:64:b5:2e: f7:09:7c:3d:5a:71:99:fd:2f:81:2d:65:77:8d:a6: d2:97:72:12:01:02:b6:35:b5:75:73:e4:62:f4:88: fc:81:6c:b7:73:cc:a8:63:b9:f7:47:e0:a3:dd:31: 58:54:b5:81:34:1e:94:a5:78:ae:12:9a:d7:18:b5: bf:35:5e:23:0a:12:41:8c:df:4e:a2:8e:7c:f7:18: f8:98:fd:fc:0c:6a:9d:48:79:b4:50:40:4e:c1:b0: ba:62:13:c2:67:40:49:15:71:52:1a:a9:6d:16:5d: 5b:96:87:dc:bf:6c:b7:c2:97:84:16:4a:9f:2a:55: 43:63:1c:33:95:5c:21:ab:13:71:55:85:51:c6:8f: 9a:3e:17:78:cb:d5:d0:e1:f3:55:e6:35:a9:47:52: a6:f9:6d:8c:bb:5b:c9:97:5b:58:e5:c4:a2:93:65: 2a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:8B:E9:85:68:24:C6:D5:A7:9D:56:CA:B2:4C:53:AF:20:0B:50:38 X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:eb:c8:0e:9e:98:d8:a5:7c:70:4c:b5:8c:62:d7:4e:37:32: 0e:b9:37:44:64:7c:3f:21:df:b3:4c:f2:ab:dd:82:15:e4:64: 63:7a:71:5b:b2:48:e5:f8:fb:af:0e:63:6d:25:11:c1:7a:6d: 0b:8b:1d:05:07:86:50:1b:65:83:3f:b3:b8:b8:08:52:1e:c4: 5b:65:00:d1:fc:f9:e1:ca:7f:10:1a:41:e5:0a:aa:a2:01:11: fe:c4:04:b6:8a:7a:e5:e0:5f:81:a9:e4:d2:e8:d3:79:fa:17: ec:6f:6b:1f:f5:41:51:2f:b2:8d:74:13:83:b1:6e:bc:05:87: d0:c5:41:88:5b:9d:af:e7:7c:c7:ad:42:2b:a0:4a:aa:74:a2: 42:e9:d6:64:ae:c5:98:22:39:db:7a:50:86:43:81:94:2a:f1: 2d:e9:1c:dc:a6:18:2f:1f:10:35:36:44:b7:09:b3:bc:f0:a8: 22:6a:75:93:5b:87:04:15:2d:2f:64:1f:db:cf:52:1d:85:e9: c9:b1:eb:ae:ae:83:61:53:af:f1:5c:f6:89:b8:ee:70:82:ad: c0:a6:bc:da:9e:a6:07:9e:d9:a4:59:ed:ce:d9:ca:2a:1f:fb: b3:e2:1a:45:8f:c5:a5:c9:0b:62:a5:26:2a:2f:82:13:83:8a: c8:44:05:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjUxMjI0MTgyMzM1WhcNMjUxMjMxMTgyMzM1WjAYMRYwFAYD VQQDDA02OTRjMmZhNy0wNDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGIPWSLDh5ngPbAmiYaIW6BYs4JjM9DVGY3SzZR25UuT7iVScLqtjgp//GSF P8Y+bxtYo50PCtK6804RKXn3emDqpRVvdd5Cr+Ubr7sxiLaEYYi9u0NktS73CXw9 WnGZ/S+BLWV3jabSl3ISAQK2NbV1c+Ri9Ij8gWy3c8yoY7n3R+Cj3TFYVLWBNB6U pXiuEprXGLW/NV4jChJBjN9Ooo589xj4mP38DGqdSHm0UEBOwbC6YhPCZ0BJFXFS GqltFl1blofcv2y3wpeEFkqfKlVDYxwzlVwhqxNxVYVRxo+aPhd4y9XQ4fNV5jWp R1Km+W2Mu1vJl1tY5cSik2UqRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2L6YVo JMbVp51WyrJMU68gC1A4MB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNDQS84MTM4NjA0NjIxODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0 Nnp1NEF0SW5QUU5ORkJTeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg68gOnpjYpXxwTLWMYtdONzIOuTdEZHw/Id+zTPKr3YIV5GRjenFb skjl+PuvDmNtJRHBem0Lix0FB4ZQG2WDP7O4uAhSHsRbZQDR/Pnhyn8QGkHlCqqi ARH+xAS2inrl4F+BqeTS6NN5+hfsb2sf9UFRL7KNdBODsW68BYfQxUGIW52v53zH rUIroEqqdKJC6dZkrsWYIjnbelCGQ4GUKvEt6RzcphgvHxA1NkS3CbO88KgianWT W4cEFS0vZB/bz1IdhenJseuuroNhU6/xXPaJuO5wgq3AprzanqYHntmkWe3O2coq H/uz4hpFj8WlyQtipSYqL4ITg4rIRAUl -----END CERTIFICATE-----Generated at Thu Dec 25 04:31:53 2025 by rpki-client