This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: yS4Ik2GLLqH5D2DpO0kPTDzwyYD0Orm1MhoCCfwIQuI= Subject key identifier: FC:74:D8:42:6F:7A:20:FA:AA:48:F0:06:F5:32:0F:FC:20:2D:12:F4 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0AC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0AAD Signing time: Sat 06 Dec 2025 18:46:57 +0000 Manifest this update: Sat 06 Dec 2025 18:46:57 +0000 Manifest next update: Sat 13 Dec 2025 18:46:57 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: s78/Fjtjs/HEAGJWvOhM1V/lnGFozW8jLa2xIKymQok=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2754 (0xac2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Dec 6 18:46:57 2025 GMT Not After : Dec 13 18:46:57 2025 GMT Subject: CN=69347a21-ed0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:71:56:89:1f:49:00:20:cb:c5:30:16:fd:3e: 43:db:53:a2:a6:28:8d:7c:20:83:f4:22:9a:b1:a6: 07:42:6f:78:8c:52:99:e3:f7:ae:d1:8f:c1:a9:ba: 29:e6:a2:34:02:30:11:9d:8e:82:f2:40:69:ab:e3: d3:ff:71:49:2e:0a:b8:e2:9b:6e:22:6a:12:5c:20: 03:03:2c:19:dd:76:00:ec:d7:80:da:d6:8b:a3:2e: eb:a4:eb:01:42:9b:a5:53:9d:ff:4a:eb:6b:58:8c: 45:a4:bd:6b:2a:d7:b0:29:82:73:8f:1a:e3:98:f4: 95:56:3b:df:6b:80:f9:10:67:fc:91:96:9d:3f:e5: 98:31:01:11:80:23:3c:2f:3e:85:50:56:37:44:bc: 43:82:5d:63:11:4e:fc:12:a7:df:db:eb:27:55:40: 3c:a1:b3:c7:9f:be:7f:9d:55:89:7a:57:0e:98:6a: f0:70:0c:5d:53:5a:7f:fb:5f:e0:2f:7e:2f:42:a6: bc:86:99:29:0d:40:a2:60:7d:00:20:4d:49:c2:98: 2a:42:20:43:4b:3c:17:48:2c:91:f2:35:3e:37:d7: ad:42:11:01:30:7a:e8:be:83:5d:fc:88:c9:b2:69: 2f:fa:18:40:55:d1:78:d2:5b:43:4e:28:2a:2a:36: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:74:D8:42:6F:7A:20:FA:AA:48:F0:06:F5:32:0F:FC:20:2D:12:F4 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:53:75:a9:11:ea:e1:bb:77:fa:80:f7:5b:b9:23:41:a2:c3: 33:4f:03:fe:7f:20:3f:84:b3:5d:7b:72:ee:9e:41:66:77:29: 3a:81:64:c9:52:c9:57:a7:c7:e8:60:53:a3:2e:db:f8:aa:71: c6:69:66:ec:18:82:f0:5a:e1:68:ab:b4:59:f8:95:9b:72:35: 17:19:b0:b4:c0:fb:9f:83:96:99:6c:f6:60:34:5e:53:13:94: 29:5c:94:f1:1e:ff:f3:32:7f:44:1a:5e:a1:c7:9e:2e:d9:0a: d9:d0:be:89:f5:83:d6:92:10:18:aa:f7:32:5d:b0:83:e5:1d: 54:51:c8:fd:e3:b4:52:65:80:da:e2:92:39:a1:44:5c:8a:2b: fa:89:aa:93:ee:56:27:1e:73:46:71:e2:c5:5c:6b:d4:14:b6: a3:1d:d5:b8:b9:1a:84:b8:1c:54:ea:48:29:4d:19:24:7a:fa: 70:1d:99:a8:34:7f:11:43:ca:b4:34:95:f4:35:1e:22:82:dc: df:f5:f4:1c:fc:9f:f8:f4:44:22:a6:fb:78:8b:0d:45:91:f0: 28:28:4e:66:5f:ea:25:8e:ba:1b:b5:f6:59:46:85:a0:2a:f1: 88:8c:38:1c:62:bf:94:6d:09:90:8c:5c:01:4d:93:b8:ac:ea: 4f:87:cf:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUxMjA2MTg0NjU3WhcNMjUxMjEzMTg0NjU3WjAYMRYwFAYD VQQDEw02OTM0N2EyMS1lZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HFWiR9JACDLxTAW/T5D21OipiiNfCCD9CKasaYHQm94jFKZ4/eu0Y/Bqbop 5qI0AjARnY6C8kBpq+PT/3FJLgq44ptuImoSXCADAywZ3XYA7NeA2taLoy7rpOsB QpulU53/SutrWIxFpL1rKtewKYJzjxrjmPSVVjvfa4D5EGf8kZadP+WYMQERgCM8 Lz6FUFY3RLxDgl1jEU78Eqff2+snVUA8obPHn75/nVWJelcOmGrwcAxdU1p/+1/g L34vQqa8hpkpDUCiYH0AIE1JwpgqQiBDSzwXSCyR8jU+N9etQhEBMHrovoNd/IjJ smkv+hhAVdF40ltDTigqKjakrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPx02EJv eiD6qkjwBvUyD/wgLRL0MB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbU3WpEerhu3f6gPdbuSNBosMzTwP+fyA/hLNde3LunkFmdyk6gWTJ UslXp8foYFOjLtv4qnHGaWbsGILwWuFoq7RZ+JWbcjUXGbC0wPufg5aZbPZgNF5T E5QpXJTxHv/zMn9EGl6hx54u2QrZ0L6J9YPWkhAYqvcyXbCD5R1UUcj947RSZYDa 4pI5oURciiv6iaqT7lYnHnNGceLFXGvUFLajHdW4uRqEuBxU6kgpTRkkevpwHZmo NH8RQ8q0NJX0NR4igtzf9fQc/J/49EQipvt4iw1FkfAoKE5mX+oljrobtfZZRoWg KvGIjDgcYr+UbQmQjFwBTZO4rOpPh8+S -----END CERTIFICATE-----Generated at Sun Dec 7 03:49:06 2025 by rpki-client