This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: mPQ208FDy3w5R2n4xtr/hdSF4hAICO+cyDOYCBGjh5c= Subject key identifier: 13:A4:0F:87:75:3D:BD:51:9A:4F:F8:A8:81:3B:9C:C9:35:7C:51:96 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2B5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2B2E Signing time: Sat 06 Dec 2025 15:21:48 +0000 Manifest this update: Sat 06 Dec 2025 15:21:48 +0000 Manifest next update: Sat 13 Dec 2025 15:21:48 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: /t93YWWvFao8/4FJX65tNPUyQFpgt6R93MXnj2/7zjA=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: +HLe66PXx2PeHfF3w62lv44BzlqBqje8fJ2L8YnpkrU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: W6zfrwj6/OqirsYiKLU78RB1FM66HD+HpTrmcoXxfW0=) 4: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: JIxsUWoaA8dqs4H846TBR0QXM7ZNHktOJjX2Kny5hR4=) 5: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: Gj/dQfmDGUWDK4XHV01NkbElb3DXkLPBPWk0YD6hwjM=) 6: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: ppGKOWraeOF8KBxlm/qgPAfA6uqwS+C7Tk6GCScwyjk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11101 (0x2b5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Dec 6 15:21:48 2025 GMT Not After : Dec 13 15:21:48 2025 GMT Subject: CN=69344a0c-d65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a0:56:3f:a3:07:e1:b5:48:7f:51:5b:8e:e1: 23:ea:00:71:47:f0:88:ce:a6:53:58:98:46:8d:59: 23:71:8e:8d:5b:de:ad:9f:3e:a8:78:6d:d0:5b:d0: 55:96:4c:f4:16:bb:76:c8:f8:0f:44:e8:b3:e2:95: 3d:e7:ed:d4:65:21:f1:5b:0f:95:8e:e9:43:7f:8b: ec:93:2c:7d:a6:56:d9:d6:22:dd:8e:c7:71:fd:68: 3f:a6:d4:d5:32:0d:61:96:0b:03:f7:a3:a3:1d:4d: 55:88:ca:04:52:ef:a8:d1:03:4f:ec:f8:cb:eb:33: 8f:b7:f6:19:54:97:54:de:d9:29:46:4c:ec:08:d8: 81:ab:26:f2:2e:0e:67:5e:c3:80:1b:a7:ff:e3:01: e5:75:0e:da:ab:e9:15:f2:52:51:e8:f1:3f:54:6b: e8:b0:d6:d8:10:58:fa:33:06:68:1c:48:45:cb:74: 4d:6f:9d:9a:17:ca:f5:b1:6d:42:42:d6:8d:43:20: 0e:bc:7c:ee:47:e3:f4:eb:13:09:ea:19:dc:eb:09: 47:6e:f3:68:e5:db:a4:0f:d8:eb:44:1b:85:af:81: 04:39:6f:4c:23:8d:19:25:a8:5b:62:09:a0:12:c4: a9:f7:4f:1e:4e:b9:d2:e0:c5:5a:23:23:2f:d0:b7: b2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A4:0F:87:75:3D:BD:51:9A:4F:F8:A8:81:3B:9C:C9:35:7C:51:96 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:56:65:73:08:04:31:22:ca:07:70:da:fe:65:43:85:de:85: d8:87:50:ec:aa:58:c8:c9:2b:96:90:2d:2e:73:ee:ba:fb:1f: 4d:1a:21:d4:16:2d:e9:76:85:2d:7a:50:d5:06:3b:68:c4:b1: 74:db:7b:37:7c:41:10:f5:27:b7:56:cb:69:cf:22:e0:52:cc: e9:e4:9a:9f:8b:5a:e0:c8:32:7e:8c:33:60:c1:b8:05:03:7e: 66:16:0d:36:93:20:e2:7f:b2:05:e1:56:1c:9b:45:ba:41:25: 4e:5d:fd:81:db:7a:b0:87:ab:90:cf:30:9f:37:25:d7:ea:2d: ce:ca:32:4c:f1:d9:46:50:0d:0f:88:26:ff:52:f9:7e:af:6e: c2:ef:01:4c:02:d4:ee:17:a4:33:14:dc:47:8b:92:9c:b0:03: 77:03:54:35:67:36:10:09:2d:8a:32:1b:b2:2d:4d:b9:0c:46: 58:72:d4:eb:b7:b8:2a:48:31:97:05:75:91:07:e1:cf:5c:9f: b2:6e:99:8d:ff:08:7f:2f:18:b9:a5:aa:6a:66:86:27:6f:01: 57:95:d6:9f:53:e9:98:ac:0b:c5:6b:e8:2b:0b:a3:af:96:d9: 8e:d3:69:23:d6:01:f3:65:7d:7c:39:bc:02:04:f6:03:72:5b: 65:aa:0d:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUxMjA2MTUyMTQ4WhcNMjUxMjEzMTUyMTQ4WjAYMRYwFAYD VQQDEw02OTM0NGEwYy1kNjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qBWP6MH4bVIf1FbjuEj6gBxR/CIzqZTWJhGjVkjcY6NW96tnz6oeG3QW9BV lkz0Frt2yPgPROiz4pU95+3UZSHxWw+VjulDf4vskyx9plbZ1iLdjsdx/Wg/ptTV Mg1hlgsD96OjHU1ViMoEUu+o0QNP7PjL6zOPt/YZVJdU3tkpRkzsCNiBqybyLg5n XsOAG6f/4wHldQ7aq+kV8lJR6PE/VGvosNbYEFj6MwZoHEhFy3RNb52aF8r1sW1C QtaNQyAOvHzuR+P06xMJ6hnc6wlHbvNo5dukD9jrRBuFr4EEOW9MI40ZJahbYgmg EsSp908eTrnS4MVaIyMv0LeygQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOkD4d1 Pb1Rmk/4qIE7nMk1fFGWMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5VmVzCAQxIsoHcNr+ZUOF3oXYh1DsqljIySuWkC0uc+66+x9NGiHU Fi3pdoUtelDVBjtoxLF023s3fEEQ9Se3VstpzyLgUszp5Jqfi1rgyDJ+jDNgwbgF A35mFg02kyDif7IF4VYcm0W6QSVOXf2B23qwh6uQzzCfNyXX6i3OyjJM8dlGUA0P iCb/Uvl+r27C7wFMAtTuF6QzFNxHi5KcsAN3A1Q1ZzYQCS2KMhuyLU25DEZYctTr t7gqSDGXBXWRB+HPXJ+ybpmN/wh/Lxi5papqZoYnbwFXldafU+mYrAvFa+grC6Ov ltmO02kj1gHzZX18ObwCBPYDcltlqg1U -----END CERTIFICATE-----Generated at Sat Dec 6 16:33:25 2025 by rpki-client