This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: 0ocNQSvHHyUa8rHxDIEO+CcxGCXp+8a1dSI/sn5C/4o= Subject key identifier: E8:F2:C0:45:02:19:FA:45:D8:F4:19:47:1F:B8:BB:18:E4:4B:26:BD Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 014F Signing time: Fri 05 Dec 2025 02:24:45 +0000 Manifest this update: Fri 05 Dec 2025 02:24:45 +0000 Manifest next update: Fri 12 Dec 2025 02:24:45 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: mtiUZT1gS/CNdim7L+x7dlGDVxPglDdadJjFHtyt/Wc=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: g8goRa5uN0098PK1vnqVTndrxAdY1S5JKnq752ZsLOQ=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: BxZpcifR3l7qhnt+56VpPmZ3hTQmgPYYxX/h3b9rorE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Dec 5 02:24:45 2025 GMT Not After : Dec 12 02:24:45 2025 GMT Subject: CN=6932426d-e35a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d1:ea:08:bc:5a:29:f8:41:9c:49:b6:ef:cf: fc:49:97:70:72:1a:4a:fd:11:00:fb:89:f9:41:03: 88:25:d4:b9:56:a1:d0:bc:c9:94:a5:7c:d2:09:39: 91:43:cd:3c:be:6f:10:41:e1:74:b3:57:3f:39:79: 2e:45:05:f4:27:ed:6b:d5:6c:91:0c:90:ad:eb:51: ab:08:e3:0e:8c:e7:d8:4d:2b:b2:a8:93:c5:5d:55: 88:6c:fb:be:d8:26:34:fb:fa:96:a1:4b:f3:1c:75: bf:57:0c:f6:7e:da:a2:d8:34:a0:e0:b6:65:0c:ee: 19:9c:c6:de:a2:b8:13:aa:49:36:2d:6d:58:89:e7: da:8f:09:3c:ca:0c:b2:03:c8:59:37:8d:45:fb:80: 77:52:d5:50:67:b4:90:af:67:30:59:0f:7c:15:e7: bd:b7:80:3c:31:b5:cb:2e:98:74:b6:31:53:44:ff: eb:89:4f:e7:4e:e5:21:6f:e1:41:5f:c8:0a:01:df: 62:65:16:b1:6d:e1:19:ed:99:ee:49:a1:89:83:7b: 3c:b8:e7:9b:dc:af:d9:dd:f3:ab:cc:3c:01:3f:b5: f6:16:39:55:7b:57:4d:d5:25:fc:d1:5f:8b:c3:0d: 69:c2:1a:02:75:6f:da:19:ed:6a:d1:e4:6a:f7:a2: 86:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F2:C0:45:02:19:FA:45:D8:F4:19:47:1F:B8:BB:18:E4:4B:26:BD X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:0b:e4:df:11:e5:72:ad:ab:38:c2:71:3a:f4:8b:7e:98:13: ab:96:87:8d:73:66:b5:e4:06:1c:05:6d:52:1f:71:c3:b6:41: a7:8e:62:54:ae:b6:49:d8:90:12:c1:84:b4:6c:9f:96:a2:11: ce:9d:fd:5b:e1:4c:73:5a:a5:72:7a:89:eb:d8:3d:c6:55:30: 88:f6:46:03:c4:47:45:d4:fc:db:62:a9:ec:46:15:2a:ff:f0: 06:60:64:61:30:38:ac:76:e3:ff:2e:96:09:d4:1e:25:6a:90: 21:2e:93:35:88:e0:54:cc:ff:0e:fb:aa:b9:ea:ac:43:71:a9: b8:28:70:7c:44:aa:1a:15:2b:f9:32:a6:8d:4e:4b:49:8d:76: 5b:66:c4:c9:53:70:1d:ec:bf:cf:81:1d:40:24:f0:e0:54:cb: 9d:01:f0:90:93:95:65:e3:9b:86:a5:e0:d2:c9:a2:dc:51:62: 0d:73:23:32:58:ef:f8:27:8d:3c:99:a5:c4:f3:fb:8f:74:26: f2:7a:04:b5:0f:28:46:9a:cd:02:37:25:c2:ba:f1:89:ea:0b: 67:dd:ec:e0:5e:ff:43:1e:c2:f2:00:29:05:cd:85:c0:4b:06: fd:e8:0b:e1:aa:bf:b7:1b:41:b6:7c:05:4d:83:ca:12:16:8b: c5:20:63:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUxMjA1MDIyNDQ1WhcNMjUxMjEyMDIyNDQ1WjAYMRYwFAYD VQQDEw02OTMyNDI2ZC1lMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9HqCLxaKfhBnEm278/8SZdwchpK/REA+4n5QQOIJdS5VqHQvMmUpXzSCTmR Q808vm8QQeF0s1c/OXkuRQX0J+1r1WyRDJCt61GrCOMOjOfYTSuyqJPFXVWIbPu+ 2CY0+/qWoUvzHHW/Vwz2ftqi2DSg4LZlDO4ZnMbeorgTqkk2LW1Yiefajwk8ygyy A8hZN41F+4B3UtVQZ7SQr2cwWQ98Fee9t4A8MbXLLph0tjFTRP/riU/nTuUhb+FB X8gKAd9iZRaxbeEZ7ZnuSaGJg3s8uOeb3K/Z3fOrzDwBP7X2FjlVe1dN1SX80V+L ww1pwhoCdW/aGe1q0eRq96KGLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjywEUC GfpF2PQZRx+4uxjkSya9MB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkC+TfEeVyras4wnE69It+mBOrloeNc2a15AYcBW1SH3HDtkGnjmJU rrZJ2JASwYS0bJ+WohHOnf1b4UxzWqVyeonr2D3GVTCI9kYDxEdF1PzbYqnsRhUq //AGYGRhMDisduP/LpYJ1B4lapAhLpM1iOBUzP8O+6q56qxDcam4KHB8RKoaFSv5 MqaNTktJjXZbZsTJU3Ad7L/PgR1AJPDgVMudAfCQk5Vl45uGpeDSyaLcUWINcyMy WO/4J408maXE8/uPdCbyegS1DyhGms0CNyXCuvGJ6gtn3ezgXv9DHsLyACkFzYXA Swb96Avhqr+3G0G2fAVNg8oSFovFIGMU -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:08 2025 by rpki-client