This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: jNG/QwRwaw4tgHdudRqOk8fGXncCMnEVdBwVv5HRUuE= Subject key identifier: B9:14:93:41:41:A0:8D:49:7E:74:56:C4:F3:B3:4E:F7:64:7A:BC:FF Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 123F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 1224 Signing time: Sat 06 Dec 2025 16:39:57 +0000 Manifest this update: Sat 06 Dec 2025 16:39:57 +0000 Manifest next update: Sat 13 Dec 2025 16:39:57 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: KOjPSaz/nuPcgC26+dKTagBhp5C3zRPnf7yXfEX94QE=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: 9dqK7fwX1U+8A9fcOv7N2ng0+RyVg5lfklaoSqiStho=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: RMsg5QWeiEkRgPY6Tmmzu/lfOLCSCEngacbP0E3B76I=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: xRGejBtSvmSQiXiFTmSi8Viq6cXlkkmhK13khjlMJ6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4671 (0x123f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Dec 6 16:39:57 2025 GMT Not After : Dec 13 16:39:57 2025 GMT Subject: CN=69345c5d-205c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f4:d8:6a:a7:0a:4f:d1:23:0c:af:bd:e8:a5: b6:2e:f1:d4:94:4b:28:3f:fc:be:c3:4b:43:21:4d: 1e:49:d3:fb:cb:b1:31:ff:a4:de:21:be:3c:23:a4: fb:40:af:0e:c5:3d:46:ea:e4:21:4f:8d:bf:cc:26: da:f3:aa:f4:8b:39:57:c6:b5:f7:c9:14:85:5b:d4: ae:7d:c5:e4:90:a9:95:cd:eb:73:31:63:46:ae:ea: db:e6:68:b6:4e:8c:5b:d9:99:17:98:49:b0:fa:05: 19:4d:50:46:d3:72:74:25:e5:d0:ee:c1:08:de:ff: e9:5a:41:23:ed:16:d8:83:b2:12:d1:16:fa:09:d2: 06:2a:ec:49:28:dc:43:f0:87:cb:de:c1:02:39:8f: 5d:da:a7:b2:40:b6:17:a5:1d:f8:21:7f:35:b2:ca: 33:46:ee:c3:b9:88:ca:74:e9:b9:08:d1:23:29:b2: 29:0b:a9:6e:27:a8:cf:44:fd:dc:67:e4:40:37:b5: 52:84:b4:8c:a1:35:77:39:87:43:04:07:4b:c7:16: 03:6c:bc:77:7d:06:47:8a:07:da:41:25:bc:65:d5: 88:22:c2:c1:7d:c0:4e:aa:51:2a:80:28:28:bd:f9: 3c:4a:49:94:72:27:1d:6a:e9:88:af:a0:ac:b0:46: ac:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:14:93:41:41:A0:8D:49:7E:74:56:C4:F3:B3:4E:F7:64:7A:BC:FF X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:9e:e2:87:36:83:2c:3e:c0:35:94:6a:c8:7f:ac:b0:6f:39: 53:94:26:cc:c8:0c:cc:91:3b:3e:0d:ef:79:67:81:a1:d5:d9: 03:14:52:af:e9:7c:b6:c3:85:fb:d3:63:c2:16:f5:0d:7a:58: d8:36:ed:09:04:71:b0:30:de:96:09:07:de:7a:20:3b:a8:ce: 8c:23:3a:e2:42:36:06:9e:22:4f:16:fb:b0:76:41:67:72:52: e7:d8:f5:9e:5f:d3:5c:46:20:1b:d9:f7:1a:fc:b5:12:0d:b9: 8b:81:62:09:de:b1:df:31:f7:a5:0e:15:93:c5:62:3c:9a:a4: 3b:0a:7a:e9:43:ae:31:53:ba:bb:83:89:5e:1d:aa:5a:20:6b: fb:f6:ad:79:df:c4:1d:e3:aa:c3:35:ea:1b:02:5b:9f:fa:01: 9b:23:67:1b:fd:a4:16:57:b5:dd:77:f9:60:99:a7:fe:8c:03: 1f:2f:82:7a:85:dd:b8:90:48:21:71:09:b3:1b:ec:c1:e1:c9: 55:17:b6:28:fc:d1:54:79:2d:55:1e:99:41:98:a9:98:af:3a: 28:d5:f6:31:4a:91:ca:1b:20:5f:47:1f:78:58:51:78:39:a8: 1b:c4:58:9e:d1:0c:bd:19:07:e4:1f:e4:07:97:7e:87:84:5a: 39:6c:3f:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMjA2MTYzOTU3WhcNMjUxMjEzMTYzOTU3WjAYMRYwFAYD VQQDEw02OTM0NWM1ZC0yMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfTYaqcKT9EjDK+96KW2LvHUlEsoP/y+w0tDIU0eSdP7y7Ex/6TeIb48I6T7 QK8OxT1G6uQhT42/zCba86r0izlXxrX3yRSFW9SufcXkkKmVzetzMWNGrurb5mi2 Toxb2ZkXmEmw+gUZTVBG03J0JeXQ7sEI3v/pWkEj7RbYg7IS0Rb6CdIGKuxJKNxD 8IfL3sECOY9d2qeyQLYXpR34IX81ssozRu7DuYjKdOm5CNEjKbIpC6luJ6jPRP3c Z+RAN7VShLSMoTV3OYdDBAdLxxYDbLx3fQZHigfaQSW8ZdWIIsLBfcBOqlEqgCgo vfk8SkmUcicdaumIr6CssEashwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkUk0FB oI1JfnRWxPOzTvdkerz/MB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpnuKHNoMsPsA1lGrIf6ywbzlTlCbMyAzMkTs+De95Z4Gh1dkDFFKv 6Xy2w4X702PCFvUNeljYNu0JBHGwMN6WCQfeeiA7qM6MIzriQjYGniJPFvuwdkFn clLn2PWeX9NcRiAb2fca/LUSDbmLgWIJ3rHfMfelDhWTxWI8mqQ7CnrpQ64xU7q7 g4leHapaIGv79q1538Qd46rDNeobAluf+gGbI2cb/aQWV7Xdd/lgmaf+jAMfL4J6 hd24kEghcQmzG+zB4clVF7Yo/NFUeS1VHplBmKmYrzoo1fYxSpHKGyBfRx94WFF4 OagbxFie0Qy9GQfkH+QHl36HhFo5bD+7 -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:12 2025 by rpki-client