This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft File: EEz4cGO16r803k4l_s6ata9zbBQ.mft (raw, json) Hash identifier: d9TabNaGbqr0zghnHlDyk3tHus2MDXoT4FVYrm1dpZk= Subject key identifier: 97:00:FE:EC:B9:49:86:E8:95:62:06:74:C4:07:3B:BA:FA:E9:3F:D2 Authority key identifier: 10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 Certificate issuer: /CN=A9111FFD/serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft Manifest number: AD Signing time: Tue 23 Dec 2025 05:09:25 +0000 Manifest this update: Tue 23 Dec 2025 05:09:24 +0000 Manifest next update: Tue 30 Dec 2025 05:09:24 +0000 Files and hashes: 1: EEz4cGO16r803k4l_s6ata9zbBQ.crl (hash: eM9fzAAs1JdWFKfb5ojs3+ITuS98mUpkhpWIKl+f+OY=) 2: 7BF6BA42E91A11EF804C4B57C4F9AE02.roa (hash: HNlYiglg+bBDY8hf2XbMc61T9NCbbnRV5gfydPimiu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111FFD, serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Validity Not Before: Dec 23 05:09:24 2025 GMT Not After : Dec 30 05:09:24 2025 GMT Subject: CN=694a2405-fd8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:84:35:fb:49:11:dd:d0:ff:d9:fb:39:d7: 41:5a:ee:de:5c:4b:73:c0:2b:9c:f2:a3:29:38:6e: eb:ec:1e:36:56:9d:96:83:60:fc:7d:f5:32:a4:ca: 19:61:9c:c9:73:bc:c4:31:8f:d5:c0:9d:76:db:9c: 8b:fb:c2:19:ba:1f:a1:1d:e2:fb:dc:f3:19:b0:cd: b0:f0:d1:b8:19:fc:d4:e4:33:8a:c2:1f:ae:33:a8: b5:81:3d:3e:99:24:06:67:b7:42:72:37:a2:46:ac: fe:4c:8f:95:f6:0f:a9:c9:88:4f:0e:8a:78:57:3e: 5d:59:ec:f4:01:c9:99:93:14:eb:62:df:12:37:61: c3:4f:ff:40:08:b0:3e:56:65:00:ca:ea:de:26:1a: a3:53:70:08:7e:70:01:ff:77:9f:7d:91:01:ab:41: b1:cd:5b:df:cf:ce:cc:89:30:9d:43:c3:73:82:3b: ea:26:ac:d9:c2:4d:42:b9:a3:b4:06:2c:93:42:83: 1b:a9:37:cc:71:e1:8f:6d:6c:31:96:5b:48:7f:f8: 31:35:bd:08:52:fb:88:c3:26:67:0b:72:76:d7:f5: 11:82:52:3a:b3:4d:9b:08:ca:46:fc:78:fc:a2:84: e0:3a:85:c0:17:ea:1d:46:35:5d:e9:0d:d9:13:fa: d0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:00:FE:EC:B9:49:86:E8:95:62:06:74:C4:07:3B:BA:FA:E9:3F:D2 X509v3 Authority Key Identifier: keyid:10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:e1:5b:3b:42:84:53:5a:14:36:0f:22:64:54:4a:a9:10:06: 20:c4:bd:c2:55:11:52:a9:9a:40:bb:1e:3e:b8:63:f6:16:1b: 19:5e:b0:b5:ce:6e:88:02:0f:f2:b1:94:a3:26:3a:cc:9c:53: 20:22:8e:5f:6c:bc:94:fd:7e:f1:37:05:81:f8:61:49:b1:2d: fd:0c:dc:01:8c:da:ea:1d:71:9b:67:fe:aa:2f:ec:ea:fd:36: 9d:e6:78:a0:6f:3f:ba:e6:96:8c:1a:73:be:c7:d6:d2:da:10: 25:65:3b:33:9c:a5:7a:d9:4a:4a:41:a7:6a:18:8a:1a:58:c6: e3:3d:b7:d3:da:22:a3:aa:f1:ce:8f:7f:5d:a0:e2:57:97:a0: 38:e2:51:03:c9:cb:0e:ec:69:41:94:ce:04:b8:84:c4:3e:f2: 90:58:f6:76:fb:3f:11:29:da:fc:f3:fd:30:b3:2c:24:ee:43: 04:7b:c8:9b:25:c2:67:c1:0a:d6:3a:5a:74:66:07:b9:9b:0c: a8:87:1f:c6:17:8f:43:ae:a7:67:07:22:f5:0a:f5:89:43:a3: 3f:b0:e7:e4:60:40:6f:32:47:04:46:54:b2:52:be:2d:d7:06: 82:1c:65:8f:bd:57:75:c2:bc:69:4a:de:86:3a:04:5a:f2:03: 40:b8:1f:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFGRkQxMTAvBgNVBAUTKDEwNENGODcwNjNCNUVBQkYzNERFNEUyNUZFQ0U5QUI1 QUY3MzZDMTQwHhcNMjUxMjIzMDUwOTI0WhcNMjUxMjMwMDUwOTI0WjAYMRYwFAYD VQQDDA02OTRhMjQwNS1mZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfKENftJEd3Q/9n7OddBWu7eXEtzwCuc8qMpOG7r7B42Vp2Wg2D8ffUypMoZ YZzJc7zEMY/VwJ1225yL+8IZuh+hHeL73PMZsM2w8NG4GfzU5DOKwh+uM6i1gT0+ mSQGZ7dCcjeiRqz+TI+V9g+pyYhPDop4Vz5dWez0AcmZkxTrYt8SN2HDT/9ACLA+ VmUAyureJhqjU3AIfnAB/3effZEBq0GxzVvfz87MiTCdQ8NzgjvqJqzZwk1CuaO0 BiyTQoMbqTfMceGPbWwxlltIf/gxNb0IUvuIwyZnC3J21/URglI6s02bCMpG/Hj8 ooTgOoXAF+odRjVd6Q3ZE/rQ2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcA/uy5 SYbolWIGdMQHO7r66T/SMB8GA1UdIwQYMBaAFBBM+HBjteq/NN5OJf7OmrWvc2wU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUZGRC80MkVCMDUzNERE MzgxMUVGOUMzNDY3NDVDNEY5QUUwMi9FRXo0Y0dPMTZyODAzazRsX3M2YXRhOXpi QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VFejRjR08xNnI4MDNrNGxfczZhdGE5emJCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUZGRC80MkVCMDUzNEREMzgxMUVGOUMzNDY3NDVDNEY5QUUwMi9FRXo0Y0dPMTZy ODAzazRsX3M2YXRhOXpiQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh4Vs7QoRTWhQ2DyJkVEqpEAYgxL3CVRFSqZpAux4+uGP2FhsZXrC1 zm6IAg/ysZSjJjrMnFMgIo5fbLyU/X7xNwWB+GFJsS39DNwBjNrqHXGbZ/6qL+zq /Tad5nigbz+65paMGnO+x9bS2hAlZTsznKV62UpKQadqGIoaWMbjPbfT2iKjqvHO j39doOJXl6A44lEDycsO7GlBlM4EuITEPvKQWPZ2+z8RKdr88/0wsywk7kMEe8ib JcJnwQrWOlp0Zge5mwyohx/GF49DrqdnByL1CvWJQ6M/sOfkYEBvMkcERlSyUr4t 1waCHGWPvVd1wrxpSt6GOgRa8gNAuB9Z -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:33 2025 by rpki-client