This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: M52xzdu6NVlGMQHSNwXddztL4+LqCV6zuXnyfaJIlGQ= Subject key identifier: 1D:BC:8D:D8:40:C7:FB:91:6A:F5:45:A7:F6:69:C8:15:32:6C:48:D5 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3560 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 3525 Signing time: Thu 18 Dec 2025 14:22:05 +0000 Manifest this update: Thu 18 Dec 2025 14:22:05 +0000 Manifest next update: Thu 25 Dec 2025 14:22:05 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: 1XSA9WAirUkD071BHOH6XroRiIqyCLGI/tnNoHTrqmw=) 2: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: n9kveW6T0zGofNIWBVL2lz5XwTYiSjqFUg+Xl3iNCMQ=) 3: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 4: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 5: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 8: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 0C6TlHkpuDCz4hvNzUcvUCrXDtcFtiPeiunaW4mmmk0=) 9: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13664 (0x3560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Dec 18 14:22:05 2025 GMT Not After : Dec 25 14:22:05 2025 GMT Subject: CN=69440e0d-2553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6f:e3:86:b1:94:19:73:3a:fd:d3:1f:67:0d: cc:62:07:04:c4:70:45:a3:41:1d:f3:bb:bd:ad:56: dc:83:3f:9a:90:b2:a1:98:8b:f9:bd:38:e3:38:b4: 88:59:aa:74:c3:9b:dc:03:cb:4a:a3:0d:32:33:e0: 84:2a:57:ed:62:fa:3c:a9:4d:ab:bd:11:e4:cc:71: 0c:6e:4b:94:ae:aa:85:8c:e9:dd:33:10:ef:76:2f: 72:f0:19:6c:59:84:ab:8c:20:1f:98:b6:0c:60:2e: ad:b5:55:b5:66:c5:90:b5:60:21:a8:34:7c:7f:0b: da:24:dd:1b:44:a6:6a:d3:bd:9b:ed:b2:9f:57:2b: 44:84:9e:b9:4d:53:85:74:25:7f:03:50:43:70:cb: 12:e3:a6:ad:a9:01:ee:59:7a:df:f7:87:16:f3:5b: 72:80:d7:6d:5e:52:b0:9e:1a:44:bc:c8:c3:03:c5: 0c:1e:b6:b2:c7:dc:71:bd:06:79:c2:02:54:b2:bc: 5a:b8:b3:b2:2e:2e:85:22:e2:dc:5f:4d:c6:42:7b: 38:7d:45:54:4d:4c:9c:3d:3b:a4:ea:a5:6f:37:c8: 0b:e9:31:42:0d:a0:1c:b7:60:f9:60:39:85:90:16: f8:99:81:52:d2:4d:95:e6:06:a2:99:7a:fc:d1:9a: aa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:BC:8D:D8:40:C7:FB:91:6A:F5:45:A7:F6:69:C8:15:32:6C:48:D5 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:48:73:b9:65:4c:e3:41:8a:09:53:56:d4:cd:89:54:4e:aa: 4d:c6:96:18:7d:c7:b0:e9:d3:9e:78:92:05:31:5c:13:67:19: cd:3c:ff:3e:b8:ca:5d:94:78:43:53:b5:4a:df:ba:cd:4e:05: 4d:6f:dc:19:95:e1:73:65:66:cf:9c:a1:3e:c8:0a:d2:92:9e: a5:25:75:63:2a:42:83:ab:ca:f5:d3:87:f8:12:13:1b:96:17: 49:aa:1a:3e:49:ee:63:36:36:52:75:78:3f:da:59:0a:f3:c3: 05:3d:dc:85:fe:88:fd:9a:eb:0b:d9:0b:1f:77:aa:12:fa:ff: 92:78:19:8c:d8:1b:dc:71:dd:8e:77:ae:43:fa:34:35:86:63: d0:6e:57:47:62:bf:b8:72:aa:5a:de:da:e0:55:7f:ee:a9:65: 11:58:67:d9:4c:6c:75:31:a3:e6:70:28:de:30:ba:81:b8:f6: dc:cb:9b:82:00:e5:47:18:c9:09:e6:c9:04:5d:7b:2f:39:8d: 97:4f:e3:1a:e0:34:7c:ce:64:ee:17:3b:10:e8:b6:34:5f:4a: 0d:00:25:58:82:a1:3c:8c:e3:b3:37:51:4b:9a:1b:66:ff:f4: 45:eb:55:1b:60:08:b7:c8:86:7d:ca:f0:59:cd:40:91:66:69: a1:bb:03:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUxMjE4MTQyMjA1WhcNMjUxMjI1MTQyMjA1WjAYMRYwFAYD VQQDDA02OTQ0MGUwZC0yNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0G/jhrGUGXM6/dMfZw3MYgcExHBFo0Ed87u9rVbcgz+akLKhmIv5vTjjOLSI Wap0w5vcA8tKow0yM+CEKlftYvo8qU2rvRHkzHEMbkuUrqqFjOndMxDvdi9y8Bls WYSrjCAfmLYMYC6ttVW1ZsWQtWAhqDR8fwvaJN0bRKZq072b7bKfVytEhJ65TVOF dCV/A1BDcMsS46atqQHuWXrf94cW81tygNdtXlKwnhpEvMjDA8UMHrayx9xxvQZ5 wgJUsrxauLOyLi6FIuLcX03GQns4fUVUTUycPTuk6qVvN8gL6TFCDaAct2D5YDmF kBb4mYFS0k2V5gaimXr80ZqqfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB28jdhA x/uRavVFp/ZpyBUybEjVMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBSHO5ZUzjQYoJU1bUzYlUTqpNxpYYfcew6dOeeJIFMVwTZxnNPP8+ uMpdlHhDU7VK37rNTgVNb9wZleFzZWbPnKE+yArSkp6lJXVjKkKDq8r104f4EhMb lhdJqho+Se5jNjZSdXg/2lkK88MFPdyF/oj9musL2Qsfd6oS+v+SeBmM2Bvccd2O d65D+jQ1hmPQbldHYr+4cqpa3trgVX/uqWURWGfZTGx1MaPmcCjeMLqBuPbcy5uC AOVHGMkJ5skEXXsvOY2XT+Ma4DR8zmTuFzsQ6LY0X0oNACVYgqE8jOOzN1FLmhtm //RF61UbYAi3yIZ9yvBZzUCRZmmhuwNz -----END CERTIFICATE-----Generated at Fri Dec 19 17:24:37 2025 by rpki-client